$ rpki-client -vvf repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa File: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (raw, json) Hash identifier: nhxKHkIysAhjscMaRQ9nAWNVY40ioTDR2DjBl2JS6Lw= Subject key identifier: 11:DC:5B:4B:AD:6B:E7:79:0C:6E:59:35:FE:F5:84:F1:F1:C2:4F:D1 Certificate issuer: /CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Certificate serial: 7A22F5CD32BF2EE78B380DE3DE1C82F380A155FE Authority key identifier: 8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa Signing time: Thu 06 Jul 2023 04:00:00 +0000 ROA not before: Thu 06 Jul 2023 03:55:00 +0000 ROA not after: Thu 04 Jul 2024 04:00:00 +0000 asID: 149712 IP address blocks: 103.186.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:22:f5:cd:32:bf:2e:e7:8b:38:0d:e3:de:1c:82:f3:80:a1:55:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Validity Not Before: Jul 6 03:55:00 2023 GMT Not After : Jul 4 04:00:00 2024 GMT Subject: CN=11DC5B4BAD6BE7790C6E5935FEF584F1F1C24FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d4:4e:bb:3d:44:1f:a0:ee:72:f2:41:cf:25: 32:0c:53:cf:06:c9:aa:9d:51:e3:e3:01:ee:9b:9d: a7:f3:5a:5a:1d:47:30:19:8c:10:ac:82:29:7c:30: 3d:2a:00:be:67:5a:72:e8:db:ed:4b:fe:b0:3a:6f: e0:e5:66:66:ac:99:f5:f0:f4:4a:cc:8b:eb:f5:bd: 16:01:83:fc:f6:72:e8:0d:50:00:b4:51:5d:cc:76: 1f:4c:1b:69:fa:eb:3c:11:91:69:73:d6:33:7c:07: 53:34:a4:c7:f5:7d:24:ce:d0:e3:ec:5d:0e:14:c6: fb:49:3b:b0:b3:dc:81:97:8a:55:cb:3f:42:3b:d0: 83:36:fe:51:88:35:69:a9:06:05:9e:6b:f7:70:d7: 56:c4:e3:eb:bd:8c:59:ac:ac:a7:99:9e:74:b5:b6: 05:20:1a:3b:fa:ad:ee:a0:d1:3d:d5:0a:a4:da:02: f8:06:05:45:00:1d:1d:a9:47:64:82:ce:3f:29:9c: f2:66:84:ed:8e:40:df:dd:4a:a5:83:a5:69:bb:b7: e5:85:db:ea:9e:cb:37:d4:8c:73:7e:d8:40:b3:ea: a6:65:92:03:95:c6:ec:c9:51:19:ee:d6:9e:40:d3: 43:29:78:30:69:25:24:af:87:93:66:5b:09:a1:9b: c4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DC:5B:4B:AD:6B:E7:79:0C:6E:59:35:FE:F5:84:F1:F1:C2:4F:D1 X509v3 Authority Key Identifier: keyid:8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/23 Signature Algorithm: sha256WithRSAEncryption 28:79:cf:64:e0:bc:c1:83:e1:17:06:e5:1a:70:4f:42:54:97: b2:19:0d:e0:ea:d4:b6:64:b7:5f:63:36:39:ee:23:95:30:21: 8e:b1:9c:07:c7:bd:dd:e1:6b:fd:1f:6c:83:34:ae:64:14:86: 0b:a8:ac:54:6e:dc:0c:f8:f2:f5:21:aa:97:99:a4:29:0c:fc: e9:6a:cc:07:b8:62:d9:00:31:cf:70:32:f0:03:5d:e3:f3:7a: bb:c8:71:77:c4:18:23:0f:e3:4b:14:18:de:f9:1f:22:98:3d: 5e:0c:de:82:5b:9f:e0:82:44:5f:ee:00:e3:de:86:7e:7f:87: 99:0c:ff:2f:c1:45:12:fe:39:13:8f:5d:38:ca:84:fc:80:0a: 64:a3:8d:32:30:35:dc:58:fb:16:7d:a1:7d:52:d7:55:22:65: 9a:a0:78:f2:e5:a9:2e:2d:6d:0f:ec:30:54:eb:1e:4d:13:45: b7:be:5c:09:3e:be:03:70:24:24:56:7a:5d:18:46:16:f4:1e: f0:b3:60:af:be:78:4c:53:7b:c8:cf:60:81:28:e7:03:8d:a7: f4:30:8e:0b:44:0d:76:c0:5a:db:b7:ba:38:ca:99:5c:e8:b9: 7b:00:bf:f4:39:97:20:55:90:07:a0:56:00:39:3e:90:89:c7: 41:53:34:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeiL1zTK/LueLOA3j3hyC84ChVf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhB MDlBNUY1OTAeFw0yMzA3MDYwMzU1MDBaFw0yNDA3MDQwNDAwMDBaMDMxMTAvBgNV BAMTKDExREM1QjRCQUQ2QkU3NzkwQzZFNTkzNUZFRjU4NEYxRjFDMjRGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP1E67PUQfoO5y8kHPJTIMU88G yaqdUePjAe6bnafzWlodRzAZjBCsgil8MD0qAL5nWnLo2+1L/rA6b+DlZmasmfXw 9ErMi+v1vRYBg/z2cugNUAC0UV3Mdh9MG2n66zwRkWlz1jN8B1M0pMf1fSTO0OPs XQ4UxvtJO7Cz3IGXilXLP0I70IM2/lGINWmpBgWea/dw11bE4+u9jFmsrKeZnnS1 tgUgGjv6re6g0T3VCqTaAvgGBUUAHR2pR2SCzj8pnPJmhO2OQN/dSqWDpWm7t+WF 2+qeyzfUjHN+2ECz6qZlkgOVxuzJURnu1p5A00MpeDBpJSSvh5NmWwmhm8T9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEdxbS61r53kMblk1/vWE8fHCT9EwHwYDVR0j BBgwFoAUjPsifaHvUdsjNku6A00PaKCaX1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjUyZWFkMy1kYzhmLTRkODYtYWZjZi1hMTQwZTViODc1MzIvMC84Q0ZCMjI3REEx RUY1MURCMjMzNjRCQkEwMzREMEY2OEEwOUE1RjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhBMDlB NUY1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnusIwDQYJ KoZIhvcNAQELBQADggEBACh5z2TgvMGD4RcG5RpwT0JUl7IZDeDq1LZkt19jNjnu I5UwIY6xnAfHvd3ha/0fbIM0rmQUhguorFRu3Az48vUhqpeZpCkM/OlqzAe4YtkA Mc9wMvADXePzervIcXfEGCMP40sUGN75HyKYPV4M3oJbn+CCRF/uAOPehn5/h5kM /y/BRRL+OROPXTjKhPyACmSjjTIwNdxY+xZ9oX1S11UiZZqgePLlqS4tbQ/sMFTr Hk0TRbe+XAk+vgNwJCRWel0YRhb0HvCzYK++eExTe8jPYIEo5wONp/QwjgtEDXbA Wtu3ujjKmVzouXsAv/Q5lyBVkAegVgA5PpCJx0FTNIg= -----END CERTIFICATE-----Generated at Sun Jun 2 17:59:29 2024 by rpki-client on console-fra.rpki-client.org