$ rpki-client -vvf repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/3130332e3137372e39302e302f32332d3234203d3e20313331313131.roa File: 3130332e3137372e39302e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: SZ8vEotHi2iT5yPZtPSJoskfkDfnLkBT84Wo2mWI21Y= Subject key identifier: 11:00:2D:2F:AD:88:39:50:31:D2:18:52:DE:ED:87:46:42:00:FB:AF Certificate issuer: /CN=CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC Certificate serial: 3AE311E4EA31870971ABC02A18967E026FCD6828 Authority key identifier: CE:A3:B5:35:64:D3:F6:15:E6:30:CD:DA:A7:BA:5A:E8:FE:7E:9A:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/3130332e3137372e39302e302f32332d3234203d3e20313331313131.roa Signing time: Wed 18 Oct 2023 09:00:00 +0000 ROA not before: Wed 18 Oct 2023 08:55:00 +0000 ROA not after: Wed 16 Oct 2024 09:00:00 +0000 asID: 131111 IP address blocks: 103.177.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.crl rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 04:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:e3:11:e4:ea:31:87:09:71:ab:c0:2a:18:96:7e:02:6f:cd:68:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC Validity Not Before: Oct 18 08:55:00 2023 GMT Not After : Oct 16 09:00:00 2024 GMT Subject: CN=11002D2FAD88395031D21852DEED87464200FBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f2:1f:b3:67:c2:b9:41:f1:52:38:43:47:12: 43:d9:03:47:75:9e:70:1b:b8:e5:a0:10:fc:1f:72: 42:d9:d4:9c:60:aa:cd:6d:f8:7f:65:d2:6e:c8:8b: b5:13:1d:23:29:ab:dd:04:6a:7f:64:fd:fc:a2:51: bf:7c:ee:c4:eb:54:56:cd:ef:75:45:83:9f:a2:58: 0b:15:b4:1c:b2:2a:66:de:10:a1:4b:d2:87:88:70: be:d6:19:3b:2d:3f:c6:ad:c4:2d:0c:ee:1c:35:5e: a4:c2:92:a9:96:5f:34:8a:e2:32:8d:6b:0c:29:08: 56:79:2e:9b:12:ba:1b:ef:3c:13:57:5b:cf:aa:71: c4:4a:67:21:ee:6d:07:ef:f0:81:c4:91:ce:4e:8a: 8c:a0:fa:7b:28:92:2b:aa:93:d0:ec:32:c1:ba:db: c5:6b:42:de:5f:a2:f8:71:d3:62:68:4f:26:7f:3c: 12:98:e2:ac:1f:98:5e:56:a8:31:bf:19:ec:27:07: 44:be:cb:9b:93:0e:db:d8:da:36:5a:ea:a0:3d:26: 20:bd:dd:63:21:ed:8e:07:21:21:80:66:5d:b7:97: d6:39:36:e9:ee:b4:07:97:d5:e7:58:86:94:2e:63: 27:f2:26:a8:e5:ed:85:aa:ec:4a:de:68:cc:64:cc: 67:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:00:2D:2F:AD:88:39:50:31:D2:18:52:DE:ED:87:46:42:00:FB:AF X509v3 Authority Key Identifier: keyid:CE:A3:B5:35:64:D3:F6:15:E6:30:CD:DA:A7:BA:5A:E8:FE:7E:9A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/3130332e3137372e39302e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.90.0/23 Signature Algorithm: sha256WithRSAEncryption 96:44:b7:94:df:a6:5e:a2:b7:1d:e8:92:56:d5:0a:f3:83:ef: e8:5c:e5:ce:46:3c:ce:53:1e:bd:a6:49:54:5d:ea:4d:5c:10: ff:a1:1d:d2:b6:81:13:2b:62:88:61:ae:98:08:fc:ca:9f:7b: 3a:8d:86:91:f3:6e:38:05:91:2e:43:07:14:15:08:05:69:f9: cd:e6:b0:bf:cb:cf:6e:11:1d:64:4a:3e:f7:09:f0:60:67:7d: cb:d4:7a:2e:47:78:c1:21:44:f8:b2:7d:c0:de:77:e0:ff:27: be:72:a5:ad:79:31:40:a2:d4:91:01:ac:83:1e:16:d4:af:77: fd:27:80:c7:3e:0b:c9:ab:54:48:8c:07:d0:4f:5b:60:fa:54: bd:68:b7:25:36:85:9e:d1:95:c2:31:69:7f:93:a8:f5:b2:1e: 14:8a:ff:e9:5c:66:a3:f8:d0:39:9d:6e:32:4d:c2:bb:79:c1: b9:88:8d:86:84:27:6c:e3:e5:7e:84:2e:9e:54:ca:ed:ac:35: af:df:21:b0:a0:0a:b8:36:ad:ca:14:de:bc:52:57:47:17:4a: a3:fd:0a:87:95:e4:84:e9:05:3b:77:b9:c7:76:40:e4:6e:b6: cd:55:1a:77:0e:b2:8c:80:76:59:1b:f5:57:52:94:12:65:38: e0:0f:79:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOuMR5Ooxhwlxq8AqGJZ+Am/NaCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBM0I1MzU2NEQzRjYxNUU2MzBDRERBQTdCQTVBRThG RTdFOUFFQzAeFw0yMzEwMTgwODU1MDBaFw0yNDEwMTYwOTAwMDBaMDMxMTAvBgNV BAMTKDExMDAyRDJGQUQ4ODM5NTAzMUQyMTg1MkRFRUQ4NzQ2NDIwMEZCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb8h+zZ8K5QfFSOENHEkPZA0d1 nnAbuOWgEPwfckLZ1Jxgqs1t+H9l0m7Ii7UTHSMpq90Ean9k/fyiUb987sTrVFbN 73VFg5+iWAsVtByyKmbeEKFL0oeIcL7WGTstP8atxC0M7hw1XqTCkqmWXzSK4jKN awwpCFZ5LpsSuhvvPBNXW8+qccRKZyHubQfv8IHEkc5Oioyg+nsokiuqk9DsMsG6 28VrQt5fovhx02JoTyZ/PBKY4qwfmF5WqDG/GewnB0S+y5uTDtvY2jZa6qA9JiC9 3WMh7Y4HISGAZl23l9Y5NunutAeX1edYhpQuYyfyJqjl7YWq7EreaMxkzGfFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEQAtL62IOVAx0hhS3u2HRkIA+68wHwYDVR0j BBgwFoAUzqO1NWTT9hXmMM3ap7pa6P5+muwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Y2NjNWY2NC1lZDYyLTQ4NDgtOGMzOC00MmRmNDhlMzRiYjYvMC9DRUEzQjUzNTY0 RDNGNjE1RTYzMENEREFBN0JBNUFFOEZFN0U5QUVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBM0I1MzU2NEQzRjYxNUU2MzBDRERBQTdCQTVBRThGRTdF OUFFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljY2M1ZjY0LWVkNjItNDg0OC04 YzM4LTQyZGY0OGUzNGJiNi8wLzMxMzAzMzJlMzEzNzM3MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7FaMA0GCSqG SIb3DQEBCwUAA4IBAQCWRLeU36Zeorcd6JJW1Qrzg+/oXOXORjzOUx69pklUXepN XBD/oR3StoETK2KIYa6YCPzKn3s6jYaR8244BZEuQwcUFQgFafnN5rC/y89uER1k Sj73CfBgZ33L1HouR3jBIUT4sn3A3nfg/ye+cqWteTFAotSRAayDHhbUr3f9J4DH PgvJq1RIjAfQT1tg+lS9aLclNoWe0ZXCMWl/k6j1sh4Uiv/pXGaj+NA5nW4yTcK7 ecG5iI2GhCds4+V+hC6eVMrtrDWv3yGwoAq4Nq3KFN68UldHF0qj/QqHleSE6QU7 d7nHdkDkbrbNVRp3DrKMgHZZG/VXUpQSZTjgD3lq -----END CERTIFICATE-----Generated at Wed Apr 17 22:31:37 2024 by rpki-client on console-fra.rpki-client.org