$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa File: 3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa (raw, json) Hash identifier: ys+aNKQy1406fl/m5MqOCQ8h1kmHb1FDepWRkADpJcg= Subject key identifier: 2B:87:BC:3C:37:A8:6B:89:76:2D:CE:09:EC:35:87:A4:1B:AC:D8:E2 Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 5714A3B7AA2AE6ECF32B10C8F15C69C9A2BB32BD Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa Signing time: Mon 31 Jul 2023 00:07:28 +0000 ROA not before: Mon 31 Jul 2023 00:02:28 +0000 ROA not after: Mon 29 Jul 2024 00:07:28 +0000 asID: 6939 IP address blocks: 103.120.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 10:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:14:a3:b7:aa:2a:e6:ec:f3:2b:10:c8:f1:5c:69:c9:a2:bb:32:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Jul 31 00:02:28 2023 GMT Not After : Jul 29 00:07:28 2024 GMT Subject: CN=2B87BC3C37A86B89762DCE09EC3587A41BACD8E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ba:fa:65:cf:cc:eb:5e:18:cb:8a:42:51:6a: 52:fe:14:4b:98:fa:3c:05:5a:b3:61:ab:8e:44:da: dc:53:31:36:fa:a9:2d:64:36:6c:9f:bb:f3:0f:d1: db:c5:6a:b9:f0:0a:da:f7:56:b8:9e:a0:0e:6d:05: 94:14:09:03:33:ff:9c:67:ea:fb:d1:d7:38:17:ae: 15:ee:62:ac:bc:a1:04:f7:b3:ce:7b:df:8d:3e:18: 21:32:f8:32:04:5c:d3:4e:d8:dd:34:83:52:56:b3: 8a:57:c4:33:60:26:fb:02:a1:cf:93:a4:dd:d0:ec: a7:db:c9:41:9b:9e:68:32:40:ff:77:54:b6:9f:ac: b0:51:c2:b6:79:c6:ad:35:f2:86:60:19:55:b2:35: d4:fa:3f:ab:c4:0e:6b:c4:1e:f4:c1:42:55:55:c4: 43:9b:81:e4:d3:a9:82:10:35:82:a2:11:da:3e:33: 5a:a3:77:b3:20:68:95:8c:4b:e8:45:a0:00:dc:9f: b6:25:0e:d3:fb:4b:60:c0:be:6f:8d:03:22:2a:a0: 91:56:56:a6:f3:a8:ed:44:4c:85:e7:d6:9e:ce:2a: 33:cc:b3:6e:1a:19:c3:a5:6a:4e:de:2a:de:60:d3: 4f:61:be:9b:01:56:80:ce:0d:02:6b:72:9a:63:fb: c3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:87:BC:3C:37:A8:6B:89:76:2D:CE:09:EC:35:87:A4:1B:AC:D8:E2 X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.207.0/24 Signature Algorithm: sha256WithRSAEncryption 76:02:3e:a8:6b:63:79:92:b3:51:69:c3:d2:76:15:02:b7:9b: b1:c8:64:42:0e:ef:fc:61:24:93:b6:3c:8d:50:aa:aa:22:b5: 20:1a:6b:9b:5c:cf:cc:46:eb:e3:44:9a:3c:bf:fb:e8:dd:57: 44:fc:c2:9a:cd:cf:25:12:09:f5:fd:8c:ca:f0:03:70:4b:d4: 92:cf:f1:d9:7c:03:6b:7e:73:36:44:72:53:58:91:f8:3f:47: b7:db:9e:ec:4b:6c:c4:ab:8f:11:e0:b9:73:08:fa:22:f8:f7: 54:cd:c4:4c:38:9b:a5:30:f8:87:29:2f:d7:95:cf:82:df:95: 69:b0:7d:81:c7:dc:25:67:47:df:78:83:ea:04:52:2a:84:c5: 45:ac:98:aa:04:d7:39:80:71:3a:0c:90:79:56:df:45:ff:f1: 98:87:f2:c6:12:9a:72:e9:f5:e4:7a:94:ec:b9:3c:25:be:7c: da:98:02:af:c5:d0:91:20:7c:d3:2b:2b:66:ac:4c:30:1c:3e: 32:16:1b:2b:59:b5:8c:9b:70:2b:ee:4c:e1:e0:18:7d:c8:58: f8:9e:3c:bf:1d:93:83:44:5a:be:43:bd:ad:1e:a2:e3:85:40: 48:50:a1:71:12:58:8e:16:48:64:35:c4:bb:56:ac:1d:d1:1b: 08:5c:8c:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVxSjt6oq5uzzKxDI8VxpyaK7Mr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yMzA3MzEwMDAyMjhaFw0yNDA3MjkwMDA3MjhaMDMxMTAvBgNV BAMTKDJCODdCQzNDMzdBODZCODk3NjJEQ0UwOUVDMzU4N0E0MUJBQ0Q4RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDuvplz8zrXhjLikJRalL+FEuY +jwFWrNhq45E2txTMTb6qS1kNmyfu/MP0dvFarnwCtr3VrieoA5tBZQUCQMz/5xn 6vvR1zgXrhXuYqy8oQT3s857340+GCEy+DIEXNNO2N00g1JWs4pXxDNgJvsCoc+T pN3Q7KfbyUGbnmgyQP93VLafrLBRwrZ5xq018oZgGVWyNdT6P6vEDmvEHvTBQlVV xEObgeTTqYIQNYKiEdo+M1qjd7MgaJWMS+hFoADcn7YlDtP7S2DAvm+NAyIqoJFW VqbzqO1ETIXn1p7OKjPMs24aGcOlak7eKt5g009hvpsBVoDODQJrcppj+8MhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK4e8PDeoa4l2Lc4J7DWHpBus2OIwHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM5MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd4zzANBgkqhkiG 9w0BAQsFAAOCAQEAdgI+qGtjeZKzUWnD0nYVArebschkQg7v/GEkk7Y8jVCqqiK1 IBprm1zPzEbr40SaPL/76N1XRPzCms3PJRIJ9f2MyvADcEvUks/x2XwDa35zNkRy U1iR+D9Ht9ue7EtsxKuPEeC5cwj6Ivj3VM3ETDibpTD4hykv15XPgt+VabB9gcfc JWdH33iD6gRSKoTFRayYqgTXOYBxOgyQeVbfRf/xmIfyxhKacun15HqU7Lk8Jb58 2pgCr8XQkSB80ysrZqxMMBw+MhYbK1m1jJtwK+5M4eAYfchY+J48vx2Tg0RavkO9 rR6i44VASFChcRJYjhZIZDXEu1asHdEbCFyM4g== -----END CERTIFICATE-----Generated at Sat Apr 20 05:14:18 2024 by rpki-client on console-fra.rpki-client.org