$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa File: 3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa (raw, json) Hash identifier: o7pcYSTOExV6f4Mz32EwWDjgPtKRl0MlGnQhCBGCJhg= Subject key identifier: 46:79:15:05:24:3D:FB:85:44:2A:11:C9:C4:89:81:F1:37:71:2D:5F Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 7D6F71B8EAA6A61C083DF9D419D787ED5F2411C6 Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa Signing time: Wed 20 Dec 2023 19:00:02 +0000 ROA not before: Wed 20 Dec 2023 18:55:02 +0000 ROA not after: Wed 18 Dec 2024 19:00:02 +0000 asID: 139981 IP address blocks: 103.148.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:6f:71:b8:ea:a6:a6:1c:08:3d:f9:d4:19:d7:87:ed:5f:24:11:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Dec 20 18:55:02 2023 GMT Not After : Dec 18 19:00:02 2024 GMT Subject: CN=46791505243DFB85442A11C9C48981F137712D5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:88:1b:19:cb:f1:33:e5:00:34:64:56:b2: 4c:21:a7:03:01:06:da:2c:6f:cc:3e:23:de:8f:07: c7:28:3a:02:93:f4:5c:83:a4:58:84:1c:93:51:6d: 87:d4:df:c4:a6:27:a8:9c:34:e0:e4:1c:44:21:4d: 43:63:38:54:f5:ee:9d:cf:20:d6:5d:a1:de:fc:ae: cd:59:8b:7b:1c:aa:cc:98:a0:44:d6:62:5e:90:68: 98:51:33:5d:f9:4b:38:ed:6d:34:27:78:c2:3b:3a: 90:ed:24:31:0d:52:8a:04:b8:15:e1:7c:a0:69:f8: 0d:22:1c:4e:c9:00:80:98:c5:ae:19:5b:f3:11:1b: 12:53:d3:f0:76:95:0c:06:ef:05:05:7d:2f:bb:74: c5:c0:5a:6c:b6:13:a4:cc:72:8b:0d:09:22:1f:6e: bb:c5:9c:07:58:5f:7c:b2:08:93:30:fd:e6:6d:cf: 23:8d:07:89:83:c3:f2:62:65:72:bd:b6:e4:5d:5e: c9:77:11:4c:46:49:26:16:b9:d9:fe:9a:0e:64:ab: f8:bc:5a:46:0d:6b:4e:2b:d6:77:12:be:1f:1c:bd: d1:4f:77:75:f8:be:32:27:ae:82:bb:23:04:32:c0: 83:f3:ff:61:73:c4:40:74:0c:2e:74:40:70:df:b4: f6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:79:15:05:24:3D:FB:85:44:2A:11:C9:C4:89:81:F1:37:71:2D:5F X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption 76:e1:2f:06:5b:10:8b:0b:37:fc:36:8a:4b:4c:33:06:db:66: 51:64:ac:51:32:1b:3d:5e:66:d2:cc:e5:2e:52:93:ac:8c:47: 10:e3:a4:a4:f1:78:5b:43:ac:b3:28:5a:dc:66:24:e0:68:17: 88:c5:91:9b:d9:8b:27:02:85:67:68:56:cc:8d:c0:fd:f7:3c: b1:7f:22:11:8f:48:5f:78:58:dc:82:36:01:50:9d:c7:04:a1: cd:d7:bd:aa:0d:5a:b2:cf:f4:11:67:9a:2e:74:a4:81:e5:64: 11:e5:14:66:27:1a:3c:71:54:28:13:c8:17:f6:18:2b:b7:33: fa:7e:f4:5a:ac:4b:cd:d1:b0:1c:8d:d1:1b:87:18:17:f1:88: e8:8a:92:b8:28:1f:ae:45:7f:2e:54:57:8e:f9:fe:f5:7f:95: 6e:1d:83:b4:65:db:05:4d:17:fb:af:78:b5:9f:bf:77:3f:bc: d9:df:5f:34:23:72:d2:c5:f4:64:39:c9:0e:a3:2f:e0:b9:87: ea:ab:7e:9f:d6:4f:65:5e:cb:bf:0a:78:ac:18:5a:b8:ed:f1: 89:39:fb:79:32:4e:e6:96:a9:fa:6a:5a:f1:99:75:5a:88:56: 6f:9c:5f:cc:b2:cf:b0:d1:42:19:c3:d2:9b:12:43:05:58:be: ba:46:8d:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfW9xuOqmphwIPfnUGdeH7V8kEcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yMzEyMjAxODU1MDJaFw0yNDEyMTgxOTAwMDJaMDMxMTAvBgNV BAMTKDQ2NzkxNTA1MjQzREZCODU0NDJBMTFDOUM0ODk4MUYxMzc3MTJENUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz/IgbGcvxM+UANGRWskwhpwMB Btosb8w+I96PB8coOgKT9FyDpFiEHJNRbYfU38SmJ6icNODkHEQhTUNjOFT17p3P INZdod78rs1Zi3scqsyYoETWYl6QaJhRM135SzjtbTQneMI7OpDtJDENUooEuBXh fKBp+A0iHE7JAICYxa4ZW/MRGxJT0/B2lQwG7wUFfS+7dMXAWmy2E6TMcosNCSIf brvFnAdYX3yyCJMw/eZtzyONB4mDw/JiZXK9tuRdXsl3EUxGSSYWudn+mg5kq/i8 WkYNa04r1ncSvh8cvdFPd3X4vjInroK7IwQywIPz/2FzxEB0DC50QHDftPYnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURnkVBSQ9+4VEKhHJxImB8TdxLV8wHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMxMzAzMzJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5QYMA0GCSqG SIb3DQEBCwUAA4IBAQB24S8GWxCLCzf8NopLTDMG22ZRZKxRMhs9XmbSzOUuUpOs jEcQ46Sk8XhbQ6yzKFrcZiTgaBeIxZGb2YsnAoVnaFbMjcD99zyxfyIRj0hfeFjc gjYBUJ3HBKHN172qDVqyz/QRZ5oudKSB5WQR5RRmJxo8cVQoE8gX9hgrtzP6fvRa rEvN0bAcjdEbhxgX8YjoipK4KB+uRX8uVFeO+f71f5VuHYO0ZdsFTRf7r3i1n793 P7zZ3180I3LSxfRkOckOoy/guYfqq36f1k9lXsu/CnisGFq47fGJOft5Mk7mlqn6 alrxmXVaiFZvnF/Mss+w0UIZw9KbEkMFWL66Ro2z -----END CERTIFICATE-----Generated at Sun Jun 23 10:11:53 2024 by rpki-client on console-ams.rpki-client.org