$ rpki-client -vvf repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa File: 3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa (raw, json) Hash identifier: AaUhkIdGOTC6QJXxdRRcnp3Ezsq8d3JkWt1KZqhWvkw= Subject key identifier: B0:2E:ED:98:6A:48:59:2E:78:5B:9F:7E:D4:2D:D2:66:D6:CF:A0:D0 Certificate issuer: /CN=9D6C92F2A768B42C165992C6E76B882F559231B7 Certificate serial: 4D75B5DA25C1978BC4016AD70EBC1944F3F94050 Authority key identifier: 9D:6C:92:F2:A7:68:B4:2C:16:59:92:C6:E7:6B:88:2F:55:92:31:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa Signing time: Wed 04 Oct 2023 08:00:01 +0000 ROA not before: Wed 04 Oct 2023 07:55:01 +0000 ROA not after: Wed 02 Oct 2024 08:00:01 +0000 asID: 138882 IP address blocks: 103.140.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.crl rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:75:b5:da:25:c1:97:8b:c4:01:6a:d7:0e:bc:19:44:f3:f9:40:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D6C92F2A768B42C165992C6E76B882F559231B7 Validity Not Before: Oct 4 07:55:01 2023 GMT Not After : Oct 2 08:00:01 2024 GMT Subject: CN=B02EED986A48592E785B9F7ED42DD266D6CFA0D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:37:73:7e:7b:0a:81:2f:01:97:82:5e:e8:b9: 50:a4:67:5b:1e:a3:ef:f6:3e:3d:84:35:7c:af:30: 69:56:25:97:9b:77:9c:89:1d:75:9e:5e:27:0d:37: 60:e1:9f:15:d1:76:6f:24:c7:88:01:a3:82:9b:89: b4:90:bc:58:0e:b1:dd:0d:4e:9a:96:ca:4a:47:87: ab:8b:57:82:0f:23:63:a4:15:ca:70:aa:e8:d7:11: a3:24:73:f7:99:2f:74:59:c4:e0:af:f1:d0:44:70: d2:cf:3b:37:29:cf:7d:f8:83:90:99:0c:89:cc:41: aa:f1:fb:15:0c:0e:9f:01:cb:30:1c:19:d5:4a:5f: 39:0d:c5:e2:04:cd:13:0a:e1:dd:5d:93:81:2d:4d: 3f:b8:cb:02:38:7b:1d:58:ea:1c:85:30:9e:ca:19: cd:25:fd:76:6e:6f:5d:17:14:72:6e:18:db:57:a0: 12:67:9e:58:90:9e:ce:ac:8a:ee:2f:85:31:be:dd: c7:ac:e8:a6:7d:4f:3d:70:51:a3:85:0f:f8:3e:82: 7c:db:8e:96:da:76:1a:0f:f6:fe:f1:43:ee:b7:2a: 50:0f:b8:f0:46:52:d3:79:c6:05:f6:00:58:5a:6d: ab:60:bd:0a:2f:ff:2d:e3:a3:a4:45:b2:56:d6:a1: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2E:ED:98:6A:48:59:2E:78:5B:9F:7E:D4:2D:D2:66:D6:CF:A0:D0 X509v3 Authority Key Identifier: keyid:9D:6C:92:F2:A7:68:B4:2C:16:59:92:C6:E7:6B:88:2F:55:92:31:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.36.0/24 Signature Algorithm: sha256WithRSAEncryption 81:74:dd:cc:14:22:34:9f:1e:99:1b:a6:50:7a:00:b5:02:8b: ca:65:3b:c2:5b:56:43:48:a6:76:70:39:48:8a:31:4f:af:e9: a1:c1:92:b2:c8:74:11:fb:04:2d:75:7d:84:8f:6b:29:dc:64: 28:1f:67:35:e2:52:ac:89:06:03:f3:88:98:64:39:48:6e:95: 1e:e6:c1:1b:28:5e:7f:7b:c9:2b:91:d0:f2:49:ed:8d:62:a1: b5:90:2a:16:bd:6e:9e:b5:e0:11:f5:d0:5b:4f:4a:6a:97:1f: 05:fb:6f:5b:85:fd:6f:f2:07:f5:b3:6f:ea:ef:54:f2:60:fa: 19:95:b0:1a:a2:bc:82:aa:13:10:67:46:3c:73:94:b4:63:26: 3c:fe:ac:7d:54:2f:9d:ad:23:12:3f:7e:09:52:b1:33:71:c3: 76:af:7a:48:5b:62:2d:8d:91:f8:91:cc:3e:cd:6f:0e:bf:58: 27:0d:bc:7d:36:ad:57:86:44:16:0a:7a:ad:5a:2f:f7:30:86: 02:89:68:9e:6e:8d:64:b7:01:fc:4a:54:b6:91:c6:e9:12:30: a2:ca:4e:88:b9:57:da:cb:99:74:58:99:8d:43:65:00:6f:4d: 52:3f:9d:6f:6e:4f:3c:ec:76:c2:a3:5f:5a:19:9f:7b:e6:a8: 32:46:1b:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTXW12iXBl4vEAWrXDrwZRPP5QFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ2QzkyRjJBNzY4QjQyQzE2NTk5MkM2RTc2Qjg4MkY1 NTkyMzFCNzAeFw0yMzEwMDQwNzU1MDFaFw0yNDEwMDIwODAwMDFaMDMxMTAvBgNV BAMTKEIwMkVFRDk4NkE0ODU5MkU3ODVCOUY3RUQ0MkREMjY2RDZDRkEwRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcN3N+ewqBLwGXgl7ouVCkZ1se o+/2Pj2ENXyvMGlWJZebd5yJHXWeXicNN2DhnxXRdm8kx4gBo4KbibSQvFgOsd0N TpqWykpHh6uLV4IPI2OkFcpwqujXEaMkc/eZL3RZxOCv8dBEcNLPOzcpz334g5CZ DInMQarx+xUMDp8ByzAcGdVKXzkNxeIEzRMK4d1dk4EtTT+4ywI4ex1Y6hyFMJ7K Gc0l/XZub10XFHJuGNtXoBJnnliQns6siu4vhTG+3ces6KZ9Tz1wUaOFD/g+gnzb jpbadhoP9v7xQ+63KlAPuPBGUtN5xgX2AFhabatgvQov/y3jo6RFslbWoTp9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsC7tmGpIWS54W59+1C3SZtbPoNAwHwYDVR0j BBgwFoAUnWyS8qdotCwWWZLG52uIL1WSMbcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDA0YmFkMS0yYjNlLTQxNDEtOWZjNS1kZjk5YjJiZDBhMjIvMC85RDZDOTJGMkE3 NjhCNDJDMTY1OTkyQzZFNzZCODgyRjU1OTIzMUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQ2QzkyRjJBNzY4QjQyQzE2NTk5MkM2RTc2Qjg4MkY1NTky MzFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0MDRiYWQxLTJiM2UtNDE0MS05 ZmM1LWRmOTliMmJkMGEyMi8wLzMxMzAzMzJlMzEzNDMwMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4wkMA0GCSqG SIb3DQEBCwUAA4IBAQCBdN3MFCI0nx6ZG6ZQegC1AovKZTvCW1ZDSKZ2cDlIijFP r+mhwZKyyHQR+wQtdX2Ej2sp3GQoH2c14lKsiQYD84iYZDlIbpUe5sEbKF5/e8kr kdDySe2NYqG1kCoWvW6eteAR9dBbT0pqlx8F+29bhf1v8gf1s2/q71TyYPoZlbAa oryCqhMQZ0Y8c5S0YyY8/qx9VC+drSMSP34JUrEzccN2r3pIW2ItjZH4kcw+zW8O v1gnDbx9Nq1XhkQWCnqtWi/3MIYCiWiebo1ktwH8SlS2kcbpEjCiyk6IuVfay5l0 WJmNQ2UAb01SP51vbk887HbCo19aGZ975qgyRhsN -----END CERTIFICATE-----Generated at Wed May 1 08:04:15 2024 by rpki-client on console-ams.rpki-client.org