$ rpki-client -vvf repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa File: 3130332e3137322e33342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: A9RH7lUhX0bPQg2j8Q4bR998RDwfnM+/I3H5DvXpGzI= Subject key identifier: 75:D8:5A:DE:D4:3A:CF:AE:C6:94:30:F6:F7:7F:88:FA:0B:96:E4:99 Certificate issuer: /CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Certificate serial: 1FB64452B86A41A7E414A8510F8FE32ED8926F5C Authority key identifier: 55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa Signing time: Fri 30 Jun 2023 03:00:00 +0000 ROA not before: Fri 30 Jun 2023 02:55:00 +0000 ROA not after: Fri 28 Jun 2024 03:00:00 +0000 asID: 58821 IP address blocks: 103.172.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 17:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b6:44:52:b8:6a:41:a7:e4:14:a8:51:0f:8f:e3:2e:d8:92:6f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5562ED3E2B75AA4CE36165EE02F7696CCB8045E1 Validity Not Before: Jun 30 02:55:00 2023 GMT Not After : Jun 28 03:00:00 2024 GMT Subject: CN=75D85ADED43ACFAEC69430F6F77F88FA0B96E499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:08:9a:f2:c0:4d:34:a1:06:74:0d:84:96:b8: e5:1c:d4:1d:39:1c:8d:f4:09:43:d2:5a:d7:40:04: 0e:a9:b2:f3:85:ea:40:d5:9a:7d:db:93:ce:bb:8b: 89:e4:95:b4:c4:15:18:68:cf:dc:f6:c5:79:d9:24: 6a:ed:bf:7f:ca:5f:be:33:a7:eb:9c:2b:84:7f:5c: 5a:64:88:f1:89:56:ee:21:2e:d2:7f:82:30:2b:7b: 3a:17:b3:4a:48:ef:de:97:94:c0:60:f8:31:72:1e: dd:10:25:8d:ce:f0:a1:af:92:5e:e2:00:b4:95:c1: 02:9e:40:4e:18:35:60:08:dd:43:73:14:20:bb:ca: 3a:37:cf:57:7a:94:ff:88:1f:31:8a:89:a6:48:8f: 9a:91:e7:dd:95:b3:42:ec:84:23:f2:59:20:02:43: 5a:36:07:73:0f:55:b1:dc:25:8a:c5:93:04:24:61: 22:43:6e:c9:4f:3e:a2:73:d2:88:bd:7c:b6:75:db: f1:e0:2d:f5:a9:f5:dd:f0:80:63:bd:e0:dd:a2:55: 85:8c:4f:81:f8:c1:82:48:43:3e:b6:c4:d5:c2:5f: 10:eb:99:cd:5f:b2:d2:2d:cc:85:48:ad:74:0a:ab: ff:c3:91:96:7a:84:d9:ae:e5:18:e5:ef:66:6b:d2: 32:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D8:5A:DE:D4:3A:CF:AE:C6:94:30:F6:F7:7F:88:FA:0B:96:E4:99 X509v3 Authority Key Identifier: keyid:55:62:ED:3E:2B:75:AA:4C:E3:61:65:EE:02:F7:69:6C:CB:80:45:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5562ED3E2B75AA4CE36165EE02F7696CCB8045E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e7a3e90a-033a-4c8d-9077-0daf8050fa8b/0/3130332e3137322e33342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.34.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:cc:e0:2e:fc:41:33:3f:fb:6e:2a:46:da:07:f5:e9:e5:3b: e4:cb:8d:a6:7a:d3:ce:0a:df:d9:13:59:67:b3:46:fe:e5:f0: cd:aa:97:cb:08:b6:9f:10:d9:ca:ab:02:08:c6:65:38:77:aa: 7a:fd:c8:ba:f0:1c:f7:5d:8f:18:b5:a1:8c:42:b5:a7:1a:ed: 79:94:a2:ed:c1:45:f3:51:8e:3f:ab:ac:f9:b1:5e:90:92:ab: 0c:f4:4b:8e:0a:8b:8c:da:8d:3a:e7:ba:bd:0a:25:06:0a:67: 08:5f:b3:d6:32:2d:43:1d:a4:b6:61:fe:46:8d:03:eb:1b:d2: 2a:0d:19:45:18:26:83:d9:8a:4e:a6:b5:5d:29:1d:fc:c3:fc: 03:46:35:7f:2b:61:d9:32:8b:57:c3:ee:3a:3e:67:a6:65:7a: f8:c1:ee:c8:a1:1a:53:d3:78:e1:c2:a5:20:7d:9a:1f:da:c7: e9:20:70:a2:0f:78:23:6e:13:1d:7e:18:9c:99:a8:32:5a:b9: 62:a8:85:03:89:65:e8:9d:2c:95:f9:10:75:08:55:f6:8f:2d: 1b:9b:f5:4f:3f:f1:fb:6c:c8:f7:33:67:a6:06:b1:34:ad:7a: 7c:f6:83:3a:0d:fc:29:16:a8:2f:86:19:87:29:86:7d:2c:30: 79:98:30:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH7ZEUrhqQafkFKhRD4/jLtiSb1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkND QjgwNDVFMTAeFw0yMzA2MzAwMjU1MDBaFw0yNDA2MjgwMzAwMDBaMDMxMTAvBgNV BAMTKDc1RDg1QURFRDQzQUNGQUVDNjk0MzBGNkY3N0Y4OEZBMEI5NkU0OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFCJrywE00oQZ0DYSWuOUc1B05 HI30CUPSWtdABA6psvOF6kDVmn3bk867i4nklbTEFRhoz9z2xXnZJGrtv3/KX74z p+ucK4R/XFpkiPGJVu4hLtJ/gjArezoXs0pI796XlMBg+DFyHt0QJY3O8KGvkl7i ALSVwQKeQE4YNWAI3UNzFCC7yjo3z1d6lP+IHzGKiaZIj5qR592Vs0LshCPyWSAC Q1o2B3MPVbHcJYrFkwQkYSJDbslPPqJz0oi9fLZ12/HgLfWp9d3wgGO94N2iVYWM T4H4wYJIQz62xNXCXxDrmc1fstItzIVIrXQKq//DkZZ6hNmu5Rjl72Zr0jKTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUddha3tQ6z67GlDD293+I+guW5JkwHwYDVR0j BBgwFoAUVWLtPit1qkzjYWXuAvdpbMuAReEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l N2EzZTkwYS0wMzNhLTRjOGQtOTA3Ny0wZGFmODA1MGZhOGIvMC81NTYyRUQzRTJC NzVBQTRDRTM2MTY1RUUwMkY3Njk2Q0NCODA0NUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2MkVEM0UyQjc1QUE0Q0UzNjE2NUVFMDJGNzY5NkNDQjgw NDVFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3YTNlOTBhLTAzM2EtNGM4ZC05 MDc3LTBkYWY4MDUwZmE4Yi8wLzMxMzAzMzJlMzEzNzMyMmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWesIjANBgkqhkiG 9w0BAQsFAAOCAQEAaszgLvxBMz/7bipG2gf16eU75MuNpnrTzgrf2RNZZ7NG/uXw zaqXywi2nxDZyqsCCMZlOHeqev3IuvAc912PGLWhjEK1pxrteZSi7cFF81GOP6us +bFekJKrDPRLjgqLjNqNOue6vQolBgpnCF+z1jItQx2ktmH+Ro0D6xvSKg0ZRRgm g9mKTqa1XSkd/MP8A0Y1fyth2TKLV8PuOj5npmV6+MHuyKEaU9N44cKlIH2aH9rH 6SBwog94I24THX4YnJmoMlq5YqiFA4ll6J0slfkQdQhV9o8tG5v1Tz/x+2zI9zNn pgaxNK16fPaDOg38KRaoL4YZhymGfSwweZgwmg== -----END CERTIFICATE-----Generated at Wed May 1 18:11:11 2024 by rpki-client on console-ams.rpki-client.org