$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa File: 3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: SvEdMZfuVXSAy/9H733gyul6CzLvqEUOtx6XN2d6vVE= Subject key identifier: 27:CD:22:D5:3E:62:A1:FC:FF:E8:BB:97:E6:ED:76:B1:B6:D6:46:E0 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 494DF2CFF88CE35E9354251E0578AF1AEE4FD1E3 Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa Signing time: Mon 04 Sep 2023 05:01:08 +0000 ROA not before: Mon 04 Sep 2023 04:56:08 +0000 ROA not after: Mon 02 Sep 2024 05:01:08 +0000 asID: 131706 IP address blocks: 103.102.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4d:f2:cf:f8:8c:e3:5e:93:54:25:1e:05:78:af:1a:ee:4f:d1:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Sep 4 04:56:08 2023 GMT Not After : Sep 2 05:01:08 2024 GMT Subject: CN=27CD22D53E62A1FCFFE8BB97E6ED76B1B6D646E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:32:f1:48:c1:5c:98:41:98:cb:e9:fc:ea: 29:f7:bd:40:9b:f0:6e:87:b6:77:6d:93:96:51:c2: 26:22:17:14:25:a6:02:98:e1:5d:e6:28:ff:68:38: a8:35:43:5f:86:d9:7d:b1:42:0f:a1:43:70:3a:cf: 4a:21:f1:d3:39:a1:78:4e:05:90:36:48:56:d4:af: 32:30:05:97:95:ab:f5:d3:db:e5:4d:0a:5c:4d:25: 61:0e:9a:2d:cf:ed:2d:aa:d2:52:38:a3:97:f1:5c: e5:48:41:88:62:f9:fc:99:ff:8c:af:b2:b9:d9:48: 65:90:e4:6b:db:c6:66:c3:eb:e6:34:96:17:97:7d: b9:3e:10:a0:4e:01:a6:9b:43:6e:bd:a7:86:fb:76: d8:4d:b7:67:e6:b5:e6:ef:89:33:49:d7:7a:f0:af: 53:7d:b0:62:71:dc:e4:34:11:bb:fd:cb:26:8a:df: de:dd:aa:f0:b7:94:57:da:78:a9:e2:c3:34:a8:01: 86:d9:de:13:bd:a9:ea:84:2b:18:d8:31:0b:40:6f: ec:a5:a5:19:cc:32:c4:a9:60:a2:7a:9a:31:7d:00: 6b:d1:15:d4:55:d7:ee:54:1b:e1:b0:50:3d:a1:0b: b0:14:6d:1f:38:b9:db:cf:c2:02:89:c3:48:c0:b7: a1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CD:22:D5:3E:62:A1:FC:FF:E8:BB:97:E6:ED:76:B1:B6:D6:46:E0 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.150.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:81:af:1b:76:1e:84:f5:a2:72:32:39:3e:62:03:b4:35:bb: d6:b0:09:3d:37:9a:51:0a:27:75:6c:da:be:40:cd:16:52:9a: e9:33:ea:9f:43:3a:b9:24:9f:74:a3:f6:a0:b8:a3:37:d4:9a: 01:ae:27:f1:7c:18:25:24:68:60:7a:64:18:12:0f:93:a1:28: 28:05:88:fe:0f:84:1a:45:9b:f2:11:92:9a:3c:14:3e:b8:4a: f5:7d:05:dc:91:5e:24:31:a2:6a:65:dd:74:c1:63:3f:e7:f6: 67:63:ec:97:2b:2e:06:f1:83:21:58:94:da:1a:55:10:4e:8c: d0:ae:03:7c:18:5d:c9:d9:63:de:11:85:6e:ec:3c:86:80:b8: 58:57:db:87:a4:a8:cd:f0:bf:32:a1:8f:66:42:57:2b:14:5d: 35:e8:9f:ae:18:1d:33:bf:12:91:ca:49:c6:7d:c8:00:87:d4: 8a:d8:a9:eb:62:70:e8:bc:49:fd:97:76:46:df:ec:02:d9:58: 26:ec:08:64:c2:cf:62:90:07:20:44:fe:ef:e4:63:ec:ac:35: 1a:6c:77:bb:cf:ed:ed:78:c2:6d:da:8a:18:b0:a9:d4:b2:e0: 4d:88:af:e7:42:15:f9:d4:54:19:e0:f0:7f:90:5c:96:ec:48: 11:78:9e:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSU3yz/iM416TVCUeBXivGu5P0eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yMzA5MDQwNDU2MDhaFw0yNDA5MDIwNTAxMDhaMDMxMTAvBgNV BAMTKDI3Q0QyMkQ1M0U2MkExRkNGRkU4QkI5N0U2RUQ3NkIxQjZENjQ2RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZDLxSMFcmEGYy+n86in3vUCb 8G6Htndtk5ZRwiYiFxQlpgKY4V3mKP9oOKg1Q1+G2X2xQg+hQ3A6z0oh8dM5oXhO BZA2SFbUrzIwBZeVq/XT2+VNClxNJWEOmi3P7S2q0lI4o5fxXOVIQYhi+fyZ/4yv srnZSGWQ5GvbxmbD6+Y0lheXfbk+EKBOAaabQ269p4b7dthNt2fmtebviTNJ13rw r1N9sGJx3OQ0Ebv9yyaK397dqvC3lFfaeKniwzSoAYbZ3hO9qeqEKxjYMQtAb+yl pRnMMsSpYKJ6mjF9AGvRFdRV1+5UG+GwUD2hC7AUbR84udvPwgKJw0jAt6GDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJ80i1T5iofz/6LuX5u12sbbWRuAwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpYwDQYJ KoZIhvcNAQELBQADggEBAEyBrxt2HoT1onIyOT5iA7Q1u9awCT03mlEKJ3Vs2r5A zRZSmukz6p9DOrkkn3Sj9qC4ozfUmgGuJ/F8GCUkaGB6ZBgSD5OhKCgFiP4PhBpF m/IRkpo8FD64SvV9BdyRXiQxompl3XTBYz/n9mdj7JcrLgbxgyFYlNoaVRBOjNCu A3wYXcnZY94RhW7sPIaAuFhX24ekqM3wvzKhj2ZCVysUXTXon64YHTO/EpHKScZ9 yACH1IrYqeticOi8Sf2Xdkbf7ALZWCbsCGTCz2KQByBE/u/kY+ysNRpsd7vP7e14 wm3aihiwqdSy4E2Ir+dCFfnUVBng8H+QXJbsSBF4nlU= -----END CERTIFICATE-----Generated at Tue May 7 05:38:59 2024 by rpki-client on console-fra.rpki-client.org