$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa File: 3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa (raw, json) Hash identifier: xaPMqilG/H32AYqyR6qjUobIorMJeBrohcDCoufUrvE= Subject key identifier: 7D:74:22:2F:F5:2B:A6:2D:6F:44:D0:94:90:4E:A8:FF:5C:9E:17:B7 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 025557B91603D57C275C06E9D9C72C9E5B0FAC79 Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa Signing time: Mon 18 Sep 2023 04:00:01 +0000 ROA not before: Mon 18 Sep 2023 03:55:01 +0000 ROA not after: Mon 16 Sep 2024 04:00:01 +0000 asID: 131706 IP address blocks: 103.102.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:55:57:b9:16:03:d5:7c:27:5c:06:e9:d9:c7:2c:9e:5b:0f:ac:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Sep 18 03:55:01 2023 GMT Not After : Sep 16 04:00:01 2024 GMT Subject: CN=7D74222FF52BA62D6F44D094904EA8FF5C9E17B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:37:dc:86:f3:ce:f0:d5:20:b3:ed:24:01:d3: 4b:9a:7b:65:99:91:9c:d6:2b:40:d2:ca:7d:2b:78: 9d:60:e1:a2:d3:e7:cf:0c:30:02:c1:fd:39:6b:80: d6:6b:27:20:ba:46:82:cc:e4:17:44:ae:6d:d4:e5: 19:4d:c7:e0:00:69:9d:5b:cb:33:2f:54:b0:6f:cc: 45:c7:93:bf:7b:91:48:8a:26:e8:76:9a:46:40:c1: c6:56:45:66:e2:3b:30:d2:af:97:ff:5c:c2:0a:67: 33:80:8b:5e:cb:7d:58:93:43:7d:d8:30:5e:1d:fe: a2:3a:92:e1:3d:fa:38:5b:2f:c9:5c:b4:a0:cd:37: ae:f6:ec:60:3f:47:4d:4a:86:a7:80:44:ec:08:c4: 31:b7:b5:2e:24:42:71:c9:9a:f0:d8:71:72:01:c3: 84:e3:97:c0:ee:4b:f3:9c:3b:d5:33:05:49:fa:68: 17:73:07:dc:ac:76:b6:ed:7c:12:86:12:7a:79:cb: 7a:d9:18:f7:b5:b9:15:39:c0:6f:ce:96:5d:ef:3e: 67:54:d1:f5:e5:4e:d2:43:7d:22:c4:58:1e:2e:76: cf:e1:47:62:e6:1c:ef:54:52:e0:63:93:3d:38:da: 7b:3b:1a:f6:0e:40:8e:fd:b1:dc:66:1f:7e:8e:85: 2c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:74:22:2F:F5:2B:A6:2D:6F:44:D0:94:90:4E:A8:FF:5C:9E:17:B7 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.150.0/23 Signature Algorithm: sha256WithRSAEncryption 48:41:a2:90:2c:44:a9:cd:7e:68:33:b3:62:8f:6c:27:0b:18: aa:9c:02:0a:2c:42:d3:6a:c0:38:98:1d:78:07:5e:5a:d3:c5: ea:34:b4:56:d0:3e:13:ae:c0:5d:33:32:b2:be:33:58:75:f6: fe:37:83:e8:27:ae:14:85:f7:9f:4c:b6:0b:10:05:16:b8:d0: 8b:48:4b:79:15:bf:6d:c7:11:c0:9c:9a:10:4b:dd:82:2d:02: 37:7f:13:e8:ff:3f:f3:a6:c6:ac:c4:80:11:c8:57:24:de:73: e1:9b:01:48:f9:c5:4d:43:5f:6e:7d:80:cf:3d:40:36:80:05: 26:d1:0d:1c:6e:02:8c:a0:f6:66:ee:e4:28:08:b3:38:49:c8: 17:f2:0a:2c:19:b0:c5:16:ff:a5:b3:2d:f1:a4:da:ae:8c:2d: ff:de:16:78:1e:b9:2c:56:a4:66:fa:1c:05:1c:6e:be:7b:bd: 84:3f:97:ea:de:89:ac:39:39:b3:1e:c3:df:2b:ec:b6:b2:44: 84:55:77:8c:45:ee:3e:2a:68:b9:86:d0:36:bc:db:c2:bb:1c: 91:0f:03:e7:21:d1:d1:d9:8d:e3:56:7d:af:04:00:b6:ae:4b: ee:89:5b:3f:60:f3:14:36:c7:60:1c:a2:49:bb:fe:52:1b:9a: 19:95:30:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAlVXuRYD1XwnXAbp2ccsnlsPrHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yMzA5MTgwMzU1MDFaFw0yNDA5MTYwNDAwMDFaMDMxMTAvBgNV BAMTKDdENzQyMjJGRjUyQkE2MkQ2RjQ0RDA5NDkwNEVBOEZGNUM5RTE3QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6N9yG887w1SCz7SQB00uae2WZ kZzWK0DSyn0reJ1g4aLT588MMALB/TlrgNZrJyC6RoLM5BdErm3U5RlNx+AAaZ1b yzMvVLBvzEXHk797kUiKJuh2mkZAwcZWRWbiOzDSr5f/XMIKZzOAi17LfViTQ33Y MF4d/qI6kuE9+jhbL8lctKDNN6727GA/R01KhqeAROwIxDG3tS4kQnHJmvDYcXIB w4Tjl8DuS/OcO9UzBUn6aBdzB9ysdrbtfBKGEnp5y3rZGPe1uRU5wG/Oll3vPmdU 0fXlTtJDfSLEWB4uds/hR2LmHO9UUuBjkz042ns7GvYOQI79sdxmH36OhSw3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfXQiL/Urpi1vRNCUkE6o/1yeF7cwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnZpYwDQYJ KoZIhvcNAQELBQADggEBAEhBopAsRKnNfmgzs2KPbCcLGKqcAgosQtNqwDiYHXgH XlrTxeo0tFbQPhOuwF0zMrK+M1h19v43g+gnrhSF959MtgsQBRa40ItIS3kVv23H EcCcmhBL3YItAjd/E+j/P/OmxqzEgBHIVyTec+GbAUj5xU1DX259gM89QDaABSbR DRxuAoyg9mbu5CgIszhJyBfyCiwZsMUW/6WzLfGk2q6MLf/eFngeuSxWpGb6HAUc br57vYQ/l+reiaw5ObMew98r7LayRIRVd4xF7j4qaLmG0Da828K7HJEPA+ch0dHZ jeNWfa8EALauS+6JWz9g8xQ2x2Acokm7/lIbmhmVMOY= -----END CERTIFICATE-----Generated at Tue May 7 05:38:59 2024 by rpki-client on console-fra.rpki-client.org