$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa File: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (raw, json) Hash identifier: 7VSc9Gcvnpfn7ZPPafV+FSx6VsyDCdcR7tm8J+oVFFo= Subject key identifier: 0D:95:CD:F1:F6:EA:BD:24:8E:D1:A5:C0:41:F3:DC:4D:85:27:AB:F6 Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 67C5806EDDADE53E2E50169DC687F70293DA0552 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa Signing time: Thu 30 May 2024 05:00:01 +0000 ROA not before: Thu 30 May 2024 04:55:01 +0000 ROA not after: Thu 29 May 2025 05:00:01 +0000 asID: 142375 IP address blocks: 103.171.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 00:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c5:80:6e:dd:ad:e5:3e:2e:50:16:9d:c6:87:f7:02:93:da:05:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: May 30 04:55:01 2024 GMT Not After : May 29 05:00:01 2025 GMT Subject: CN=0D95CDF1F6EABD248ED1A5C041F3DC4D8527ABF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3d:03:0c:fb:99:80:d8:a9:92:c6:fb:86:11: 54:23:8a:d8:28:e9:d6:ea:be:28:fe:d7:5d:55:d6: b8:8f:7e:19:7e:29:26:ab:74:18:83:87:bf:ad:d8: 4e:a2:76:22:be:d7:35:44:cf:7d:6d:78:7c:02:a9: d6:29:bc:44:06:81:50:90:50:9b:27:e3:cb:ed:ec: 25:30:87:67:3b:3b:34:a8:30:b7:d9:b6:b5:3c:b6: 59:a9:20:bf:76:06:06:ce:66:d4:29:ba:39:88:0c: 54:fe:59:aa:c1:f1:1e:91:55:be:a9:a2:80:93:ec: 3b:1a:a9:a8:56:11:57:e2:89:90:93:a4:56:94:f0: c2:22:a7:2f:82:2a:95:71:3c:25:23:51:80:99:b7: 6a:db:91:ca:93:b7:c6:e8:ec:dd:b8:6f:3f:60:95: 91:cd:62:e9:dd:cb:bd:b8:ca:56:05:8d:c6:6f:67: b8:44:d3:a7:51:03:6a:43:33:13:a3:73:35:29:dd: 05:9e:98:a6:f8:77:80:80:9a:7f:e1:65:7f:cb:e2: 75:9a:da:6f:f7:b1:06:89:b6:8f:13:37:6a:f7:7d: 5e:c5:2b:16:88:f2:29:7b:08:4c:2f:26:68:bf:9a: 32:3c:0e:7a:98:79:58:bc:e3:ac:b9:16:04:2b:57: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:95:CD:F1:F6:EA:BD:24:8E:D1:A5:C0:41:F3:DC:4D:85:27:AB:F6 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.182.0/24 Signature Algorithm: sha256WithRSAEncryption 05:74:cd:25:9c:27:f7:ee:84:2f:1f:c2:b3:f5:53:da:f3:f3: 81:9d:69:de:2a:40:1b:f0:87:0d:1f:69:c5:7b:d5:16:f5:61: 64:c6:5c:c8:4d:60:b7:b8:6c:73:7b:13:78:d9:b2:a0:e0:39: 95:0c:04:f5:a7:3e:3c:ca:70:c7:b2:4d:2d:64:3b:70:77:73: ae:04:0f:61:a2:29:b4:ed:fd:1f:ae:1f:29:3d:15:c9:11:2b: da:db:90:1c:44:e9:72:e8:c0:1f:b8:37:84:6f:12:5c:89:ab: 84:1c:2a:cf:0b:22:9e:eb:44:33:a9:d2:b7:13:2e:8f:c2:cc: 60:63:dc:5d:fb:f1:6c:96:9a:d4:fc:08:23:bd:dd:30:be:f1: 1e:61:f6:6c:8c:00:51:9f:49:86:df:a9:44:02:ba:38:21:39: 6f:b0:f1:3a:d3:92:07:2d:95:d3:c3:dc:69:d3:46:f1:b3:60: 6c:e8:7f:8c:82:61:30:f3:63:41:c1:1e:66:b2:e3:a6:91:58: 54:b4:f1:ef:66:fb:76:2d:26:d9:9b:0c:6b:ef:f9:31:f7:27: 29:7c:42:01:af:89:83:14:34:43:fe:f2:57:06:04:25:8d:ad: a3:1e:8d:4d:e0:87:61:30:b9:63:7a:ea:1d:49:33:3a:e5:bc: 46:c2:cf:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ8WAbt2t5T4uUBadxof3ApPaBVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNDA1MzAwNDU1MDFaFw0yNTA1MjkwNTAwMDFaMDMxMTAvBgNV BAMTKDBEOTVDREYxRjZFQUJEMjQ4RUQxQTVDMDQxRjNEQzREODUyN0FCRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFPQMM+5mA2KmSxvuGEVQjitgo 6dbqvij+111V1riPfhl+KSardBiDh7+t2E6idiK+1zVEz31teHwCqdYpvEQGgVCQ UJsn48vt7CUwh2c7OzSoMLfZtrU8tlmpIL92BgbOZtQpujmIDFT+WarB8R6RVb6p ooCT7DsaqahWEVfiiZCTpFaU8MIipy+CKpVxPCUjUYCZt2rbkcqTt8bo7N24bz9g lZHNYundy724ylYFjcZvZ7hE06dRA2pDMxOjczUp3QWemKb4d4CAmn/hZX/L4nWa 2m/3sQaJto8TN2r3fV7FKxaI8il7CEwvJmi/mjI8DnqYeVi846y5FgQrVzDBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDZXN8fbqvSSO0aXAQfPcTYUnq/YwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzNTA1Y2IzLWI1NWUtNDBlNC1h Yzc5LTYzNjU2MDZmNGVmOS8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7YwDQYJ KoZIhvcNAQELBQADggEBAAV0zSWcJ/fuhC8fwrP1U9rz84Gdad4qQBvwhw0facV7 1Rb1YWTGXMhNYLe4bHN7E3jZsqDgOZUMBPWnPjzKcMeyTS1kO3B3c64ED2GiKbTt /R+uHyk9FckRK9rbkBxE6XLowB+4N4RvElyJq4QcKs8LIp7rRDOp0rcTLo/CzGBj 3F378WyWmtT8CCO93TC+8R5h9myMAFGfSYbfqUQCujghOW+w8TrTkgctldPD3GnT RvGzYGzof4yCYTDzY0HBHmay46aRWFS08e9m+3YtJtmbDGvv+TH3Jyl8QgGviYMU NEP+8lcGBCWNraMejU3gh2EwuWN66h1JMzrlvEbCz3s= -----END CERTIFICATE-----Generated at Fri Jun 28 17:08:01 2024 by rpki-client on console-ams.rpki-client.org