$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa File: 3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa (raw, json) Hash identifier: Z25yASn98fHdplPN5sBoMC0jVUq5BFfiD4+PZg9yKT4= Subject key identifier: 50:96:24:EC:A3:2B:98:DF:AE:9B:B0:B6:95:07:7F:2D:7F:7D:59:07 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 4C9BD2B8A971211185056BE5C6EB2F8BFE74DAF6 Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa Signing time: Tue 20 Jun 2023 03:33:38 +0000 ROA not before: Tue 20 Jun 2023 03:28:38 +0000 ROA not after: Tue 18 Jun 2024 03:33:38 +0000 asID: 138865 IP address blocks: 103.179.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:9b:d2:b8:a9:71:21:11:85:05:6b:e5:c6:eb:2f:8b:fe:74:da:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jun 20 03:28:38 2023 GMT Not After : Jun 18 03:33:38 2024 GMT Subject: CN=509624ECA32B98DFAE9BB0B695077F2D7F7D5907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7a:b3:fc:dc:dc:bb:a2:7b:6b:37:e1:cf:67: 1e:b8:ea:08:da:6b:5b:59:cb:44:a9:27:86:33:27: 40:43:0f:e1:04:bb:d2:50:94:f6:ef:0d:d8:b4:59: c3:10:62:95:95:94:01:83:b7:40:7a:40:4f:a9:b7: 86:10:ec:d5:15:e8:85:c0:93:33:82:05:1a:bc:ac: c5:6a:cd:6e:98:68:7c:00:fb:31:90:6e:9a:13:82: 79:cc:08:37:a2:5c:2f:08:6c:5e:d1:6d:5e:3b:4e: d8:9b:8e:d4:7d:39:6b:42:75:12:78:a0:1e:3c:50: a8:38:ac:c8:a4:3a:72:e3:4c:32:84:8b:36:6b:4e: 94:52:71:38:0f:01:d5:24:91:01:ca:29:92:82:d1: 3a:0b:25:72:be:1d:ab:32:4a:8c:fb:8f:28:ea:d2: 4c:49:db:36:b4:38:b3:3c:d2:1c:63:ba:66:fa:ae: 89:8c:fc:54:59:5b:8b:3f:ae:23:f6:58:51:60:2f: 05:d7:43:db:82:50:2b:d0:7d:c6:fd:be:5f:0e:93: 5f:f0:77:ad:89:06:8d:04:d7:6d:0e:9b:5a:83:39: 0e:97:72:e8:02:7c:a7:f5:0c:8a:38:c1:e3:f5:9a: 67:72:9f:77:17:85:2a:dc:ac:d4:45:9e:64:59:3b: e3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:96:24:EC:A3:2B:98:DF:AE:9B:B0:B6:95:07:7F:2D:7F:7D:59:07 X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.66.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:56:0a:3c:2d:c9:44:9f:48:52:9e:38:14:a8:29:41:95:92: 8f:bd:23:63:b3:22:dc:cf:49:0d:2d:be:61:0b:62:3b:e2:cd: 10:e7:33:2e:5c:5c:1e:12:4c:e6:49:c8:1a:40:d5:76:f0:cd: f7:1b:43:2a:0e:5f:1d:58:64:99:7f:6c:a2:2b:2f:45:df:ea: fe:1e:77:00:04:33:fa:c5:e5:32:89:66:33:59:eb:4d:a1:3a: 63:54:71:f4:03:c9:4b:59:e6:63:6a:f4:d9:77:45:09:4d:4c: c8:81:15:e2:33:c1:77:7b:7c:f4:ec:46:53:d6:77:89:db:4a: 45:a3:36:5e:f2:a3:f3:cd:c6:59:02:d3:11:b1:51:17:ec:2a: 4f:68:c0:e5:ae:a4:3d:c5:a3:d7:ec:b1:85:71:60:cb:38:70: d9:f7:02:c5:fa:54:05:0d:e2:29:23:d2:8f:7f:6a:b3:c7:3e: cc:2d:1c:50:51:96:3e:94:97:97:b9:50:56:26:01:82:83:db: 0b:78:32:53:f0:79:4b:65:ce:06:3d:02:3f:f6:78:9a:a7:35: 07:4e:ca:db:1b:a7:0c:4d:ce:24:c0:1d:64:d8:d2:8a:17:eb: 7b:f9:76:bb:ca:bf:c9:b3:e4:e1:92:ab:a7:bd:f3:e1:6f:57: 4f:88:f6:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTJvSuKlxIRGFBWvlxusvi/502vYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yMzA2MjAwMzI4MzhaFw0yNDA2MTgwMzMzMzhaMDMxMTAvBgNV BAMTKDUwOTYyNEVDQTMyQjk4REZBRTlCQjBCNjk1MDc3RjJEN0Y3RDU5MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDierP83Ny7ontrN+HPZx646gja a1tZy0SpJ4YzJ0BDD+EEu9JQlPbvDdi0WcMQYpWVlAGDt0B6QE+pt4YQ7NUV6IXA kzOCBRq8rMVqzW6YaHwA+zGQbpoTgnnMCDeiXC8IbF7RbV47TtibjtR9OWtCdRJ4 oB48UKg4rMikOnLjTDKEizZrTpRScTgPAdUkkQHKKZKC0ToLJXK+HasySoz7jyjq 0kxJ2za0OLM80hxjumb6romM/FRZW4s/riP2WFFgLwXXQ9uCUCvQfcb9vl8Ok1/w d62JBo0E120Om1qDOQ6XcugCfKf1DIo4weP1mmdyn3cXhSrcrNRFnmRZO+MZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUJYk7KMrmN+um7C2lQd/LX99WQcwHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMTI3NDNkLWQ1NmQtNGE3Ny05 MGUyLWM1MmU2ZGZlMDZjMi8wLzMxMzAzMzJlMzEzNzM5MmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NCMA0GCSqG SIb3DQEBCwUAA4IBAQAKVgo8LclEn0hSnjgUqClBlZKPvSNjsyLcz0kNLb5hC2I7 4s0Q5zMuXFweEkzmScgaQNV28M33G0MqDl8dWGSZf2yiKy9F3+r+HncABDP6xeUy iWYzWetNoTpjVHH0A8lLWeZjavTZd0UJTUzIgRXiM8F3e3z07EZT1neJ20pFozZe 8qPzzcZZAtMRsVEX7CpPaMDlrqQ9xaPX7LGFcWDLOHDZ9wLF+lQFDeIpI9KPf2qz xz7MLRxQUZY+lJeXuVBWJgGCg9sLeDJT8HlLZc4GPQI/9niapzUHTsrbG6cMTc4k wB1k2NKKF+t7+Xa7yr/Js+ThkqunvfPhb1dPiPZ6 -----END CERTIFICATE-----Generated at Sat May 4 20:35:44 2024 by rpki-client on console-fra.rpki-client.org