$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa File: 3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa (raw, json) Hash identifier: HTB9DrfY4eTO2zfeIjGiHnYUuGfmp/Apf9RLno34+mk= Subject key identifier: 98:E9:DB:A4:5A:77:1E:89:A0:69:72:04:4C:1A:9C:8F:81:C7:63:F6 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 2ABB0286A6D9719E426C596E455841425989AEBF Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa Signing time: Tue 20 Jun 2023 03:33:59 +0000 ROA not before: Tue 20 Jun 2023 03:28:59 +0000 ROA not after: Tue 18 Jun 2024 03:33:59 +0000 asID: 138865 IP address blocks: 103.179.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:bb:02:86:a6:d9:71:9e:42:6c:59:6e:45:58:41:42:59:89:ae:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jun 20 03:28:59 2023 GMT Not After : Jun 18 03:33:59 2024 GMT Subject: CN=98E9DBA45A771E89A06972044C1A9C8F81C763F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:d4:6a:ae:1f:ba:c1:f5:d6:46:6c:07:ec: 35:61:36:ec:84:cc:51:ed:e4:fa:0c:46:67:3a:cf: 8a:37:f6:e0:72:f8:3e:a1:0a:b3:86:77:19:57:e4: 7d:28:76:42:b4:40:fd:9b:b9:f4:a6:ff:58:c2:8c: 41:3f:58:d0:13:6f:a0:44:dd:e9:fb:ff:04:7a:bc: c0:13:1b:4b:89:58:43:b6:25:bb:14:87:d2:31:49: 39:ab:5d:c8:67:2c:70:2c:24:d2:27:69:30:dd:42: 4d:f3:7a:1a:b7:c1:8f:c6:69:f1:68:6c:71:22:2c: 4d:de:43:59:f5:cd:6d:1a:da:60:65:2e:04:e9:d1: ed:12:de:fb:71:20:8d:e7:0c:a9:0a:e5:df:77:d1: 03:6b:88:83:55:68:a2:5e:42:44:d7:ef:7b:b9:6d: 3f:e1:30:c8:33:6c:ec:fd:e5:65:81:de:bf:63:39: bc:05:20:a6:c0:0c:93:f0:d8:8b:c9:53:40:37:92: 54:9a:b8:5c:d5:6d:24:f2:eb:79:54:bc:0f:91:67: b1:3f:d8:0f:83:95:ab:94:13:d1:2a:86:c9:29:f1: e1:82:15:5a:11:21:57:24:de:8a:76:91:e2:f8:95: 5c:4e:be:dc:9b:5f:a4:c2:66:14:71:2e:0c:b9:0b: 74:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E9:DB:A4:5A:77:1E:89:A0:69:72:04:4C:1A:9C:8F:81:C7:63:F6 X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.67.0/24 Signature Algorithm: sha256WithRSAEncryption 83:bc:93:20:03:8b:62:63:30:12:d7:0f:7e:d9:1d:37:0a:8d: 24:e7:aa:fa:3a:05:c6:4c:84:a2:b6:6c:92:9e:15:eb:14:b1: 6d:ef:e9:d9:d0:e1:fe:4c:67:44:e6:2d:f0:07:ff:ad:80:a0: 98:e4:bf:c8:d2:c0:df:a5:8d:e7:9e:9a:e7:5e:2c:a1:a2:f6: 8a:7b:00:56:be:14:90:c9:85:fd:cf:ba:af:b9:67:37:33:0a: 85:f6:78:55:98:46:d3:e5:c4:18:a6:3e:ef:95:ff:44:f2:41: 66:43:7b:b4:59:a1:85:f2:f3:f5:2b:c0:45:10:88:dc:a7:11: 87:ed:98:9b:76:2a:e1:2c:e5:e3:d0:13:98:37:45:7c:6a:4e: 1c:f1:c8:92:9a:c2:82:c7:0c:99:0e:f0:b4:ff:db:20:de:57: dc:dd:ca:7e:93:af:b4:49:ec:e4:6e:d3:76:ed:0f:19:38:9b: aa:65:64:a2:77:6c:16:80:5c:70:f4:65:78:75:c6:e5:31:59: ac:24:70:7a:99:88:92:9c:db:85:7a:df:ac:c7:07:bb:c7:67: 96:4a:53:0a:ad:25:5f:0b:27:c3:a1:ce:ef:17:13:bc:6f:96: fb:c4:19:46:86:91:0c:9a:ce:ff:b6:cc:0b:bf:7f:e6:2a:a8: 54:60:5a:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKrsChqbZcZ5CbFluRVhBQlmJrr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yMzA2MjAwMzI4NTlaFw0yNDA2MTgwMzMzNTlaMDMxMTAvBgNV BAMTKDk4RTlEQkE0NUE3NzFFODlBMDY5NzIwNDRDMUE5QzhGODFDNzYzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCLdRqrh+6wfXWRmwH7DVhNuyE zFHt5PoMRmc6z4o39uBy+D6hCrOGdxlX5H0odkK0QP2bufSm/1jCjEE/WNATb6BE 3en7/wR6vMATG0uJWEO2JbsUh9IxSTmrXchnLHAsJNInaTDdQk3zehq3wY/GafFo bHEiLE3eQ1n1zW0a2mBlLgTp0e0S3vtxII3nDKkK5d930QNriINVaKJeQkTX73u5 bT/hMMgzbOz95WWB3r9jObwFIKbADJPw2IvJU0A3klSauFzVbSTy63lUvA+RZ7E/ 2A+DlauUE9Eqhskp8eGCFVoRIVck3op2keL4lVxOvtybX6TCZhRxLgy5C3TNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmOnbpFp3HomgaXIETBqcj4HHY/YwHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMTI3NDNkLWQ1NmQtNGE3Ny05 MGUyLWM1MmU2ZGZlMDZjMi8wLzMxMzAzMzJlMzEzNzM5MmUzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NDMA0GCSqG SIb3DQEBCwUAA4IBAQCDvJMgA4tiYzAS1w9+2R03Co0k56r6OgXGTISitmySnhXr FLFt7+nZ0OH+TGdE5i3wB/+tgKCY5L/I0sDfpY3nnprnXiyhovaKewBWvhSQyYX9 z7qvuWc3MwqF9nhVmEbT5cQYpj7vlf9E8kFmQ3u0WaGF8vP1K8BFEIjcpxGH7Zib dirhLOXj0BOYN0V8ak4c8ciSmsKCxwyZDvC0/9sg3lfc3cp+k6+0SezkbtN27Q8Z OJuqZWSid2wWgFxw9GV4dcblMVmsJHB6mYiSnNuFet+sxwe7x2eWSlMKrSVfCyfD oc7vFxO8b5b7xBlGhpEMms7/tswLv3/mKqhUYFoH -----END CERTIFICATE-----Generated at Sat May 4 20:35:44 2024 by rpki-client on console-fra.rpki-client.org