$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: 1ZFjPMO4zrh9Zt76YgZ65gqd6bQnhcwPkrV4zZZVkaw= Subject key identifier: D5:43:12:B8:AD:0B:39:91:79:2E:01:40:98:E5:73:7D:1A:23:62:54 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 7A6062CE56996C389A31282673D92867CCC6F4B6 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa Signing time: Mon 31 Jul 2023 00:04:40 +0000 ROA not before: Sun 30 Jul 2023 23:59:40 +0000 ROA not after: Mon 29 Jul 2024 00:04:40 +0000 asID: 137378 IP address blocks: 103.119.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:60:62:ce:56:99:6c:38:9a:31:28:26:73:d9:28:67:cc:c6:f4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 30 23:59:40 2023 GMT Not After : Jul 29 00:04:40 2024 GMT Subject: CN=D54312B8AD0B3991792E014098E5737D1A236254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6e:37:5b:59:70:af:26:d5:a3:a0:6a:fb:d3: ea:fc:0c:9e:aa:6f:d0:3f:71:13:5d:2c:cb:92:10: 35:5d:7f:40:46:e8:39:be:f1:92:4b:9f:ab:c6:a9: 35:d3:c8:b7:86:8f:b4:72:23:8e:63:bc:ff:b4:33: df:b2:f7:2f:f6:a1:58:94:fa:ea:f6:9b:65:67:2c: 32:a5:8a:e5:06:c8:d3:f1:2a:bf:7b:98:98:2a:f7: cc:01:46:97:ee:91:fb:f2:c4:ef:07:e7:07:05:fa: c5:d4:79:3f:89:46:6b:76:8a:a8:77:85:ee:6c:e3: 3f:df:b9:9c:09:7f:9e:33:e6:44:71:e0:6b:43:84: 2a:d5:83:90:03:c7:e2:4d:15:e5:50:9c:fd:ad:fd: 35:ca:97:2f:76:30:11:20:81:e0:07:cc:61:34:d0: 62:e2:0f:31:ec:82:79:43:74:79:f8:1e:95:ae:50: 81:58:27:f1:d6:be:4c:8e:f0:e9:89:c1:42:52:19: 61:10:c6:bb:44:d4:4a:26:f7:ae:1e:f7:ed:08:cf: 3c:75:9c:85:7d:fe:c5:5a:5f:05:60:ca:48:3e:38: 4a:8a:df:3d:b4:f2:21:38:19:09:2a:80:48:f5:53: 46:de:d4:4f:47:8e:9e:57:07:75:9e:84:cd:f6:f0: 6c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:43:12:B8:AD:0B:39:91:79:2E:01:40:98:E5:73:7D:1A:23:62:54 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.118.0/24 Signature Algorithm: sha256WithRSAEncryption 92:50:9a:3e:c4:8b:71:8e:f2:17:68:47:a8:db:e6:a3:ba:82: c7:24:1d:59:61:d5:09:e6:aa:25:50:2b:25:33:ca:fe:17:47: 9a:93:9e:49:a6:a9:4e:0e:51:35:85:ed:be:05:09:4d:cb:86: f3:62:09:a9:0c:ea:31:cd:43:f7:41:c3:72:f4:b5:1b:6f:4f: f5:57:94:0f:20:d0:66:11:28:e5:a2:1d:91:ee:19:97:8e:7e: b7:e6:82:c2:49:a9:35:b4:6f:76:bf:e8:cb:43:f5:a3:4d:c7: a3:3d:50:27:d5:58:41:c8:f0:8b:af:86:27:3b:17:62:14:f4: 57:06:6c:b4:0a:cf:ce:5f:4d:ae:66:13:05:79:fc:e5:0d:37: 38:af:9d:07:3c:a4:ce:e1:5a:28:c6:e0:18:96:c7:ba:a4:ea: ca:34:89:6e:d6:90:3d:18:e1:b8:9a:7d:cd:a8:1b:15:8c:4b: c9:1e:c4:fb:bc:75:c4:48:cc:fb:5c:7a:c7:00:2d:53:ac:e9: 89:82:62:fc:b2:47:5a:8a:2f:18:a0:ff:57:15:14:2f:8b:bb: 93:32:31:54:89:23:c6:4f:2f:f8:95:98:b2:4a:29:30:67:41: a9:60:0f:00:56:57:54:18:44:db:7e:ca:6d:dd:b9:78:02:00: b9:d1:be:8f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUemBizlaZbDiaMSgmc9koZ8zG9LYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yMzA3MzAyMzU5NDBaFw0yNDA3MjkwMDA0NDBaMDMxMTAvBgNV BAMTKEQ1NDMxMkI4QUQwQjM5OTE3OTJFMDE0MDk4RTU3MzdEMUEyMzYyNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCabjdbWXCvJtWjoGr70+r8DJ6q b9A/cRNdLMuSEDVdf0BG6Dm+8ZJLn6vGqTXTyLeGj7RyI45jvP+0M9+y9y/2oViU +ur2m2VnLDKliuUGyNPxKr97mJgq98wBRpfukfvyxO8H5wcF+sXUeT+JRmt2iqh3 he5s4z/fuZwJf54z5kRx4GtDhCrVg5ADx+JNFeVQnP2t/TXKly92MBEggeAHzGE0 0GLiDzHsgnlDdHn4HpWuUIFYJ/HWvkyO8OmJwUJSGWEQxrtE1Eom964e9+0Izzx1 nIV9/sVaXwVgykg+OEqK3z208iE4GQkqgEj1U0be1E9Hjp5XB3WehM328GzVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1UMSuK0LOZF5LgFAmOVzfRojYlQwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3YwDQYJ KoZIhvcNAQELBQADggEBAJJQmj7Ei3GO8hdoR6jb5qO6gsckHVlh1QnmqiVQKyUz yv4XR5qTnkmmqU4OUTWF7b4FCU3LhvNiCakM6jHNQ/dBw3L0tRtvT/VXlA8g0GYR KOWiHZHuGZeOfrfmgsJJqTW0b3a/6MtD9aNNx6M9UCfVWEHI8Iuvhic7F2IU9FcG bLQKz85fTa5mEwV5/OUNNzivnQc8pM7hWijG4BiWx7qk6so0iW7WkD0Y4biafc2o GxWMS8kexPu8dcRIzPtcescALVOs6YmCYvyyR1qKLxig/1cVFC+Lu5MyMVSJI8ZP L/iVmLJKKTBnQalgDwBWV1QYRNt+ym3duXgCALnRvo8= -----END CERTIFICATE-----Generated at Thu Apr 25 14:20:32 2024 by rpki-client on console-fra.rpki-client.org