$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa File: 3130332e332e35382e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: C8+NZx2wT1qM+BckDM6C/imapY87dJ8YP0gshrsQxsg= Subject key identifier: 13:A5:8C:B9:F9:3B:9D:37:F8:55:FA:8C:28:BC:43:8D:5C:32:9A:23 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 66A6E242FE80A9E32DFDDB1D362E31261FB26825 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa Signing time: Thu 23 Nov 2023 08:00:01 +0000 ROA not before: Thu 23 Nov 2023 07:55:01 +0000 ROA not after: Thu 21 Nov 2024 08:00:01 +0000 asID: 135477 IP address blocks: 103.3.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a6:e2:42:fe:80:a9:e3:2d:fd:db:1d:36:2e:31:26:1f:b2:68:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Nov 23 07:55:01 2023 GMT Not After : Nov 21 08:00:01 2024 GMT Subject: CN=13A58CB9F93B9D37F855FA8C28BC438D5C329A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:72:5a:25:97:4a:23:d0:55:f0:8b:f4:9c: 35:77:5d:9e:3a:1c:28:36:a3:28:42:3e:c9:35:d7: af:c8:c9:69:d6:49:6e:51:43:56:bb:d3:c1:5b:6e: c3:f6:8e:d6:3b:80:6e:8f:b6:1d:06:9f:1e:69:97: d0:00:0f:6a:57:98:07:c0:27:34:3a:61:65:b2:24: a9:7a:97:37:4d:31:41:c2:07:7e:c2:e5:9b:d8:59: 67:81:fd:30:ef:0f:8c:b8:4c:8c:72:ab:b3:14:08: ae:19:23:d3:05:c4:8f:e4:79:82:8a:c2:88:3b:6f: 1c:72:82:23:de:e7:0a:f4:5f:8c:69:21:cf:c1:e6: 99:8e:30:02:b0:61:f3:04:af:df:8b:f9:80:05:95: fe:ec:d6:cd:c5:41:0d:08:dc:bb:b4:e5:41:a2:1f: 7a:f4:00:93:5f:b0:d9:bd:f6:10:04:56:d4:a3:65: da:05:b7:45:58:da:bc:8e:a7:f9:de:e6:4c:29:b8: d0:3a:8c:6e:4f:58:10:a5:44:77:06:1b:cf:51:f1: 91:b6:ed:d7:19:2b:f4:c3:16:c4:77:87:50:d7:ed: 82:80:61:84:89:38:f9:3e:02:5c:fe:07:61:13:9c: 77:36:87:86:c5:18:f6:76:9d:b3:60:9e:ae:3e:61: c0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A5:8C:B9:F9:3B:9D:37:F8:55:FA:8C:28:BC:43:8D:5C:32:9A:23 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e332e35382e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.58.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d4:0a:28:05:0e:ef:81:e6:97:4d:ad:62:5f:8c:44:e8:94: b8:f5:a2:bf:6f:cb:b0:5f:db:1f:f4:b0:b3:51:c3:33:79:45: cf:7c:34:5a:f1:a1:9a:b1:8d:ee:14:70:7f:df:a1:bc:02:03: f6:37:55:14:71:fe:e3:d9:0b:08:80:1e:c0:50:a2:44:a3:fe: 24:70:ff:e3:f1:65:be:39:53:ac:f8:21:eb:4f:7e:6b:5a:a5: 9c:11:34:0f:ac:26:da:bf:0c:93:e9:e9:5a:b1:5a:c3:08:ee: 1d:22:be:e4:d5:30:8f:e1:bb:31:c9:99:19:85:9f:e6:c3:4e: 40:44:95:a0:a3:ae:61:4e:fc:58:3c:fd:c9:18:57:ca:54:3e: 12:7a:e4:42:ab:37:1e:0a:88:41:09:dc:00:2e:5a:5d:41:5a: 6e:1e:ac:0b:56:2f:b9:64:f3:d3:d5:2f:58:48:62:b3:f2:b4: 2e:b7:90:af:35:bb:94:86:9f:ad:b0:25:b6:cf:25:32:9a:9a: f2:91:b3:db:29:67:bb:71:33:f7:7e:ac:30:42:6b:a5:27:14: a3:e3:0f:17:60:9c:fd:9f:fd:2c:86:96:12:3e:d8:39:8f:71: 30:61:c0:e4:8b:89:90:b8:4e:c3:d6:bd:29:be:65:d6:3c:65: 38:e8:7c:c2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZqbiQv6AqeMt/dsdNi4xJh+yaCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yMzExMjMwNzU1MDFaFw0yNDExMjEwODAwMDFaMDMxMTAvBgNV BAMTKDEzQTU4Q0I5RjkzQjlEMzdGODU1RkE4QzI4QkM0MzhENUMzMjlBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBGHJaJZdKI9BV8Iv0nDV3XZ46 HCg2oyhCPsk116/IyWnWSW5RQ1a708FbbsP2jtY7gG6Pth0Gnx5pl9AAD2pXmAfA JzQ6YWWyJKl6lzdNMUHCB37C5ZvYWWeB/TDvD4y4TIxyq7MUCK4ZI9MFxI/keYKK wog7bxxygiPe5wr0X4xpIc/B5pmOMAKwYfMEr9+L+YAFlf7s1s3FQQ0I3Lu05UGi H3r0AJNfsNm99hAEVtSjZdoFt0VY2ryOp/ne5kwpuNA6jG5PWBClRHcGG89R8ZG2 7dcZK/TDFsR3h1DX7YKAYYSJOPk+Alz+B2ETnHc2h4bFGPZ2nbNgnq4+YcBNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUE6WMufk7nTf4VfqMKLxDjVwymiMwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzMyZTM1MzgyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnAzowDQYJKoZIhvcN AQELBQADggEBAEjUCigFDu+B5pdNrWJfjETolLj1or9vy7Bf2x/0sLNRwzN5Rc98 NFrxoZqxje4UcH/fobwCA/Y3VRRx/uPZCwiAHsBQokSj/iRw/+PxZb45U6z4IetP fmtapZwRNA+sJtq/DJPp6VqxWsMI7h0ivuTVMI/huzHJmRmFn+bDTkBElaCjrmFO /Fg8/ckYV8pUPhJ65EKrNx4KiEEJ3AAuWl1BWm4erAtWL7lk89PVL1hIYrPytC63 kK81u5SGn62wJbbPJTKamvKRs9spZ7txM/d+rDBCa6UnFKPjDxdgnP2f/SyGlhI+ 2DmPcTBhwOSLiZC4TsPWvSm+ZdY8ZTjofMI= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:26 2024 by rpki-client on console-fra.rpki-client.org