$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa File: 3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa (raw, json) Hash identifier: aTqQ67CA1dL8DFlF5gniBpEvrIs6U/EZqI1/mbinqcs= Subject key identifier: F4:78:50:D2:56:8A:00:00:13:F4:CE:C7:A1:4E:A3:91:ED:51:5F:3C Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 3F17B128BEC36DC487268BCD3FF47108A595D9E2 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa Signing time: Mon 31 Jul 2023 00:04:00 +0000 ROA not before: Sun 30 Jul 2023 23:59:00 +0000 ROA not after: Mon 29 Jul 2024 00:04:00 +0000 asID: 136079 IP address blocks: 103.86.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 18:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:17:b1:28:be:c3:6d:c4:87:26:8b:cd:3f:f4:71:08:a5:95:d9:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 30 23:59:00 2023 GMT Not After : Jul 29 00:04:00 2024 GMT Subject: CN=F47850D2568A000013F4CEC7A14EA391ED515F3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:24:7d:d9:03:6f:8a:96:0f:25:56:21:71: ae:94:44:98:d2:5c:34:4b:18:de:28:44:15:cf:bc: 99:11:e3:96:45:84:66:0e:73:2a:b2:6a:fd:86:e2: 5c:5d:93:a6:b8:21:96:32:cc:a5:cd:cf:91:46:9a: 01:7a:f1:4c:23:ae:0c:d4:77:c5:93:42:19:9c:57: c4:b5:08:73:2b:31:bb:fd:a0:c1:ea:0b:1a:13:e6: 60:61:ec:0b:cd:9f:65:19:14:a0:ff:00:ab:f1:27: 65:ff:85:90:97:02:eb:04:d2:b9:47:67:ae:76:65: 3d:98:13:64:da:42:50:61:de:00:b3:fb:9b:c3:07: a6:19:a9:9a:1a:b3:a6:58:95:cb:ef:9d:24:90:91: 80:41:05:03:36:d1:ee:8b:08:9a:00:f4:da:36:2c: 1f:35:1a:1e:17:8d:0c:45:f4:6c:31:99:49:06:b7: 6a:26:02:aa:2b:c2:04:db:1f:68:16:de:81:cd:6b: 0f:f5:d6:2f:c4:e9:b1:f1:3a:36:f2:4d:62:6d:1b: 6b:f8:b9:37:24:49:19:78:d7:bd:05:b3:0d:84:4d: fc:5c:60:6c:b7:2e:19:46:e7:8c:b3:f7:1e:7a:06: de:a4:16:3c:6b:54:cc:36:9d:77:64:82:25:71:28: 13:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:78:50:D2:56:8A:00:00:13:F4:CE:C7:A1:4E:A3:91:ED:51:5F:3C X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130312e302f32342d3234203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.101.0/24 Signature Algorithm: sha256WithRSAEncryption 50:75:9a:30:fc:fe:88:75:7a:8e:01:5a:38:59:0a:1f:b4:d1: 25:75:ec:44:6f:fd:59:53:aa:54:bd:48:56:be:e3:1c:03:fd: c7:77:2a:cc:a1:ef:e6:60:a2:07:6a:17:3b:10:73:dc:7c:9d: 34:5e:e0:dd:2d:78:6a:f7:bc:38:76:26:e3:61:d6:0b:af:b2: 55:71:ae:18:a7:b7:cc:00:41:dc:94:28:c9:d2:db:82:0e:a6: da:01:f2:9b:38:97:73:9d:8e:09:74:d7:13:a5:35:55:3e:66: b2:42:b5:f4:08:aa:70:a9:e7:f5:5e:aa:e1:91:e6:61:a9:4e: 1f:99:53:e9:b5:ca:ca:11:b9:d5:dc:f9:f2:3a:44:fe:bf:4a: dc:9d:a2:fb:12:90:fd:b4:20:51:2b:a6:00:07:53:02:b2:75: 0b:13:2a:73:0d:8e:81:b2:fb:46:7d:77:f3:c2:0c:a3:b3:58: 44:16:5a:e1:73:c5:90:83:20:3a:02:16:f3:3a:90:a9:4a:57: c1:22:ce:4c:9c:b1:e3:07:d9:1b:22:7d:ad:b0:d2:d0:d2:9c: b4:18:c5:c1:b1:3e:f8:b3:27:4d:29:89:32:3d:0d:42:3c:23: 48:c5:a5:d0:48:36:23:0b:6a:f4:9d:4a:72:a5:0e:7d:06:2f: 0b:ff:6e:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPxexKL7DbcSHJovNP/RxCKWV2eIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yMzA3MzAyMzU5MDBaFw0yNDA3MjkwMDA0MDBaMDMxMTAvBgNV BAMTKEY0Nzg1MEQyNTY4QTAwMDAxM0Y0Q0VDN0ExNEVBMzkxRUQ1MTVGM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsiR92QNvipYPJVYhca6URJjS XDRLGN4oRBXPvJkR45ZFhGYOcyqyav2G4lxdk6a4IZYyzKXNz5FGmgF68UwjrgzU d8WTQhmcV8S1CHMrMbv9oMHqCxoT5mBh7AvNn2UZFKD/AKvxJ2X/hZCXAusE0rlH Z652ZT2YE2TaQlBh3gCz+5vDB6YZqZoas6ZYlcvvnSSQkYBBBQM20e6LCJoA9No2 LB81Gh4XjQxF9GwxmUkGt2omAqorwgTbH2gW3oHNaw/11i/E6bHxOjbyTWJtG2v4 uTckSRl4170Fsw2ETfxcYGy3LhlG54yz9x56Bt6kFjxrVMw2nXdkgiVxKBNXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9HhQ0laKAAAT9M7HoU6jke1RXzwwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMxMzAzMzJlMzgzNjJlMzEzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1ZlMA0GCSqG SIb3DQEBCwUAA4IBAQBQdZow/P6IdXqOAVo4WQoftNEldexEb/1ZU6pUvUhWvuMc A/3HdyrMoe/mYKIHahc7EHPcfJ00XuDdLXhq97w4dibjYdYLr7JVca4Yp7fMAEHc lCjJ0tuCDqbaAfKbOJdznY4JdNcTpTVVPmayQrX0CKpwqef1XqrhkeZhqU4fmVPp tcrKEbnV3PnyOkT+v0rcnaL7EpD9tCBRK6YAB1MCsnULEypzDY6BsvtGfXfzwgyj s1hEFlrhc8WQgyA6AhbzOpCpSlfBIs5MnLHjB9kbIn2tsNLQ0py0GMXBsT74sydN KYkyPQ1CPCNIxaXQSDYjC2r0nUpypQ59Bi8L/27K -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:46 2024 by rpki-client on console-fra.rpki-client.org