$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa File: 3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa (raw, json) Hash identifier: JDz4YCsJRvpIU9OhO7nwFjJL5dbeR+zjwezgUYYz8bc= Subject key identifier: 84:DA:9D:F2:0B:B8:F5:FF:6D:01:9A:C8:51:AE:69:C2:8B:E3:EA:C6 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 7E337DB65B1852A9610122C3F73A47F2876AD12F Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa Signing time: Mon 04 Sep 2023 05:01:08 +0000 ROA not before: Mon 04 Sep 2023 04:56:08 +0000 ROA not after: Mon 02 Sep 2024 05:01:08 +0000 asID: 131706 IP address blocks: 103.102.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:33:7d:b6:5b:18:52:a9:61:01:22:c3:f7:3a:47:f2:87:6a:d1:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Sep 4 04:56:08 2023 GMT Not After : Sep 2 05:01:08 2024 GMT Subject: CN=84DA9DF20BB8F5FF6D019AC851AE69C28BE3EAC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:03:be:45:bc:1b:e9:21:2b:9c:65:2c:70:ac: e5:87:f8:da:f6:d4:c0:91:aa:09:61:89:7d:83:75: 89:5e:18:b1:1f:4d:47:a8:8e:bc:fb:8b:a8:55:b9: f4:f8:f1:ca:81:21:3a:4c:3c:bd:cc:89:87:09:65: 3f:48:de:d3:0c:60:08:dd:f6:8f:1d:45:e9:7a:0f: c9:1f:b5:39:59:5a:36:15:ca:79:51:01:ff:d5:7d: 21:82:35:f1:b6:ad:a8:36:71:aa:01:36:bc:59:ee: b7:77:2e:cc:3d:b4:76:bb:7c:84:69:23:bc:95:56: 2b:07:f5:5e:b1:0b:a1:92:d7:8c:3e:79:96:dc:9b: 5c:b4:eb:70:6e:2f:24:bc:74:7e:bb:4b:6a:64:11: 37:ba:c4:38:2f:be:c0:ce:23:d1:4b:ef:a5:ce:28: f0:0e:6b:07:ce:26:07:a1:e9:00:1f:73:e6:b2:a8: 30:00:f6:f9:ab:93:9e:d7:3f:74:51:1c:11:71:df: 4c:62:0f:f1:55:b2:eb:2b:33:a4:6d:12:92:a7:77: 08:30:1b:e6:38:7a:f3:a0:ad:ea:91:a7:7e:2e:e2: 0d:42:85:18:7d:86:b7:c8:53:a4:c2:ce:45:d9:19: e4:28:37:18:c4:e4:7b:fe:71:86:3a:39:22:cf:a0: 01:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DA:9D:F2:0B:B8:F5:FF:6D:01:9A:C8:51:AE:69:C2:8B:E3:EA:C6 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135312e302f32342d3234203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.151.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:98:1e:f3:f9:1c:da:e0:ba:00:dc:c2:4e:00:fc:fc:cb:8b: bf:8f:e7:17:10:31:5a:61:4c:26:2e:f1:64:69:19:a3:77:af: bb:3d:9c:a3:b7:8b:80:de:89:3a:a4:71:ce:04:98:20:e4:b2: 0a:f3:a8:80:de:87:bd:ed:d5:c9:e0:06:bb:ad:ff:b9:e4:e4: f9:55:63:15:6b:bb:12:58:78:6b:20:7d:f7:3a:3a:95:71:1b: 34:d7:6a:4c:0e:1f:fa:e9:a7:89:f5:41:06:d0:fd:fe:e6:21: 55:d7:dd:22:34:0e:67:99:c7:0e:a1:84:60:14:ff:1a:14:f8: 12:ec:f5:b4:30:39:99:e7:bc:f0:4c:9e:c5:29:d3:93:5f:57: 12:25:60:d1:cd:ae:6b:70:e6:50:4a:94:6d:31:f2:7e:67:49: 56:d5:a2:33:bb:23:d4:b8:04:50:fc:a1:c5:eb:a4:c7:1c:71: bd:cb:5d:8c:6e:0c:bf:8c:45:b1:df:a5:2d:2d:af:58:9c:71: 79:f8:d0:75:21:4a:50:01:3f:8b:42:c8:ad:c4:e0:2c:b1:40: 8e:f5:47:2b:ef:7c:3e:69:27:d3:c8:5f:9b:07:ee:c7:f4:39: b5:80:ab:1d:a8:14:ab:50:38:28:cd:1f:01:81:b8:30:c2:3f: 92:ce:1f:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfjN9tlsYUqlhASLD9zpH8odq0S8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yMzA5MDQwNDU2MDhaFw0yNDA5MDIwNTAxMDhaMDMxMTAvBgNV BAMTKDg0REE5REYyMEJCOEY1RkY2RDAxOUFDODUxQUU2OUMyOEJFM0VBQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcA75FvBvpISucZSxwrOWH+Nr2 1MCRqglhiX2DdYleGLEfTUeojrz7i6hVufT48cqBITpMPL3MiYcJZT9I3tMMYAjd 9o8dRel6D8kftTlZWjYVynlRAf/VfSGCNfG2rag2caoBNrxZ7rd3Lsw9tHa7fIRp I7yVVisH9V6xC6GS14w+eZbcm1y063BuLyS8dH67S2pkETe6xDgvvsDOI9FL76XO KPAOawfOJgeh6QAfc+ayqDAA9vmrk57XP3RRHBFx30xiD/FVsusrM6RtEpKndwgw G+Y4evOgreqRp34u4g1ChRh9hrfIU6TCzkXZGeQoNxjE5Hv+cYY6OSLPoAHjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhNqd8gu49f9tAZrIUa5pwovj6sYwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpcwDQYJ KoZIhvcNAQELBQADggEBAFyYHvP5HNrgugDcwk4A/PzLi7+P5xcQMVphTCYu8WRp GaN3r7s9nKO3i4DeiTqkcc4EmCDksgrzqIDeh73t1cngBrut/7nk5PlVYxVruxJY eGsgffc6OpVxGzTXakwOH/rpp4n1QQbQ/f7mIVXX3SI0DmeZxw6hhGAU/xoU+BLs 9bQwOZnnvPBMnsUp05NfVxIlYNHNrmtw5lBKlG0x8n5nSVbVojO7I9S4BFD8ocXr pMcccb3LXYxuDL+MRbHfpS0tr1iccXn40HUhSlABP4tCyK3E4CyxQI71RyvvfD5p J9PIX5sH7sf0ObWAqx2oFKtQOCjNHwGBuDDCP5LOH2g= -----END CERTIFICATE-----Generated at Tue May 7 05:33:52 2024 by rpki-client on console-ams.rpki-client.org