$ rpki-client -vvf repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138382e302f32342d3234203d3e20313430333939.roa File: 3130332e3134362e3138382e302f32342d3234203d3e20313430333939.roa (raw, json) Hash identifier: CFC3rpVxUlvq0GQeOIC7rQk8cydEZgGv7z/38TVxe6I= Subject key identifier: 08:A9:AD:B7:F9:95:DC:E7:9A:6A:2B:D3:8A:75:FF:5F:8C:C9:AD:08 Certificate issuer: /CN=C005531488F38475CA53CB4A7ABCEC0C32F75962 Certificate serial: 3D1C3F356F8927BDF0069EA74724CF9ABDA51449 Authority key identifier: C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138382e302f32342d3234203d3e20313430333939.roa Signing time: Mon 31 Jul 2023 00:07:24 +0000 ROA not before: Mon 31 Jul 2023 00:02:24 +0000 ROA not after: Mon 29 Jul 2024 00:07:24 +0000 asID: 140399 IP address blocks: 103.146.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.crl rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 14:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1c:3f:35:6f:89:27:bd:f0:06:9e:a7:47:24:cf:9a:bd:a5:14:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C005531488F38475CA53CB4A7ABCEC0C32F75962 Validity Not Before: Jul 31 00:02:24 2023 GMT Not After : Jul 29 00:07:24 2024 GMT Subject: CN=08A9ADB7F995DCE79A6A2BD38A75FF5F8CC9AD08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:dc:ec:9e:b9:e8:02:a7:ba:cf:02:68:40:66: 7a:12:5c:36:a2:f8:fb:57:af:1e:a8:01:4f:db:8b: ad:51:88:ce:51:0d:e4:7b:2d:24:e6:04:e9:f6:1b: f1:cf:a0:69:a0:de:2f:25:b3:3d:f2:a7:94:23:f7: 27:c9:e6:9d:e4:dd:4d:b7:d7:5c:56:7b:54:f4:b9: d9:50:c6:60:a5:87:82:c9:14:cc:0d:01:ae:79:ac: 1d:9a:28:46:f5:82:2e:c8:ee:44:54:72:ca:a5:b7: aa:62:65:70:bc:85:ee:b5:cf:34:53:97:b7:c1:85: ce:41:a0:72:37:43:8e:85:57:fc:5b:9b:41:75:dc: 3b:ba:8e:a2:d8:22:f1:51:35:e9:57:0c:43:c3:53: c9:c5:12:98:a7:69:30:0a:b4:14:60:6c:e3:5a:4d: 62:de:cf:ee:5a:87:ba:fb:b0:81:40:09:8b:2f:0c: 59:40:95:43:cf:8f:6e:18:e7:9e:1e:4f:36:0d:e3: e1:dd:96:e7:34:88:9a:b0:1b:69:48:1a:28:f2:fc: 51:01:7d:86:d5:48:61:c8:94:a5:77:8b:4f:e3:d0: 5b:70:c4:d6:c9:97:6b:94:10:81:a3:6f:79:c7:14: fa:3b:0a:0c:c8:9f:ca:2b:2a:a9:22:4f:7e:1c:21: d3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A9:AD:B7:F9:95:DC:E7:9A:6A:2B:D3:8A:75:FF:5F:8C:C9:AD:08 X509v3 Authority Key Identifier: keyid:C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138382e302f32342d3234203d3e20313430333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.188.0/24 Signature Algorithm: sha256WithRSAEncryption 92:b4:86:aa:23:2e:87:d8:f3:49:16:e4:3f:0a:2e:24:60:98: 46:11:d2:c5:b5:4b:93:9a:67:a6:25:e9:dc:92:92:c0:ec:1d: ab:48:21:07:d8:60:5e:79:a5:37:16:8d:a6:c0:53:3a:33:70: f3:0f:88:fb:17:d9:ce:d6:84:f6:32:51:c8:a4:8b:d8:81:17: 7f:c1:4a:84:61:64:74:f4:36:46:1c:51:59:e7:d2:ee:96:13: 23:b6:da:80:ab:3e:85:b4:a6:82:97:b2:88:8d:81:f6:81:5a: f8:52:bf:2d:d5:60:45:17:7b:6b:9a:15:b8:9c:9c:1e:6f:f9: 18:31:26:3f:00:d6:94:cd:5c:5d:f4:94:92:cd:62:2a:20:ee: 8b:59:73:7b:1f:2b:45:3e:a7:9d:23:1d:5f:64:6d:31:ec:d3: 7f:13:db:41:87:79:5e:4e:39:80:31:a5:5e:9a:5c:e9:eb:b3: 92:f6:2f:a4:08:10:04:f8:3b:73:a8:10:b9:dd:8e:d0:ca:bb: 04:05:75:9d:26:bd:79:6f:58:65:84:63:2b:56:0b:0c:f1:df: f8:b9:23:9b:f5:d5:ba:52:6a:fa:b4:59:1a:b4:a5:84:5b:19: 96:d0:2d:1c:f2:0c:65:b7:10:e7:66:fd:90:5c:bc:ae:10:d4: d8:f8:79:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPRw/NW+JJ73wBp6nRyTPmr2lFEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwNTUzMTQ4OEYzODQ3NUNBNTNDQjRBN0FCQ0VDMEMz MkY3NTk2MjAeFw0yMzA3MzEwMDAyMjRaFw0yNDA3MjkwMDA3MjRaMDMxMTAvBgNV BAMTKDA4QTlBREI3Rjk5NURDRTc5QTZBMkJEMzhBNzVGRjVGOENDOUFEMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW3OyeuegCp7rPAmhAZnoSXDai +PtXrx6oAU/bi61RiM5RDeR7LSTmBOn2G/HPoGmg3i8lsz3yp5Qj9yfJ5p3k3U23 11xWe1T0udlQxmClh4LJFMwNAa55rB2aKEb1gi7I7kRUcsqlt6piZXC8he61zzRT l7fBhc5BoHI3Q46FV/xbm0F13Du6jqLYIvFRNelXDEPDU8nFEpinaTAKtBRgbONa TWLez+5ah7r7sIFACYsvDFlAlUPPj24Y554eTzYN4+Hdluc0iJqwG2lIGijy/FEB fYbVSGHIlKV3i0/j0FtwxNbJl2uUEIGjb3nHFPo7CgzIn8orKqkiT34cIdOTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCKmtt/mV3OeaaivTinX/X4zJrQgwHwYDVR0j BBgwFoAUwAVTFIjzhHXKU8tKerzsDDL3WWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDY0Y2JlZS1jNTEzLTQ2YzYtYTFkMC0zZWMwMWQ3YTY2MjYvMC9DMDA1NTMxNDg4 RjM4NDc1Q0E1M0NCNEE3QUJDRUMwQzMyRjc1OTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwNTUzMTQ4OEYzODQ3NUNBNTNDQjRBN0FCQ0VDMEMzMkY3 NTk2Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NjRjYmVlLWM1MTMtNDZjNi1h MWQwLTNlYzAxZDdhNjYyNi8wLzMxMzAzMzJlMzEzNDM2MmUzMTM4MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkrwwDQYJ KoZIhvcNAQELBQADggEBAJK0hqojLofY80kW5D8KLiRgmEYR0sW1S5OaZ6Yl6dyS ksDsHatIIQfYYF55pTcWjabAUzozcPMPiPsX2c7WhPYyUciki9iBF3/BSoRhZHT0 NkYcUVnn0u6WEyO22oCrPoW0poKXsoiNgfaBWvhSvy3VYEUXe2uaFbicnB5v+Rgx Jj8A1pTNXF30lJLNYiog7otZc3sfK0U+p50jHV9kbTHs038T20GHeV5OOYAxpV6a XOnrs5L2L6QIEAT4O3OoELndjtDKuwQFdZ0mvXlvWGWEYytWCwzx3/i5I5v11bpS avq0WRq0pYRbGZbQLRzyDGW3EOdm/ZBcvK4Q1Nj4eUM= -----END CERTIFICATE-----Generated at Wed Apr 17 13:26:16 2024 by rpki-client on console-fra.rpki-client.org