$ rpki-client -vvf repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa File: 3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa (raw, json) Hash identifier: 4g9gA76k2EXZbwuD2MciWdKnvtsKiVhL2lrkP4UqrtU= Subject key identifier: A2:98:DC:84:1B:9F:9F:89:CA:A8:6B:98:DC:7B:3A:89:D2:A9:CB:DA Certificate issuer: /CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Certificate serial: 0EB49E065EB5570F142B311A9DC2DAB91F8FC469 Authority key identifier: 91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject info access: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa Signing time: Mon 31 Jul 2023 00:08:29 +0000 ROA not before: Mon 31 Jul 2023 00:03:29 +0000 ROA not after: Mon 29 Jul 2024 00:08:29 +0000 asID: 136886 IP address blocks: 103.106.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:b4:9e:06:5e:b5:57:0f:14:2b:31:1a:9d:c2:da:b9:1f:8f:c4:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Validity Not Before: Jul 31 00:03:29 2023 GMT Not After : Jul 29 00:08:29 2024 GMT Subject: CN=A298DC841B9F9F89CAA86B98DC7B3A89D2A9CBDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0b:4f:f1:f7:ca:4d:82:b2:2a:31:25:f8:6f: 0e:37:8e:96:01:7a:de:1e:52:67:ca:88:dd:8f:f8: f2:ff:b2:d4:c1:38:c7:f0:ca:2b:d3:2e:df:78:7a: 5d:19:b5:96:cb:4d:94:91:49:fb:ba:31:e8:b7:a2: 19:e0:ef:12:d2:47:42:1e:4d:87:9d:45:7d:21:d5: ca:33:e9:98:b0:93:06:d1:66:a8:99:ad:85:b2:dc: 52:f4:b4:0f:75:31:1f:25:e9:47:70:83:a2:79:d5: 47:35:14:04:ce:54:3e:43:9e:53:5c:a3:ca:6b:63: f7:86:2a:ca:34:ed:80:03:ef:13:7b:0c:88:e3:5f: ef:b2:40:70:40:47:81:1f:13:69:b6:a5:76:7b:3a: ac:39:e8:20:1a:64:80:c3:97:70:eb:3f:09:fe:34: 24:a6:97:df:3c:ef:ea:ed:0a:fa:e1:a5:84:c5:20: bd:9c:7f:29:d1:be:24:c8:8d:41:ca:59:22:0d:fe: 79:00:0d:56:87:b3:a0:0d:f6:9d:6a:67:ca:9d:70: 40:48:f0:79:ac:4f:85:f7:24:e4:56:30:e4:89:fe: 6f:e8:22:6f:8d:02:9f:65:84:6d:31:5b:ae:b2:cf: e5:d8:1a:89:6d:11:60:21:49:e0:73:76:a3:92:ad: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:98:DC:84:1B:9F:9F:89:CA:A8:6B:98:DC:7B:3A:89:D2:A9:CB:DA X509v3 Authority Key Identifier: keyid:91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.116.0/24 Signature Algorithm: sha256WithRSAEncryption 57:cc:8f:ad:2e:f6:71:ea:21:b9:de:36:dc:f2:f5:48:91:7f: 72:c0:1c:db:27:b0:da:81:0a:2f:0a:d2:29:a1:1b:6b:09:af: f8:90:4c:22:44:78:76:61:1d:a1:ca:40:1f:ec:92:56:88:a9: d0:61:b3:c7:06:57:53:20:8d:1e:1d:ac:7e:ed:9e:f1:c5:32: bb:3a:23:3a:7b:f8:e6:73:0f:3e:49:3f:41:15:be:34:3f:48: da:dc:26:3c:e6:e1:1f:50:78:77:7d:e6:87:92:36:fe:49:16: 06:fb:aa:ce:06:f7:12:92:2a:5a:fd:cb:64:9a:c2:96:25:29: ba:b2:57:ff:5a:24:90:65:ed:ba:cb:a8:b8:29:6e:77:d6:e6: 4a:87:f0:c0:a7:f7:59:d2:8f:01:c6:4e:20:08:ad:bd:73:bf: e0:76:3f:38:a8:fe:94:1c:b4:c3:6a:58:01:c0:1e:51:6f:6e: d5:fe:2e:28:7e:f7:2b:6f:21:10:87:be:8c:eb:1c:68:d3:2c: 79:68:ce:bd:c4:b5:f5:cd:ed:a6:ad:10:8f:1f:24:1f:c5:1a: 6b:00:48:bf:c2:50:10:83:ba:89:52:b4:62:36:9b:61:76:ab: f4:93:02:6f:8c:82:fa:06:48:e5:d7:67:5b:e9:f1:1d:30:9e: 68:cb:6b:bf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDrSeBl61Vw8UKzEancLauR+PxGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUw MkEzQTAxODAeFw0yMzA3MzEwMDAzMjlaFw0yNDA3MjkwMDA4MjlaMDMxMTAvBgNV BAMTKEEyOThEQzg0MUI5RjlGODlDQUE4NkI5OERDN0IzQTg5RDJBOUNCREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPC0/x98pNgrIqMSX4bw43jpYB et4eUmfKiN2P+PL/stTBOMfwyivTLt94el0ZtZbLTZSRSfu6Mei3ohng7xLSR0Ie TYedRX0h1coz6ZiwkwbRZqiZrYWy3FL0tA91MR8l6Udwg6J51Uc1FATOVD5DnlNc o8prY/eGKso07YAD7xN7DIjjX++yQHBAR4EfE2m2pXZ7Oqw56CAaZIDDl3DrPwn+ NCSml9887+rtCvrhpYTFIL2cfynRviTIjUHKWSIN/nkADVaHs6AN9p1qZ8qdcEBI 8HmsT4X3JORWMOSJ/m/oIm+NAp9lhG0xW66yz+XYGoltEWAhSeBzdqOSrXRnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUopjchBufn4nKqGuY3Hs6idKpy9owHwYDVR0j BBgwFoAUkZtg5NfhFxtmJPMYraG3RQKjoBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MDBhZWQxZC05NGM5LTQ5YTYtYTYwOS04ODJlMDNjZDA3YmEvMC85MTlCNjBFNEQ3 RTExNzFCNjYyNEYzMThBREExQjc0NTAyQTNBMDE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUwMkEz QTAxOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwMGFlZDFkLTk0YzktNDlhNi1h NjA5LTg4MmUwM2NkMDdiYS8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnanQwDQYJ KoZIhvcNAQELBQADggEBAFfMj60u9nHqIbneNtzy9UiRf3LAHNsnsNqBCi8K0imh G2sJr/iQTCJEeHZhHaHKQB/sklaIqdBhs8cGV1MgjR4drH7tnvHFMrs6Izp7+OZz Dz5JP0EVvjQ/SNrcJjzm4R9QeHd95oeSNv5JFgb7qs4G9xKSKlr9y2SawpYlKbqy V/9aJJBl7brLqLgpbnfW5kqH8MCn91nSjwHGTiAIrb1zv+B2Pzio/pQctMNqWAHA HlFvbtX+Lih+9ytvIRCHvozrHGjTLHlozr3EtfXN7aatEI8fJB/FGmsASL/CUBCD uolStGI2m2F2q/STAm+MgvoGSOXXZ1vp8R0wnmjLa78= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:42 2024 by rpki-client on console-fra.rpki-client.org