$ rpki-client -vvf repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e34342e302f32332d3233203d3e20313332363639.roa File: 3130332e3131322e34342e302f32332d3233203d3e20313332363639.roa (raw, json) Hash identifier: p8Qazkng/9OAc1eJ32Pg7I3WcRfMTJQ6ZX4aq6BJF18= Subject key identifier: D4:70:8E:74:11:76:CB:E1:86:B0:CD:8E:68:48:F1:22:5C:F0:E9:ED Certificate issuer: /CN=0D0800F1516DA57BD9B9561FFA2A242AEB8F4853 Certificate serial: 53E2C38CF1F2A31FCDACEDF91D1BE91376A9B863 Authority key identifier: 0D:08:00:F1:51:6D:A5:7B:D9:B9:56:1F:FA:2A:24:2A:EB:8F:48:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e34342e302f32332d3233203d3e20313332363639.roa Signing time: Fri 23 Feb 2024 10:00:00 +0000 ROA not before: Fri 23 Feb 2024 09:55:00 +0000 ROA not after: Fri 21 Feb 2025 10:00:00 +0000 asID: 132669 IP address blocks: 103.112.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.crl rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e2:c3:8c:f1:f2:a3:1f:cd:ac:ed:f9:1d:1b:e9:13:76:a9:b8:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D0800F1516DA57BD9B9561FFA2A242AEB8F4853 Validity Not Before: Feb 23 09:55:00 2024 GMT Not After : Feb 21 10:00:00 2025 GMT Subject: CN=D4708E741176CBE186B0CD8E6848F1225CF0E9ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9e:22:b8:70:24:96:91:f8:7d:06:81:c6:2d: b5:a1:05:04:b1:af:f0:6e:e4:e3:c1:45:fc:38:0a: 43:de:bf:b8:31:70:6d:53:fa:01:fe:ee:fe:d5:4a: 64:31:bb:71:8b:e6:ed:3e:67:70:f9:9a:db:1f:e5: 6c:fd:5a:89:de:13:a8:43:72:f5:13:91:f8:86:99: b9:b1:78:8f:f7:b3:77:65:cf:bc:66:d2:51:8f:7f: 32:33:bb:54:b8:e2:9e:20:63:d3:20:d1:9e:90:3a: 65:8b:96:23:a4:5c:00:6f:5f:d9:0c:8e:9c:fc:59: 6c:1f:62:33:b0:2d:2d:de:58:a1:06:0e:63:86:90: 2d:ab:35:e5:4a:c2:9f:80:49:70:db:57:0d:f4:c3: 7b:e1:bf:b5:2f:e8:fb:5e:60:4a:dd:a4:e1:ad:32: 49:8d:dd:eb:1f:d9:d4:98:f2:f6:21:38:e1:84:66: 41:50:41:50:2a:40:04:32:de:a1:cb:91:79:22:f4: 8b:1b:6e:b4:93:2c:ca:90:89:a2:e6:51:34:0e:54: 43:f2:95:a4:6b:c2:44:cd:4d:1a:17:b4:a4:04:2a: 7c:80:af:e3:77:33:a9:8e:7f:1b:90:43:bc:8e:a8: c5:3d:a2:fd:b7:96:62:43:ea:ff:e9:b8:0a:64:a9: a5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:70:8E:74:11:76:CB:E1:86:B0:CD:8E:68:48:F1:22:5C:F0:E9:ED X509v3 Authority Key Identifier: keyid:0D:08:00:F1:51:6D:A5:7B:D9:B9:56:1F:FA:2A:24:2A:EB:8F:48:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e34342e302f32332d3233203d3e20313332363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.44.0/23 Signature Algorithm: sha256WithRSAEncryption 80:c6:ca:6d:a7:55:8a:87:e3:bd:39:12:ad:65:d7:42:f2:fa: 6d:b3:2c:ef:3b:e1:9e:51:11:00:22:9a:59:20:8d:9e:f3:f8: b7:b7:5d:2e:15:63:eb:7a:eb:d8:9d:1e:60:2f:f9:04:7c:31: 1b:4f:86:82:cf:94:59:d0:f0:01:2c:63:c9:e9:04:82:70:fa: a0:53:61:97:65:bb:3c:96:f7:b5:5e:d6:b5:0b:0b:83:1e:c5: 28:58:2b:fd:74:8e:f1:a2:70:f0:ed:81:8b:58:02:b9:ef:1e: 8e:be:ca:ed:60:d2:73:93:f3:6c:38:5f:d5:45:dd:b5:35:e1: 86:19:fd:9d:35:09:35:36:a7:dc:3b:53:57:7c:13:d4:28:95: 53:e8:fd:c1:d4:f0:a5:19:9b:68:66:36:e1:b9:6c:e2:c4:91: de:cb:d3:3d:29:fc:37:a0:41:77:98:db:e0:ea:db:d0:68:ae: 1d:7c:e7:13:30:0e:77:37:0c:97:38:86:c9:6b:e7:8d:44:24: 7a:ca:8f:ca:b3:c7:3f:7f:e9:a1:bc:69:2e:fa:d7:0c:0c:0f: f5:bf:74:3c:c1:7b:96:62:05:ea:22:85:cd:9b:84:73:1f:ca: 0c:33:84:0c:80:05:e8:dc:44:82:63:3c:34:4c:bd:90:88:91: 41:ed:86:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU+LDjPHyox/NrO35HRvpE3apuGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQwODAwRjE1MTZEQTU3QkQ5Qjk1NjFGRkEyQTI0MkFF QjhGNDg1MzAeFw0yNDAyMjMwOTU1MDBaFw0yNTAyMjExMDAwMDBaMDMxMTAvBgNV BAMTKEQ0NzA4RTc0MTE3NkNCRTE4NkIwQ0Q4RTY4NDhGMTIyNUNGMEU5RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxniK4cCSWkfh9BoHGLbWhBQSx r/Bu5OPBRfw4CkPev7gxcG1T+gH+7v7VSmQxu3GL5u0+Z3D5mtsf5Wz9WoneE6hD cvUTkfiGmbmxeI/3s3dlz7xm0lGPfzIzu1S44p4gY9Mg0Z6QOmWLliOkXABvX9kM jpz8WWwfYjOwLS3eWKEGDmOGkC2rNeVKwp+ASXDbVw30w3vhv7Uv6PteYErdpOGt MkmN3esf2dSY8vYhOOGEZkFQQVAqQAQy3qHLkXki9IsbbrSTLMqQiaLmUTQOVEPy laRrwkTNTRoXtKQEKnyAr+N3M6mOfxuQQ7yOqMU9ov23lmJD6v/puApkqaXNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1HCOdBF2y+GGsM2OaEjxIlzw6e0wHwYDVR0j BBgwFoAUDQgA8VFtpXvZuVYf+iokKuuPSFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDFiYzNlYy04NmI4LTRhZmItOGE4Zi1hMGE4NmE0YzI5YzYvMC8wRDA4MDBGMTUx NkRBNTdCRDlCOTU2MUZGQTJBMjQyQUVCOEY0ODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQwODAwRjE1MTZEQTU3QkQ5Qjk1NjFGRkEyQTI0MkFFQjhG NDg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MWJjM2VjLTg2YjgtNGFmYi04 YThmLWEwYTg2YTRjMjljNi8wLzMxMzAzMzJlMzEzMTMyMmUzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMyMzYzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3AsMA0GCSqG SIb3DQEBCwUAA4IBAQCAxsptp1WKh+O9ORKtZddC8vptsyzvO+GeUREAIppZII2e 8/i3t10uFWPreuvYnR5gL/kEfDEbT4aCz5RZ0PABLGPJ6QSCcPqgU2GXZbs8lve1 Xta1CwuDHsUoWCv9dI7xonDw7YGLWAK57x6OvsrtYNJzk/NsOF/VRd21NeGGGf2d NQk1NqfcO1NXfBPUKJVT6P3B1PClGZtoZjbhuWzixJHey9M9Kfw3oEF3mNvg6tvQ aK4dfOcTMA53NwyXOIbJa+eNRCR6yo/Ks8c/f+mhvGku+tcMDA/1v3Q8wXuWYgXq IoXNm4RzH8oMM4QMgAXo3ESCYzw0TL2QiJFB7YZV -----END CERTIFICATE-----Generated at Sun May 5 09:49:32 2024 by rpki-client on console-fra.rpki-client.org