$ rpki-client -vvf repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa File: 3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: qxkpCwBNvhVSHFdOvHaEaT2BdZxGRLJ1YTi0BFcjqzI= Subject key identifier: 53:B2:D6:75:DC:E0:B2:A6:25:C0:6B:0C:F7:D6:C4:A4:94:D2:39:57 Certificate issuer: /CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433 Certificate serial: 46BAF7312D9B315C231873CE84FFA1CAD877A135 Authority key identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa Signing time: Sat 24 Feb 2024 04:42:39 +0000 ROA not before: Sat 24 Feb 2024 04:37:39 +0000 ROA not after: Sat 22 Feb 2025 04:42:39 +0000 asID: 58485 IP address blocks: 103.173.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.crl rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ba:f7:31:2d:9b:31:5c:23:18:73:ce:84:ff:a1:ca:d8:77:a1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433 Validity Not Before: Feb 24 04:37:39 2024 GMT Not After : Feb 22 04:42:39 2025 GMT Subject: CN=53B2D675DCE0B2A625C06B0CF7D6C4A494D23957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:54:fa:8d:cf:e1:e7:9c:bb:fb:70:a4:4d:26: b6:30:13:95:7c:9b:79:db:53:81:9c:b0:67:df:3e: eb:dc:1c:2a:a3:6a:eb:28:cf:99:70:22:4b:f0:00: d6:01:aa:b9:d4:6a:51:58:27:a9:4c:37:ab:d3:57: 9f:03:44:b8:29:4a:72:d9:6e:e9:cc:f3:fb:e3:36: f2:c6:92:1a:cd:03:ab:3d:44:83:f8:c0:4a:a7:5a: 23:86:1e:fd:40:43:fd:05:7c:cd:9f:9a:8a:13:42: f8:5d:a1:1b:cf:2d:b4:35:de:60:e9:b6:91:8c:25: 60:c0:1a:23:d2:f2:32:12:f3:37:af:fb:37:4d:8b: 6f:cf:25:94:aa:d5:c2:96:16:7b:98:05:c3:bc:3d: 65:e4:90:a2:3d:a7:18:77:9a:16:cb:70:5a:f2:41: 2c:b8:54:b7:d3:f5:16:a5:5c:2a:90:7f:b0:60:ef: cd:ba:2d:18:3b:52:30:88:fb:b9:7d:76:eb:8b:69: a5:45:e6:3c:c2:99:f5:a8:3e:d9:4a:c6:05:8c:e3: fd:db:45:1e:b4:f2:15:da:f8:87:ce:b3:e9:3e:4a: 64:06:b2:53:f7:ae:27:0d:a2:39:7e:4d:18:22:4c: 0b:7d:69:76:a2:4c:b8:a6:b4:1b:27:97:ec:30:0f: ac:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B2:D6:75:DC:E0:B2:A6:25:C0:6B:0C:F7:D6:C4:A4:94:D2:39:57 X509v3 Authority Key Identifier: keyid:E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.140.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:81:95:40:4e:33:16:fe:44:96:f7:ec:6f:f6:26:88:50:28: 4c:ea:fc:de:fa:a8:d2:db:02:8f:0b:59:f5:ef:05:5c:d6:2c: e4:fd:40:c5:96:99:73:83:0a:f4:4a:60:55:48:52:f4:71:07: f0:5f:b1:d9:92:bf:50:f9:37:14:41:01:7f:49:64:d1:58:e2: 46:b8:f6:d4:3a:13:f9:16:a2:c2:ab:3e:1c:39:f0:4f:42:f3: 07:30:b3:50:09:d7:0e:d1:7c:ee:6d:9c:0f:be:22:59:43:13: 50:a4:f6:a6:38:e6:54:23:fb:dc:c7:a4:7f:c2:a2:ac:4a:9f: e4:1f:8a:be:b4:d8:56:7a:53:fb:c8:47:b2:79:7d:c9:7b:f1: 0e:e1:f0:7f:78:2a:bd:9c:71:86:a7:00:83:53:10:f6:f8:dd: ca:5e:98:39:85:58:27:bc:76:8b:30:4d:df:b8:dc:9a:cd:50: 34:40:61:00:cc:a7:49:e8:7d:53:97:33:03:42:3b:3c:68:66: 09:79:54:75:15:ff:0e:a5:f9:39:49:c2:89:f9:fc:c6:93:5f: b6:66:6b:28:cd:ce:e3:2d:2d:82:a6:3a:37:06:37:17:3e:b2: f5:2f:9c:b9:9f:3d:ef:98:4e:a3:84:48:f8:29:24:48:5a:0d: 6e:57:b4:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURrr3MS2bMVwjGHPOhP+hyth3oTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM1REEwN0IxMTRCRDQyOTAxRjdDMURCOEU2ODRFOTk1 RTJFNDQzMzAeFw0yNDAyMjQwNDM3MzlaFw0yNTAyMjIwNDQyMzlaMDMxMTAvBgNV BAMTKDUzQjJENjc1RENFMEIyQTYyNUMwNkIwQ0Y3RDZDNEE0OTREMjM5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsVPqNz+HnnLv7cKRNJrYwE5V8 m3nbU4GcsGffPuvcHCqjausoz5lwIkvwANYBqrnUalFYJ6lMN6vTV58DRLgpSnLZ bunM8/vjNvLGkhrNA6s9RIP4wEqnWiOGHv1AQ/0FfM2fmooTQvhdoRvPLbQ13mDp tpGMJWDAGiPS8jIS8zev+zdNi2/PJZSq1cKWFnuYBcO8PWXkkKI9pxh3mhbLcFry QSy4VLfT9RalXCqQf7Bg7826LRg7UjCI+7l9duuLaaVF5jzCmfWoPtlKxgWM4/3b RR608hXa+IfOs+k+SmQGslP3ricNojl+TRgiTAt9aXaiTLimtBsnl+wwD6x1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU7LWddzgsqYlwGsM99bEpJTSOVcwHwYDVR0j BBgwFoAU412gexFL1CkB98HbjmhOmV4uRDMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWFiYjU3OC1iOWRiLTRhNDctOGQ3ZS0xMWE2MzQyODkwMTgvMC9FMzVEQTA3QjEx NEJENDI5MDFGN0MxREI4RTY4NEU5OTVFMkU0NDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM1REEwN0IxMTRCRDQyOTAxRjdDMURCOEU2ODRFOTk1RTJF NDQzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYWJiNTc4LWI5ZGItNGE0Ny04 ZDdlLTExYTYzNDI4OTAxOC8wLzMxMzAzMzJlMzEzNzMzMmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ62MMA0GCSqG SIb3DQEBCwUAA4IBAQCegZVATjMW/kSW9+xv9iaIUChM6vze+qjS2wKPC1n17wVc 1izk/UDFlplzgwr0SmBVSFL0cQfwX7HZkr9Q+TcUQQF/SWTRWOJGuPbUOhP5FqLC qz4cOfBPQvMHMLNQCdcO0XzubZwPviJZQxNQpPamOOZUI/vcx6R/wqKsSp/kH4q+ tNhWelP7yEeyeX3Je/EO4fB/eCq9nHGGpwCDUxD2+N3KXpg5hVgnvHaLME3fuNya zVA0QGEAzKdJ6H1TlzMDQjs8aGYJeVR1Ff8Opfk5ScKJ+fzGk1+2Zmsozc7jLS2C pjo3BjcXPrL1L5y5nz3vmE6jhEj4KSRIWg1uV7S+ -----END CERTIFICATE-----Generated at Fri May 3 17:52:32 2024 by rpki-client on console-fra.rpki-client.org