$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa File: 3130332e31302e39362e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: eCiBls793uIDKL4kZP0FkPIgN5pPozPMjXEZLl/TYC0= Subject key identifier: 9B:52:DB:CD:E3:34:3B:94:41:E3:4B:8B:8D:D7:37:78:5C:3E:07:B0 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 44E2AC1B1F08B3BC883FD275CD555B966E767A2C Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa Signing time: Wed 20 Sep 2023 12:00:04 +0000 ROA not before: Wed 20 Sep 2023 11:55:04 +0000 ROA not after: Wed 18 Sep 2024 12:00:04 +0000 asID: 18103 IP address blocks: 103.10.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e2:ac:1b:1f:08:b3:bc:88:3f:d2:75:cd:55:5b:96:6e:76:7a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Sep 20 11:55:04 2023 GMT Not After : Sep 18 12:00:04 2024 GMT Subject: CN=9B52DBCDE3343B9441E34B8B8DD737785C3E07B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:0e:04:2d:6b:5d:42:ef:a6:fd:81:33:98: 36:ae:a9:63:b9:a3:49:e9:0f:b4:d5:db:17:5a:48: f7:56:44:30:a8:d5:b9:55:e7:2c:0d:cd:9b:a7:f3: 88:3a:52:a8:74:d3:4f:ed:84:98:27:11:f6:33:17: ca:47:cb:7b:04:0f:a1:85:38:7c:c4:31:59:33:0c: 6a:01:7e:26:d9:1b:aa:c7:d2:c7:6e:47:7e:3a:e7: 87:2e:53:5d:d0:e2:a8:c2:c9:0f:3e:02:8a:04:47: 56:a1:fc:04:1d:d0:83:bc:46:c1:6e:09:83:8b:8c: 5b:c4:9b:ec:d5:6e:5a:c1:6f:5c:9d:48:b0:c5:81: 9d:8f:03:df:07:31:fb:8c:78:38:19:01:dd:58:68: c7:d8:3a:ee:7b:e4:c8:e6:96:a6:46:8f:55:69:a5: 12:78:e8:50:8a:3f:68:da:da:ca:67:c9:29:75:fe: ec:ae:c9:fc:59:f2:06:f5:ca:9d:c5:c0:42:6f:47: 2b:f1:30:96:83:69:d1:45:50:b5:72:b4:68:fb:10: a3:e8:dc:0a:9c:1c:cd:ca:e7:4a:59:99:0a:da:37: c0:21:05:3a:8b:5b:d4:e4:d4:24:4e:43:9f:1e:2e: 48:b4:ab:89:03:04:23:6a:e9:e4:c8:43:8e:90:ef: f5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:52:DB:CD:E3:34:3B:94:41:E3:4B:8B:8D:D7:37:78:5C:3E:07:B0 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.96.0/22 Signature Algorithm: sha256WithRSAEncryption 83:e6:2c:2a:60:d7:ad:56:f9:03:f5:99:09:11:9f:66:f0:05: 71:61:0d:28:41:ef:9a:23:86:0a:5c:81:b9:95:ad:6d:65:dc: 38:d3:70:35:8f:e9:53:91:0a:7e:3c:7f:b3:28:95:e2:9c:78: 48:56:2a:f5:52:61:bc:86:61:5a:ec:bc:de:e8:02:50:a7:7b: b8:2a:37:8c:94:ab:e3:ef:f9:b3:5a:71:5b:e8:86:36:3a:c0: 7e:d5:c8:ff:ea:09:9d:ad:c0:76:4f:f4:f5:ce:c3:4b:05:b4: ab:a6:83:27:03:0d:82:cb:15:54:b6:99:b3:a4:81:29:4b:e4: b6:16:8b:62:d5:4f:b5:39:72:ad:f2:e7:8a:e4:18:e1:01:63: 9a:55:62:5c:0b:0e:f4:ac:4f:61:97:44:07:b1:0b:64:05:65: 8c:73:21:67:f9:d6:30:2d:10:e3:be:a9:57:95:21:0f:9b:45: 11:5b:fd:4a:f7:1d:80:94:9e:66:00:26:41:9c:62:ee:3f:79: d9:d4:46:14:68:19:e4:c7:f3:23:4d:54:79:54:cb:fc:36:46: f0:2c:48:53:0e:3c:15:bc:3a:b9:49:f0:ba:d3:c2:c2:4c:00: 67:a3:c5:db:82:31:9f:54:73:a3:4a:15:3b:32:68:5b:db:0c: 83:5b:a1:2a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUROKsGx8Is7yIP9J1zVVblm52eiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yMzA5MjAxMTU1MDRaFw0yNDA5MTgxMjAwMDRaMDMxMTAvBgNV BAMTKDlCNTJEQkNERTMzNDNCOTQ0MUUzNEI4QjhERDczNzc4NUMzRTA3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRHA4ELWtdQu+m/YEzmDauqWO5 o0npD7TV2xdaSPdWRDCo1blV5ywNzZun84g6Uqh000/thJgnEfYzF8pHy3sED6GF OHzEMVkzDGoBfibZG6rH0sduR34654cuU13Q4qjCyQ8+AooER1ah/AQd0IO8RsFu CYOLjFvEm+zVblrBb1ydSLDFgZ2PA98HMfuMeDgZAd1YaMfYOu575MjmlqZGj1Vp pRJ46FCKP2ja2spnySl1/uyuyfxZ8gb1yp3FwEJvRyvxMJaDadFFULVytGj7EKPo 3AqcHM3K50pZmQraN8AhBTqLW9Tk1CROQ58eLki0q4kDBCNq6eTIQ46Q7/U9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUm1LbzeM0O5RB40uLjdc3eFw+B7AwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMxMzAzMzJlMzEzMDJlMzkzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCmAwDQYJKoZIhvcN AQELBQADggEBAIPmLCpg161W+QP1mQkRn2bwBXFhDShB75ojhgpcgbmVrW1l3DjT cDWP6VORCn48f7MoleKceEhWKvVSYbyGYVrsvN7oAlCne7gqN4yUq+Pv+bNacVvo hjY6wH7VyP/qCZ2twHZP9PXOw0sFtKumgycDDYLLFVS2mbOkgSlL5LYWi2LVT7U5 cq3y54rkGOEBY5pVYlwLDvSsT2GXRAexC2QFZYxzIWf51jAtEOO+qVeVIQ+bRRFb /Ur3HYCUnmYAJkGcYu4/ednURhRoGeTH8yNNVHlUy/w2RvAsSFMOPBW8OrlJ8LrT wsJMAGejxduCMZ9Uc6NKFTsyaFvbDINboSo= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:31 2024 by rpki-client on console-fra.rpki-client.org