$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa File: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: 29nfvaYlNHUlkZzbrVb43CDPs5FCxo7Jn5kNAZNN33o= Subject key identifier: E5:3D:8F:F0:32:1B:A9:37:58:71:84:0E:07:70:74:E2:25:49:73:52 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 327EF1A9C3FD0E79EDE7CA97154F55E591ED9FFE Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa Signing time: Mon 19 Jun 2023 04:00:00 +0000 ROA not before: Mon 19 Jun 2023 03:55:00 +0000 ROA not after: Mon 17 Jun 2024 04:00:00 +0000 asID: 140443 IP address blocks: 103.149.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7e:f1:a9:c3:fd:0e:79:ed:e7:ca:97:15:4f:55:e5:91:ed:9f:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Jun 19 03:55:00 2023 GMT Not After : Jun 17 04:00:00 2024 GMT Subject: CN=E53D8FF0321BA9375871840E077074E225497352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fb:ea:ce:3e:98:cb:5c:1b:31:03:69:0f:41: b5:5e:f5:07:5c:ce:37:ee:90:29:30:2c:0e:cf:9d: 90:31:31:c7:86:81:b9:b5:74:ae:3e:29:b5:28:19: 8e:61:b1:53:43:2f:61:41:49:fc:fe:b9:dd:5a:59: bf:58:38:5d:e3:4a:19:87:cb:2f:a1:85:6a:79:b6: d8:6f:c7:5a:04:0c:84:78:9f:a3:b2:7c:75:59:e9: 49:58:10:2d:12:5b:d0:2d:52:2c:ef:d8:35:28:b8: aa:1d:3f:62:19:55:ff:29:b8:bf:cf:b7:56:8a:06: 2c:61:9f:0d:2a:eb:d8:d7:47:cc:bd:10:9a:e3:03: 56:7a:b7:2f:76:e5:86:9b:51:66:fa:49:ff:65:3a: c8:47:f0:2b:94:37:ea:6e:9d:ff:62:64:a5:25:d6: 40:af:4e:e3:2f:07:d8:b5:e4:82:62:72:0c:16:35: 0d:45:50:89:64:9d:3b:de:36:7a:4d:16:0f:b1:cc: a9:e8:b7:a1:aa:a7:b1:e3:94:10:52:79:58:d7:9d: df:57:d2:ba:b8:d3:43:20:84:d8:66:18:d2:50:0a: 94:49:0e:e0:36:78:1a:da:fe:51:88:05:28:c4:2b: 11:b2:dc:d5:dd:1a:f1:31:4a:ed:22:a2:17:e8:cb: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3D:8F:F0:32:1B:A9:37:58:71:84:0E:07:70:74:E2:25:49:73:52 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.177.0/24 Signature Algorithm: sha256WithRSAEncryption 38:76:31:7a:01:9e:49:fe:72:31:44:94:0d:e4:21:50:f1:0e: 25:6a:a5:87:32:4a:4a:02:45:fb:3e:30:64:a1:d0:05:bb:84: 4a:b5:99:93:6d:dd:6c:2d:f1:1b:de:51:bb:b0:a1:6f:ac:63: 30:70:55:b5:e9:2d:b1:1d:4b:70:9e:d0:2d:38:bb:06:14:ae: fe:da:43:3d:53:78:1a:59:08:2e:e0:7a:80:8d:de:33:d7:ff: 57:ef:63:46:41:23:3c:91:57:c6:42:9a:15:a5:da:a3:74:e7: 09:15:29:a0:f7:15:b0:97:8d:3d:90:4e:9f:89:6c:90:e5:f7: 70:7d:14:75:dd:ee:e6:b8:39:92:0c:f5:9a:b3:72:66:95:8d: 20:d1:b7:bf:ff:ea:d4:cb:fb:5c:a3:de:70:6b:41:0d:c0:a5: 00:f1:61:cf:6a:a0:1c:c2:df:0f:35:20:bb:c1:8c:d1:2b:c2: 20:b7:bf:c2:87:71:2c:c3:67:8c:0d:57:10:5b:88:1d:68:82: 54:b3:ac:82:32:06:45:53:82:74:f8:ed:a4:a2:6d:7c:e9:ae: c2:b9:8e:60:29:f6:6d:b6:2b:bf:56:b3:13:b7:c2:c4:9b:08: 8d:07:9a:52:87:9e:5e:e6:f4:d4:86:c3:3b:cc:ee:41:bc:54: 36:29:6f:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMn7xqcP9Dnnt58qXFU9V5ZHtn/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yMzA2MTkwMzU1MDBaFw0yNDA2MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEU1M0Q4RkYwMzIxQkE5Mzc1ODcxODQwRTA3NzA3NEUyMjU0OTczNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo++rOPpjLXBsxA2kPQbVe9Qdc zjfukCkwLA7PnZAxMceGgbm1dK4+KbUoGY5hsVNDL2FBSfz+ud1aWb9YOF3jShmH yy+hhWp5tthvx1oEDIR4n6OyfHVZ6UlYEC0SW9AtUizv2DUouKodP2IZVf8puL/P t1aKBixhnw0q69jXR8y9EJrjA1Z6ty925YabUWb6Sf9lOshH8CuUN+punf9iZKUl 1kCvTuMvB9i15IJicgwWNQ1FUIlknTveNnpNFg+xzKnot6Gqp7HjlBBSeVjXnd9X 0rq400MghNhmGNJQCpRJDuA2eBra/lGIBSjEKxGy3NXdGvExSu0iohfoy2wBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5T2P8DIbqTdYcYQOB3B04iVJc1IwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlbEwDQYJ KoZIhvcNAQELBQADggEBADh2MXoBnkn+cjFElA3kIVDxDiVqpYcySkoCRfs+MGSh 0AW7hEq1mZNt3Wwt8RveUbuwoW+sYzBwVbXpLbEdS3Ce0C04uwYUrv7aQz1TeBpZ CC7geoCN3jPX/1fvY0ZBIzyRV8ZCmhWl2qN05wkVKaD3FbCXjT2QTp+JbJDl93B9 FHXd7ua4OZIM9ZqzcmaVjSDRt7//6tTL+1yj3nBrQQ3ApQDxYc9qoBzC3w81ILvB jNErwiC3v8KHcSzDZ4wNVxBbiB1oglSzrIIyBkVTgnT47aSibXzprsK5jmAp9m22 K79WsxO3wsSbCI0HmlKHnl7m9NSGwzvM7kG8VDYpb1g= -----END CERTIFICATE-----Generated at Fri May 3 21:31:15 2024 by rpki-client on console-ams.rpki-client.org