$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa File: 3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: wFmTTRAA8uHDKyVkY7VjrBZ2FgEmytoFe5HkaT986pA= Subject key identifier: FE:21:7E:3C:25:7E:3C:01:18:6F:56:24:0A:8F:9E:64:52:A0:DD:7B Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 494931D0707EC1096708DE030AD4B0E0900401C2 Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa Signing time: Sun 20 Aug 2023 16:00:00 +0000 ROA not before: Sun 20 Aug 2023 15:55:00 +0000 ROA not after: Sun 18 Aug 2024 16:00:00 +0000 asID: 138115 IP address blocks: 103.147.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:49:31:d0:70:7e:c1:09:67:08:de:03:0a:d4:b0:e0:90:04:01:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Aug 20 15:55:00 2023 GMT Not After : Aug 18 16:00:00 2024 GMT Subject: CN=FE217E3C257E3C01186F56240A8F9E6452A0DD7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:cf:7f:f3:3e:d0:f7:3e:9b:85:1c:1a:a9: bf:eb:b0:cf:f2:b7:a9:0c:36:4f:69:e6:80:1e:ce: c8:25:33:99:2b:20:f4:52:ee:46:87:3a:fe:6e:57: f2:9e:7c:83:36:f9:1a:ea:1b:9c:86:53:ec:6c:86: fb:d9:b1:0f:33:95:22:60:c2:41:56:97:e5:03:40: 12:52:16:1b:33:f6:d7:56:e3:2c:0b:5e:36:1b:99: 27:0b:b5:9a:b7:56:bf:f2:45:d0:4f:d3:5b:8e:0c: 64:a6:95:04:ac:c0:5a:c2:10:8d:ac:9d:9a:27:11: 94:cb:25:60:4d:86:e8:3d:86:c4:5c:67:ae:f6:be: be:b9:97:78:1e:a7:22:7f:15:98:08:43:31:bb:66: 09:ee:88:e4:f2:5a:ec:01:b3:11:fe:17:bb:4e:9d: a4:0d:6e:93:45:15:25:74:fd:9f:6d:1f:89:70:a5: 02:3f:2d:b9:ac:88:f9:91:e8:04:c5:9c:0c:ab:57: 15:a9:1c:01:ae:35:b5:b1:e7:ad:a3:ff:5b:6f:c7: 1c:63:1e:4b:ab:cd:dd:c0:b2:a6:af:40:00:fc:a9: b0:0e:78:2f:94:ea:8d:c6:33:9b:dc:e6:95:cf:37: b2:a8:eb:96:3c:40:fc:25:68:c8:cf:2d:ce:7f:98: 8e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:21:7E:3C:25:7E:3C:01:18:6F:56:24:0A:8F:9E:64:52:A0:DD:7B X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.154.0/24 Signature Algorithm: sha256WithRSAEncryption 54:55:ff:5d:72:f1:1c:26:82:1a:7d:8d:07:68:15:5b:21:d9: 70:3b:38:fc:d7:83:1f:c4:49:4c:43:54:99:50:ef:2a:92:88: a0:fc:da:d4:15:2d:7a:4c:d9:16:ad:72:df:a9:d7:b3:05:57: 2b:a6:20:27:70:77:57:7a:30:37:30:1c:b2:38:f3:1e:7c:68: f7:33:7d:ae:35:25:54:7e:5c:df:8c:85:f5:b4:29:53:4d:82: eb:cf:cb:d7:30:a4:a6:c1:b1:5c:19:ca:6e:4d:0d:50:05:5c: 26:9d:c5:19:a2:2f:ae:5e:69:47:2d:c1:8b:7f:9c:dc:a7:67: 12:48:5a:36:0a:d2:fe:24:8f:5d:34:c3:37:ae:4b:73:46:15: a9:b9:5f:5b:b4:3a:d7:ca:fc:63:aa:7e:ee:2b:4b:98:9c:56: 4f:d3:e3:23:6a:e4:a3:e2:b4:8f:ea:e7:37:d7:51:70:c1:c8: 0a:29:9c:35:49:c8:43:fd:e8:2d:4f:f2:b2:f0:7f:b5:fd:e6: 73:d7:29:60:c9:3b:5d:b2:9c:e0:18:3c:2e:16:a6:91:e1:c0: 1a:7a:d0:e8:17:8d:04:2e:ec:99:0f:27:73:b8:1a:76:5c:7e: 91:c8:56:08:81:4a:b3:5d:74:5e:06:0d:83:33:1a:b3:f7:17: 64:75:c6:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSUkx0HB+wQlnCN4DCtSw4JAEAcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yMzA4MjAxNTU1MDBaFw0yNDA4MTgxNjAwMDBaMDMxMTAvBgNV BAMTKEZFMjE3RTNDMjU3RTNDMDExODZGNTYyNDBBOEY5RTY0NTJBMEREN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCqc9/8z7Q9z6bhRwaqb/rsM/y t6kMNk9p5oAezsglM5krIPRS7kaHOv5uV/KefIM2+RrqG5yGU+xshvvZsQ8zlSJg wkFWl+UDQBJSFhsz9tdW4ywLXjYbmScLtZq3Vr/yRdBP01uODGSmlQSswFrCEI2s nZonEZTLJWBNhug9hsRcZ672vr65l3gepyJ/FZgIQzG7ZgnuiOTyWuwBsxH+F7tO naQNbpNFFSV0/Z9tH4lwpQI/LbmsiPmR6ATFnAyrVxWpHAGuNbWx562j/1tvxxxj Hkurzd3AsqavQAD8qbAOeC+U6o3GM5vc5pXPN7Ko65Y8QPwlaMjPLc5/mI4PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/iF+PCV+PAEYb1YkCo+eZFKg3XswHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk5owDQYJ KoZIhvcNAQELBQADggEBAFRV/11y8Rwmghp9jQdoFVsh2XA7OPzXgx/ESUxDVJlQ 7yqSiKD82tQVLXpM2Ratct+p17MFVyumICdwd1d6MDcwHLI48x58aPczfa41JVR+ XN+MhfW0KVNNguvPy9cwpKbBsVwZym5NDVAFXCadxRmiL65eaUctwYt/nNynZxJI WjYK0v4kj100wzeuS3NGFam5X1u0OtfK/GOqfu4rS5icVk/T4yNq5KPitI/q5zfX UXDByAopnDVJyEP96C1P8rLwf7X95nPXKWDJO12ynOAYPC4WppHhwBp60OgXjQQu 7JkPJ3O4GnZcfpHIVgiBSrNddF4GDYMzGrP3F2R1xug= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:08 2024 by rpki-client on console-fra.rpki-client.org