$ rpki-client -vvf repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa File: 3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa (raw, json) Hash identifier: g60Cnw+7HFy+aplkv5aDRsnWS9W4K9EVD/2Mrb2gWUM= Subject key identifier: D8:CD:E6:51:EB:E8:1A:75:6C:4A:52:FE:84:4D:90:D3:1D:9A:29:69 Certificate issuer: /CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Certificate serial: 64E741B9418A302BB6A58BB0476DF87ACEBD1195 Authority key identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa Signing time: Wed 07 Feb 2024 09:00:01 +0000 ROA not before: Wed 07 Feb 2024 08:55:01 +0000 ROA not after: Wed 05 Feb 2025 09:00:01 +0000 asID: 139986 IP address blocks: 103.148.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e7:41:b9:41:8a:30:2b:b6:a5:8b:b0:47:6d:f8:7a:ce:bd:11:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Validity Not Before: Feb 7 08:55:01 2024 GMT Not After : Feb 5 09:00:01 2025 GMT Subject: CN=D8CDE651EBE81A756C4A52FE844D90D31D9A2969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a2:79:43:91:40:c7:41:6e:ce:6a:db:8b:1c: e8:f2:b1:cf:b2:76:ca:d3:b6:9c:bb:fd:21:6f:2f: f9:6a:3d:cc:63:95:2c:29:66:89:8e:31:27:a4:dd: ba:85:2d:64:2d:53:1a:0b:ae:4e:64:22:f4:d9:3b: 1d:92:25:0b:c8:fd:ac:b5:9b:12:2e:98:2a:21:77: d1:df:42:68:56:29:87:d9:b3:38:87:26:a8:0a:7c: a2:96:c9:6c:04:e1:eb:02:ce:d4:4a:d0:91:d8:9f: 13:9b:19:1d:fd:c8:36:dc:5b:c0:5d:e0:a6:b3:26: fd:6f:21:e5:9f:12:90:ca:6b:fe:f0:eb:ff:2b:4a: 5f:b1:84:6e:e4:80:ae:80:ff:eb:73:ba:2e:c4:55: 32:c9:e4:89:5d:7c:2d:56:04:ea:5e:5a:a8:1d:ed: 55:0b:d1:e1:29:63:7e:bb:17:2f:02:41:14:d3:7d: d5:99:a2:66:97:90:98:8b:a7:98:9b:bf:69:77:5e: f1:63:f0:73:69:e9:8b:8e:6c:f2:78:f0:67:02:d8: 84:b9:92:cc:7e:de:30:a3:3e:a0:7e:23:a8:b7:27: 54:a0:02:15:e6:6c:d6:1f:bb:46:94:4c:33:d8:fb: fb:2d:59:f0:34:0e:b6:06:9b:ca:31:18:1f:6e:49: 5f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CD:E6:51:EB:E8:1A:75:6C:4A:52:FE:84:4D:90:D3:1D:9A:29:69 X509v3 Authority Key Identifier: keyid:95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.85.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:77:42:a9:29:3d:05:d1:18:66:b2:ca:4b:7e:60:54:fa:7c: 39:0f:a8:2c:6a:c4:91:39:e7:de:fb:1a:8f:0a:ca:30:64:03: 10:32:8d:91:8e:df:78:09:e5:72:b5:6c:a2:cb:6e:9d:ab:75: 3a:d9:09:3e:97:53:3d:7b:75:1a:2a:53:55:21:68:7a:c0:6c: 06:48:ff:6c:71:4d:3e:6c:a4:b7:3a:89:2b:de:1a:ff:87:2d: 49:26:4d:eb:15:2c:25:13:ba:55:2d:3c:f4:29:c2:35:81:81: 62:ce:9f:04:8f:15:87:0b:b9:7f:7d:88:79:a7:ed:54:e9:df: 76:04:a6:29:00:85:d5:b4:a5:71:2e:b7:c2:06:74:fb:1a:a0: 72:9f:f5:21:de:99:be:81:b5:7e:3d:c7:4e:ce:20:67:2e:74: df:78:0f:6c:d1:54:1e:d4:38:08:76:0f:a7:eb:f3:0b:ac:da: e4:17:3c:5a:02:46:ee:06:96:1c:bc:35:6b:12:be:76:f7:07: 93:fa:90:ec:be:75:3e:89:65:48:ef:aa:88:b7:84:6c:15:59: b4:64:74:ec:24:40:98:d8:d0:cf:dc:a2:28:29:a3:79:5b:e6: e1:60:23:b5:8b:bc:76:0a:02:ef:dc:e0:82:e5:dc:d8:0e:94: d0:59:eb:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZOdBuUGKMCu2pYuwR234es69EZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlE QTQ2QjNDODAeFw0yNDAyMDcwODU1MDFaFw0yNTAyMDUwOTAwMDFaMDMxMTAvBgNV BAMTKEQ4Q0RFNjUxRUJFODFBNzU2QzRBNTJGRTg0NEQ5MEQzMUQ5QTI5NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2onlDkUDHQW7OatuLHOjysc+y dsrTtpy7/SFvL/lqPcxjlSwpZomOMSek3bqFLWQtUxoLrk5kIvTZOx2SJQvI/ay1 mxIumCohd9HfQmhWKYfZsziHJqgKfKKWyWwE4esCztRK0JHYnxObGR39yDbcW8Bd 4KazJv1vIeWfEpDKa/7w6/8rSl+xhG7kgK6A/+tzui7EVTLJ5IldfC1WBOpeWqgd 7VUL0eEpY367Fy8CQRTTfdWZomaXkJiLp5ibv2l3XvFj8HNp6YuObPJ48GcC2IS5 ksx+3jCjPqB+I6i3J1SgAhXmbNYfu0aUTDPY+/stWfA0DrYGm8oxGB9uSV+HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2M3mUevoGnVsSlL+hE2Q0x2aKWkwHwYDVR0j BBgwFoAUlcO6fyO2NRch932oAgcx+dpGs8gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBlOWM5Zi1kNjA3LTQ0OTctYWYyOC00ZDJiOTA5MmQ1YTYvMC85NUMzQkE3RjIz QjYzNTE3MjFGNzdEQTgwMjA3MzFGOURBNDZCM0M4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlEQTQ2 QjNDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGU5YzlmLWQ2MDctNDQ5Ny1h ZjI4LTRkMmI5MDkyZDVhNi8wLzMxMzAzMzJlMzEzNDM4MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RVMA0GCSqG SIb3DQEBCwUAA4IBAQBsd0KpKT0F0RhmsspLfmBU+nw5D6gsasSROefe+xqPCsow ZAMQMo2Rjt94CeVytWyiy26dq3U62Qk+l1M9e3UaKlNVIWh6wGwGSP9scU0+bKS3 Ookr3hr/hy1JJk3rFSwlE7pVLTz0KcI1gYFizp8EjxWHC7l/fYh5p+1U6d92BKYp AIXVtKVxLrfCBnT7GqByn/Uh3pm+gbV+PcdOziBnLnTfeA9s0VQe1DgIdg+n6/ML rNrkFzxaAkbuBpYcvDVrEr529weT+pDsvnU+iWVI76qIt4RsFVm0ZHTsJECY2NDP 3KIoKaN5W+bhYCO1i7x2CgLv3OCC5dzYDpTQWesn -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org