$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa File: 3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa (raw, json) Hash identifier: bvnPtv7X2JPgovVDI2tQ7dpT4EYCHPzRUin+MYYnmqw= Subject key identifier: 1B:83:A4:6D:FF:5A:48:35:C7:D9:A9:3E:90:33:BF:03:A8:8F:D4:51 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 51ED3B1BCAA657A1B3665D7F158644A262E5FBE3 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa Signing time: Mon 31 Jul 2023 00:09:41 +0000 ROA not before: Mon 31 Jul 2023 00:04:41 +0000 ROA not after: Mon 29 Jul 2024 00:09:41 +0000 asID: 138074 IP address blocks: 103.123.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ed:3b:1b:ca:a6:57:a1:b3:66:5d:7f:15:86:44:a2:62:e5:fb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jul 31 00:04:41 2023 GMT Not After : Jul 29 00:09:41 2024 GMT Subject: CN=1B83A46DFF5A4835C7D9A93E9033BF03A88FD451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c1:0c:94:15:ee:eb:07:83:ba:67:85:7d:a6: 0e:37:2e:80:98:84:fe:1e:35:3d:32:f0:e1:6b:93: 21:0a:19:bf:d2:57:91:ef:5f:59:3d:2d:94:a3:e4: d8:5a:b8:a2:98:31:91:5e:e0:df:a8:96:06:30:d7: 6c:46:d7:39:d5:51:32:0c:d9:14:d3:83:88:83:81: d3:1d:5b:e4:03:41:11:50:18:4c:77:64:2f:0f:36: 65:ff:a5:e8:a5:d7:e3:f8:20:3c:a5:06:41:e1:b5: de:c7:19:b5:e8:9b:ed:83:c5:63:93:81:a9:f9:fa: fb:11:48:12:27:5d:54:96:8b:8d:2f:9e:37:54:2c: 3b:1d:52:5f:ff:4f:3e:a5:bd:a0:78:c6:89:d0:6f: ef:41:07:a3:f2:f1:f6:28:22:fb:91:03:62:1a:b9: bd:10:8f:52:0f:ed:12:45:11:a8:e8:f7:66:05:9f: f5:eb:34:92:bd:d5:e2:3b:7e:c1:23:76:89:58:33: d7:e4:d4:3f:93:5d:17:5a:4f:5d:5b:39:74:b1:4a: 0b:3e:28:ac:02:62:3e:80:f2:10:a8:17:f7:90:4d: be:f6:63:00:e3:9a:13:09:64:9f:58:2c:40:58:13: 30:1b:5c:3b:99:eb:9f:85:a6:cd:27:c0:71:6c:27: 66:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:83:A4:6D:FF:5A:48:35:C7:D9:A9:3E:90:33:BF:03:A8:8F:D4:51 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.96.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:32:61:9c:04:ee:a2:74:e5:d4:9e:5a:36:a0:f2:aa:08:07: 5b:5f:a4:c8:af:1f:3a:be:66:6c:c6:36:5e:a8:6f:25:ac:7e: 81:5f:b0:bb:8c:b7:8b:15:11:8f:29:00:43:ae:7c:22:4f:05: 9d:dc:92:4e:0d:9d:23:bb:91:05:4b:e6:25:77:e4:de:af:36: a4:6f:b4:6b:08:16:69:ea:fb:c3:c2:62:5a:21:e3:57:ba:6a: 60:60:c4:9b:3f:4d:df:65:64:f2:80:68:0f:e2:5e:26:97:0e: f1:dc:8a:47:3f:88:1d:e9:33:66:3a:28:82:64:7c:20:78:ab: 55:dc:b9:f7:21:b3:65:65:e6:39:5f:90:12:54:87:cd:b2:43: c6:21:6b:7c:6e:6a:01:39:24:76:69:5e:39:c9:3e:15:a3:19: e5:98:b9:86:e6:5e:bb:0c:58:ea:91:d7:f8:ad:89:d1:df:e3: a8:bf:35:fa:a6:25:e1:e3:1e:e7:aa:6c:c0:be:c1:26:20:95: 9b:26:40:2c:56:9d:dd:5b:d3:76:48:72:23:d7:4d:fb:05:0b: 2a:ff:5e:ed:29:82:1a:3a:b5:78:a3:93:22:aa:ad:ab:5a:5f: 11:cd:8b:0c:17:ce:91:59:4b:ee:1f:ee:33:93:ae:97:cd:d4: 94:a8:4e:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUe07G8qmV6GzZl1/FYZEomLl++MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yMzA3MzEwMDA0NDFaFw0yNDA3MjkwMDA5NDFaMDMxMTAvBgNV BAMTKDFCODNBNDZERkY1QTQ4MzVDN0Q5QTkzRTkwMzNCRjAzQTg4RkQ0NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwQyUFe7rB4O6Z4V9pg43LoCY hP4eNT0y8OFrkyEKGb/SV5HvX1k9LZSj5NhauKKYMZFe4N+olgYw12xG1znVUTIM 2RTTg4iDgdMdW+QDQRFQGEx3ZC8PNmX/peil1+P4IDylBkHhtd7HGbXom+2DxWOT gan5+vsRSBInXVSWi40vnjdULDsdUl//Tz6lvaB4xonQb+9BB6Py8fYoIvuRA2Ia ub0Qj1IP7RJFEajo92YFn/XrNJK91eI7fsEjdolYM9fk1D+TXRdaT11bOXSxSgs+ KKwCYj6A8hCoF/eQTb72YwDjmhMJZJ9YLEBYEzAbXDuZ65+Fps0nwHFsJ2atAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG4Okbf9aSDXH2ak+kDO/A6iP1FEwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMxMzAzMzJlMzEzMjMzMmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3tgMA0GCSqG SIb3DQEBCwUAA4IBAQA/MmGcBO6idOXUnlo2oPKqCAdbX6TIrx86vmZsxjZeqG8l rH6BX7C7jLeLFRGPKQBDrnwiTwWd3JJODZ0ju5EFS+Yld+Terzakb7RrCBZp6vvD wmJaIeNXumpgYMSbP03fZWTygGgP4l4mlw7x3IpHP4gd6TNmOiiCZHwgeKtV3Ln3 IbNlZeY5X5ASVIfNskPGIWt8bmoBOSR2aV45yT4VoxnlmLmG5l67DFjqkdf4rYnR 3+OovzX6piXh4x7nqmzAvsEmIJWbJkAsVp3dW9N2SHIj1037BQsq/17tKYIaOrV4 o5Miqq2rWl8RzYsMF86RWUvuH+4zk66XzdSUqE4J -----END CERTIFICATE-----Generated at Mon May 6 20:16:35 2024 by rpki-client on console-fra.rpki-client.org