$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: fy3iTjjNQwVnyN2Bj0UkXPJzFCJ1zT3jYAkJDC01WKk= Subject key identifier: 06:34:A2:69:14:20:C3:D6:16:56:BA:F0:EC:A9:8D:5E:AC:8B:40:5E Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 7BF32CC973BDC6D3539B29A8E8D7E937C972FC9D Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa Signing time: Mon 26 Jun 2023 02:00:00 +0000 ROA not before: Mon 26 Jun 2023 01:55:00 +0000 ROA not after: Mon 24 Jun 2024 02:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f3:2c:c9:73:bd:c6:d3:53:9b:29:a8:e8:d7:e9:37:c9:72:fc:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Jun 26 01:55:00 2023 GMT Not After : Jun 24 02:00:00 2024 GMT Subject: CN=0634A2691420C3D61656BAF0ECA98D5EAC8B405E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:04:93:f6:99:63:73:1a:61:81:c4:33:a1: 05:48:38:40:dc:ae:2c:92:bc:f8:09:62:c8:c4:ff: 45:81:26:56:8f:ce:13:5d:5d:3f:b9:1f:b6:b5:45: 05:59:2c:e5:1e:aa:bb:3e:0f:bf:61:83:76:ce:54: 78:f4:a8:43:9e:b1:02:65:b6:34:19:9e:76:0d:df: 02:c6:3b:cd:ed:89:d8:0c:ad:aa:f4:0c:e6:39:88: fc:9d:a0:df:c2:cf:62:99:de:c4:29:2d:3f:ae:c4: e9:c3:72:38:c1:36:b7:69:1a:ed:35:93:38:a9:5a: 74:a1:8c:e6:5f:8f:09:5d:17:84:5d:4c:37:a9:b8: 9b:7c:c8:ff:e4:d9:36:ff:56:82:d6:31:1a:fc:08: fd:76:e0:6b:81:19:0a:b5:61:3c:7e:ad:d4:d6:76: 05:2d:e2:58:4a:b5:f5:c1:4a:ee:da:51:e1:96:3c: 5f:33:d7:70:c9:91:73:92:ea:af:9d:9f:1c:df:b6: 3f:23:c1:2d:95:19:5a:7a:cf:05:87:36:a8:e9:6f: f0:fb:1b:22:39:5a:1d:53:73:fd:20:33:a6:86:f1: e4:56:80:e4:b6:c7:9a:ed:d4:d3:d5:78:2d:e2:d8: 80:cf:85:94:f9:dd:f0:70:2c:8f:4a:fe:53:1b:04: 09:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:34:A2:69:14:20:C3:D6:16:56:BA:F0:EC:A9:8D:5E:AC:8B:40:5E X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/23 Signature Algorithm: sha256WithRSAEncryption 44:47:ac:02:ae:99:17:f0:fa:38:64:48:26:36:64:6e:ce:1b: b7:a1:44:7b:07:46:8f:3c:2a:58:f7:6f:d0:e9:75:32:0e:dc: 4e:5f:35:ad:9c:4b:f2:8f:a6:48:55:b4:ab:51:eb:7c:a3:6f: f1:40:56:1e:a9:04:b1:39:2a:fc:ee:96:22:b1:b2:ba:3a:c7: 83:cf:93:75:11:24:25:d6:58:f6:96:91:f8:89:c8:e6:08:b7: ad:16:4e:9d:09:81:ee:0a:fd:66:9f:91:bd:b6:79:fb:db:e6: 5e:a7:f9:3b:a7:c6:b9:9a:1a:09:43:17:8a:5b:0c:e4:e9:41: 3e:fa:30:be:29:35:40:16:72:b6:c8:c9:f2:cc:1e:cb:0d:98: f7:13:83:ff:d2:e6:3d:dc:08:d0:48:33:13:01:2e:11:3d:cd: dc:c6:e7:f9:d2:5b:51:4e:50:59:db:70:ef:af:c2:8c:8f:79: 9b:20:44:a9:a9:7b:cd:d8:57:7b:e6:bc:b0:dc:a0:f8:d5:f9: 57:3f:59:3a:a9:bb:00:6b:d4:0d:6f:04:f0:61:75:41:1c:76: 8c:79:13:9f:16:6f:f8:70:1d:77:d6:6e:b8:74:56:20:eb:0e: bd:59:77:bd:1d:62:1f:e7:73:d6:e8:6c:8c:9a:ca:19:ca:5a: 31:65:e4:45 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe/MsyXO9xtNTmymo6NfpN8ly/J0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yMzA2MjYwMTU1MDBaFw0yNDA2MjQwMjAwMDBaMDMxMTAvBgNV BAMTKDA2MzRBMjY5MTQyMEMzRDYxNjU2QkFGMEVDQTk4RDVFQUM4QjQwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2uwST9pljcxphgcQzoQVIOEDc riySvPgJYsjE/0WBJlaPzhNdXT+5H7a1RQVZLOUeqrs+D79hg3bOVHj0qEOesQJl tjQZnnYN3wLGO83tidgMrar0DOY5iPydoN/Cz2KZ3sQpLT+uxOnDcjjBNrdpGu01 kzipWnShjOZfjwldF4RdTDepuJt8yP/k2Tb/VoLWMRr8CP124GuBGQq1YTx+rdTW dgUt4lhKtfXBSu7aUeGWPF8z13DJkXOS6q+dnxzftj8jwS2VGVp6zwWHNqjpb/D7 GyI5Wh1Tc/0gM6aG8eRWgOS2x5rt1NPVeC3i2IDPhZT53fBwLI9K/lMbBAkVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBjSiaRQgw9YWVrrw7KmNXqyLQF4wHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlbAwDQYJ KoZIhvcNAQELBQADggEBAERHrAKumRfw+jhkSCY2ZG7OG7ehRHsHRo88Klj3b9Dp dTIO3E5fNa2cS/KPpkhVtKtR63yjb/FAVh6pBLE5KvzuliKxsro6x4PPk3URJCXW WPaWkfiJyOYIt60WTp0Jge4K/Wafkb22efvb5l6n+TunxrmaGglDF4pbDOTpQT76 ML4pNUAWcrbIyfLMHssNmPcTg//S5j3cCNBIMxMBLhE9zdzG5/nSW1FOUFnbcO+v woyPeZsgRKmpe83YV3vmvLDcoPjV+Vc/WTqpuwBr1A1vBPBhdUEcdox5E58Wb/hw HXfWbrh0ViDrDr1Zd70dYh/nc9bobIyayhnKWjFl5EU= -----END CERTIFICATE-----Generated at Fri May 3 21:31:15 2024 by rpki-client on console-ams.rpki-client.org