$ rpki-client -vvf repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa File: 3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa (raw, json) Hash identifier: rgBStSBNRR/tsdp1tlYSFO4S5qR5nqRbKVNbN+FTi3U= Subject key identifier: 1A:B3:13:D7:F9:E4:B7:48:15:E0:13:AE:5D:43:84:DD:CB:5C:17:6C Certificate issuer: /CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Certificate serial: 7385E013DCBFB9953F7BA7677EAB5E1FD73880A8 Authority key identifier: B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa Signing time: Thu 28 Sep 2023 03:00:00 +0000 ROA not before: Thu 28 Sep 2023 02:55:00 +0000 ROA not after: Thu 26 Sep 2024 03:00:00 +0000 asID: 140384 IP address blocks: 103.149.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:85:e0:13:dc:bf:b9:95:3f:7b:a7:67:7e:ab:5e:1f:d7:38:80:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Validity Not Before: Sep 28 02:55:00 2023 GMT Not After : Sep 26 03:00:00 2024 GMT Subject: CN=1AB313D7F9E4B74815E013AE5D4384DDCB5C176C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:67:68:5f:23:7a:7c:cb:6e:e4:78:0d:db:d5: 35:b6:c4:77:7c:f3:9f:59:ce:b6:ff:3e:29:9d:fb: 24:2b:da:5d:db:d8:26:36:41:1c:e9:8d:0b:fe:97: ff:22:d8:63:3e:af:d3:65:96:b1:06:00:a8:62:50: fd:9d:88:20:f6:2d:f4:34:fc:0c:a3:38:46:f4:3b: 25:6b:24:75:02:e6:00:06:c6:d3:5b:0d:84:7e:5f: 37:89:ae:5a:c3:f1:07:c4:20:4b:a1:19:2e:f9:ae: f2:c3:52:f4:e7:a3:d7:6e:c6:d6:d4:87:ca:3f:c7: db:e5:b2:f6:ef:88:80:46:a1:21:f4:ba:db:6b:80: e1:82:4d:c3:8a:ca:dd:c0:46:51:13:0d:78:47:3d: 35:cd:fd:c3:7b:3b:c7:6e:14:d9:b0:c4:87:8c:fe: d6:24:07:d5:8d:e1:92:3a:e3:df:02:df:28:fd:5c: 3f:2c:73:55:c3:0d:d9:4b:48:65:d1:d5:53:81:2b: dc:ba:76:02:cc:46:df:fe:f7:9f:0b:8c:94:d2:88: 81:9d:4f:74:6e:ae:9c:97:5c:83:15:cb:65:f1:43: 36:cd:a9:74:6d:9f:20:52:22:f9:ad:1a:a0:fc:c1: d9:7f:f7:6b:e4:23:b0:61:7d:dd:1a:d5:7d:a6:c8: 41:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B3:13:D7:F9:E4:B7:48:15:E0:13:AE:5D:43:84:DD:CB:5C:17:6C X509v3 Authority Key Identifier: keyid:B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.239.0/24 Signature Algorithm: sha256WithRSAEncryption 62:f0:96:ce:be:88:05:ef:0a:6a:69:34:90:19:3e:f4:76:14: 90:51:02:90:4f:fc:27:32:58:57:d9:51:3c:ad:be:26:b0:26: 75:bb:96:0d:a3:41:54:d4:e8:6f:7f:a9:df:9a:36:31:81:e7: 49:67:44:46:c7:25:cd:ce:db:74:bd:c0:04:a9:cb:e2:a1:8c: 37:11:49:c6:5d:24:bc:17:4b:26:b8:fb:de:e0:1f:e8:35:d8: aa:4e:60:80:70:61:ce:ab:72:59:1d:01:ca:e2:db:4f:06:4d: d7:4a:7d:11:40:3a:51:bb:5e:f1:17:54:d2:f8:14:c3:9c:7d: 8a:9e:dd:8c:ef:6f:8d:00:a9:7a:10:f6:78:5f:4c:f4:9a:26: d6:ea:f1:ed:0f:20:8b:e7:d8:fc:77:01:56:62:0e:1d:97:20: ca:08:c5:bd:2a:af:84:35:7e:55:4d:6b:f0:0c:14:f5:a0:58: 91:e4:c5:c7:96:56:8a:d5:94:9a:14:11:14:e7:0a:9d:5b:5c: 12:be:ca:51:64:39:4c:21:83:51:17:7e:72:d8:ac:92:89:56: 44:67:f3:0f:2a:1b:64:48:b5:3c:1d:9b:72:7c:c2:7a:13:2a: d5:f6:31:59:29:0a:95:98:e7:39:77:a4:8a:fd:36:73:3f:ee: 05:94:3e:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc4XgE9y/uZU/e6dnfqteH9c4gKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJE MEI0RDhCRDAeFw0yMzA5MjgwMjU1MDBaFw0yNDA5MjYwMzAwMDBaMDMxMTAvBgNV BAMTKDFBQjMxM0Q3RjlFNEI3NDgxNUUwMTNBRTVENDM4NEREQ0I1QzE3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZ2hfI3p8y27keA3b1TW2xHd8 859Zzrb/Pimd+yQr2l3b2CY2QRzpjQv+l/8i2GM+r9NllrEGAKhiUP2diCD2LfQ0 /AyjOEb0OyVrJHUC5gAGxtNbDYR+XzeJrlrD8QfEIEuhGS75rvLDUvTno9duxtbU h8o/x9vlsvbviIBGoSH0uttrgOGCTcOKyt3ARlETDXhHPTXN/cN7O8duFNmwxIeM /tYkB9WN4ZI6498C3yj9XD8sc1XDDdlLSGXR1VOBK9y6dgLMRt/+958LjJTSiIGd T3RurpyXXIMVy2XxQzbNqXRtnyBSIvmtGqD8wdl/92vkI7Bhfd0a1X2myEFrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGrMT1/nkt0gV4BOuXUOE3ctcF2wwHwYDVR0j BBgwFoAUti5ELI0scND1q14qOh8RstC02L0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MGQzNGU3Ny02Y2Y2LTQxODctOTA4My0xYzdhODgxOWU5NjUvMC9CNjJFNDQyQzhE MkM3MEQwRjVBQjVFMkEzQTFGMTFCMkQwQjREOEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJEMEI0 RDhCRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnle8wDQYJ KoZIhvcNAQELBQADggEBAGLwls6+iAXvCmppNJAZPvR2FJBRApBP/CcyWFfZUTyt viawJnW7lg2jQVTU6G9/qd+aNjGB50lnREbHJc3O23S9wASpy+KhjDcRScZdJLwX Sya4+97gH+g12KpOYIBwYc6rclkdAcri208GTddKfRFAOlG7XvEXVNL4FMOcfYqe 3Yzvb40AqXoQ9nhfTPSaJtbq8e0PIIvn2Px3AVZiDh2XIMoIxb0qr4Q1flVNa/AM FPWgWJHkxceWVorVlJoUERTnCp1bXBK+ylFkOUwhg1EXfnLYrJKJVkRn8w8qG2RI tTwdm3J8wnoTKtX2MVkpCpWY5zl3pIr9NnM/7gWUPsA= -----END CERTIFICATE-----Generated at Sat Jun 22 13:04:57 2024 by rpki-client on console-ams.rpki-client.org