$ rpki-client -vvf repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa File: 3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa (raw, json) Hash identifier: myBpd9ohdDlc1v8sPJnjUTXwza2wPNVp2gf1yrokQn4= Subject key identifier: D3:A9:A1:4B:AD:35:F9:F0:30:B7:2F:0C:C2:B6:7B:4B:22:E6:2B:14 Certificate issuer: /CN=1D5FBED26611C99226941DBD91139C594B399F46 Certificate serial: 409293D6C7EA0B4B2026E92297E00BDFF3AF0B93 Authority key identifier: 1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa Signing time: Sat 23 Mar 2024 16:00:01 +0000 ROA not before: Sat 23 Mar 2024 15:55:01 +0000 ROA not after: Sat 22 Mar 2025 16:00:01 +0000 asID: 147134 IP address blocks: 103.176.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:92:93:d6:c7:ea:0b:4b:20:26:e9:22:97:e0:0b:df:f3:af:0b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D5FBED26611C99226941DBD91139C594B399F46 Validity Not Before: Mar 23 15:55:01 2024 GMT Not After : Mar 22 16:00:01 2025 GMT Subject: CN=D3A9A14BAD35F9F030B72F0CC2B67B4B22E62B14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:92:4e:a1:08:e2:0d:c2:66:2e:f7:96:9b:92: d4:dd:22:ed:fb:d0:4a:5e:36:66:d6:66:30:0c:c3: c6:ef:ea:fe:58:0f:65:a5:8c:c2:89:38:d5:1b:4a: d0:1a:0b:19:e8:ea:9c:5a:72:f3:14:d3:bc:3b:3b: 62:9a:92:6c:12:ee:01:45:06:b9:40:0d:fe:21:12: f3:c9:1a:f3:57:30:de:a0:fe:53:68:40:a8:f6:2d: ad:f4:5c:b3:eb:45:e5:fd:92:ed:13:ca:c3:9c:56: fc:88:8b:c7:cf:fd:d8:3d:f4:1e:3a:aa:8a:8a:5c: 1d:b9:0a:4a:e3:c6:98:08:aa:81:b9:c8:b8:2f:03: 24:14:6c:cd:e7:55:3a:01:42:b3:63:d3:d3:a9:33: fa:2f:b6:9f:f3:de:6f:77:6c:0b:51:99:70:49:1b: f3:73:13:95:dc:74:c3:9e:31:33:14:ca:f5:fd:2f: ab:e7:a2:26:a7:4e:75:bc:f1:b3:6f:ff:fa:ba:76: 01:53:a0:63:0a:47:ec:09:7f:6b:f5:40:35:9f:6f: c4:0c:28:0a:22:20:af:2e:0a:bf:44:ff:2d:54:5c: 37:7e:10:4e:3d:2b:ab:77:af:cb:a7:08:57:82:cd: db:61:67:54:bc:ce:e5:a3:90:90:6d:9e:15:7d:9d: b6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A9:A1:4B:AD:35:F9:F0:30:B7:2F:0C:C2:B6:7B:4B:22:E6:2B:14 X509v3 Authority Key Identifier: keyid:1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.199.0/24 Signature Algorithm: sha256WithRSAEncryption 41:06:a0:06:1d:95:88:41:64:52:d0:67:6d:fb:0d:c8:b0:ac: f4:5e:f3:d7:3f:43:c9:56:a2:e7:dc:84:1f:95:f9:fe:64:94: d2:ef:dc:49:91:9f:9a:13:8f:17:e1:bc:b5:0d:2b:26:69:f8: fd:79:12:d8:06:6e:ac:b5:6f:cf:2f:36:71:4a:13:48:36:a8: 0d:24:bd:29:d7:07:b2:57:15:34:95:ab:16:55:09:6c:ca:a4: 72:40:3e:fd:f4:8a:06:c5:75:f6:bc:50:03:cd:b9:c0:3c:14: 4e:93:39:dd:e3:77:62:12:26:55:d4:7a:a7:19:ce:3a:8e:61: 10:f9:b1:c8:85:e7:d3:b4:21:5f:8a:c3:19:01:e6:72:bd:d3: 7e:15:ab:37:51:b5:e2:b5:a2:70:8f:e5:ef:34:2f:d3:cc:d2: d2:6c:c8:6d:5f:b1:b1:7c:85:88:7a:83:e2:bf:ba:70:5d:9d: eb:39:b2:16:bd:54:67:66:d7:38:20:d6:ab:fa:cc:66:11:43: 70:12:e1:96:17:53:d4:73:e1:02:16:0c:6f:91:d7:3b:1d:c4: 26:5e:53:0c:58:19:22:0c:b9:3e:67:d1:e5:f4:a4:79:f5:28: 7e:8d:0f:0c:38:9b:17:36:1d:fc:e8:0f:7a:a7:c3:c6:a1:85: 8b:c7:69:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQJKT1sfqC0sgJukil+AL3/OvC5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0 QjM5OUY0NjAeFw0yNDAzMjMxNTU1MDFaFw0yNTAzMjIxNjAwMDFaMDMxMTAvBgNV BAMTKEQzQTlBMTRCQUQzNUY5RjAzMEI3MkYwQ0MyQjY3QjRCMjJFNjJCMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakk6hCOINwmYu95abktTdIu37 0EpeNmbWZjAMw8bv6v5YD2WljMKJONUbStAaCxno6pxacvMU07w7O2KakmwS7gFF BrlADf4hEvPJGvNXMN6g/lNoQKj2La30XLPrReX9ku0TysOcVvyIi8fP/dg99B46 qoqKXB25CkrjxpgIqoG5yLgvAyQUbM3nVToBQrNj09OpM/ovtp/z3m93bAtRmXBJ G/NzE5XcdMOeMTMUyvX9L6vnoianTnW88bNv//q6dgFToGMKR+wJf2v1QDWfb8QM KAoiIK8uCr9E/y1UXDd+EE49K6t3r8unCFeCzdthZ1S8zuWjkJBtnhV9nba5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU06mhS601+fAwty8MwrZ7SyLmKxQwHwYDVR0j BBgwFoAUHV++0mYRyZImlB29kROcWUs5n0YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YjllNmRhNC1kYzQ2LTQ3MGYtYjBlOS0xNmU2ZTU3ZDQ3OWEvMC8xRDVGQkVEMjY2 MTFDOTkyMjY5NDFEQkQ5MTEzOUM1OTRCMzk5RjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0QjM5 OUY0Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiOWU2ZGE0LWRjNDYtNDcwZi1i MGU5LTE2ZTZlNTdkNDc5YS8wLzMxMzAzMzJlMzEzNzM2MmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsMcwDQYJ KoZIhvcNAQELBQADggEBAEEGoAYdlYhBZFLQZ237DciwrPRe89c/Q8lWoufchB+V +f5klNLv3EmRn5oTjxfhvLUNKyZp+P15EtgGbqy1b88vNnFKE0g2qA0kvSnXB7JX FTSVqxZVCWzKpHJAPv30igbFdfa8UAPNucA8FE6TOd3jd2ISJlXUeqcZzjqOYRD5 sciF59O0IV+KwxkB5nK9034VqzdRteK1onCP5e80L9PM0tJsyG1fsbF8hYh6g+K/ unBdnes5sha9VGdm1zgg1qv6zGYRQ3AS4ZYXU9Rz4QIWDG+R1zsdxCZeUwxYGSIM uT5n0eX0pHn1KH6NDww4mxc2HfzoD3qnw8ahhYvHacw= -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:55 2024 by rpki-client on console-ams.rpki-client.org