$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/3130332e3135312e3232322e302f32332d3234203d3e20313430343233.roa File: 3130332e3135312e3232322e302f32332d3234203d3e20313430343233.roa (raw, json) Hash identifier: lgY5+zmQeYvb7nq88JDWMKE8slrQXKpA4uLqrEsbxO4= Subject key identifier: FF:25:E0:C8:F7:CF:A1:6B:29:99:DD:87:D9:B6:44:4C:9E:F5:01:61 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 01E7E42CAC5ECFA6DB9A28F5AD419F3819C3F3D9 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/3130332e3135312e3232322e302f32332d3234203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 103.151.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e7:e4:2c:ac:5e:cf:a6:db:9a:28:f5:ad:41:9f:38:19:c3:f3:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=FF25E0C8F7CFA16B2999DD87D9B6444C9EF50161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0d:f5:b9:86:17:21:db:99:27:a7:49:8d:3c: 76:df:83:26:9e:45:5a:93:23:a2:8f:fd:56:a5:98: 26:73:7e:15:5d:ee:8a:89:0d:cf:47:5f:cc:23:81: 38:b7:58:7e:94:49:35:b0:a7:16:fa:bd:4a:16:0e: c1:86:02:c2:4f:14:31:d9:24:1a:f3:98:e6:4d:6e: bd:d8:1f:8f:ea:11:31:37:19:ba:ce:03:a5:97:b0: 09:b1:6b:2f:91:71:40:9b:7f:ed:23:93:31:e6:7a: f9:c5:05:0e:ef:b0:47:01:b9:93:7e:17:25:75:89: 75:dc:a5:c7:b4:13:70:21:a9:64:d8:38:56:6f:97: b2:41:8d:d9:9d:08:d8:4d:a6:16:ad:5e:ce:ad:ee: 8b:43:34:80:7e:9b:c3:72:76:eb:49:cf:03:a2:7c: 72:2d:c4:09:9b:86:ec:60:3f:bf:f0:19:97:34:cf: 62:63:b4:1f:3e:93:3e:60:0b:43:04:a8:a4:97:0e: a8:2e:5a:37:87:26:be:aa:23:c8:81:15:f3:13:e5: 75:d2:96:e0:5b:1a:54:2f:1d:e1:5a:03:db:09:fb: 3e:63:b6:16:6a:71:45:fc:2b:49:da:44:79:ce:86: 1f:d1:c0:28:65:f8:73:73:48:3c:e6:f1:41:f4:aa: f8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:25:E0:C8:F7:CF:A1:6B:29:99:DD:87:D9:B6:44:4C:9E:F5:01:61 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/3130332e3135312e3232322e302f32332d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.222.0/23 Signature Algorithm: sha256WithRSAEncryption 36:8f:61:cc:78:d6:ab:44:37:1c:f5:fe:87:69:3d:08:2b:e2: 9e:66:55:18:57:58:1d:2f:8b:3c:d1:66:77:d3:5a:58:e5:2b: a2:49:fe:3c:03:8e:bc:f1:39:40:23:6a:3f:4c:5b:d6:d9:5e: 01:0c:96:2d:98:88:04:bf:fc:f3:eb:2f:15:80:e0:a8:d8:76: 5c:a4:51:40:f9:50:c3:32:85:d0:d8:d5:c1:c4:46:20:e8:3e: 1c:c1:fd:ab:29:b8:af:1c:0b:28:16:64:f8:0b:74:0d:43:18: 72:0d:ec:e5:f3:3c:c2:0a:76:29:87:79:b0:bf:d9:53:d4:fb: fb:4d:37:0d:b4:aa:42:77:e2:e8:86:bb:27:4e:af:1b:e8:59: 2c:65:21:ab:73:7b:50:24:bc:33:f6:02:28:a4:5e:89:b5:e5: be:d1:6b:f6:ae:e8:86:49:33:d2:55:3d:16:f3:57:dd:cb:2f: c5:c6:6f:bd:31:1c:da:7e:2c:51:4e:92:e8:63:49:8f:13:b4: 28:29:85:68:e3:d4:ca:ba:f5:8a:a6:50:76:53:7d:0e:87:c2: 4b:90:38:7e:08:b1:54:e1:04:f9:20:ce:36:57:61:93:18:9b: 82:8f:93:04:ae:89:b2:99:e9:8c:56:8d:52:86:39:ef:c7:04: 84:9d:ba:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAefkLKxez6bbmij1rUGfOBnD89kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKEZGMjVFMEM4RjdDRkExNkIyOTk5REQ4N0Q5QjY0NDRDOUVGNTAxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiDfW5hhch25knp0mNPHbfgyae RVqTI6KP/ValmCZzfhVd7oqJDc9HX8wjgTi3WH6USTWwpxb6vUoWDsGGAsJPFDHZ JBrzmOZNbr3YH4/qETE3GbrOA6WXsAmxay+RcUCbf+0jkzHmevnFBQ7vsEcBuZN+ FyV1iXXcpce0E3AhqWTYOFZvl7JBjdmdCNhNphatXs6t7otDNIB+m8NydutJzwOi fHItxAmbhuxgP7/wGZc0z2JjtB8+kz5gC0MEqKSXDqguWjeHJr6qI8iBFfMT5XXS luBbGlQvHeFaA9sJ+z5jthZqcUX8K0naRHnOhh/RwChl+HNzSDzm8UH0qvhTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/yXgyPfPoWspmd2H2bZETJ71AWEwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnl94wDQYJ KoZIhvcNAQELBQADggEBADaPYcx41qtENxz1/odpPQgr4p5mVRhXWB0vizzRZnfT WljlK6JJ/jwDjrzxOUAjaj9MW9bZXgEMli2YiAS//PPrLxWA4KjYdlykUUD5UMMy hdDY1cHERiDoPhzB/aspuK8cCygWZPgLdA1DGHIN7OXzPMIKdimHebC/2VPU+/tN Nw20qkJ34uiGuydOrxvoWSxlIatze1AkvDP2AiikXom15b7Ra/au6IZJM9JVPRbz V93LL8XGb70xHNp+LFFOkuhjSY8TtCgphWjj1Mq69YqmUHZTfQ6HwkuQOH4IsVTh BPkgzjZXYZMYm4KPkwSuibKZ6YxWjVKGOe/HBISdumo= -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org