$ rpki-client -vvf repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa File: 3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa (raw, json) Hash identifier: uQ/iiWtxQYDUG0IcnJMiNj9n9sU3K4xrTV6KscNrnZA= Subject key identifier: 8E:2C:AF:F4:C0:FE:F3:5F:1E:8A:A3:F2:B3:C6:B7:9E:90:94:C1:06 Certificate issuer: /CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Certificate serial: 4B78A822685C61DBE0F64A071420CAC4C69C7258 Authority key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa Signing time: Sat 28 Oct 2023 10:00:02 +0000 ROA not before: Sat 28 Oct 2023 09:55:02 +0000 ROA not after: Sat 26 Oct 2024 10:00:02 +0000 asID: 140392 IP address blocks: 103.150.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:78:a8:22:68:5c:61:db:e0:f6:4a:07:14:20:ca:c4:c6:9c:72:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Validity Not Before: Oct 28 09:55:02 2023 GMT Not After : Oct 26 10:00:02 2024 GMT Subject: CN=8E2CAFF4C0FEF35F1E8AA3F2B3C6B79E9094C106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:28:32:bc:42:78:5b:b2:c1:12:43:63:0c: 72:2b:e9:d6:40:b4:fd:04:48:da:fa:3c:82:9c:93: 6d:91:d3:0c:7d:8b:f9:91:cb:75:74:82:c1:b6:bb: 23:80:b0:63:f7:af:54:8d:aa:fd:11:54:fe:76:0a: b8:18:30:62:79:d3:04:00:55:a6:98:b8:9f:c8:4b: d5:ee:40:89:1e:d5:38:5c:18:79:29:a0:94:cf:a6: b8:a4:c6:c0:13:ac:34:38:b7:d9:12:73:ce:85:d4: 5e:1a:ca:c0:41:ae:8e:b0:31:c2:5d:86:c7:37:3a: 9a:59:67:fa:ff:d8:2a:03:a3:bf:c5:1d:5f:f2:0f: d8:f1:8c:bb:ff:77:18:24:89:f5:b0:23:7d:79:c2: 12:40:46:b2:09:a7:dd:78:47:49:20:01:4f:20:2b: 7c:4b:fe:5f:84:f0:68:0b:b1:e0:96:f2:27:bd:4a: b6:e9:2b:14:7f:70:60:78:c8:0f:6c:5a:1a:dc:a4: c5:10:51:8e:3f:23:ee:0c:bc:41:1e:f5:03:ea:9b: b0:ac:6c:e3:c9:e9:21:0a:fa:08:48:20:80:30:a5: 2e:66:41:df:22:4e:f3:a1:a0:fb:2b:39:83:9b:35: be:ee:ec:a7:07:9d:e2:32:f0:ca:49:f9:05:d1:11: af:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2C:AF:F4:C0:FE:F3:5F:1E:8A:A3:F2:B3:C6:B7:9E:90:94:C1:06 X509v3 Authority Key Identifier: keyid:8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 Signature Algorithm: sha256WithRSAEncryption 41:04:2f:17:65:d6:2c:37:db:f8:21:fc:22:8d:36:e3:ef:b1: 08:a2:21:54:3f:90:3e:26:24:3d:ac:c4:52:b7:87:50:17:2f: 1c:ce:d7:76:8c:52:0e:57:85:d3:cf:c3:12:73:89:e2:3a:3b: 75:f0:c1:21:5b:7b:e1:bd:1c:8e:73:8a:a2:45:64:a1:c4:af: 54:ca:32:6f:5f:42:81:e0:2c:d8:fc:dc:6a:e1:93:fc:8f:3d: fa:32:ba:d7:0b:28:24:9c:5e:5d:d2:b2:5b:60:3e:9a:90:b5: 2a:45:4c:a0:8e:92:5f:f3:31:32:86:7c:b7:f8:47:4f:1a:f6: 46:72:c6:5a:aa:d0:4b:8f:b0:9e:fd:c2:a3:9d:63:8e:91:a8: ff:37:bc:76:e0:ed:a0:84:d9:da:7d:6b:ca:7c:a3:ce:20:96: a4:f7:04:58:d7:4a:51:d6:2b:f0:59:c7:e1:4b:4f:1b:23:c8: 40:26:97:49:86:16:bb:ed:ec:c8:93:e0:1e:b4:4f:f1:a2:af: c0:01:5c:d4:d7:5e:94:dd:5b:34:f9:cd:19:2e:12:21:3e:5f: 41:d7:13:3a:67:79:dc:f8:d3:10:18:3f:46:a3:8d:ce:dc:d4: e9:da:a7:5d:2c:78:72:90:b0:38:29:8d:1c:04:14:5b:40:0c: 9e:d9:0f:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS3ioImhcYdvg9koHFCDKxMacclgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQy MzhCNjc3OTAeFw0yMzEwMjgwOTU1MDJaFw0yNDEwMjYxMDAwMDJaMDMxMTAvBgNV BAMTKDhFMkNBRkY0QzBGRUYzNUYxRThBQTNGMkIzQzZCNzlFOTA5NEMxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBCgyvEJ4W7LBEkNjDHIr6dZA tP0ESNr6PIKck22R0wx9i/mRy3V0gsG2uyOAsGP3r1SNqv0RVP52CrgYMGJ50wQA VaaYuJ/IS9XuQIke1ThcGHkpoJTPprikxsATrDQ4t9kSc86F1F4aysBBro6wMcJd hsc3OppZZ/r/2CoDo7/FHV/yD9jxjLv/dxgkifWwI315whJARrIJp914R0kgAU8g K3xL/l+E8GgLseCW8ie9SrbpKxR/cGB4yA9sWhrcpMUQUY4/I+4MvEEe9QPqm7Cs bOPJ6SEK+ghIIIAwpS5mQd8iTvOhoPsrOYObNb7u7KcHneIy8MpJ+QXREa8zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjiyv9MD+818eiqPys8a3npCUwQYwHwYDVR0j BBgwFoAUj1iJOxzh24VV177LY940LSOLZ3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMC84RjU4ODkzQjFD RTFEQjg1NTVEN0JFQ0I2M0RFMzQyRDIzOEI2Nzc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQyMzhC Njc3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZiLTUzY2YtNGIwOC1i NWY3LTJiOTBkZTIxZmU5NC8wLzMxMzAzMzJlMzEzNTMwMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMzM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlpQwDQYJ KoZIhvcNAQELBQADggEBAEEELxdl1iw32/gh/CKNNuPvsQiiIVQ/kD4mJD2sxFK3 h1AXLxzO13aMUg5XhdPPwxJzieI6O3XwwSFbe+G9HI5ziqJFZKHEr1TKMm9fQoHg LNj83Grhk/yPPfoyutcLKCScXl3SsltgPpqQtSpFTKCOkl/zMTKGfLf4R08a9kZy xlqq0EuPsJ79wqOdY46RqP83vHbg7aCE2dp9a8p8o84glqT3BFjXSlHWK/BZx+FL TxsjyEAml0mGFrvt7MiT4B60T/Gir8ABXNTXXpTdWzT5zRkuEiE+X0HXEzpnedz4 0xAYP0ajjc7c1Onap10seHKQsDgpjRwEFFtADJ7ZD3s= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org