$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa File: 3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa (raw, json) Hash identifier: bImXu9iW+V52f0PdV9u/n0AyTwHBJm38/WtcWyj4cdY= Subject key identifier: F6:F1:65:BE:AE:13:A3:38:61:08:89:F1:81:37:F4:10:3F:8A:93:A9 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 72F4C5682DE40F86D3BFE3C851605F8FF09FD2B4 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa Signing time: Wed 01 Nov 2023 03:01:40 +0000 ROA not before: Wed 01 Nov 2023 02:56:40 +0000 ROA not after: Wed 30 Oct 2024 03:01:40 +0000 asID: 4800 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f4:c5:68:2d:e4:0f:86:d3:bf:e3:c8:51:60:5f:8f:f0:9f:d2:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Nov 1 02:56:40 2023 GMT Not After : Oct 30 03:01:40 2024 GMT Subject: CN=F6F165BEAE13A338610889F18137F4103F8A93A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:66:fe:6b:53:7a:2c:40:ca:44:4b:a9:75: 04:e5:8f:c3:a0:15:7b:27:57:8e:bd:fc:87:86:94: f7:c3:e2:f2:03:71:04:74:35:ff:b0:6e:a7:5e:a2: 2a:e9:13:5a:ff:19:16:a3:79:03:e7:76:7a:d2:60: be:51:ab:ce:78:0e:4a:2d:53:9e:8c:cd:28:a0:b6: cc:e9:c4:04:33:9d:a7:c2:d2:52:e3:2f:cf:2a:17: 88:43:bc:58:53:f2:be:4f:e6:4b:97:11:dc:bc:55: 33:fa:4e:3e:2c:64:94:92:9c:48:15:4c:59:7b:bb: 92:f3:a1:59:84:74:01:fb:ee:9d:11:41:61:05:8e: 9c:e4:6b:7c:0d:d3:b4:e3:48:83:ea:31:cb:e2:95: 41:f1:7c:bb:f5:e3:c0:18:b4:9e:20:a7:af:f1:56: 66:7f:58:b4:79:98:33:f4:5f:47:f6:05:f2:5a:e4: 8c:64:8b:5b:c3:8f:8a:a2:56:4d:c9:9e:80:c4:db: 9b:92:3f:7e:25:38:75:32:9b:25:8e:a5:9a:7c:f5: 37:ce:f0:aa:ef:6a:8b:f0:76:b3:43:f8:4a:53:f0: c7:33:99:96:27:72:d1:b6:55:70:8e:13:b1:82:0a: 31:8b:61:ab:a3:9f:c4:8f:c7:72:95:12:32:5c:5d: 65:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F1:65:BE:AE:13:A3:38:61:08:89:F1:81:37:F4:10:3F:8A:93:A9 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 61:7f:35:c7:f0:57:83:55:c2:60:ca:54:37:43:60:8b:3d:b6: 9f:c8:51:1c:93:60:fc:c9:7d:ac:c0:2b:db:91:7a:ea:7a:18: 59:0c:0d:c3:be:9c:d6:94:8a:0a:01:c7:1d:c0:90:d1:c1:4a: e7:8a:96:e2:bf:d0:1b:84:1b:a7:de:ff:44:b5:3e:c4:f3:b5: 73:6b:f1:58:50:ba:83:37:38:2f:53:25:60:d7:12:3c:70:3f: da:1a:ac:cf:ef:ae:69:b8:d1:6d:c8:bf:cc:a4:b5:b2:00:d3: 83:59:7c:33:c0:e3:32:97:80:57:9e:b5:c3:16:6e:45:ad:44: 08:08:58:6a:e0:a8:23:89:39:c1:9a:63:6c:1d:7d:b7:87:94: 15:6d:b7:ff:2a:21:d7:75:a4:79:83:28:01:4b:00:68:86:87: 4f:b1:5c:fc:b7:d5:bd:00:ae:54:40:18:81:dd:15:fa:8e:12: a7:9d:80:94:82:8f:e2:36:76:91:bb:b0:14:0f:12:ee:c7:18: c5:16:06:ec:4a:e5:59:42:10:9e:bd:20:0d:ae:31:fb:33:c3: a3:fe:28:65:fe:45:b9:4a:39:bc:a8:99:94:a6:78:2d:54:cf: 39:d3:72:d0:3d:da:c7:ea:d4:11:11:a6:dc:6e:9c:31:29:96: 53:60:a2:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcvTFaC3kD4bTv+PIUWBfj/Cf0rQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yMzExMDEwMjU2NDBaFw0yNDEwMzAwMzAxNDBaMDMxMTAvBgNV BAMTKEY2RjE2NUJFQUUxM0EzMzg2MTA4ODlGMTgxMzdGNDEwM0Y4QTkzQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC64mb+a1N6LEDKREupdQTlj8Og FXsnV469/IeGlPfD4vIDcQR0Nf+wbqdeoirpE1r/GRajeQPndnrSYL5Rq854Dkot U56MzSigtszpxAQznafC0lLjL88qF4hDvFhT8r5P5kuXEdy8VTP6Tj4sZJSSnEgV TFl7u5LzoVmEdAH77p0RQWEFjpzka3wN07TjSIPqMcvilUHxfLv148AYtJ4gp6/x VmZ/WLR5mDP0X0f2BfJa5Ixki1vDj4qiVk3JnoDE25uSP34lOHUymyWOpZp89TfO 8KrvaovwdrND+EpT8MczmZYnctG2VXCOE7GCCjGLYaujn8SPx3KVEjJcXWW3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9vFlvq4TozhhCInxgTf0ED+Kk6kwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeUxjANBgkqhkiG 9w0BAQsFAAOCAQEAYX81x/BXg1XCYMpUN0Ngiz22n8hRHJNg/Ml9rMAr25F66noY WQwNw76c1pSKCgHHHcCQ0cFK54qW4r/QG4Qbp97/RLU+xPO1c2vxWFC6gzc4L1Ml YNcSPHA/2hqsz++uabjRbci/zKS1sgDTg1l8M8DjMpeAV561wxZuRa1ECAhYauCo I4k5wZpjbB19t4eUFW23/yoh13WkeYMoAUsAaIaHT7Fc/LfVvQCuVEAYgd0V+o4S p52AlIKP4jZ2kbuwFA8S7scYxRYG7ErlWUIQnr0gDa4x+zPDo/4oZf5FuUo5vKiZ lKZ4LVTPOdNy0D3ax+rUERGm3G6cMSmWU2CiNg== -----END CERTIFICATE-----Generated at Mon May 6 03:46:58 2024 by rpki-client on console-ams.rpki-client.org