$ rpki-client -vvf repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa File: 3130332e32332e32302e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: r2OV/IMeEuQOi+gUChIzG4dkwQvLiEgmfiNHmbLm+Fw= Subject key identifier: C7:78:87:EB:65:DD:F6:7F:5A:6B:15:DC:8A:92:F7:19:0D:7F:98:55 Certificate issuer: /CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Certificate serial: 37008A2F8C51EF621E7D4DE6512DAC32D49A4CB6 Authority key identifier: 8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa Signing time: Sat 09 Dec 2023 12:00:01 +0000 ROA not before: Sat 09 Dec 2023 11:55:01 +0000 ROA not after: Sat 07 Dec 2024 12:00:01 +0000 asID: 58397 IP address blocks: 103.23.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:00:8a:2f:8c:51:ef:62:1e:7d:4d:e6:51:2d:ac:32:d4:9a:4c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Validity Not Before: Dec 9 11:55:01 2023 GMT Not After : Dec 7 12:00:01 2024 GMT Subject: CN=C77887EB65DDF67F5A6B15DC8A92F7190D7F9855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:01:d3:ce:8c:b5:fb:cb:e6:72:33:cd:8c:7b: cf:2e:bf:4a:03:41:d8:5a:bb:f7:4e:d7:2e:f9:44: 11:90:45:25:0a:90:b3:5b:1d:d0:cc:3b:df:95:a6: 43:d9:8b:97:bc:ea:6f:e1:75:6d:fb:25:80:49:c3: af:ff:60:52:2e:d8:bd:c6:bb:8e:29:de:18:6e:63: 2b:ff:09:f5:99:30:e3:af:61:f5:6e:be:7d:91:bb: ed:20:0e:03:d0:18:0c:f6:aa:8e:2d:34:0a:86:6c: 50:41:8f:22:d9:04:7a:68:74:b8:01:ea:35:49:3a: e7:32:f8:c3:fa:2c:c1:40:73:89:4c:35:b7:50:3c: be:a2:1a:8f:7a:f3:27:72:84:47:db:11:d1:da:17: 12:2a:15:5a:b3:c4:67:87:bb:e7:49:8d:4e:6c:c3: 46:3e:f1:46:ea:2c:e3:43:19:ee:a7:8d:16:b9:29: 14:22:16:06:16:b1:3b:1e:30:69:03:87:2a:01:18: 6b:34:bd:04:16:ae:82:76:43:77:0d:23:02:63:e9: 7e:84:68:01:5c:3c:11:da:92:a1:33:61:7e:fe:ff: e7:70:bc:a4:fe:25:0f:ac:4b:12:9d:5f:bc:51:ed: 22:ba:41:cc:df:be:42:e1:06:75:75:9b:f8:24:7b: b5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:78:87:EB:65:DD:F6:7F:5A:6B:15:DC:8A:92:F7:19:0D:7F:98:55 X509v3 Authority Key Identifier: keyid:8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.20.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:04:85:7d:ef:f2:09:59:ae:35:52:2b:80:ac:16:60:e9:fe: da:21:58:eb:ae:87:95:da:e3:bc:42:50:71:5c:b2:52:83:40: f1:d7:db:32:e1:83:17:42:f8:24:4e:b2:79:34:f9:16:4f:81: 49:ca:ea:06:ba:85:b5:fd:7a:10:fe:db:1f:ed:ea:ea:e3:68: fb:30:6c:75:a4:cf:0d:85:ae:08:5d:e3:f2:06:7a:8d:5d:fa: 6c:a7:42:ef:a3:9a:7a:ff:ff:d3:98:7c:2e:58:30:e3:9b:00: da:3d:dc:50:9b:9c:42:1d:6a:66:fb:1b:16:76:1b:62:e0:ef: e8:b5:4a:d9:e2:d6:32:41:c5:78:d1:01:a0:b4:48:bd:e0:e7: a3:b9:9f:60:95:b7:6e:fe:ff:85:1c:05:cb:01:7e:69:de:a8: 3b:15:3e:9b:42:0c:33:1f:1e:69:ea:61:06:aa:cd:23:67:de: 8e:30:15:82:f8:7c:5e:f0:be:78:7b:73:10:0f:b9:ae:d0:34: 6e:38:4f:4e:e5:71:74:83:2a:e5:cf:6a:7f:ce:a7:a3:01:95: 2d:e7:93:2e:2e:98:76:12:e8:49:d7:00:ac:70:2b:32:49:58: e7:07:b7:df:79:78:3a:db:2a:40:3e:f8:3e:a1:03:68:60:11: 0a:7c:6d:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNwCKL4xR72IefU3mUS2sMtSaTLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5 NEZCNjQ4MTAeFw0yMzEyMDkxMTU1MDFaFw0yNDEyMDcxMjAwMDFaMDMxMTAvBgNV BAMTKEM3Nzg4N0VCNjVEREY2N0Y1QTZCMTVEQzhBOTJGNzE5MEQ3Rjk4NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIAdPOjLX7y+ZyM82Me88uv0oD Qdhau/dO1y75RBGQRSUKkLNbHdDMO9+VpkPZi5e86m/hdW37JYBJw6//YFIu2L3G u44p3hhuYyv/CfWZMOOvYfVuvn2Ru+0gDgPQGAz2qo4tNAqGbFBBjyLZBHpodLgB 6jVJOucy+MP6LMFAc4lMNbdQPL6iGo968ydyhEfbEdHaFxIqFVqzxGeHu+dJjU5s w0Y+8UbqLONDGe6njRa5KRQiFgYWsTseMGkDhyoBGGs0vQQWroJ2Q3cNIwJj6X6E aAFcPBHakqEzYX7+/+dwvKT+JQ+sSxKdX7xR7SK6QczfvkLhBnV1m/gke7XTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUx3iH62Xd9n9aaxXcipL3GQ1/mFUwHwYDVR0j BBgwFoAUipX69yPsEp4zbnWs4c1PMJT7ZIEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGI5ODcyMi0xY2I0LTQwZDQtYWM4Yi1jM2JjYTJiY2EyMTcvMC84QTk1RkFGNzIz RUMxMjlFMzM2RTc1QUNFMUNENEYzMDk0RkI2NDgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5NEZC NjQ4MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Yjk4NzIyLTFjYjQtNDBkNC1h YzhiLWMzYmNhMmJjYTIxNy8wLzMxMzAzMzJlMzIzMzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFxQwDQYJKoZIhvcN AQELBQADggEBAEwEhX3v8glZrjVSK4CsFmDp/tohWOuuh5Xa47xCUHFcslKDQPHX 2zLhgxdC+CROsnk0+RZPgUnK6ga6hbX9ehD+2x/t6urjaPswbHWkzw2Frghd4/IG eo1d+mynQu+jmnr//9OYfC5YMOObANo93FCbnEIdamb7GxZ2G2Lg7+i1Stni1jJB xXjRAaC0SL3g56O5n2CVt27+/4UcBcsBfmneqDsVPptCDDMfHmnqYQaqzSNn3o4w FYL4fF7wvnh7cxAPua7QNG44T07lcXSDKuXPan/Op6MBlS3nky4umHYS6EnXAKxw KzJJWOcHt995eDrbKkA++D6hA2hgEQp8bQI= -----END CERTIFICATE-----Generated at Sat May 4 03:55:13 2024 by rpki-client on console-fra.rpki-client.org