$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: zUhnV6RZcEN7MS6ucDPYLB6+uiTYrq41foGwVAakKJk= Subject key identifier: 90:4B:B1:FB:F1:1C:C3:56:E9:26:6D:54:E1:DE:47:03:32:CB:DA:51 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 0551BAEC038B35A8B839C6A2B06D7A4E1163CB42 Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa Signing time: Mon 03 Jul 2023 14:42:28 +0000 ROA not before: Mon 03 Jul 2023 14:37:28 +0000 ROA not after: Mon 01 Jul 2024 14:42:28 +0000 asID: 142365 IP address blocks: 103.170.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:51:ba:ec:03:8b:35:a8:b8:39:c6:a2:b0:6d:7a:4e:11:63:cb:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Jul 3 14:37:28 2023 GMT Not After : Jul 1 14:42:28 2024 GMT Subject: CN=904BB1FBF11CC356E9266D54E1DE470332CBDA51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:8e:7b:a2:5d:ff:a5:36:7a:f2:76:1c:15: c8:84:d2:a3:f9:5e:4f:03:57:88:75:e3:81:96:1a: 73:0c:49:16:f9:97:a6:93:dc:14:64:9e:de:82:3d: e0:3f:76:ff:4f:4e:e5:5d:6e:9f:d6:35:0f:e8:53: 6d:87:5e:c9:50:6e:5e:23:24:10:9f:8a:ee:79:5d: 42:74:6f:b7:11:cb:e4:cd:90:cb:63:d7:73:04:1d: 76:7e:28:41:52:8c:c5:45:b0:20:c2:0c:44:f5:2d: 32:a8:f6:43:91:a0:1c:f7:49:29:99:1e:8f:cd:e7: f9:91:14:16:1f:87:df:c7:04:50:7c:40:fc:0b:6e: 67:e1:25:b1:af:a2:56:72:cc:d0:9b:a4:fa:81:57: 4b:29:10:f2:e6:73:ca:d1:3f:68:8b:e6:a4:b6:b0: 68:c8:4a:81:19:c4:61:70:b3:9a:8b:99:91:f6:1f: fe:10:5f:73:c9:af:ef:11:7d:de:0a:9b:c1:ec:2a: c4:26:d7:70:93:ba:e7:14:ac:3a:e2:7a:32:80:06: 04:60:9e:f7:7f:3d:d7:ab:4f:ce:b6:df:9f:47:65: db:d9:23:97:a3:41:32:cf:c9:d6:b6:a4:a1:3a:b9: 79:4d:4c:25:d0:07:d1:8c:48:98:82:16:b9:ac:bd: 48:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4B:B1:FB:F1:1C:C3:56:E9:26:6D:54:E1:DE:47:03:32:CB:DA:51 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.187.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ca:65:ac:8d:66:82:da:e8:ce:da:16:d7:3a:1b:cb:9f:17: c3:72:c5:50:d1:99:82:c9:b0:af:1b:a8:86:ea:88:fe:5d:06: 13:cc:d4:f8:d3:dc:a4:3c:c8:a6:08:55:07:63:f9:88:6d:e9: 38:d5:c7:51:81:57:3f:ee:b1:fe:61:05:29:f3:6f:7e:8b:d3: 4a:c7:1c:de:bf:20:71:8c:75:09:2a:96:9f:7b:b6:7e:4d:e5: 6a:0a:de:ea:46:f2:b1:b0:ff:7f:f2:84:c4:d0:89:6c:bc:3b: d2:28:78:91:87:d0:47:65:cd:e0:5e:6c:b4:5b:db:dd:27:e0: 3e:c3:e6:83:5a:2c:8a:a9:1c:48:df:d6:24:b1:d9:89:a6:64: a2:76:16:50:d4:30:d6:17:2b:87:5a:37:08:8b:df:8b:e4:81: af:8d:94:6a:0a:d0:37:d3:c0:b5:a6:fb:15:43:bc:6c:32:82: 73:ff:cc:c5:02:8a:7b:ca:59:41:0d:84:b2:77:84:90:8f:4a: ad:aa:ce:59:bc:0d:c5:74:fa:94:b4:27:d4:c6:24:8f:55:a7: 53:e4:0c:74:9f:f0:06:b1:46:ca:b9:82:f6:c2:70:50:b0:0e: 2c:50:e9:fe:48:b0:63:8e:ba:bd:8d:65:b2:18:54:40:f7:09: b2:0a:a2:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBVG67AOLNai4OcaisG16ThFjy0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yMzA3MDMxNDM3MjhaFw0yNDA3MDExNDQyMjhaMDMxMTAvBgNV BAMTKDkwNEJCMUZCRjExQ0MzNTZFOTI2NkQ1NEUxREU0NzAzMzJDQkRBNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDbI57ol3/pTZ68nYcFciE0qP5 Xk8DV4h144GWGnMMSRb5l6aT3BRknt6CPeA/dv9PTuVdbp/WNQ/oU22HXslQbl4j JBCfiu55XUJ0b7cRy+TNkMtj13MEHXZ+KEFSjMVFsCDCDET1LTKo9kORoBz3SSmZ Ho/N5/mRFBYfh9/HBFB8QPwLbmfhJbGvolZyzNCbpPqBV0spEPLmc8rRP2iL5qS2 sGjISoEZxGFws5qLmZH2H/4QX3PJr+8Rfd4Km8HsKsQm13CTuucUrDriejKABgRg nvd/PderT862359HZdvZI5ejQTLPyda2pKE6uXlNTCXQB9GMSJiCFrmsvUg3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkEux+/Ecw1bpJm1U4d5HAzLL2lEwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrswDQYJ KoZIhvcNAQELBQADggEBABrKZayNZoLa6M7aFtc6G8ufF8NyxVDRmYLJsK8bqIbq iP5dBhPM1PjT3KQ8yKYIVQdj+Yht6TjVx1GBVz/usf5hBSnzb36L00rHHN6/IHGM dQkqlp97tn5N5WoK3upG8rGw/3/yhMTQiWy8O9IoeJGH0EdlzeBebLRb290n4D7D 5oNaLIqpHEjf1iSx2YmmZKJ2FlDUMNYXK4daNwiL34vkga+NlGoK0DfTwLWm+xVD vGwygnP/zMUCinvKWUENhLJ3hJCPSq2qzlm8DcV0+pS0J9TGJI9Vp1PkDHSf8Aax Rsq5gvbCcFCwDixQ6f5IsGOOur2NZbIYVED3CbIKopE= -----END CERTIFICATE-----Generated at Sun Jun 2 16:36:13 2024 by rpki-client on console-fra.rpki-client.org