$ rpki-client -vvf repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa File: 3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa (raw, json) Hash identifier: jnWFeZ1ZbO3IM3OMxAO8k+E+WkOrbEIxo9yQ8ahQw0E= Subject key identifier: 7D:02:B6:68:9F:6E:D3:91:48:07:34:1D:76:01:4D:8C:17:38:64:76 Certificate issuer: /CN=1975F0B2F27DE4AFF43CC246058A2B9E15950AEC Certificate serial: 17DD6D8E0D60BAB3FC232D30F091417C47FC3B77 Authority key identifier: 19:75:F0:B2:F2:7D:E4:AF:F4:3C:C2:46:05:8A:2B:9E:15:95:0A:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa Signing time: Mon 31 Jul 2023 00:05:37 +0000 ROA not before: Mon 31 Jul 2023 00:00:37 +0000 ROA not after: Mon 29 Jul 2024 00:05:37 +0000 asID: 139443 IP address blocks: 103.145.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.crl rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 17:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:dd:6d:8e:0d:60:ba:b3:fc:23:2d:30:f0:91:41:7c:47:fc:3b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1975F0B2F27DE4AFF43CC246058A2B9E15950AEC Validity Not Before: Jul 31 00:00:37 2023 GMT Not After : Jul 29 00:05:37 2024 GMT Subject: CN=7D02B6689F6ED3914807341D76014D8C17386476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0c:45:7f:b5:81:b9:43:bd:ae:60:96:3e:76: 15:bb:3d:7a:d3:65:6e:1f:e2:24:1c:ba:d4:6f:11: 5e:c8:ad:3d:e2:25:4e:6d:e0:50:9b:48:17:d3:93: dd:61:f9:80:9c:ef:9c:9c:86:89:c4:68:14:53:c6: b9:38:fa:ae:a9:1b:45:14:57:6a:53:96:a3:67:ef: b1:57:fd:37:ff:4f:5c:36:da:68:a4:ea:98:2b:f8: 82:16:72:2a:83:65:6a:4a:16:8c:3e:ac:8c:0e:05: 1a:e4:45:9a:11:2e:15:da:b0:07:39:25:41:70:2d: 2d:4a:bd:b9:99:05:d5:05:92:c1:a4:a1:63:d9:d9: c3:f7:26:7b:7f:95:0c:41:91:26:36:2a:bf:a4:ce: 0a:6e:a0:95:4b:f2:df:4c:94:28:cd:a7:e5:0b:a0: 28:be:41:7b:c3:30:2e:0d:ab:82:d9:62:e6:17:26: 6f:36:d2:df:34:f3:00:c3:de:80:5f:68:43:0b:c2: e1:e0:f0:72:a7:61:d4:e2:fb:ed:2f:6b:1c:a7:77: 45:2f:5d:2f:ab:fe:87:ff:a7:79:65:23:fb:88:fa: 34:b7:f5:ed:c3:58:55:e5:30:54:0f:f9:f9:77:3e: cc:ac:4f:3d:f5:bd:68:88:05:a7:43:d2:26:9d:96: e9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:02:B6:68:9F:6E:D3:91:48:07:34:1D:76:01:4D:8C:17:38:64:76 X509v3 Authority Key Identifier: keyid:19:75:F0:B2:F2:7D:E4:AF:F4:3C:C2:46:05:8A:2B:9E:15:95:0A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1975F0B2F27DE4AFF43CC246058A2B9E15950AEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f03362e2-9765-42bd-b59b-68d43cadeb5c/0/3130332e3134352e39372e302f32342d3234203d3e20313339343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.97.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:24:29:42:6c:5f:9c:22:85:f7:b0:c3:a1:76:64:65:04:d8: f5:80:41:bd:f5:2d:cc:3d:88:a4:d4:21:04:bb:3c:4a:44:72: 82:f4:e3:6b:83:26:22:7a:77:f6:e4:d9:11:ec:73:26:9f:85: fa:8d:41:1f:f8:d2:89:b7:88:51:55:c4:45:bd:17:2a:26:d1: a5:5b:26:9f:a8:6c:b4:16:ab:a4:88:c1:65:46:be:84:aa:bb: 94:1e:f0:14:83:a0:a1:c9:bc:11:10:4b:19:64:bc:48:3f:29: 43:72:4c:67:59:3d:89:94:5b:4f:8d:2e:a2:ca:4d:a0:c2:ea: 07:0d:dd:1f:25:17:1c:5f:46:b1:29:cf:99:aa:c7:27:b7:25: 11:41:d3:50:82:a2:3a:0b:c3:9d:80:92:b5:ba:c7:99:41:9f: 65:38:20:aa:8c:81:8c:9a:09:e1:6d:36:1e:89:44:39:b7:86: 8f:f2:c0:9e:29:bc:17:08:fd:cd:c7:88:5c:fd:d3:d3:24:ba: 76:f3:ee:0a:7a:ba:2a:36:85:e2:23:7c:1a:27:e6:e6:59:d7: 8b:6b:9c:aa:b7:81:59:57:3a:c7:a3:26:72:f7:d0:2b:75:5b: c4:b5:87:3f:f1:85:b6:e8:96:15:71:8b:a0:69:6f:e7:8c:58: 60:72:ae:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF91tjg1gurP8Iy0w8JFBfEf8O3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NUYwQjJGMjdERTRBRkY0M0NDMjQ2MDU4QTJCOUUx NTk1MEFFQzAeFw0yMzA3MzEwMDAwMzdaFw0yNDA3MjkwMDA1MzdaMDMxMTAvBgNV BAMTKDdEMDJCNjY4OUY2RUQzOTE0ODA3MzQxRDc2MDE0RDhDMTczODY0NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVDEV/tYG5Q72uYJY+dhW7PXrT ZW4f4iQcutRvEV7IrT3iJU5t4FCbSBfTk91h+YCc75ychonEaBRTxrk4+q6pG0UU V2pTlqNn77FX/Tf/T1w22mik6pgr+IIWciqDZWpKFow+rIwOBRrkRZoRLhXasAc5 JUFwLS1KvbmZBdUFksGkoWPZ2cP3Jnt/lQxBkSY2Kr+kzgpuoJVL8t9MlCjNp+UL oCi+QXvDMC4Nq4LZYuYXJm820t808wDD3oBfaEMLwuHg8HKnYdTi++0vaxynd0Uv XS+r/of/p3llI/uI+jS39e3DWFXlMFQP+fl3PsysTz31vWiIBadD0iadlukNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfQK2aJ9u05FIBzQddgFNjBc4ZHYwHwYDVR0j BBgwFoAUGXXwsvJ95K/0PMJGBYornhWVCuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDMzNjJlMi05NzY1LTQyYmQtYjU5Yi02OGQ0M2NhZGViNWMvMC8xOTc1RjBCMkYy N0RFNEFGRjQzQ0MyNDYwNThBMkI5RTE1OTUwQUVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NUYwQjJGMjdERTRBRkY0M0NDMjQ2MDU4QTJCOUUxNTk1 MEFFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwMzM2MmUyLTk3NjUtNDJiZC1i NTliLTY4ZDQzY2FkZWI1Yy8wLzMxMzAzMzJlMzEzNDM1MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5FhMA0GCSqG SIb3DQEBCwUAA4IBAQAMJClCbF+cIoX3sMOhdmRlBNj1gEG99S3MPYik1CEEuzxK RHKC9ONrgyYienf25NkR7HMmn4X6jUEf+NKJt4hRVcRFvRcqJtGlWyafqGy0Fquk iMFlRr6EqruUHvAUg6ChybwREEsZZLxIPylDckxnWT2JlFtPjS6iyk2gwuoHDd0f JRccX0axKc+ZqscntyURQdNQgqI6C8OdgJK1useZQZ9lOCCqjIGMmgnhbTYeiUQ5 t4aP8sCeKbwXCP3Nx4hc/dPTJLp28+4KeroqNoXiI3waJ+bmWdeLa5yqt4FZVzrH oyZy99ArdVvEtYc/8YW26JYVcYugaW/njFhgcq5l -----END CERTIFICATE-----Generated at Fri May 31 17:43:05 2024 by rpki-client on console-fra.rpki-client.org