$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: fb+okzQ7qGPnzBSxJ3zc2jhEpsI5V6JR+F4uUwyQPyM= Subject key identifier: D6:0D:24:4A:6B:99:B4:62:DF:9B:99:86:90:3D:C9:86:81:07:04:F1 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 1DD086E47C16D0376B8ADFB49993D555FC7F9CD2 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa Signing time: Mon 19 Jun 2023 04:00:00 +0000 ROA not before: Mon 19 Jun 2023 03:55:00 +0000 ROA not after: Mon 17 Jun 2024 04:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d0:86:e4:7c:16:d0:37:6b:8a:df:b4:99:93:d5:55:fc:7f:9c:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Jun 19 03:55:00 2023 GMT Not After : Jun 17 04:00:00 2024 GMT Subject: CN=D60D244A6B99B462DF9B9986903DC986810704F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:fd:a7:41:c7:52:f0:c5:37:9d:9d:8d:20: 03:05:36:12:1e:8d:f9:3f:07:51:ca:c3:69:a6:01: 0c:3a:fe:38:22:56:e3:85:a9:1b:64:c0:9f:a3:cb: f2:a3:29:f9:56:ba:d6:7d:02:7d:eb:93:3e:86:64: fb:1d:d6:f5:df:27:d0:1f:10:6d:3c:06:d2:8c:2d: 2a:af:5f:3e:e4:5c:b6:f1:f2:05:86:d9:82:f7:ce: 46:40:33:77:24:85:fa:ec:cf:00:26:f7:5d:ac:08: 6c:f3:cb:7b:98:84:0e:d1:83:c3:f6:9f:c3:cc:41: c6:c8:4d:51:d9:9b:e5:0d:51:77:0f:60:19:2f:5c: 77:49:d6:dd:4b:7e:6f:4d:ac:49:d6:d6:40:ed:88: e0:5c:ab:4d:c3:3b:80:b1:f3:a8:be:cf:ea:a6:ce: 76:50:cd:12:e0:0b:59:a8:42:59:c4:4f:d7:5c:67: d0:24:bc:7c:75:3f:7e:12:bf:1b:88:da:95:67:9e: f6:eb:4a:02:59:9f:92:a6:87:92:93:cb:ee:67:b5: c0:8d:3e:c4:1c:6d:05:7a:89:91:4c:3a:62:0b:08: f1:2b:34:22:01:24:bd:75:f9:b0:50:3c:3a:a5:ac: 48:48:92:ac:33:e9:ff:7a:1e:4d:18:17:1a:fa:0f: b6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0D:24:4A:6B:99:B4:62:DF:9B:99:86:90:3D:C9:86:81:07:04:F1 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/24 Signature Algorithm: sha256WithRSAEncryption 64:ae:8d:2f:04:0a:fb:01:a8:84:4d:01:0f:45:42:d6:65:61: 74:d2:61:b4:3e:8b:9a:3f:e6:ac:dd:db:4d:02:6e:42:7a:fa: 41:22:e6:b8:99:52:d9:ad:6c:71:bf:87:b2:59:6c:11:0a:ff: 74:00:ef:f9:ad:1c:a7:59:c3:75:17:25:36:ab:83:f7:e4:16: ed:03:6f:1d:e1:6c:9f:a2:cd:b2:3b:82:ca:bb:0e:a3:d0:b9: 63:c5:1f:58:df:cb:57:45:ad:9b:ab:62:37:4f:4d:3f:1f:85: 54:9b:69:d3:69:b5:ed:60:c6:c4:18:d2:30:43:9f:0a:de:54: dc:6c:69:32:bf:61:74:ee:61:f4:d3:4b:05:ac:96:42:1f:c0: 46:59:e8:f5:f8:56:da:40:91:73:34:41:2d:ce:9e:7b:a4:29: 29:61:64:0f:2f:cb:dd:b0:7a:d7:26:a6:4a:4d:49:8f:c7:ae: 4e:3c:55:6d:db:42:fe:a7:7f:d5:d8:94:e8:e0:1e:ee:01:eb: 12:dd:40:98:68:ed:8d:1e:aa:f1:4f:24:ad:c4:97:26:02:5f: fc:5b:35:01:7d:08:ba:72:15:ac:7c:91:2b:1e:c1:54:b1:b2: bb:a9:e2:63:d7:c5:37:be:92:4e:4e:1e:93:70:e3:65:e6:45: 1f:1e:9d:f5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHdCG5HwW0Ddrit+0mZPVVfx/nNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yMzA2MTkwMzU1MDBaFw0yNDA2MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEQ2MEQyNDRBNkI5OUI0NjJERjlCOTk4NjkwM0RDOTg2ODEwNzA0RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC6v2nQcdS8MU3nZ2NIAMFNhIe jfk/B1HKw2mmAQw6/jgiVuOFqRtkwJ+jy/KjKflWutZ9An3rkz6GZPsd1vXfJ9Af EG08BtKMLSqvXz7kXLbx8gWG2YL3zkZAM3ckhfrszwAm912sCGzzy3uYhA7Rg8P2 n8PMQcbITVHZm+UNUXcPYBkvXHdJ1t1Lfm9NrEnW1kDtiOBcq03DO4Cx86i+z+qm znZQzRLgC1moQlnET9dcZ9AkvHx1P34SvxuI2pVnnvbrSgJZn5Kmh5KTy+5ntcCN PsQcbQV6iZFMOmILCPErNCIBJL11+bBQPDqlrEhIkqwz6f96Hk0YFxr6D7azAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1g0kSmuZtGLfm5mGkD3JhoEHBPEwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlbAwDQYJ KoZIhvcNAQELBQADggEBAGSujS8ECvsBqIRNAQ9FQtZlYXTSYbQ+i5o/5qzd200C bkJ6+kEi5riZUtmtbHG/h7JZbBEK/3QA7/mtHKdZw3UXJTarg/fkFu0Dbx3hbJ+i zbI7gsq7DqPQuWPFH1jfy1dFrZurYjdPTT8fhVSbadNpte1gxsQY0jBDnwreVNxs aTK/YXTuYfTTSwWslkIfwEZZ6PX4VtpAkXM0QS3OnnukKSlhZA8vy92wetcmpkpN SY/Hrk48VW3bQv6nf9XYlOjgHu4B6xLdQJho7Y0eqvFPJK3ElyYCX/xbNQF9CLpy Fax8kSsewVSxsrup4mPXxTe+kk5OHpNw42XmRR8enfU= -----END CERTIFICATE-----Generated at Fri May 3 21:31:15 2024 by rpki-client on console-ams.rpki-client.org