$ rpki-client -vvf repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: drJZ4hsRoMECEsNQG/l1DGfXswjc9v2rNAy+BoJef6g= Subject key identifier: 98:C4:64:02:03:6F:B9:8F:9B:8A:DD:0B:F4:81:0D:11:25:D5:F5:57 Certificate issuer: /CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Certificate serial: 1103B09117A0B5D7AAEDF723518975A90C7ACA65 Authority key identifier: B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa Signing time: Mon 30 Oct 2023 11:00:00 +0000 ROA not before: Mon 30 Oct 2023 10:55:00 +0000 ROA not after: Mon 28 Oct 2024 11:00:00 +0000 asID: 17769 IP address blocks: 103.147.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:03:b0:91:17:a0:b5:d7:aa:ed:f7:23:51:89:75:a9:0c:7a:ca:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Validity Not Before: Oct 30 10:55:00 2023 GMT Not After : Oct 28 11:00:00 2024 GMT Subject: CN=98C46402036FB98F9B8ADD0BF4810D1125D5F557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:1c:ed:e4:03:48:a5:95:65:1e:ec:3b:d4: d5:88:90:3d:bd:3b:02:21:f6:87:99:06:85:c1:b2: 00:05:32:89:83:77:14:86:31:75:40:68:f5:c4:bf: 5b:16:fe:94:5b:00:6f:ff:7d:41:7c:9d:85:5d:ee: 72:48:4c:0b:4a:f3:de:df:1a:1d:f9:69:3a:40:23: fd:4d:f8:45:79:a9:5d:99:b0:36:da:66:f5:d5:34: a4:84:48:8e:c0:bf:74:ae:dd:a5:ce:8c:47:b8:4a: 31:61:20:71:b7:17:71:19:fd:d4:c0:62:be:e9:2d: e4:90:40:5a:0d:15:0f:d4:d7:44:8a:93:7d:3e:c6: d5:59:9f:34:e5:74:e8:b3:90:90:36:5f:2f:a8:fd: bc:3b:74:bc:53:6a:e9:a1:2f:db:85:68:c3:a5:92: fb:fd:f7:49:1f:6a:4e:34:9a:10:04:cb:b3:a9:6f: f5:a2:e7:05:d0:54:0b:88:79:5d:2f:04:c6:3b:2a: ab:9b:b2:b1:4c:8b:e7:cc:54:a8:05:a3:56:d8:a3: eb:82:89:4f:56:4c:16:33:ad:35:9c:92:14:b0:f7: df:cb:62:24:09:9d:03:b8:b0:c2:c8:ac:98:4a:68: cc:ec:1f:82:5a:90:d1:c8:b5:12:f2:c8:38:cf:2a: 40:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C4:64:02:03:6F:B9:8F:9B:8A:DD:0B:F4:81:0D:11:25:D5:F5:57 X509v3 Authority Key Identifier: keyid:B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.164.0/23 Signature Algorithm: sha256WithRSAEncryption b8:f4:c7:34:5f:82:79:55:da:01:b5:06:d0:d2:b3:f4:7d:96: e2:35:33:87:68:9e:93:29:34:db:c9:29:78:e8:41:63:f1:c8: 8d:d9:21:0a:4f:bf:7b:c5:64:09:58:19:7e:23:fe:7d:67:57: 93:66:b1:f4:b4:9e:e3:17:03:3b:04:74:f0:13:6e:4a:85:ca: ff:3c:96:57:9e:02:f1:38:d9:5f:11:a9:5a:b0:43:cd:c1:9a: ca:8b:7a:ba:53:bb:25:c3:e8:35:bb:36:36:b9:24:fe:f2:88: 85:3f:fe:6a:17:35:0d:a4:69:62:55:d1:c1:13:5c:b5:12:e7: c9:1a:50:83:38:e3:21:a8:f3:f3:6a:94:d2:85:dc:42:b7:fa: 2d:91:4c:37:94:32:eb:b1:43:9b:91:17:cc:60:42:60:91:35: 3e:71:da:73:12:00:90:64:46:be:49:16:e9:51:2a:57:bd:b6: 82:c0:38:ae:f4:27:f0:6b:3e:82:20:52:a2:aa:bc:fb:11:2a: d5:e9:6d:18:f7:f2:93:24:8f:2a:a4:44:d3:46:86:9f:6b:33: a6:97:23:a2:bf:2b:f9:0d:e0:06:f3:5e:aa:b8:b6:05:c9:c4: 14:ab:25:7e:7b:25:ab:eb:80:95:34:5a:ed:5c:24:75:4b:29: 13:aa:5f:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEQOwkRegtdeq7fcjUYl1qQx6ymUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0 MUM3QkE0MjAeFw0yMzEwMzAxMDU1MDBaFw0yNDEwMjgxMTAwMDBaMDMxMTAvBgNV BAMTKDk4QzQ2NDAyMDM2RkI5OEY5QjhBREQwQkY0ODEwRDExMjVENUY1NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBbhzt5ANIpZVlHuw71NWIkD29 OwIh9oeZBoXBsgAFMomDdxSGMXVAaPXEv1sW/pRbAG//fUF8nYVd7nJITAtK897f Gh35aTpAI/1N+EV5qV2ZsDbaZvXVNKSESI7Av3Su3aXOjEe4SjFhIHG3F3EZ/dTA Yr7pLeSQQFoNFQ/U10SKk30+xtVZnzTldOizkJA2Xy+o/bw7dLxTaumhL9uFaMOl kvv990kfak40mhAEy7Opb/Wi5wXQVAuIeV0vBMY7KqubsrFMi+fMVKgFo1bYo+uC iU9WTBYzrTWckhSw99/LYiQJnQO4sMLIrJhKaMzsH4JakNHItRLyyDjPKkAZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmMRkAgNvuY+bit0L9IENESXV9VcwHwYDVR0j BBgwFoAUs7Oh3uCeQHvGzgjvx80rr0HHukIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTRjNjFhYy03YjVjLTRkOTQtYTM2NS1jNDAyMWMxNzA5YzcvMC9CM0IzQTFERUUw OUU0MDdCQzZDRTA4RUZDN0NEMkJBRjQxQzdCQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0MUM3 QkE0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNGM2MWFjLTdiNWMtNGQ5NC1h MzY1LWM0MDIxYzE3MDljNy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM2MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OkMA0GCSqG SIb3DQEBCwUAA4IBAQC49Mc0X4J5VdoBtQbQ0rP0fZbiNTOHaJ6TKTTbySl46EFj 8ciN2SEKT797xWQJWBl+I/59Z1eTZrH0tJ7jFwM7BHTwE25Khcr/PJZXngLxONlf EalasEPNwZrKi3q6U7slw+g1uzY2uST+8oiFP/5qFzUNpGliVdHBE1y1EufJGlCD OOMhqPPzapTShdxCt/otkUw3lDLrsUObkRfMYEJgkTU+cdpzEgCQZEa+SRbpUSpX vbaCwDiu9Cfwaz6CIFKiqrz7ESrV6W0Y9/KTJI8qpETTRoafazOmlyOivyv5DeAG 816quLYFycQUqyV+eyWr64CVNFrtXCR1SykTql+l -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org