$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa File: 3130332e372e302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: xJ85m8iBbSTYvL2T1rRSh9bnVhzPLk6uBxTnm+QfIMg= Subject key identifier: 67:90:97:9D:0D:AF:BD:62:59:C6:A0:3E:A7:E3:61:38:D5:E7:B4:28 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 03342D32DABA39E6616281C49D2CCFEF999A4B91 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa Signing time: Mon 31 Jul 2023 00:14:30 +0000 ROA not before: Mon 31 Jul 2023 00:09:30 +0000 ROA not after: Mon 29 Jul 2024 00:14:30 +0000 asID: 38788 IP address blocks: 103.7.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:34:2d:32:da:ba:39:e6:61:62:81:c4:9d:2c:cf:ef:99:9a:4b:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 31 00:09:30 2023 GMT Not After : Jul 29 00:14:30 2024 GMT Subject: CN=6790979D0DAFBD6259C6A03EA7E36138D5E7B428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:43:2e:60:a4:d3:22:87:13:ce:c9:c0:76: 14:21:42:0c:15:b6:e7:78:65:e5:be:ff:95:25:7c: 0d:34:ff:fd:27:e2:de:60:7c:23:c9:e7:90:82:23: dd:a4:ba:82:cd:e2:1e:5b:32:63:78:5f:65:13:fa: 4a:f4:aa:eb:61:aa:26:ee:c4:e5:80:23:c7:33:35: 65:60:6f:f2:83:0b:46:ad:19:90:f6:52:6a:3c:25: 50:9c:11:7a:19:1c:d8:20:df:5f:48:4e:04:a5:0e: fa:2a:b0:66:79:2b:a4:75:4a:13:ae:c6:d5:63:eb: 07:76:9d:73:5c:61:04:dd:c4:ac:6a:dd:7a:7e:74: 0d:4b:8e:81:ab:25:bd:e2:d7:13:41:2f:60:06:bb: 13:de:b0:6e:92:1f:d4:55:a6:26:29:39:45:8d:58: 48:4c:d3:5c:e8:8e:87:90:c2:79:ba:aa:2c:be:70: 19:a9:b4:ba:ec:c6:c9:1e:e8:38:9a:e9:68:49:5c: de:ba:ca:b0:ca:fe:82:d1:56:6b:b5:75:ad:d9:61: f0:60:2a:1c:43:3e:80:e4:5b:31:6a:54:38:09:57: 50:a3:2d:de:06:0a:45:ad:c2:fd:36:e4:f2:0a:89: dd:c9:3c:af:a5:59:45:a1:14:6c:79:95:e0:ad:61: ee:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:90:97:9D:0D:AF:BD:62:59:C6:A0:3E:A7:E3:61:38:D5:E7:B4:28 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.0.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:9d:9d:9f:36:19:06:d5:55:c2:dc:ce:98:86:bd:32:31:9e: 2b:e7:16:65:00:b2:83:a6:f9:8e:00:e6:ce:f2:45:a1:9e:fe: 16:bb:f8:d0:84:9d:96:2e:8c:38:ca:40:18:59:de:17:d2:2c: 12:94:75:a0:84:69:81:23:6d:12:db:6f:c9:c4:59:71:5f:fc: c6:d3:36:19:ee:e4:40:7f:ea:49:38:9e:67:13:a7:0d:61:34: df:65:1d:17:e3:02:61:e9:c1:e0:83:77:5b:5e:e4:08:76:b9: b7:d9:e3:4f:be:eb:86:ba:2c:c9:e8:22:eb:1f:ad:2b:12:00: 34:37:82:04:0c:7a:e7:98:fd:c8:0b:9c:fd:90:75:3c:25:2f: 6f:8b:b1:af:8a:39:ec:4f:e6:96:70:68:58:ab:72:6d:36:dd: e8:3a:a6:2f:df:cc:4e:3a:bf:a8:2e:b5:72:93:27:04:27:fc: 5d:58:29:ca:6c:00:ba:09:8a:c4:cb:10:e9:29:ef:79:00:93: 3c:fb:bf:07:71:8d:04:11:9a:a0:24:40:92:27:22:be:e5:b3: 41:e7:34:90:78:21:79:80:57:f7:f5:e2:79:27:51:65:3e:47: 17:2a:cd:49:ac:9a:66:d7:f1:68:64:91:ef:44:45:ac:25:58: 0a:ab:79:ab -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUAzQtMtq6OeZhYoHEnSzP75maS5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yMzA3MzEwMDA5MzBaFw0yNDA3MjkwMDE0MzBaMDMxMTAvBgNV BAMTKDY3OTA5NzlEMERBRkJENjI1OUM2QTAzRUE3RTM2MTM4RDVFN0I0MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFFUMuYKTTIocTzsnAdhQhQgwV tud4ZeW+/5UlfA00//0n4t5gfCPJ55CCI92kuoLN4h5bMmN4X2UT+kr0quthqibu xOWAI8czNWVgb/KDC0atGZD2Umo8JVCcEXoZHNgg319ITgSlDvoqsGZ5K6R1ShOu xtVj6wd2nXNcYQTdxKxq3Xp+dA1LjoGrJb3i1xNBL2AGuxPesG6SH9RVpiYpOUWN WEhM01zojoeQwnm6qiy+cBmptLrsxske6Dia6WhJXN66yrDK/oLRVmu1da3ZYfBg KhxDPoDkWzFqVDgJV1CjLd4GCkWtwv025PIKid3JPK+lWUWhFGx5leCtYe4xAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUZ5CXnQ2vvWJZxqA+p+NhONXntCgwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzAyZTMwMmYzMjMzMmQzMjMz MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZwcAMA0GCSqGSIb3DQEBCwUA A4IBAQA7nZ2fNhkG1VXC3M6Yhr0yMZ4r5xZlALKDpvmOAObO8kWhnv4Wu/jQhJ2W Low4ykAYWd4X0iwSlHWghGmBI20S22/JxFlxX/zG0zYZ7uRAf+pJOJ5nE6cNYTTf ZR0X4wJh6cHgg3dbXuQIdrm32eNPvuuGuizJ6CLrH60rEgA0N4IEDHrnmP3IC5z9 kHU8JS9vi7GvijnsT+aWcGhYq3JtNt3oOqYv38xOOr+oLrVykycEJ/xdWCnKbAC6 CYrEyxDpKe95AJM8+78HcY0EEZqgJECSJyK+5bNB5zSQeCF5gFf39eJ5J1FlPkcX Ks1JrJpm1/FoZJHvREWsJVgKq3mr -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org