$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: EeJ1oU01zTXu1vWtA38aWxVkbb9IJl/Mqpmp7D3XKu0= Subject key identifier: 49:6D:EC:C3:9C:D2:91:F0:80:3D:15:C2:D6:BC:A1:8A:37:EB:09:DA Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 1F1EAF75106A65FFD9CDBFB1BB62B6C0D9CEB0C1 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 16 Aug 2023 08:00:01 +0000 ROA not before: Wed 16 Aug 2023 07:55:01 +0000 ROA not after: Wed 14 Aug 2024 08:00:01 +0000 asID: 133800 IP address blocks: 103.89.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1e:af:75:10:6a:65:ff:d9:cd:bf:b1:bb:62:b6:c0:d9:ce:b0:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Aug 16 07:55:01 2023 GMT Not After : Aug 14 08:00:01 2024 GMT Subject: CN=496DECC39CD291F0803D15C2D6BCA18A37EB09DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ac:69:e9:53:c3:e3:7a:a0:ea:2c:b7:59:0f: 69:a2:50:53:72:2c:56:47:c2:42:ec:6d:ba:64:c8: 2d:9d:4f:4d:f7:32:3b:29:7d:6b:5a:7d:15:ad:57: a0:0e:e9:bf:4a:d2:ea:40:78:3a:fc:3b:6b:08:39: 84:4a:1d:5c:6a:a0:c2:60:c0:36:35:79:c8:c2:40: 82:1b:fb:13:05:fd:b5:ed:0b:a3:19:e6:4e:53:df: 51:d9:45:8e:2b:63:42:2e:d2:1f:44:3b:f0:38:8b: de:3b:55:16:7c:0d:3e:b6:6b:2a:04:c9:35:14:09: 9d:8a:43:56:b0:11:ff:9c:56:f5:cd:6a:b2:03:45: 3f:9a:d2:58:b4:20:9b:3a:e0:6a:a5:72:c6:ee:e6: 3f:52:d0:f8:99:f4:e2:65:d0:bf:d7:ab:14:8a:ad: ed:14:c0:a1:e0:e0:89:a5:07:54:0f:00:b6:11:dd: 4c:4d:41:97:53:95:86:a1:18:2e:1b:95:14:24:86: 7f:05:83:53:a6:0f:d1:c6:77:e8:61:37:3b:d7:d9: e0:55:59:d4:15:55:96:6f:94:42:70:8a:59:e5:31: ac:e0:48:f4:de:11:c3:6a:2f:ca:e7:e4:7e:e2:53: d2:71:a6:ff:1a:cc:f9:03:64:fb:54:79:0e:b7:f7: 14:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6D:EC:C3:9C:D2:91:F0:80:3D:15:C2:D6:BC:A1:8A:37:EB:09:DA X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.154.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:51:23:5a:aa:ea:91:e9:eb:c5:fc:56:53:f5:c0:60:39:cd: 78:6f:8a:09:1e:d2:43:d4:13:af:73:bb:f0:29:d5:62:8b:87: 07:b7:44:67:92:64:ce:6a:df:2f:f7:58:cc:61:f7:38:11:b8: 79:a2:e2:13:e2:0b:6d:8b:c8:f0:34:02:6c:d9:e2:f1:b9:50: 8e:17:17:5c:00:8c:36:ef:04:16:75:d1:93:d8:ac:a2:90:d4: 3d:94:ca:30:1d:72:80:6b:a3:54:1f:18:9a:2b:f6:e3:01:d0: 0b:69:87:5d:22:90:f1:39:e3:f1:11:a0:5e:d3:30:af:87:eb: 53:d2:a5:da:6c:be:b4:4e:71:49:b7:68:d1:0f:72:70:4e:c3: 90:c1:48:44:ec:e4:d4:08:52:84:1f:9b:cc:55:62:c3:b3:2e: b0:58:56:59:41:56:60:a8:eb:5a:e9:6a:5d:69:72:ff:e9:79: 46:69:34:89:c4:5c:88:96:7d:34:3a:1a:87:e0:c2:a1:2e:89: da:be:db:f4:7d:4e:68:79:02:e3:34:27:6a:db:33:06:b8:c9: 29:cb:ce:f1:5e:3e:57:25:c4:f1:96:62:c1:50:5d:f2:18:b7: 32:7b:fe:ca:14:05:2c:ab:6a:7d:e9:3d:18:17:e5:d5:5a:bd: 81:47:49:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHx6vdRBqZf/Zzb+xu2K2wNnOsMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yMzA4MTYwNzU1MDFaFw0yNDA4MTQwODAwMDFaMDMxMTAvBgNV BAMTKDQ5NkRFQ0MzOUNEMjkxRjA4MDNEMTVDMkQ2QkNBMThBMzdFQjA5REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwrGnpU8PjeqDqLLdZD2miUFNy LFZHwkLsbbpkyC2dT033MjspfWtafRWtV6AO6b9K0upAeDr8O2sIOYRKHVxqoMJg wDY1ecjCQIIb+xMF/bXtC6MZ5k5T31HZRY4rY0Iu0h9EO/A4i947VRZ8DT62ayoE yTUUCZ2KQ1awEf+cVvXNarIDRT+a0li0IJs64Gqlcsbu5j9S0PiZ9OJl0L/XqxSK re0UwKHg4ImlB1QPALYR3UxNQZdTlYahGC4blRQkhn8Fg1OmD9HGd+hhNzvX2eBV WdQVVZZvlEJwilnlMazgSPTeEcNqL8rn5H7iU9Jxpv8azPkDZPtUeQ639xTBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSW3sw5zSkfCAPRXC1ryhijfrCdowHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1maMA0GCSqG SIb3DQEBCwUAA4IBAQCKUSNaquqR6evF/FZT9cBgOc14b4oJHtJD1BOvc7vwKdVi i4cHt0RnkmTOat8v91jMYfc4Ebh5ouIT4gtti8jwNAJs2eLxuVCOFxdcAIw27wQW ddGT2KyikNQ9lMowHXKAa6NUHxiaK/bjAdALaYddIpDxOePxEaBe0zCvh+tT0qXa bL60TnFJt2jRD3JwTsOQwUhE7OTUCFKEH5vMVWLDsy6wWFZZQVZgqOta6WpdaXL/ 6XlGaTSJxFyIln00OhqH4MKhLonavtv0fU5oeQLjNCdq2zMGuMkpy87xXj5XJcTx lmLBUF3yGLcye/7KFAUsq2p96T0YF+XVWr2BR0m/ -----END CERTIFICATE-----Generated at Wed Apr 24 05:31:33 2024 by rpki-client on console-fra.rpki-client.org