$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa File: 3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa (raw, json) Hash identifier: dzZ7PkZX4uczFsofl8L+4yxAbYvyyQNYlByyYilbB+w= Subject key identifier: 3A:6C:69:37:A4:C1:D9:33:73:14:60:64:2E:11:D0:B5:D3:FD:E0:41 Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 254F54CC199E30A8625E3841FF0F2338C5B2F71A Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa Signing time: Mon 31 Jul 2023 00:06:13 +0000 ROA not before: Mon 31 Jul 2023 00:01:13 +0000 ROA not after: Mon 29 Jul 2024 00:06:13 +0000 asID: 139989 IP address blocks: 103.148.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4f:54:cc:19:9e:30:a8:62:5e:38:41:ff:0f:23:38:c5:b2:f7:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Jul 31 00:01:13 2023 GMT Not After : Jul 29 00:06:13 2024 GMT Subject: CN=3A6C6937A4C1D933731460642E11D0B5D3FDE041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:87:75:75:b1:ed:30:2a:98:52:d5:1b:d9: 66:15:fd:d4:62:f6:3d:1b:43:0f:ff:8d:88:a0:6d: 02:0c:e3:74:0d:1b:ca:71:c5:8e:3c:c0:ed:26:cd: 78:02:e8:74:a6:06:c7:8b:a2:18:6e:c2:08:9e:5c: bd:dd:50:9c:14:c4:95:0d:38:bc:bc:5e:87:f8:e8: ca:62:1e:c2:62:5d:e2:db:eb:77:dc:cc:bf:f7:63: 12:07:4b:e5:ae:d6:c6:9a:84:d2:d5:f0:84:6a:e5: 6a:70:7c:5a:71:38:f7:23:15:1f:03:e3:a9:da:43: 70:39:ae:e7:24:d2:6b:55:ce:77:d2:de:e3:e0:15: fd:4c:5e:be:95:a6:32:50:4e:e3:c4:cf:2a:88:68: 1f:11:25:b7:e5:b2:c1:95:f4:e1:c3:b3:4a:1a:fd: f7:55:ac:fc:b7:d8:3a:fc:df:51:20:0d:cb:c0:83: 92:4e:20:9c:c6:74:93:df:82:2c:4c:c8:fb:db:17: 0d:1b:be:85:f5:d5:a8:61:46:44:09:37:8d:c6:2a: 6b:e5:b4:15:59:91:bc:3f:fe:23:97:17:f3:d4:8b: b9:b7:6f:36:73:1c:da:ce:55:ca:88:ac:71:87:bf: de:dd:08:b0:00:80:d4:26:9f:ad:0f:5b:4f:8c:27: c6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:69:37:A4:C1:D9:33:73:14:60:64:2E:11:D0:B5:D3:FD:E0:41 X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.77.0/24 Signature Algorithm: sha256WithRSAEncryption c1:bb:b6:77:47:23:5e:32:d2:97:6b:27:5d:1e:40:4b:0a:3f: 97:f5:b6:81:05:43:26:23:52:39:a5:92:37:1c:11:87:dc:0d: 33:7f:61:73:28:9c:db:4a:7c:30:23:88:68:b2:e5:92:2a:cc: 13:64:e0:12:fc:84:ce:02:47:2c:1b:ca:ea:2d:b1:36:1d:03: 85:02:16:98:b2:90:9d:dc:58:ba:11:8f:21:49:b7:b1:01:fc: df:43:a0:9b:21:d4:71:d4:e9:e7:88:f7:d4:b6:52:c6:a0:7b: 9e:f6:b1:e7:12:d0:89:18:8d:16:45:35:b0:ec:2c:92:e0:4f: 59:c3:71:d1:0d:a0:45:2e:d1:98:ea:68:fe:dc:54:4e:1e:93: a7:0e:bc:62:5a:e0:21:bf:72:9d:95:52:00:8c:9b:03:f2:14: 28:dd:d6:44:01:85:a8:60:6a:4b:8a:f3:65:e5:7a:63:34:1b: 86:68:6c:fe:14:31:b4:94:bc:92:9d:56:40:e7:35:21:02:e5: 5a:bb:76:bd:e7:cd:37:e5:b5:3a:18:6a:51:71:c1:52:6b:fe: 35:b1:73:b6:d5:4c:29:e2:af:18:d7:1b:4d:43:8b:71:01:a9: ce:91:d6:e1:30:29:f1:26:99:3a:90:71:30:28:38:cc:b3:39: 1f:ed:93:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJU9UzBmeMKhiXjhB/w8jOMWy9xowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yMzA3MzEwMDAxMTNaFw0yNDA3MjkwMDA2MTNaMDMxMTAvBgNV BAMTKDNBNkM2OTM3QTRDMUQ5MzM3MzE0NjA2NDJFMTFEMEI1RDNGREUwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhnod1dbHtMCqYUtUb2WYV/dRi 9j0bQw//jYigbQIM43QNG8pxxY48wO0mzXgC6HSmBseLohhuwgieXL3dUJwUxJUN OLy8Xof46MpiHsJiXeLb63fczL/3YxIHS+Wu1saahNLV8IRq5WpwfFpxOPcjFR8D 46naQ3A5ruck0mtVznfS3uPgFf1MXr6VpjJQTuPEzyqIaB8RJbflssGV9OHDs0oa /fdVrPy32Dr831EgDcvAg5JOIJzGdJPfgixMyPvbFw0bvoX11ahhRkQJN43GKmvl tBVZkbw//iOXF/PUi7m3bzZzHNrOVcqIrHGHv97dCLAAgNQmn60PW0+MJ8b1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOmxpN6TB2TNzFGBkLhHQtdP94EEwHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMxMzAzMzJlMzEzNDM4MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RNMA0GCSqG SIb3DQEBCwUAA4IBAQDBu7Z3RyNeMtKXayddHkBLCj+X9baBBUMmI1I5pZI3HBGH 3A0zf2FzKJzbSnwwI4hosuWSKswTZOAS/ITOAkcsG8rqLbE2HQOFAhaYspCd3Fi6 EY8hSbexAfzfQ6CbIdRx1OnniPfUtlLGoHue9rHnEtCJGI0WRTWw7CyS4E9Zw3HR DaBFLtGY6mj+3FROHpOnDrxiWuAhv3KdlVIAjJsD8hQo3dZEAYWoYGpLivNl5Xpj NBuGaGz+FDG0lLySnVZA5zUhAuVau3a958035bU6GGpRccFSa/41sXO21Uwp4q8Y 1xtNQ4txAanOkdbhMCnxJpk6kHEwKDjMszkf7ZP3 -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:59 2024 by rpki-client on console-ams.rpki-client.org