$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa File: 3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: g8KCuVRfHdqyspEfvj+TwM3mZ5KdXINhnD/ntPINyr0= Subject key identifier: F9:3C:4E:2E:19:B9:A2:F8:FA:E1:27:52:FF:B7:2B:A1:0F:EB:31:7F Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4E9F7257CA0C8BCFFA784705DB437D2A719215C9 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa Signing time: Mon 31 Jul 2023 00:03:43 +0000 ROA not before: Sun 30 Jul 2023 23:58:43 +0000 ROA not after: Mon 29 Jul 2024 00:03:43 +0000 asID: 139949 IP address blocks: 103.147.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 04:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:9f:72:57:ca:0c:8b:cf:fa:78:47:05:db:43:7d:2a:71:92:15:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 30 23:58:43 2023 GMT Not After : Jul 29 00:03:43 2024 GMT Subject: CN=F93C4E2E19B9A2F8FAE12752FFB72BA10FEB317F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ed:e6:be:9c:04:1a:72:51:a1:ef:77:98:f2: 8d:d0:43:10:b1:3a:36:1e:7c:34:4e:29:8f:fb:48: 84:91:71:5b:82:db:27:35:38:ae:17:ad:84:4e:8c: 67:79:93:c8:ee:53:a4:61:d6:43:d3:5c:5f:aa:45: f3:f9:36:32:e8:80:74:d7:fd:66:60:b8:24:b6:11: f9:04:cf:d7:e8:93:13:bc:e9:45:36:b6:36:96:b1: c6:e8:e9:f0:78:15:18:58:5d:3c:36:02:96:0e:b1: 5a:20:95:a1:bf:9c:89:43:96:e3:ff:e8:6b:b9:0f: 4a:be:52:e6:0f:43:32:f1:f0:85:5d:57:c8:0b:e9: 80:58:b0:af:b1:e1:20:db:f7:0f:92:bf:b6:d2:34: de:23:36:ff:ba:b1:e5:5a:7f:ed:53:cd:7e:37:1e: db:29:6f:3e:b5:68:04:35:e1:65:a3:85:15:d6:6d: 4c:a2:03:9a:47:2a:b0:b9:8a:a8:24:fc:1c:61:ea: fd:db:af:6a:f8:24:fb:96:77:37:09:d2:e7:b6:14: 4b:fc:15:6f:94:23:c9:65:6d:1b:fa:6e:00:2b:28: c9:dd:64:99:1b:a4:2f:13:4a:90:b2:24:1d:7b:6a: 0f:71:12:71:e2:9f:a4:f3:97:a4:18:f3:94:b4:b6: 67:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3C:4E:2E:19:B9:A2:F8:FA:E1:27:52:FF:B7:2B:A1:0F:EB:31:7F X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.53.0/24 Signature Algorithm: sha256WithRSAEncryption 79:93:05:75:0f:4b:e2:78:5a:86:c2:e8:a4:f3:36:d2:7d:66: cd:81:7d:42:00:da:db:f4:31:2a:35:32:fb:c6:2d:90:63:4e: f1:99:03:57:5f:bc:f6:cd:f2:33:e7:c1:2c:07:1c:fa:41:9d: 87:0f:82:6d:89:52:a9:b6:04:0f:40:6e:ec:85:d6:5b:45:6c: cb:34:5c:77:19:f3:11:98:33:73:bc:73:94:ad:7b:b1:8b:9f: f7:02:86:32:51:b7:23:1c:38:b4:92:0d:e7:5c:ca:d6:3b:f1: 8a:8d:6b:3a:b0:c5:c5:50:f1:24:cf:12:b2:ff:0f:6c:b1:cb: c1:56:90:42:f6:41:f4:f5:7d:6c:77:c3:ce:cf:b0:1b:87:02: 68:98:32:7c:b8:6d:0e:60:49:6f:73:7b:67:2b:64:2d:d3:5d: 24:40:75:63:6b:26:15:ea:7c:59:c1:99:b0:db:a1:93:f3:51: 12:a5:c2:74:b9:09:34:8e:82:00:ce:b7:83:8f:30:76:d1:c0: e7:e1:b4:ab:89:5c:2b:6f:bf:67:04:00:a2:1f:97:fb:94:a4: ec:0b:93:ca:75:65:93:7a:87:0c:8b:87:30:b0:c3:b0:64:a5: 6c:a8:bd:a0:af:25:0f:27:5c:32:03:6d:be:7b:d6:bb:60:df: b3:84:bb:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTp9yV8oMi8/6eEcF20N9KnGSFckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzA3MzAyMzU4NDNaFw0yNDA3MjkwMDAzNDNaMDMxMTAvBgNV BAMTKEY5M0M0RTJFMTlCOUEyRjhGQUUxMjc1MkZGQjcyQkExMEZFQjMxN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA7ea+nAQaclGh73eY8o3QQxCx OjYefDROKY/7SISRcVuC2yc1OK4XrYROjGd5k8juU6Rh1kPTXF+qRfP5NjLogHTX /WZguCS2EfkEz9fokxO86UU2tjaWscbo6fB4FRhYXTw2ApYOsVoglaG/nIlDluP/ 6Gu5D0q+UuYPQzLx8IVdV8gL6YBYsK+x4SDb9w+Sv7bSNN4jNv+6seVaf+1TzX43 Htspbz61aAQ14WWjhRXWbUyiA5pHKrC5iqgk/Bxh6v3br2r4JPuWdzcJ0ue2FEv8 FW+UI8llbRv6bgArKMndZJkbpC8TSpCyJB17ag9xEnHin6Tzl6QY85S0tmcNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+TxOLhm5ovj64SdS/7croQ/rMX8wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M1MA0GCSqG SIb3DQEBCwUAA4IBAQB5kwV1D0vieFqGwuik8zbSfWbNgX1CANrb9DEqNTL7xi2Q Y07xmQNXX7z2zfIz58EsBxz6QZ2HD4JtiVKptgQPQG7shdZbRWzLNFx3GfMRmDNz vHOUrXuxi5/3AoYyUbcjHDi0kg3nXMrWO/GKjWs6sMXFUPEkzxKy/w9sscvBVpBC 9kH09X1sd8POz7AbhwJomDJ8uG0OYElvc3tnK2Qt010kQHVjayYV6nxZwZmw26GT 81ESpcJ0uQk0joIAzreDjzB20cDn4bSriVwrb79nBACiH5f7lKTsC5PKdWWTeocM i4cwsMOwZKVsqL2gryUPJ1wyA22+e9a7YN+zhLuL -----END CERTIFICATE-----Generated at Wed Apr 17 21:21:46 2024 by rpki-client on console-fra.rpki-client.org