$ rpki-client -vvf repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa File: 3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa (raw, json) Hash identifier: Ucu78C+TEeYtpR7+G9HWVnV74rEuzttrHT4hmUvFdJI= Subject key identifier: 1A:83:93:19:DE:25:D6:73:0E:F8:51:DD:47:4E:B5:82:24:0D:26:83 Certificate issuer: /CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Certificate serial: 20C6BB7A49A02A92A0F89950F5BCC48F7B3A80CE Authority key identifier: 86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa Signing time: Sun 22 Oct 2023 14:39:15 +0000 ROA not before: Sun 22 Oct 2023 14:34:15 +0000 ROA not after: Sun 20 Oct 2024 14:39:15 +0000 asID: 58495 IP address blocks: 103.190.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 18:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c6:bb:7a:49:a0:2a:92:a0:f8:99:50:f5:bc:c4:8f:7b:3a:80:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Validity Not Before: Oct 22 14:34:15 2023 GMT Not After : Oct 20 14:39:15 2024 GMT Subject: CN=1A839319DE25D6730EF851DD474EB582240D2683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:47:49:e3:69:ea:bc:91:01:77:fa:1b:62:db: 4d:48:d9:ad:a7:cb:cc:13:67:d6:ff:62:33:0d:b5: c0:03:8b:71:ec:8f:87:fc:b3:b0:73:74:47:73:94: 8c:73:20:75:0c:af:bb:82:a6:70:0a:49:73:d4:6b: 19:b7:eb:9c:71:9e:9a:c4:7d:08:a3:c9:04:58:ee: 5e:7a:54:32:c7:53:93:68:87:f1:eb:d5:93:61:46: b7:bf:e2:6d:e6:08:ee:44:6a:30:60:15:d6:26:b1: d6:e8:49:21:be:2f:be:0b:67:c5:fe:e7:71:9a:78: 66:d1:e2:0b:d5:29:24:69:48:67:d8:ee:cd:4b:5c: a1:47:21:90:99:5a:2d:1d:80:ae:24:d1:79:dc:3b: ec:d5:41:87:a8:59:dd:3b:c3:06:dc:74:1f:68:71: 12:eb:5a:f9:91:63:12:ec:05:34:b3:e4:5f:9b:9e: f9:81:cf:c4:fa:43:0b:63:fb:a7:09:2e:0e:7a:14: 7c:55:a6:05:51:fb:e3:6e:76:97:b9:58:13:af:7d: e3:88:8c:25:2d:e5:dd:0e:72:f5:16:84:4c:e1:13: 6b:d2:22:64:22:2b:d8:b2:98:5a:ed:07:8b:3b:6f: af:c7:43:fb:30:c1:d0:d7:af:83:65:6d:71:ec:97: 76:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:83:93:19:DE:25:D6:73:0E:F8:51:DD:47:4E:B5:82:24:0D:26:83 X509v3 Authority Key Identifier: keyid:86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.134.0/23 Signature Algorithm: sha256WithRSAEncryption 19:30:3a:c5:b6:77:a1:ba:c0:9d:f0:ed:9f:fd:6e:f9:4a:52: 5a:c4:0e:3e:8e:c2:80:7f:91:27:35:ea:53:85:91:b0:16:58: a6:75:95:34:1a:12:f0:1f:ab:70:28:2c:fc:28:51:e2:ae:a9: 88:84:39:a8:ac:fd:42:21:ce:3f:e4:81:ed:dc:ad:0a:58:11: d5:c8:ad:da:13:c5:f7:48:eb:b8:99:b7:ac:8b:d0:36:3a:92: 2c:42:be:5e:11:f0:39:07:00:4d:3e:18:fa:6c:f4:2e:09:2f: 33:3d:27:11:cc:c7:e6:45:70:59:33:34:82:f0:d6:e6:81:e3: 36:c4:69:50:0f:29:92:ac:79:9c:fe:72:65:6c:19:c2:e2:50: 0e:96:f5:db:e0:c5:ef:58:bf:68:be:fc:b2:78:73:aa:54:ef: 7f:bd:4f:e8:16:85:7b:fa:df:ac:aa:8b:be:d6:cb:c9:39:81: b8:7b:0d:fc:99:74:43:8f:6e:d8:d5:cc:66:9b:c5:e6:41:a3: 9c:88:b2:6d:c1:0f:e0:fd:be:7c:9e:8c:ee:92:07:39:9e:94: 34:33:2a:d2:14:12:35:24:44:14:95:21:06:d2:32:da:88:b6: 62:bd:74:f3:60:d9:54:92:09:92:a9:e4:be:e3:9d:42:84:37: ec:6e:45:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIMa7ekmgKpKg+JlQ9bzEj3s6gM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5 NUE0MjhERDAeFw0yMzEwMjIxNDM0MTVaFw0yNDEwMjAxNDM5MTVaMDMxMTAvBgNV BAMTKDFBODM5MzE5REUyNUQ2NzMwRUY4NTFERDQ3NEVCNTgyMjQwRDI2ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9R0njaeq8kQF3+hti201I2a2n y8wTZ9b/YjMNtcADi3Hsj4f8s7BzdEdzlIxzIHUMr7uCpnAKSXPUaxm365xxnprE fQijyQRY7l56VDLHU5Noh/Hr1ZNhRre/4m3mCO5EajBgFdYmsdboSSG+L74LZ8X+ 53GaeGbR4gvVKSRpSGfY7s1LXKFHIZCZWi0dgK4k0XncO+zVQYeoWd07wwbcdB9o cRLrWvmRYxLsBTSz5F+bnvmBz8T6Qwtj+6cJLg56FHxVpgVR++Nudpe5WBOvfeOI jCUt5d0OcvUWhEzhE2vSImQiK9iymFrtB4s7b6/HQ/swwdDXr4NlbXHsl3YfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGoOTGd4l1nMO+FHdR061giQNJoMwHwYDVR0j BBgwFoAUhsjjpLSW65Om7vaEFQNiwpWkKN0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTYzYjdkNy1lYTgzLTRiZTktYjJmYy1iMzBlYjBiNDRkMGEvMC84NkM4RTNBNEI0 OTZFQjkzQTZFRUY2ODQxNTAzNjJDMjk1QTQyOERELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5NUE0 MjhERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNjNiN2Q3LWVhODMtNGJlOS1i MmZjLWIzMGViMGI0NGQwYS8wLzMxMzAzMzJlMzEzOTMwMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ76GMA0GCSqG SIb3DQEBCwUAA4IBAQAZMDrFtnehusCd8O2f/W75SlJaxA4+jsKAf5EnNepThZGw FlimdZU0GhLwH6twKCz8KFHirqmIhDmorP1CIc4/5IHt3K0KWBHVyK3aE8X3SOu4 mbesi9A2OpIsQr5eEfA5BwBNPhj6bPQuCS8zPScRzMfmRXBZMzSC8NbmgeM2xGlQ DymSrHmc/nJlbBnC4lAOlvXb4MXvWL9ovvyyeHOqVO9/vU/oFoV7+t+sqou+1svJ OYG4ew38mXRDj27Y1cxmm8XmQaOciLJtwQ/g/b58nozukgc5npQ0MyrSFBI1JEQU lSEG0jLaiLZivXTzYNlUkgmSqeS+451ChDfsbkVg -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:39 2024 by rpki-client on console-ams.rpki-client.org