$ rpki-client -vvf repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa File: 3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa (raw, json) Hash identifier: KoTqOr8R0JpQ5d2Pvy2utQzUHR2S7oSNo5ftwQ4E8J8= Subject key identifier: 27:B5:3B:3D:36:1B:3A:78:6A:27:2E:D2:C6:1D:0B:8B:AC:D2:F4:2E Certificate issuer: /CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Certificate serial: 03F5233D5293F403B54C217996CE8E4D92F98EEF Authority key identifier: 03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa Signing time: Mon 16 Oct 2023 01:54:57 +0000 ROA not before: Mon 16 Oct 2023 01:49:57 +0000 ROA not after: Mon 14 Oct 2024 01:54:57 +0000 asID: 151531 IP address blocks: 103.239.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f5:23:3d:52:93:f4:03:b5:4c:21:79:96:ce:8e:4d:92:f9:8e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Validity Not Before: Oct 16 01:49:57 2023 GMT Not After : Oct 14 01:54:57 2024 GMT Subject: CN=27B53B3D361B3A786A272ED2C61D0B8BACD2F42E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5c:c5:6a:4e:5c:2c:20:81:4a:ce:79:f4:39: 53:03:46:28:a2:b7:12:77:31:3f:2e:8e:a8:83:34: 50:3a:c1:e8:d6:24:74:04:30:10:c9:c5:b7:f2:f4: c4:ae:13:9e:11:c9:16:2f:38:d2:bb:13:bd:60:85: 65:80:2e:6a:a5:3b:51:28:5b:ec:ae:3e:2c:92:68: 00:ee:df:f3:2d:9e:58:59:9d:45:8e:73:2e:dc:f2: 4c:fb:47:42:e5:77:5b:de:7e:33:b1:d4:00:6f:5e: 2a:a9:5a:24:6b:fa:c9:db:0b:3b:40:e1:1b:70:b8: d7:75:92:0c:1f:5e:7e:7d:77:f6:dc:71:20:65:93: 22:19:d9:0c:da:57:8a:1c:ec:0a:21:ee:b5:e1:89: e5:02:b4:97:76:83:da:a9:09:5b:0c:69:9b:e6:82: f6:5f:32:4c:63:eb:28:c4:d5:9e:39:2d:c8:7d:10: 4e:08:2e:8c:17:a1:10:f3:f2:a5:96:3e:12:cb:a5: 24:32:0d:f6:b6:75:60:3c:4c:a9:85:2d:49:53:4d: cc:b8:b6:42:56:b9:ea:da:a6:dc:e7:7a:e8:2b:2b: 01:9e:5e:3a:b7:d0:03:b8:2b:eb:31:da:7f:96:44: ba:82:ef:cc:c5:f8:c8:f6:18:89:f7:e3:87:89:51: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B5:3B:3D:36:1B:3A:78:6A:27:2E:D2:C6:1D:0B:8B:AC:D2:F4:2E X509v3 Authority Key Identifier: keyid:03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.41.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:a5:7a:41:59:2c:2c:b0:f7:f5:e0:04:8b:33:4b:ff:63:58: 76:e1:e5:4c:d7:28:00:cb:bb:54:3c:53:05:e1:a4:f3:3e:a2: 85:b6:0a:3b:11:7e:5f:47:6d:5f:e8:22:5d:e3:c0:77:08:2f: 77:03:9b:4d:ce:a0:54:14:3b:5e:0c:08:62:a8:be:6c:12:15: 8c:e6:37:44:c8:32:72:69:02:dc:ea:59:22:84:13:ce:fd:a6: e1:ec:7e:72:41:b1:82:21:62:3b:ab:87:02:e6:9c:67:3c:1b: c4:61:e6:ea:07:54:9a:65:8c:d6:6b:10:cb:44:13:b2:eb:f6: 66:21:e5:d4:21:9e:ed:c3:e3:27:76:d6:d2:d3:7e:92:94:77: 27:97:4a:4e:bc:ef:85:fb:b2:5d:70:1a:75:25:96:9a:61:f7: 57:77:39:5b:51:68:0e:22:c3:24:21:9e:d2:07:66:ff:4e:db: 98:ca:c2:b1:76:ad:5f:df:ff:f4:e4:1f:6d:3e:db:0e:94:20: b4:55:69:77:31:e8:ec:04:f0:21:4b:26:6f:53:84:ff:44:b3: c9:3e:96:87:e4:3a:92:d4:e6:38:07:95:e5:bd:5c:f7:64:c9: c9:ab:72:fa:0a:30:e1:e6:15:0e:a2:14:0c:29:38:f0:b2:22: bb:cc:a7:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA/UjPVKT9AO1TCF5ls6OTZL5ju8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERB RTgwRDY2NTAeFw0yMzEwMTYwMTQ5NTdaFw0yNDEwMTQwMTU0NTdaMDMxMTAvBgNV BAMTKDI3QjUzQjNEMzYxQjNBNzg2QTI3MkVEMkM2MUQwQjhCQUNEMkY0MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaXMVqTlwsIIFKznn0OVMDRiii txJ3MT8ujqiDNFA6wejWJHQEMBDJxbfy9MSuE54RyRYvONK7E71ghWWALmqlO1Eo W+yuPiySaADu3/MtnlhZnUWOcy7c8kz7R0Lld1vefjOx1ABvXiqpWiRr+snbCztA 4RtwuNd1kgwfXn59d/bccSBlkyIZ2QzaV4oc7Aoh7rXhieUCtJd2g9qpCVsMaZvm gvZfMkxj6yjE1Z45Lch9EE4ILowXoRDz8qWWPhLLpSQyDfa2dWA8TKmFLUlTTcy4 tkJWueraptzneugrKwGeXjq30AO4K+sx2n+WRLqC78zF+Mj2GIn344eJURCnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ7U7PTYbOnhqJy7Sxh0Li6zS9C4wHwYDVR0j BBgwFoAUA3oeR/sczjtuapNp7d2HDa6A1mUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGJmYzVjMy1jMzljLTQ1ZWQtYWU4Ny0zODRhNmRjYjc5MzgvMC8wMzdBMUU0N0ZC MUNDRTNCNkU2QTkzNjlFREREODcwREFFODBENjY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERBRTgw RDY2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0YmZjNWMzLWMzOWMtNDVlZC1h ZTg3LTM4NGE2ZGNiNzkzOC8wLzMxMzAzMzJlMzIzMzM5MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8pMA0GCSqG SIb3DQEBCwUAA4IBAQB7pXpBWSwssPf14ASLM0v/Y1h24eVM1ygAy7tUPFMF4aTz PqKFtgo7EX5fR21f6CJd48B3CC93A5tNzqBUFDteDAhiqL5sEhWM5jdEyDJyaQLc 6lkihBPO/abh7H5yQbGCIWI7q4cC5pxnPBvEYebqB1SaZYzWaxDLRBOy6/ZmIeXU IZ7tw+MndtbS036SlHcnl0pOvO+F+7JdcBp1JZaaYfdXdzlbUWgOIsMkIZ7SB2b/ TtuYysKxdq1f3//05B9tPtsOlCC0VWl3MejsBPAhSyZvU4T/RLPJPpaH5DqS1OY4 B5XlvVz3ZMnJq3L6CjDh5hUOohQMKTjwsiK7zKfx -----END CERTIFICATE-----Generated at Sat Jun 22 06:05:58 2024 by rpki-client on console-ams.rpki-client.org