$ rpki-client -vvf repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa File: 3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa (raw, json) Hash identifier: HpfPvGIvE3Tra4zRP2Et+HJdQzpHazamSvnMU4oZ/lA= Subject key identifier: D6:5E:99:38:13:E7:BC:84:7A:52:39:52:1A:FA:16:8F:31:E2:6B:2F Certificate issuer: /CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Certificate serial: 42F4050B02A60B962212D18596AFCC37FE7CC754 Authority key identifier: E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa Signing time: Wed 25 Oct 2023 09:00:00 +0000 ROA not before: Wed 25 Oct 2023 08:55:00 +0000 ROA not after: Wed 23 Oct 2024 09:00:00 +0000 asID: 147075 IP address blocks: 103.172.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 19:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f4:05:0b:02:a6:0b:96:22:12:d1:85:96:af:cc:37:fe:7c:c7:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Validity Not Before: Oct 25 08:55:00 2023 GMT Not After : Oct 23 09:00:00 2024 GMT Subject: CN=D65E993813E7BC847A5239521AFA168F31E26B2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:88:8e:7a:f8:b5:5c:38:c2:56:93:c5:98: 1c:a0:2b:c7:91:85:ba:6c:e9:e8:a9:1f:88:a2:58: 43:c9:ba:7d:04:46:7d:42:02:8e:3f:49:22:40:1f: a5:12:72:34:a0:7d:ee:34:e2:71:c4:1b:f9:72:b6: e6:dd:40:dd:ec:5e:fd:75:36:87:ab:b9:6a:62:5d: 76:fd:c7:27:55:6c:d3:b9:4f:e4:d4:7a:e2:d6:9b: 98:88:9e:64:16:ae:4b:ad:f7:13:e5:8e:37:58:b4: c9:93:18:f8:6e:84:63:13:13:4b:31:4d:97:3c:43: 10:9d:ef:79:20:25:c9:4e:03:29:3d:f2:d5:91:a0: 31:b9:a2:e0:ea:65:78:00:bd:8b:74:de:22:03:27: e0:f7:ea:f0:0a:84:13:4e:68:8a:69:27:3c:dc:b6: 7d:cf:a0:2a:5a:24:c3:0b:39:32:a3:9b:77:a9:01: 2a:24:b4:dc:34:9d:bf:14:11:e4:ce:79:9b:7e:d2: 2a:cc:46:62:85:26:af:3f:8d:1c:04:40:e0:0f:4f: 41:cf:61:18:e0:a6:f2:62:ca:3f:df:c9:22:f7:e0: fb:75:03:b7:51:1f:52:3c:95:a4:16:14:e2:75:3c: 0b:ad:33:e8:79:30:3a:68:d8:37:5e:52:98:fc:de: 86:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5E:99:38:13:E7:BC:84:7A:52:39:52:1A:FA:16:8F:31:E2:6B:2F X509v3 Authority Key Identifier: keyid:E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.194.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:34:3e:fb:b8:81:c5:08:de:df:12:b8:f4:50:de:80:10:c3: 58:28:9b:52:24:41:bd:d8:bf:fd:42:36:e6:80:db:79:38:67: e4:d6:48:7b:cd:84:5e:a8:ef:b8:26:ee:94:11:ba:95:1e:4a: 41:9a:6f:63:b6:42:6d:c4:97:33:d1:d2:67:54:b9:e7:6b:f5: b3:d4:f5:98:eb:64:b2:81:04:84:2c:90:e5:64:bf:72:57:25: fe:d6:9e:27:a5:e6:77:e5:dc:63:39:22:8b:b2:b3:5f:f5:c3: 8a:f1:49:a1:ff:df:3a:11:e3:92:6d:ff:67:f6:78:47:d5:c7: 1e:d5:45:09:d0:95:89:a5:fe:42:cd:4e:39:29:7f:e7:ea:eb: bd:05:f8:a5:c4:a9:6e:00:0f:43:08:90:55:61:aa:c8:94:d4: 18:3e:19:f9:7d:88:ef:5e:3c:f6:7d:72:f6:4b:72:39:d3:7e: ca:4f:e5:bd:e5:bf:68:4e:49:0a:a2:71:c1:af:40:e4:05:48: 96:58:ea:38:cc:af:8e:de:2a:6a:cf:ff:fc:9a:7b:7d:5f:92: 3c:d4:69:3b:cc:d9:50:63:bf:76:6a:d8:b6:f3:47:2b:6c:1f: 89:34:e1:b7:1c:66:1e:45:08:c7:a0:e4:9c:21:61:49:49:01: 48:cf:db:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQvQFCwKmC5YiEtGFlq/MN/58x1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3 QjJBRTRCRTAeFw0yMzEwMjUwODU1MDBaFw0yNDEwMjMwOTAwMDBaMDMxMTAvBgNV BAMTKEQ2NUU5OTM4MTNFN0JDODQ3QTUyMzk1MjFBRkExNjhGMzFFMjZCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4bYiOevi1XDjCVpPFmBygK8eR hbps6eipH4iiWEPJun0ERn1CAo4/SSJAH6UScjSgfe404nHEG/lytubdQN3sXv11 NoeruWpiXXb9xydVbNO5T+TUeuLWm5iInmQWrkut9xPljjdYtMmTGPhuhGMTE0sx TZc8QxCd73kgJclOAyk98tWRoDG5ouDqZXgAvYt03iIDJ+D36vAKhBNOaIppJzzc tn3PoCpaJMMLOTKjm3epASoktNw0nb8UEeTOeZt+0irMRmKFJq8/jRwEQOAPT0HP YRjgpvJiyj/fySL34Pt1A7dRH1I8laQWFOJ1PAutM+h5MDpo2DdeUpj83objAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1l6ZOBPnvIR6UjlSGvoWjzHiay8wHwYDVR0j BBgwFoAU5IY04db7LooGpIgltNfuxHsq5L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2VjMmNiNi0zNWFkLTQxMDEtOTgyZS0yZTM0ZDU2NmVmZGEvMC9FNDg2MzRFMUQ2 RkIyRThBMDZBNDg4MjVCNEQ3RUVDNDdCMkFFNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3QjJB RTRCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZWMyY2I2LTM1YWQtNDEwMS05 ODJlLTJlMzRkNTY2ZWZkYS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMIwDQYJ KoZIhvcNAQELBQADggEBAG80Pvu4gcUI3t8SuPRQ3oAQw1gom1IkQb3Yv/1CNuaA 23k4Z+TWSHvNhF6o77gm7pQRupUeSkGab2O2Qm3ElzPR0mdUuedr9bPU9ZjrZLKB BIQskOVkv3JXJf7Wniel5nfl3GM5Iouys1/1w4rxSaH/3zoR45Jt/2f2eEfVxx7V RQnQlYml/kLNTjkpf+fq670F+KXEqW4AD0MIkFVhqsiU1Bg+Gfl9iO9ePPZ9cvZL cjnTfspP5b3lv2hOSQqiccGvQOQFSJZY6jjMr47eKmrP//yae31fkjzUaTvM2VBj v3Zq2LbzRytsH4k04bccZh5FCMeg5JwhYUlJAUjP2zM= -----END CERTIFICATE-----Generated at Fri May 31 20:32:45 2024 by rpki-client on console-ams.rpki-client.org