$ rpki-client -vvf repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: vX0ZrgFIlA8bO/4/cAoqqejrSbrDhSwJ9jEI34tgp2U= Subject key identifier: 15:D9:CD:E1:57:8A:7F:A2:0E:12:4D:F1:C0:FC:11:B6:42:23:92:6F Certificate issuer: /CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Certificate serial: 0CD200678233349890883EFCA9246C71C8F59D5A Authority key identifier: 48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa Signing time: Mon 30 Oct 2023 11:00:53 +0000 ROA not before: Mon 30 Oct 2023 10:55:53 +0000 ROA not after: Mon 28 Oct 2024 11:00:53 +0000 asID: 17769 IP address blocks: 103.147.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d2:00:67:82:33:34:98:90:88:3e:fc:a9:24:6c:71:c8:f5:9d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Validity Not Before: Oct 30 10:55:53 2023 GMT Not After : Oct 28 11:00:53 2024 GMT Subject: CN=15D9CDE1578A7FA20E124DF1C0FC11B64223926F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:44:a3:3c:74:6c:10:73:22:90:ed:91:d4:ac: b4:89:dc:6b:10:f0:f3:d0:07:17:c9:2f:19:cc:84: 83:4e:cb:df:e5:e7:45:55:d3:90:9b:1f:02:52:03: ff:c1:ca:cf:50:97:dd:22:c9:65:bc:09:6a:b3:f5: 1f:94:94:8d:5e:57:fd:4e:a4:79:7b:f8:f7:4c:25: d8:21:c5:32:18:ab:29:e6:4b:af:f8:a3:2e:3d:9f: 5b:41:aa:9a:31:64:6f:a3:45:3b:d2:2f:10:be:f0: 28:f2:89:10:df:13:56:ec:fb:1c:59:87:29:a3:4a: f6:63:50:e4:2c:74:65:1f:dd:75:42:66:83:66:ab: fa:dc:57:15:d8:ed:9b:e2:22:c1:0c:06:8c:e1:b9: 8c:76:a8:50:19:c1:f3:46:e2:ac:03:73:f7:75:14: ca:21:db:4a:88:aa:9a:16:a1:68:7f:6c:3e:95:f8: fe:a9:86:12:70:45:d7:28:d2:a8:2f:ae:45:e5:95: 0a:71:26:d4:19:4f:92:4f:4f:e3:84:f0:4f:2b:b1: 14:a9:67:95:9d:cd:2e:72:da:89:52:3a:0f:9b:b8: 05:42:da:92:50:ba:6b:38:2f:d0:e8:20:a0:b1:b1: ec:d1:a8:97:cb:5a:7e:fc:51:f0:cb:ac:1e:cc:0d: b3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D9:CD:E1:57:8A:7F:A2:0E:12:4D:F1:C0:FC:11:B6:42:23:92:6F X509v3 Authority Key Identifier: keyid:48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.148.0/23 Signature Algorithm: sha256WithRSAEncryption 90:63:a3:a9:17:24:ba:ec:df:6c:3f:ab:46:a3:19:21:97:a5: 81:b8:00:02:b6:f5:29:25:d2:56:63:54:03:80:82:e5:c5:e9: 89:45:be:f5:0e:19:06:45:2b:42:74:6d:94:3b:e6:0d:d1:d1: 4e:4e:dc:0a:84:c1:5e:9c:e7:cd:ff:6a:8f:29:84:b6:f8:05: 19:6b:4a:ca:29:97:dc:e6:bd:a8:96:f1:d3:fa:44:b4:de:58: 49:37:b2:1a:fd:3a:e1:40:3e:b5:47:94:d1:b4:e9:d1:0e:29: 21:8d:e8:4c:f6:56:f2:fc:1a:67:3c:25:ee:07:65:c7:44:d0: f3:43:fb:a9:dc:59:df:8b:55:4b:83:e8:28:6a:af:8b:76:2e: 8e:0d:7f:c2:0d:33:84:21:4e:c4:04:8f:e1:9f:bd:c7:12:d6: 5b:8b:3b:72:9e:1f:4d:79:fe:0a:33:b1:76:7d:10:48:ff:7a: 09:c5:b3:64:1d:a3:d4:55:c4:ed:b0:89:3f:7b:f7:32:32:57: 71:dd:6c:5c:fa:44:78:83:f4:9b:ef:d9:ac:cd:b4:65:19:96: 9e:a7:ef:2a:14:a0:00:3f:06:21:98:91:13:cd:40:6e:8a:b3: 66:46:e0:9a:bb:0a:68:14:be:4b:7e:9c:2a:62:cb:6d:e0:ad: 90:13:08:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDNIAZ4IzNJiQiD78qSRsccj1nVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1 RDI2MTU4NTAeFw0yMzEwMzAxMDU1NTNaFw0yNDEwMjgxMTAwNTNaMDMxMTAvBgNV BAMTKDE1RDlDREUxNTc4QTdGQTIwRTEyNERGMUMwRkMxMUI2NDIyMzkyNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQRKM8dGwQcyKQ7ZHUrLSJ3GsQ 8PPQBxfJLxnMhINOy9/l50VV05CbHwJSA//Bys9Ql90iyWW8CWqz9R+UlI1eV/1O pHl7+PdMJdghxTIYqynmS6/4oy49n1tBqpoxZG+jRTvSLxC+8CjyiRDfE1bs+xxZ hymjSvZjUOQsdGUf3XVCZoNmq/rcVxXY7ZviIsEMBozhuYx2qFAZwfNG4qwDc/d1 FMoh20qIqpoWoWh/bD6V+P6phhJwRdco0qgvrkXllQpxJtQZT5JPT+OE8E8rsRSp Z5WdzS5y2olSOg+buAVC2pJQums4L9DoIKCxsezRqJfLWn78UfDLrB7MDbMtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFdnN4VeKf6IOEk3xwPwRtkIjkm8wHwYDVR0j BBgwFoAUSEa5sNax3treSpwbtvkTaV0mFYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OTMxZmFlOS02MjdhLTRhMDgtYmU1Yy00NGEwYzE1NzE0ODcvMC80ODQ2QjlCMEQ2 QjFERURBREU0QTlDMUJCNkY5MTM2OTVEMjYxNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1RDI2 MTU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5MzFmYWU5LTYyN2EtNGEwOC1i ZTVjLTQ0YTBjMTU3MTQ4Ny8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OUMA0GCSqG SIb3DQEBCwUAA4IBAQCQY6OpFyS67N9sP6tGoxkhl6WBuAACtvUpJdJWY1QDgILl xemJRb71DhkGRStCdG2UO+YN0dFOTtwKhMFenOfN/2qPKYS2+AUZa0rKKZfc5r2o lvHT+kS03lhJN7Ia/TrhQD61R5TRtOnRDikhjehM9lby/BpnPCXuB2XHRNDzQ/up 3Fnfi1VLg+goaq+Ldi6ODX/CDTOEIU7EBI/hn73HEtZbiztynh9Nef4KM7F2fRBI /3oJxbNkHaPUVcTtsIk/e/cyMldx3Wxc+kR4g/Sb79mszbRlGZaep+8qFKAAPwYh mJETzUBuirNmRuCauwpoFL5LfpwqYstt4K2QEwge -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org