$ rpki-client -vvf repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32332d3233203d3e203538333639.roa File: 3130332e3138382e3137342e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: nw6iWCPBSkRqtPwpI4MOfsW/Yp4KaoW8abBzygSEPi4= Subject key identifier: 00:88:D2:43:10:A3:B7:FB:C2:05:51:24:CD:EB:38:E6:AC:98:2B:5B Certificate issuer: /CN=DC19ED76CCD72AB435328C48847EF794698443FE Certificate serial: 3381162F8FF22E3C1EBCF92033F7EDEE9ACE1CED Authority key identifier: DC:19:ED:76:CC:D7:2A:B4:35:32:8C:48:84:7E:F7:94:69:84:43:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32332d3233203d3e203538333639.roa Signing time: Wed 21 Jun 2023 10:00:23 +0000 ROA not before: Wed 21 Jun 2023 09:55:23 +0000 ROA not after: Wed 19 Jun 2024 10:00:23 +0000 asID: 58369 IP address blocks: 103.188.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.crl rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:81:16:2f:8f:f2:2e:3c:1e:bc:f9:20:33:f7:ed:ee:9a:ce:1c:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC19ED76CCD72AB435328C48847EF794698443FE Validity Not Before: Jun 21 09:55:23 2023 GMT Not After : Jun 19 10:00:23 2024 GMT Subject: CN=0088D24310A3B7FBC2055124CDEB38E6AC982B5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c4:f5:37:1c:c1:8a:d0:34:0b:7a:46:2c:46: f0:03:12:6b:e3:ee:b0:24:a4:74:2e:f7:90:b5:ed: e1:2a:9a:8b:02:9f:e7:48:3a:d7:e6:f8:4d:2d:4a: 3a:ae:80:94:f2:fb:06:3a:2a:5e:ca:25:55:02:ba: 87:08:97:f5:2d:65:bd:0a:e0:dc:e3:6e:7f:00:87: 2f:90:86:c8:70:b0:13:f3:34:29:11:9f:47:b1:de: c3:e9:df:4e:5b:3f:34:62:8b:3b:96:e2:40:6d:9c: e3:91:15:1a:86:75:5d:0c:94:90:60:54:e0:2a:7e: 8c:8a:7c:ec:39:9f:d3:a7:35:7e:14:f2:3a:cb:39: 87:3e:ac:c3:00:b2:a4:8e:b9:18:63:7d:0d:a8:57: e9:22:69:76:e1:a3:d9:79:43:93:01:c8:3c:eb:67: 63:b1:be:5a:1d:19:2b:da:ed:64:1d:af:3d:e8:bb: 08:ec:f0:93:3f:fc:0d:bc:cb:4a:43:ff:23:fb:44: 99:cd:e9:65:74:e0:b6:a2:31:f6:b2:8c:26:eb:51: 57:df:fa:4e:5d:3b:97:86:cc:bd:4a:3f:73:75:35: f7:46:10:71:6d:f9:d8:c9:63:1a:f6:94:94:1b:10: 76:9f:3d:ca:01:63:5d:9b:8c:19:c7:dc:38:85:d0: b9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:88:D2:43:10:A3:B7:FB:C2:05:51:24:CD:EB:38:E6:AC:98:2B:5B X509v3 Authority Key Identifier: keyid:DC:19:ED:76:CC:D7:2A:B4:35:32:8C:48:84:7E:F7:94:69:84:43:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/DC19ED76CCD72AB435328C48847EF794698443FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC19ED76CCD72AB435328C48847EF794698443FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86bd5538-4270-412d-9d66-c2b5157d3d6e/0/3130332e3138382e3137342e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.174.0/23 Signature Algorithm: sha256WithRSAEncryption ac:a8:d3:1e:cb:81:3b:55:82:c7:04:ca:1d:9e:84:98:eb:e8: 21:b6:d1:d2:da:d6:ea:dd:dd:9c:78:35:82:c6:91:21:41:af: 41:63:94:92:53:0c:3a:92:2d:fd:d0:3a:3c:ef:bd:8a:66:38: 54:fe:85:d0:55:ce:10:9f:d6:f1:59:f7:75:d1:86:ff:e4:d4: 9e:f5:7f:78:70:29:ef:86:36:27:50:0d:33:30:1c:35:1a:65: 7b:69:5b:66:eb:a9:c5:8c:6f:6f:b3:e2:11:39:db:fd:ca:45: 64:18:3c:e5:62:c7:05:b2:97:30:8b:ca:3c:f4:4e:7b:88:1b: 4a:85:55:93:48:02:ca:a3:52:de:34:ae:ba:f3:84:6c:db:30: 1b:48:69:41:60:0e:ef:d0:78:47:1d:37:b8:bd:99:77:4b:7d: 8e:7b:85:65:df:6b:d6:be:87:d9:11:9a:6a:0f:7d:99:9e:19: 6b:b9:e2:e9:90:6b:23:44:a1:33:2e:74:ea:45:dc:5e:87:43: c3:27:ca:7a:16:20:81:01:73:e4:5f:31:e8:bc:d6:c2:6f:2c: f7:03:6b:ab:1f:96:8b:2a:dd:e7:cf:d7:f7:c2:11:e3:cb:d1: 4a:d2:4e:d1:2c:a6:b3:3c:b2:6e:6b:a3:b3:0d:18:1c:04:89: 60:6d:51:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM4EWL4/yLjwevPkgM/ft7prOHO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxOUVENzZDQ0Q3MkFCNDM1MzI4QzQ4ODQ3RUY3OTQ2 OTg0NDNGRTAeFw0yMzA2MjEwOTU1MjNaFw0yNDA2MTkxMDAwMjNaMDMxMTAvBgNV BAMTKDAwODhEMjQzMTBBM0I3RkJDMjA1NTEyNENERUIzOEU2QUM5ODJCNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0xPU3HMGK0DQLekYsRvADEmvj 7rAkpHQu95C17eEqmosCn+dIOtfm+E0tSjqugJTy+wY6Kl7KJVUCuocIl/UtZb0K 4Nzjbn8Ahy+QhshwsBPzNCkRn0ex3sPp305bPzRiizuW4kBtnOORFRqGdV0MlJBg VOAqfoyKfOw5n9OnNX4U8jrLOYc+rMMAsqSOuRhjfQ2oV+kiaXbho9l5Q5MByDzr Z2OxvlodGSva7WQdrz3ouwjs8JM//A28y0pD/yP7RJnN6WV04LaiMfayjCbrUVff +k5dO5eGzL1KP3N1NfdGEHFt+djJYxr2lJQbEHafPcoBY12bjBnH3DiF0Ln7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAIjSQxCjt/vCBVEkzes45qyYK1swHwYDVR0j BBgwFoAU3BntdszXKrQ1MoxIhH73lGmEQ/4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmJkNTUzOC00MjcwLTQxMmQtOWQ2Ni1jMmI1MTU3ZDNkNmUvMC9EQzE5RUQ3NkND RDcyQUI0MzUzMjhDNDg4NDdFRjc5NDY5ODQ0M0ZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxOUVENzZDQ0Q3MkFCNDM1MzI4QzQ4ODQ3RUY3OTQ2OTg0 NDNGRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2YmQ1NTM4LTQyNzAtNDEyZC05 ZDY2LWMyYjUxNTdkM2Q2ZS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7yuMA0GCSqG SIb3DQEBCwUAA4IBAQCsqNMey4E7VYLHBModnoSY6+ghttHS2tbq3d2ceDWCxpEh Qa9BY5SSUww6ki390Do8772KZjhU/oXQVc4Qn9bxWfd10Yb/5NSe9X94cCnvhjYn UA0zMBw1GmV7aVtm66nFjG9vs+IROdv9ykVkGDzlYscFspcwi8o89E57iBtKhVWT SALKo1LeNK6684Rs2zAbSGlBYA7v0HhHHTe4vZl3S32Oe4Vl32vWvofZEZpqD32Z nhlrueLpkGsjRKEzLnTqRdxeh0PDJ8p6FiCBAXPkXzHovNbCbyz3A2urH5aLKt3n z9f3whHjy9FK0k7RLKazPLJua6OzDRgcBIlgbVHQ -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:39 2024 by rpki-client on console-fra.rpki-client.org