$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32332d3233203d3e20313339393439.roa File: 3130332e3134372e35322e302f32332d3233203d3e20313339393439.roa (raw, json) Hash identifier: v76i3vc6YzRRRFCEaeugT3CFUxtUt4z4GkAVZE5KlAI= Subject key identifier: 47:EC:C9:27:23:B9:D2:86:7B:B1:4D:A6:6B:AA:B4:C1:B2:EE:05:CB Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 1A0C57BB46C2C1122CE6328C91B1503145036DCF Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32332d3233203d3e20313339393439.roa Signing time: Wed 02 Aug 2023 17:00:00 +0000 ROA not before: Wed 02 Aug 2023 16:55:00 +0000 ROA not after: Wed 31 Jul 2024 17:00:00 +0000 asID: 139949 IP address blocks: 103.147.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0c:57:bb:46:c2:c1:12:2c:e6:32:8c:91:b1:50:31:45:03:6d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Aug 2 16:55:00 2023 GMT Not After : Jul 31 17:00:00 2024 GMT Subject: CN=47ECC92723B9D2867BB14DA66BAAB4C1B2EE05CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b2:b5:eb:c9:2b:31:1b:52:09:22:ec:9d:c1: 1a:29:05:e4:8f:a4:68:e4:6a:53:77:e0:d5:40:9a: e6:bc:27:6f:01:5e:d8:28:ad:04:ff:f4:58:57:18: 3a:fd:54:b2:ab:fe:d8:72:a4:47:66:d9:2c:45:89: af:a5:5f:f2:3f:22:6c:63:dc:a8:30:1b:7c:13:7d: 59:5b:85:08:4a:ef:78:8f:4f:9a:4f:db:5d:e7:93: f6:e5:26:2a:13:cc:e8:1f:8a:6d:e2:c6:7b:fc:5c: 36:c5:69:6c:9e:c5:c8:97:1c:37:51:9e:6f:38:d9: 2b:f2:9e:66:8a:26:43:0d:b5:cc:21:0d:b7:45:40: cb:db:d2:cb:62:ed:af:54:27:c7:ab:e6:4c:1c:7d: b8:24:12:f4:49:2e:74:d1:82:e0:3e:97:5f:46:11: fc:b6:13:75:b7:17:75:af:0a:69:12:69:6b:58:50: 7e:46:d9:80:31:72:48:af:72:f1:26:fa:29:82:4e: 8a:05:30:b9:4d:f6:41:d8:e5:79:d1:7f:92:14:d8: 6c:18:81:e0:91:98:f4:5b:70:cb:b2:ad:b3:3f:a7: c3:b5:52:c3:e2:e7:73:5d:ef:9b:63:90:3c:a7:2e: 62:46:3d:e8:5b:02:52:1c:aa:9f:d3:49:f8:f4:a3: e6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EC:C9:27:23:B9:D2:86:7B:B1:4D:A6:6B:AA:B4:C1:B2:EE:05:CB X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32332d3233203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.52.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:21:b3:a1:bb:80:38:0e:92:0b:ff:bf:29:77:1f:1e:0f:22: d5:6c:03:b9:ad:e8:41:02:9f:af:3a:14:56:6f:9a:77:ed:32: 6a:a3:2d:c3:8b:99:df:b7:e8:b4:84:58:da:67:4a:57:fd:14: e3:73:af:d2:b6:4c:d1:a7:bc:aa:2f:a4:87:3a:ce:ba:fc:60: 70:2e:15:d7:82:94:c1:9a:49:d3:86:b5:6a:c9:bf:9c:0a:53: 9c:64:0a:c3:6c:20:5e:4b:7c:22:99:98:09:54:53:5b:22:08: 3d:db:ac:d7:48:d0:5c:cf:ad:08:67:cd:03:8d:12:bb:00:a9: 04:1e:7a:ed:cd:24:73:bb:31:83:54:f6:64:13:98:d5:45:db: 14:59:26:b0:23:2b:2a:b1:f2:74:5f:0b:c2:e6:9e:95:d8:8a: e2:7c:6b:78:85:81:49:ca:bd:73:0c:d6:1d:2a:39:54:30:c8: 74:82:6d:dc:12:2d:a3:7f:92:aa:5e:26:78:bc:50:c1:78:f1: 6a:99:92:e9:fb:db:ba:7a:58:11:ce:25:9f:9c:cf:71:b6:bc: 36:ca:71:38:1e:d1:97:94:d6:ea:0b:20:8a:93:f4:7e:b8:09: 10:69:03:af:f8:a4:b1:18:7e:9f:47:c5:dd:83:26:5c:6a:a5: 57:68:d8:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGgxXu0bCwRIs5jKMkbFQMUUDbc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzA4MDIxNjU1MDBaFw0yNDA3MzExNzAwMDBaMDMxMTAvBgNV BAMTKDQ3RUNDOTI3MjNCOUQyODY3QkIxNERBNjZCQUFCNEMxQjJFRTA1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpsrXrySsxG1IJIuydwRopBeSP pGjkalN34NVAmua8J28BXtgorQT/9FhXGDr9VLKr/thypEdm2SxFia+lX/I/Imxj 3KgwG3wTfVlbhQhK73iPT5pP213nk/blJioTzOgfim3ixnv8XDbFaWyexciXHDdR nm842SvynmaKJkMNtcwhDbdFQMvb0sti7a9UJ8er5kwcfbgkEvRJLnTRguA+l19G Efy2E3W3F3WvCmkSaWtYUH5G2YAxckivcvEm+imCTooFMLlN9kHY5XnRf5IU2GwY geCRmPRbcMuyrbM/p8O1UsPi53Nd75tjkDynLmJGPehbAlIcqp/TSfj0o+ZRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR+zJJyO50oZ7sU2ma6q0wbLuBcswHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5M0MA0GCSqG SIb3DQEBCwUAA4IBAQB+IbOhu4A4DpIL/78pdx8eDyLVbAO5rehBAp+vOhRWb5p3 7TJqoy3Di5nft+i0hFjaZ0pX/RTjc6/StkzRp7yqL6SHOs66/GBwLhXXgpTBmknT hrVqyb+cClOcZArDbCBeS3wimZgJVFNbIgg926zXSNBcz60IZ80DjRK7AKkEHnrt zSRzuzGDVPZkE5jVRdsUWSawIysqsfJ0XwvC5p6V2IrifGt4hYFJyr1zDNYdKjlU MMh0gm3cEi2jf5KqXiZ4vFDBePFqmZLp+9u6elgRziWfnM9xtrw2ynE4HtGXlNbq CyCKk/R+uAkQaQOv+KSxGH6fR8XdgyZcaqVXaNjw -----END CERTIFICATE-----Generated at Sun May 5 08:37:12 2024 by rpki-client on console-fra.rpki-client.org