$ rpki-client -vvf repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa File: 3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa (raw, json) Hash identifier: 54hmqesfDghXSCp9AwvNHZcITpifaUN9DJAl0aIxx64= Subject key identifier: 91:DA:64:9B:1C:79:DB:21:CB:C6:75:BC:B3:14:DA:EC:0E:EB:2A:09 Certificate issuer: /CN=3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2 Certificate serial: 515EF06CFE6728950CF92A7345BFFACD697DAA64 Authority key identifier: 3A:0E:A2:A2:1C:E4:23:A2:4D:4D:08:AD:C1:08:69:F1:2C:9A:D4:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa Signing time: Fri 01 Sep 2023 10:01:48 +0000 ROA not before: Fri 01 Sep 2023 09:56:48 +0000 ROA not after: Fri 30 Aug 2024 10:01:48 +0000 asID: 63878 IP address blocks: 103.236.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.crl rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5e:f0:6c:fe:67:28:95:0c:f9:2a:73:45:bf:fa:cd:69:7d:aa:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2 Validity Not Before: Sep 1 09:56:48 2023 GMT Not After : Aug 30 10:01:48 2024 GMT Subject: CN=91DA649B1C79DB21CBC675BCB314DAEC0EEB2A09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:49:84:2e:00:94:7a:00:19:7f:1c:26:aa:f4: 72:e2:ac:8e:3c:d8:06:c7:42:ec:51:14:6e:28:be: ee:db:ee:41:25:ab:5e:e0:41:e2:26:c8:df:4d:28: 6c:50:e3:da:14:b4:0b:99:c3:f3:e5:a4:ae:34:09: ff:ca:b1:7b:a4:22:03:bf:ca:43:79:1d:8c:a6:f4: e8:b9:98:40:d4:10:1a:30:fc:6b:37:b3:d2:40:7a: 61:aa:b3:76:7e:31:c0:88:e4:2f:35:40:f4:4f:e2: 76:b1:5b:ea:c1:c1:ab:7a:2c:93:80:86:da:18:61: 90:42:7d:6e:3b:6d:a0:09:0b:54:b6:c2:aa:73:0c: 00:c9:a8:00:71:ac:67:1b:6e:93:fd:3a:ae:4a:17: f6:8c:49:b0:af:88:bb:68:fd:1c:a0:28:49:63:02: 57:f1:03:91:e0:e1:84:27:19:27:95:7c:db:1a:a8: 3c:1a:30:64:d5:1b:cc:42:9e:37:ce:79:ae:dc:0a: c1:d2:70:a9:5f:6a:99:5e:5c:0a:8d:89:ef:00:d2: a9:ee:7b:18:af:ec:db:da:5b:cc:34:4d:5c:b0:0b: 51:e5:bc:8c:c7:3b:39:23:fc:10:7d:d9:44:ab:e4: a4:b6:8c:33:86:aa:c2:bb:5b:41:c6:04:b5:96:90: cb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DA:64:9B:1C:79:DB:21:CB:C6:75:BC:B3:14:DA:EC:0E:EB:2A:09 X509v3 Authority Key Identifier: keyid:3A:0E:A2:A2:1C:E4:23:A2:4D:4D:08:AD:C1:08:69:F1:2C:9A:D4:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.188.0/22 Signature Algorithm: sha256WithRSAEncryption a6:79:21:0e:13:81:a4:fa:b6:28:07:49:76:6e:f8:f4:db:5a: cf:5e:3f:8c:d4:d4:6e:26:85:49:52:c0:30:66:99:0d:2c:72: ce:64:d6:fe:ee:06:1e:d1:04:3c:61:60:d2:c2:96:af:a0:09: 9d:43:e0:51:ca:36:9b:42:20:26:bd:57:71:f0:53:f1:73:cf: 5d:cf:0a:16:4f:5f:ef:ce:ae:ae:ce:36:28:26:48:7b:99:c0: b8:84:bc:d8:28:b1:57:b7:74:42:0d:7e:d9:06:ce:b8:35:75: 7b:63:da:36:fc:b7:43:84:a5:e6:06:23:d1:88:a5:a9:28:f5: 04:3f:2c:fc:30:e2:6f:88:1c:5d:17:13:99:c5:8a:15:d7:a5: 03:3d:e3:d5:3d:d3:c8:38:3f:31:3c:f5:aa:58:9f:91:d9:3d: f1:e9:56:d1:15:f5:55:74:ed:7d:f0:56:8f:0a:33:a7:93:36: 0b:82:de:23:5c:03:a2:24:52:ff:80:cd:d4:57:eb:60:9e:1a: 37:64:d5:87:99:3d:d2:a3:b1:8f:e9:73:67:a4:40:69:d7:24: d3:2d:4a:51:66:e9:e6:57:3b:09:8f:1f:ec:b0:4c:72:3b:fd: 0c:c2:fe:0f:78:6c:1f:ec:43:62:16:a3:94:98:65:7a:b1:c3: 8a:b5:73:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUV7wbP5nKJUM+SpzRb/6zWl9qmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0EwRUEyQTIxQ0U0MjNBMjRENEQwOEFEQzEwODY5RjEy QzlBRDRBMjAeFw0yMzA5MDEwOTU2NDhaFw0yNDA4MzAxMDAxNDhaMDMxMTAvBgNV BAMTKDkxREE2NDlCMUM3OURCMjFDQkM2NzVCQ0IzMTREQUVDMEVFQjJBMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgSYQuAJR6ABl/HCaq9HLirI48 2AbHQuxRFG4ovu7b7kElq17gQeImyN9NKGxQ49oUtAuZw/PlpK40Cf/KsXukIgO/ ykN5HYym9Oi5mEDUEBow/Gs3s9JAemGqs3Z+McCI5C81QPRP4naxW+rBwat6LJOA htoYYZBCfW47baAJC1S2wqpzDADJqABxrGcbbpP9Oq5KF/aMSbCviLto/RygKElj AlfxA5Hg4YQnGSeVfNsaqDwaMGTVG8xCnjfOea7cCsHScKlfapleXAqNie8A0qnu exiv7NvaW8w0TVywC1HlvIzHOzkj/BB92USr5KS2jDOGqsK7W0HGBLWWkMv9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkdpkmxx52yHLxnW8sxTa7A7rKgkwHwYDVR0j BBgwFoAUOg6iohzkI6JNTQitwQhp8Sya1KIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjYxZmFiYi1kNDZmLTRmOGMtODEwMC03MTRjMjBlN2IzY2EvMC8zQTBFQTJBMjFD RTQyM0EyNEQ0RDA4QURDMTA4NjlGMTJDOUFENEEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0EwRUEyQTIxQ0U0MjNBMjRENEQwOEFEQzEwODY5RjEyQzlB RDRBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyNjFmYWJiLWQ0NmYtNGY4Yy04 MTAwLTcxNGMyMGU3YjNjYS8wLzMxMzAzMzJlMzIzMzM2MmUzMTM4MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNjMzMzgzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+y8MA0GCSqG SIb3DQEBCwUAA4IBAQCmeSEOE4Gk+rYoB0l2bvj021rPXj+M1NRuJoVJUsAwZpkN LHLOZNb+7gYe0QQ8YWDSwpavoAmdQ+BRyjabQiAmvVdx8FPxc89dzwoWT1/vzq6u zjYoJkh7mcC4hLzYKLFXt3RCDX7ZBs64NXV7Y9o2/LdDhKXmBiPRiKWpKPUEPyz8 MOJviBxdFxOZxYoV16UDPePVPdPIOD8xPPWqWJ+R2T3x6VbRFfVVdO198FaPCjOn kzYLgt4jXAOiJFL/gM3UV+tgnho3ZNWHmT3So7GP6XNnpEBp1yTTLUpRZunmVzsJ jx/ssExyO/0Mwv4PeGwf7ENiFqOUmGV6scOKtXPP -----END CERTIFICATE-----Generated at Tue May 7 11:40:58 2024 by rpki-client on console-ams.rpki-client.org