$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa File: 3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa (raw, json) Hash identifier: pHonvqlzTtS/DQLW6ht5YPRWeSoZNmJo6/KsT+vQKhk= Subject key identifier: C1:F6:EC:59:F2:07:B6:BE:A4:04:73:D4:42:C1:D5:75:F6:9C:3E:10 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 7FBC0E46A70B78C04B86F15EF0B0651FD06BE4DE Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa Signing time: Thu 02 Nov 2023 13:01:29 +0000 ROA not before: Thu 02 Nov 2023 12:56:29 +0000 ROA not after: Thu 31 Oct 2024 13:01:29 +0000 asID: 151586 IP address blocks: 103.119.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:bc:0e:46:a7:0b:78:c0:4b:86:f1:5e:f0:b0:65:1f:d0:6b:e4:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Nov 2 12:56:29 2023 GMT Not After : Oct 31 13:01:29 2024 GMT Subject: CN=C1F6EC59F207B6BEA40473D442C1D575F69C3E10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:06:7b:c1:41:aa:4b:99:c2:46:3a:c1:0c:e2: d0:cd:0c:ce:0b:09:f3:af:d1:d1:40:ab:0d:ac:ce: 6c:2a:e5:ed:91:4f:e5:22:81:f2:c4:85:c3:89:05: 66:a5:23:48:34:34:41:ea:64:07:a5:cf:84:a7:d5: 3e:13:7d:d3:05:6a:b8:2c:fb:93:21:1e:47:97:d4: 82:30:ab:51:d2:29:a6:f2:6b:e9:d1:c3:13:de:1e: fd:a4:2e:3d:ef:fc:f9:ae:eb:e1:6d:f1:f0:3f:bf: c2:f9:a9:5a:1b:24:d5:d6:a8:4a:06:41:da:61:cd: ae:c2:51:26:14:ea:b5:0d:ec:64:6e:de:e2:b4:9b: 28:6e:b0:f2:5f:3e:c6:a2:42:1c:db:6a:30:9a:b0: d6:ab:95:b3:20:bc:66:0f:74:0f:d6:9c:f2:5f:93: 92:d4:74:e9:0e:02:ca:58:75:be:f8:89:f2:c0:61: c2:9c:b7:dc:3a:c5:73:81:49:50:07:d4:6a:21:cb: 49:0e:7d:d7:3e:6f:68:41:7f:82:9d:56:71:c6:07: 01:36:5f:01:71:4b:4d:9d:3d:71:15:71:a5:c0:3d: d0:8b:39:92:72:23:24:b3:1d:95:24:c1:70:70:99: bf:d1:c8:31:01:dd:2a:e9:15:c4:01:2a:0f:25:02: 85:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F6:EC:59:F2:07:B6:BE:A4:04:73:D4:42:C1:D5:75:F6:9C:3E:10 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.237.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:6f:b2:65:01:0c:85:e1:59:02:e8:47:1f:6b:05:0d:66:72: 40:9d:10:96:f4:45:e1:81:79:32:c4:ee:ca:99:17:1e:0b:a3: 97:67:de:fe:a0:84:3b:b5:a7:c9:6f:37:ed:5c:df:01:9a:8d: 2d:86:c4:6f:e8:7c:4f:8d:3a:a6:7e:6e:e3:be:c3:73:72:df: 37:e8:4f:44:2d:95:cc:c7:39:91:96:67:a8:b0:08:db:bf:82: a0:84:8f:b6:f8:c3:98:b6:5a:67:34:14:79:3f:ae:9e:9a:83: 02:10:f6:0d:c0:7c:b9:2a:2b:23:90:17:85:8c:5f:fa:bc:92: a7:47:c0:cd:13:1f:f9:d2:f2:d5:d8:0e:7b:d2:6e:e6:b2:b6: a9:66:5b:b2:95:fd:15:aa:41:45:76:35:0e:76:e9:e2:a0:1e: 28:fd:69:f9:64:f1:59:29:ea:e5:0a:d4:38:f6:1e:b1:14:0a: 73:76:1f:cd:02:8b:d9:34:6a:c8:8a:fe:61:13:cd:4c:12:67: 19:d7:dc:0e:63:32:e7:4a:c3:e1:29:80:16:dd:62:ac:4a:4a: 49:5c:f8:3f:d7:bd:03:97:e4:9c:10:fc:7c:83:1f:cf:3e:1e: 73:5f:8e:0c:40:c6:c6:25:65:c5:f6:49:4b:d5:34:f2:d0:90: c1:3b:05:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf7wORqcLeMBLhvFe8LBlH9Br5N4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yMzExMDIxMjU2MjlaFw0yNDEwMzExMzAxMjlaMDMxMTAvBgNV BAMTKEMxRjZFQzU5RjIwN0I2QkVBNDA0NzNENDQyQzFENTc1RjY5QzNFMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsBnvBQapLmcJGOsEM4tDNDM4L CfOv0dFAqw2szmwq5e2RT+UigfLEhcOJBWalI0g0NEHqZAelz4Sn1T4TfdMFargs +5MhHkeX1IIwq1HSKabya+nRwxPeHv2kLj3v/Pmu6+Ft8fA/v8L5qVobJNXWqEoG Qdphza7CUSYU6rUN7GRu3uK0myhusPJfPsaiQhzbajCasNarlbMgvGYPdA/WnPJf k5LUdOkOAspYdb74ifLAYcKct9w6xXOBSVAH1Gohy0kOfdc+b2hBf4KdVnHGBwE2 XwFxS02dPXEVcaXAPdCLOZJyIySzHZUkwXBwmb/RyDEB3SrpFcQBKg8lAoVZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwfbsWfIHtr6kBHPUQsHVdfacPhAwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+0wDQYJ KoZIhvcNAQELBQADggEBADpvsmUBDIXhWQLoRx9rBQ1mckCdEJb0ReGBeTLE7sqZ Fx4Lo5dn3v6ghDu1p8lvN+1c3wGajS2GxG/ofE+NOqZ+buO+w3Ny3zfoT0QtlczH OZGWZ6iwCNu/gqCEj7b4w5i2Wmc0FHk/rp6agwIQ9g3AfLkqKyOQF4WMX/q8kqdH wM0TH/nS8tXYDnvSbuaytqlmW7KV/RWqQUV2NQ526eKgHij9aflk8Vkp6uUK1Dj2 HrEUCnN2H80Ci9k0asiK/mETzUwSZxnX3A5jMudKw+EpgBbdYqxKSklc+D/XvQOX 5JwQ/HyDH88+HnNfjgxAxsYlZcX2SUvVNPLQkME7BZ4= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org