$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e2031333838383836.roa File: 3130332e37332e3135392e302f32342d3234203d3e2031333838383836.roa (raw, json) Hash identifier: KJYnAMPOLgD5ML0520D7ts2uKWX9DwccBQLW+v37GLs= Subject key identifier: 63:3E:82:17:F9:5E:8D:D2:5B:2E:14:8B:33:6A:70:87:78:AC:6E:EF Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 1C49F7985543FEEE503BD4640C29210D133A70A9 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e2031333838383836.roa Signing time: Tue 27 Feb 2024 16:39:54 +0000 ROA not before: Tue 27 Feb 2024 16:34:54 +0000 ROA not after: Tue 25 Feb 2025 16:39:54 +0000 asID: 1388886 IP address blocks: 103.73.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 16:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:49:f7:98:55:43:fe:ee:50:3b:d4:64:0c:29:21:0d:13:3a:70:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Feb 27 16:34:54 2024 GMT Not After : Feb 25 16:39:54 2025 GMT Subject: CN=633E8217F95E8DD25B2E148B336A708778AC6EEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:5e:51:89:dd:ea:24:a7:fd:b8:9b:f6:51:eb: d7:ea:5d:37:33:fa:b1:c8:53:04:da:59:5d:f0:9d: b4:3c:99:c3:c6:64:14:ae:58:97:56:bf:23:e4:39: c6:68:06:11:11:8d:05:0f:1d:b8:3b:76:28:3f:80: a2:52:c3:a0:9b:b3:e7:f0:a5:6d:cc:42:a2:52:66: 41:a7:ae:4e:e9:dc:3c:4f:8b:59:f6:88:93:21:62: a1:47:0b:5e:8e:15:c0:61:e9:7f:36:26:dc:0c:d0: b9:1b:4a:ef:a1:03:a7:05:91:42:0a:6d:84:1a:08: c7:30:b7:ac:57:db:3b:1e:b3:65:67:84:19:a1:58: 60:b1:7e:64:4e:ac:08:40:d9:2a:fc:bb:cc:72:20: 3b:62:5f:72:14:6e:22:5c:f8:94:14:af:55:23:3f: 43:e9:d0:66:00:50:45:3e:33:62:34:30:69:32:34: d9:7b:88:7d:77:27:bd:1c:99:b6:ca:a1:8e:09:7e: a2:62:b5:28:ba:71:3a:a9:83:6f:b1:f8:76:35:00: ba:5a:0a:ce:d9:be:ea:21:a6:ae:e1:f2:45:0a:52: ff:26:f8:62:0d:d0:5a:7c:78:49:31:1d:c7:9d:e6: fa:93:dd:dd:86:68:ca:9c:f6:4a:5e:2a:99:f3:37: cc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3E:82:17:F9:5E:8D:D2:5B:2E:14:8B:33:6A:70:87:78:AC:6E:EF X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e2031333838383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.159.0/24 Signature Algorithm: sha256WithRSAEncryption bc:13:47:3c:fc:8b:c4:5f:ec:40:e2:90:3d:5f:9f:ab:85:c4: d1:70:4c:66:fa:4b:37:98:4f:6c:f8:b5:2b:f4:b3:e9:90:c1: 4d:ea:9a:9f:c4:db:4e:b0:5f:f8:93:09:ae:48:7d:86:87:2a: 72:c5:a8:e4:b3:d4:26:ac:a5:1c:45:fc:7c:7f:e1:3f:6c:1d: fc:0b:0b:9f:57:aa:97:af:86:36:52:fd:1d:73:b9:4e:bb:1c: 90:21:eb:33:d4:ae:b7:a1:c0:7a:bc:6d:60:6b:bc:a9:d6:55: fb:11:85:2c:fd:16:81:71:4a:b0:3b:a0:29:29:40:d1:bb:97: c0:fb:6d:e7:c0:eb:a4:0b:d9:ff:ca:cc:1b:4a:54:71:a6:a1: 6a:65:07:85:54:60:d6:0e:5b:0b:9e:c6:b0:b6:9f:43:e0:8d: 02:eb:b4:51:f8:d4:70:db:48:71:19:77:54:e9:e5:89:6f:0c: 9e:73:dd:f9:9f:2c:7d:78:96:16:f5:1e:0b:b9:63:ae:33:d6: 35:62:48:b4:2a:41:b5:b8:d8:d9:48:62:29:d6:47:2d:4b:3b: 60:56:50:8d:a0:d1:d7:f9:1e:8d:78:7d:35:81:e8:53:e4:c5: 38:95:56:ee:7c:62:de:6d:77:af:bb:f0:c8:1b:3d:11:d1:2e: 5b:8f:77:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHEn3mFVD/u5QO9RkDCkhDRM6cKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNDAyMjcxNjM0NTRaFw0yNTAyMjUxNjM5NTRaMDMxMTAvBgNV BAMTKDYzM0U4MjE3Rjk1RThERDI1QjJFMTQ4QjMzNkE3MDg3NzhBQzZFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyXlGJ3eokp/24m/ZR69fqXTcz +rHIUwTaWV3wnbQ8mcPGZBSuWJdWvyPkOcZoBhERjQUPHbg7dig/gKJSw6Cbs+fw pW3MQqJSZkGnrk7p3DxPi1n2iJMhYqFHC16OFcBh6X82JtwM0LkbSu+hA6cFkUIK bYQaCMcwt6xX2zses2VnhBmhWGCxfmROrAhA2Sr8u8xyIDtiX3IUbiJc+JQUr1Uj P0Pp0GYAUEU+M2I0MGkyNNl7iH13J70cmbbKoY4JfqJitSi6cTqpg2+x+HY1ALpa Cs7Zvuohpq7h8kUKUv8m+GIN0Fp8eEkxHced5vqT3d2GaMqc9kpeKpnzN8yjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYz6CF/lejdJbLhSLM2pwh3isbu8wHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDA2Y2RiLTE3OTEtNDc4ZC05 ZDI4LTllMzdhNmY4MDljYy8wLzMxMzAzMzJlMzczMzJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnSZ8wDQYJ KoZIhvcNAQELBQADggEBALwTRzz8i8Rf7EDikD1fn6uFxNFwTGb6SzeYT2z4tSv0 s+mQwU3qmp/E206wX/iTCa5IfYaHKnLFqOSz1CaspRxF/Hx/4T9sHfwLC59Xqpev hjZS/R1zuU67HJAh6zPUrrehwHq8bWBrvKnWVfsRhSz9FoFxSrA7oCkpQNG7l8D7 befA66QL2f/KzBtKVHGmoWplB4VUYNYOWwuexrC2n0PgjQLrtFH41HDbSHEZd1Tp 5YlvDJ5z3fmfLH14lhb1Hgu5Y64z1jViSLQqQbW42NlIYinWRy1LO2BWUI2g0df5 Ho14fTWB6FPkxTiVVu58Yt5td6+78MgbPRHRLluPd6c= -----END CERTIFICATE-----Generated at Fri May 31 15:07:25 2024 by rpki-client on console-fra.rpki-client.org