$ rpki-client -vvf repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa File: 3130332e3138392e39362e302f32332d3234203d3e203435333035.roa (raw, json) Hash identifier: sqkWuQi4vYHYK7jSZTuAtS42TPGe/4n2xu5TaFgr6gc= Subject key identifier: 97:CD:AA:B8:D6:A3:70:81:D5:AD:6B:04:84:DA:ED:B4:1C:6C:9E:7D Certificate issuer: /CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Certificate serial: 5D9FD40A2ABC81AD6290BA49CE8DDC34E058DC9A Authority key identifier: A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa Signing time: Sat 27 Apr 2024 04:00:00 +0000 ROA not before: Sat 27 Apr 2024 03:55:00 +0000 ROA not after: Sat 26 Apr 2025 04:00:00 +0000 asID: 45305 IP address blocks: 103.189.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 11:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:9f:d4:0a:2a:bc:81:ad:62:90:ba:49:ce:8d:dc:34:e0:58:dc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Validity Not Before: Apr 27 03:55:00 2024 GMT Not After : Apr 26 04:00:00 2025 GMT Subject: CN=97CDAAB8D6A37081D5AD6B0484DAEDB41C6C9E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f3:31:4d:89:4c:31:b4:14:36:60:95:77:74: 24:9a:91:9f:65:11:0b:52:78:5b:48:86:c1:09:13: 4e:18:47:45:f3:70:c1:8c:f1:63:84:0c:1d:ba:1f: e8:08:05:ca:e1:cd:5e:5c:5d:10:75:36:ce:15:97: 08:d2:49:52:20:9c:e6:5f:02:9c:00:35:18:aa:98: b7:89:40:19:23:4f:68:73:69:49:33:f0:4d:b6:65: 32:5f:ca:15:40:c8:b1:83:32:91:cc:e8:da:14:d6: 5e:d8:7a:58:42:42:77:be:ad:06:08:be:b4:1e:8c: 96:9c:12:b3:5e:66:5e:7e:1b:e0:ca:3e:22:37:8b: 46:77:4b:ea:0f:0b:07:3e:a1:91:45:31:a1:37:c7: 76:a5:5c:dc:c4:a2:14:cb:06:b8:91:d4:da:3e:25: a9:68:3f:03:75:67:91:b7:2b:38:b8:fa:76:b9:ed: 16:11:d9:15:92:14:c2:ad:98:ea:1c:7d:56:d9:3f: d4:c8:ea:c9:77:d7:6d:52:23:da:27:13:ea:cf:92: d5:f7:3a:3e:9f:b8:75:d8:35:68:0a:3b:e3:36:6e: c6:54:ab:96:71:8f:ab:e3:15:a8:80:57:31:d9:08: e6:f4:05:1d:e0:06:38:c6:b7:81:19:f1:17:05:39: 3a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CD:AA:B8:D6:A3:70:81:D5:AD:6B:04:84:DA:ED:B4:1C:6C:9E:7D X509v3 Authority Key Identifier: keyid:A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39362e302f32332d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.96.0/23 Signature Algorithm: sha256WithRSAEncryption 37:bf:74:d1:47:58:20:79:12:36:b6:e9:49:1b:cc:8f:d5:ec: e7:a6:de:d8:8f:94:30:48:a4:c2:5e:9e:b2:4d:26:04:f6:82: 56:b4:33:55:7a:fc:9e:90:6e:d9:b0:c1:f5:7e:f1:09:6b:e7: 41:10:55:55:f3:ee:d9:c8:78:0a:94:16:b6:54:4d:c4:c7:46: 24:19:61:9a:e6:ca:88:00:3e:d5:b4:04:a3:3f:d5:02:81:13: 93:c1:00:a2:e1:2d:3e:d5:53:cb:6e:e3:f5:7a:a6:e8:d7:e5: 17:66:b5:e5:1e:2c:c1:b8:10:9f:25:e7:9d:d7:93:81:dd:b4: 6a:24:5d:06:b9:f2:f7:4e:90:6f:29:2a:b2:f8:c8:b0:41:f6: a8:07:9e:2f:8a:56:2d:e4:3c:e8:bd:3e:8b:32:32:cb:1f:bb: 7b:17:b0:73:98:20:9f:63:30:3c:37:54:a1:7a:9e:94:63:3a: de:1c:a8:d4:7d:eb:5d:60:71:21:4d:2e:6b:9b:22:2b:a5:1c: 64:7b:12:f3:a4:9d:3a:bf:6c:40:ab:8a:9a:df:65:b2:37:59: b4:a4:a2:d0:e5:56:04:38:4e:e8:f4:64:ce:be:26:a8:08:d1: 3d:01:6c:9f:74:69:05:b0:bf:15:b0:92:43:d6:00:81:cd:12: 6d:cc:12:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXZ/UCiq8ga1ikLpJzo3cNOBY3JowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2 ODc3NDBFNDAeFw0yNDA0MjcwMzU1MDBaFw0yNTA0MjYwNDAwMDBaMDMxMTAvBgNV BAMTKDk3Q0RBQUI4RDZBMzcwODFENUFENkIwNDg0REFFREI0MUM2QzlFN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX8zFNiUwxtBQ2YJV3dCSakZ9l EQtSeFtIhsEJE04YR0XzcMGM8WOEDB26H+gIBcrhzV5cXRB1Ns4VlwjSSVIgnOZf ApwANRiqmLeJQBkjT2hzaUkz8E22ZTJfyhVAyLGDMpHM6NoU1l7YelhCQne+rQYI vrQejJacErNeZl5+G+DKPiI3i0Z3S+oPCwc+oZFFMaE3x3alXNzEohTLBriR1No+ JaloPwN1Z5G3Kzi4+na57RYR2RWSFMKtmOocfVbZP9TI6sl3121SI9onE+rPktX3 Oj6fuHXYNWgKO+M2bsZUq5Zxj6vjFaiAVzHZCOb0BR3gBjjGt4EZ8RcFOTonAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl82quNajcIHVrWsEhNrttBxsnn0wHwYDVR0j BBgwFoAUo5abJjiZM9fSHzqNdXy5xWh3QOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDMzMzZmOC1lNTQ2LTQ2MmMtODQxMC1iNzczMmI2YzgwMTUvMC9BMzk2OUIyNjM4 OTkzM0Q3RDIxRjNBOEQ3NTdDQjlDNTY4Nzc0MEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2ODc3 NDBFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MzMzNmY4LWU1NDYtNDYyYy04 NDEwLWI3NzMyYjZjODAxNS8wLzMxMzAzMzJlMzEzODM5MmUzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9YDANBgkqhkiG 9w0BAQsFAAOCAQEAN7900UdYIHkSNrbpSRvMj9Xs56be2I+UMEikwl6esk0mBPaC VrQzVXr8npBu2bDB9X7xCWvnQRBVVfPu2ch4CpQWtlRNxMdGJBlhmubKiAA+1bQE oz/VAoETk8EAouEtPtVTy27j9Xqm6NflF2a15R4swbgQnyXnndeTgd20aiRdBrny 906QbykqsvjIsEH2qAeeL4pWLeQ86L0+izIyyx+7exewc5ggn2MwPDdUoXqelGM6 3hyo1H3rXWBxIU0ua5siK6UcZHsS86SdOr9sQKuKmt9lsjdZtKSi0OVWBDhO6PRk zr4mqAjRPQFsn3RpBbC/FbCSQ9YAgc0SbcwSZg== -----END CERTIFICATE-----Generated at Sun May 26 08:13:19 2024 by rpki-client on console-ams.rpki-client.org