$ rpki-client -vvf repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa File: 3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 6RwsHpVuEBgiayot6DjxhqJmSM+51wxV4ZO9EM2lzF8= Subject key identifier: 00:2B:EE:3B:9A:A2:BF:66:7C:EB:BC:30:86:89:55:B6:02:F3:23:FD Certificate issuer: /CN=22825A0BEE926683AC41A0486AEF55AF8C1C228F Certificate serial: 4F01D0A8E0BEB1BB0EDDA8BBC55EFFB1CCF990F4 Authority key identifier: 22:82:5A:0B:EE:92:66:83:AC:41:A0:48:6A:EF:55:AF:8C:1C:22:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa Signing time: Fri 20 Oct 2023 10:04:01 +0000 ROA not before: Fri 20 Oct 2023 09:59:01 +0000 ROA not after: Fri 18 Oct 2024 10:04:01 +0000 asID: 131745 IP address blocks: 103.139.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.crl rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:01:d0:a8:e0:be:b1:bb:0e:dd:a8:bb:c5:5e:ff:b1:cc:f9:90:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22825A0BEE926683AC41A0486AEF55AF8C1C228F Validity Not Before: Oct 20 09:59:01 2023 GMT Not After : Oct 18 10:04:01 2024 GMT Subject: CN=002BEE3B9AA2BF667CEBBC30868955B602F323FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d7:1d:aa:cf:fd:e2:9d:fa:1a:86:58:71:df: 5d:a1:59:db:39:79:56:08:c9:91:be:83:1a:ed:9f: 3d:4d:db:d0:58:cd:cf:ce:04:44:dd:f9:b9:08:39: 0f:79:60:25:04:0b:d7:fd:3f:49:bd:f7:0d:7f:16: a6:f7:84:80:0b:77:f3:66:9b:ab:a4:f4:be:30:24: 1f:3b:6d:3e:a6:38:0b:e4:73:4b:4d:62:11:ba:4a: a1:b0:97:d9:c7:46:b5:66:90:5d:c6:c1:33:3e:cb: a0:99:93:a9:4a:57:e2:e7:eb:6b:6f:25:28:df:a1: 4e:c5:2b:e4:68:db:f2:f6:f4:a8:73:45:24:35:93: 5d:d2:d4:2d:e8:f6:f0:6c:62:be:49:3f:07:4d:5c: 9b:b4:ca:86:02:33:57:8b:bd:d8:d6:35:c3:e9:00: 30:fc:52:83:e2:d6:cf:da:53:59:fb:8b:5c:5a:81: ab:2c:7a:9b:d6:d3:e1:1e:2d:ae:69:9e:53:53:86: 5b:7e:d3:2e:f2:c4:83:38:3c:02:c4:82:a0:83:5c: 48:d7:49:28:3a:8a:d1:dc:06:f5:4e:7c:bc:57:f9: 4a:3d:e8:09:7e:64:1b:ab:b5:8f:0e:19:cb:bb:de: f8:6a:63:ae:8f:1e:34:b9:0f:c8:89:25:7f:69:2c: 39:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2B:EE:3B:9A:A2:BF:66:7C:EB:BC:30:86:89:55:B6:02:F3:23:FD X509v3 Authority Key Identifier: keyid:22:82:5A:0B:EE:92:66:83:AC:41:A0:48:6A:EF:55:AF:8C:1C:22:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.175.0/24 Signature Algorithm: sha256WithRSAEncryption 98:5b:40:50:11:9d:01:fc:e0:c3:36:46:e1:7d:03:b5:d7:57: 16:1b:7e:56:e9:00:9b:6c:f8:8d:c4:fc:b1:ba:25:96:f1:38: e1:a7:b9:a9:00:72:87:98:64:0d:c5:51:a8:3f:0e:fa:68:06: 94:1a:db:0f:4e:f2:7f:4e:38:1b:0b:17:9e:99:77:bc:e9:3a: 86:65:37:10:ea:48:4f:88:ae:21:e9:09:1d:ba:69:82:7a:ba: 8d:ae:4b:5a:fb:93:34:63:0e:99:66:0d:d0:18:45:a4:ee:e1: 66:11:8e:1f:f9:5b:24:37:5e:a7:73:9d:8f:e4:eb:23:2d:71: fe:6e:82:23:d9:62:14:3c:87:db:a8:90:34:f3:b6:3f:ca:d9: 0b:12:a7:4f:09:8e:ab:3d:22:d0:05:41:43:fb:fb:4d:71:71: ab:5e:80:af:ac:45:56:18:e1:24:9e:6c:b6:b3:e3:c3:1a:38: a7:fa:5b:5e:37:b3:68:6c:f7:ce:73:cc:61:23:a8:69:2a:1c: d0:72:c2:92:28:eb:82:35:42:a8:0d:6b:1e:f7:27:93:7e:12: 3a:a1:89:0b:46:17:18:ba:25:44:ad:4a:57:ea:8a:2d:6e:13: 7e:b6:fb:49:c9:b1:f8:e0:05:46:8c:f0:9f:b2:42:60:e9:63: 7e:8c:84:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTwHQqOC+sbsO3ai7xV7/scz5kPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4MjVBMEJFRTkyNjY4M0FDNDFBMDQ4NkFFRjU1QUY4 QzFDMjI4RjAeFw0yMzEwMjAwOTU5MDFaFw0yNDEwMTgxMDA0MDFaMDMxMTAvBgNV BAMTKDAwMkJFRTNCOUFBMkJGNjY3Q0VCQkMzMDg2ODk1NUI2MDJGMzIzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01x2qz/3infoahlhx312hWds5 eVYIyZG+gxrtnz1N29BYzc/OBETd+bkIOQ95YCUEC9f9P0m99w1/Fqb3hIALd/Nm m6uk9L4wJB87bT6mOAvkc0tNYhG6SqGwl9nHRrVmkF3GwTM+y6CZk6lKV+Ln62tv JSjfoU7FK+Ro2/L29KhzRSQ1k13S1C3o9vBsYr5JPwdNXJu0yoYCM1eLvdjWNcPp ADD8UoPi1s/aU1n7i1xagassepvW0+EeLa5pnlNThlt+0y7yxIM4PALEgqCDXEjX SSg6itHcBvVOfLxX+Uo96Al+ZBurtY8OGcu73vhqY66PHjS5D8iJJX9pLDlTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUACvuO5qiv2Z867wwholVtgLzI/0wHwYDVR0j BBgwFoAUIoJaC+6SZoOsQaBIau9Vr4wcIo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OTAwMjA4Yi0zMmFjLTRhMjYtOWQ5Mi02MDlhZDc2MTgzYzEvMC8yMjgyNUEwQkVF OTI2NjgzQUM0MUEwNDg2QUVGNTVBRjhDMUMyMjhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4MjVBMEJFRTkyNjY4M0FDNDFBMDQ4NkFFRjU1QUY4QzFD MjI4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5MDAyMDhiLTMyYWMtNGEyNi05 ZDkyLTYwOWFkNzYxODNjMS8wLzMxMzAzMzJlMzEzMzM5MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni68wDQYJ KoZIhvcNAQELBQADggEBAJhbQFARnQH84MM2RuF9A7XXVxYbflbpAJts+I3E/LG6 JZbxOOGnuakAcoeYZA3FUag/DvpoBpQa2w9O8n9OOBsLF56Zd7zpOoZlNxDqSE+I riHpCR26aYJ6uo2uS1r7kzRjDplmDdAYRaTu4WYRjh/5WyQ3XqdznY/k6yMtcf5u giPZYhQ8h9uokDTztj/K2QsSp08Jjqs9ItAFQUP7+01xcategK+sRVYY4SSebLaz 48MaOKf6W143s2hs985zzGEjqGkqHNBywpIo64I1QqgNax73J5N+EjqhiQtGFxi6 JUStSlfqii1uE362+0nJsfjgBUaM8J+yQmDpY36MhIQ= -----END CERTIFICATE-----Generated at Tue May 7 15:12:12 2024 by rpki-client on console-fra.rpki-client.org