$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa File: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (raw, json) Hash identifier: HCOsZ4lnS6mTIpEEIP52LhgHmquwT/Npx2GquOMvTSQ= Subject key identifier: 4B:86:76:E5:84:D1:83:8D:0A:44:04:FD:2C:91:DA:E5:D4:9D:B1:6F Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 7CBB95A81775DF8422143A8D3A64D2D735AF272C Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa Signing time: Sun 10 Sep 2023 05:00:00 +0000 ROA not before: Sun 10 Sep 2023 04:55:00 +0000 ROA not after: Sun 08 Sep 2024 05:00:00 +0000 asID: 138889 IP address blocks: 103.212.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:bb:95:a8:17:75:df:84:22:14:3a:8d:3a:64:d2:d7:35:af:27:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Sep 10 04:55:00 2023 GMT Not After : Sep 8 05:00:00 2024 GMT Subject: CN=4B8676E584D1838D0A4404FD2C91DAE5D49DB16F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:33:f7:b8:e3:fe:45:73:6a:a4:20:aa:c3:80: 99:35:53:17:3a:1b:9b:86:2a:0b:4e:9d:c3:62:34: 5a:0b:8a:28:79:68:6c:eb:22:4e:d8:0c:01:6f:8d: d1:1a:a4:61:2f:ce:d3:84:78:86:9e:a0:98:2d:23: 08:27:25:cf:13:05:fb:8a:ff:6f:7b:67:c0:2e:1d: 78:9c:b6:06:b6:ec:43:a9:d7:71:b3:6f:a3:72:ba: ab:bb:04:03:2a:eb:20:8e:67:91:22:39:74:b6:75: 63:b0:09:c9:12:5a:a1:4b:d5:56:9e:10:ad:05:46: dc:b8:9c:c9:46:91:93:5f:d0:95:91:53:74:c4:b0: 27:87:1f:b3:cc:0c:15:3d:f8:64:fd:a7:b3:e2:2d: 2a:45:30:a2:91:4f:14:b8:93:b9:54:f0:4a:bc:c6: 7f:23:59:17:ce:44:66:af:95:f7:a1:10:e0:6d:eb: 05:db:e8:c3:2d:e4:c2:71:19:3d:0c:c9:5f:c3:3f: 50:b6:a3:f5:d5:ca:03:dd:2c:7e:65:22:7f:de:5e: 0a:c9:1f:65:86:74:6d:17:ac:3d:f9:3b:11:2c:3d: f9:45:d1:91:49:6a:35:89:f2:00:3a:78:1b:db:81: 76:81:7e:7c:9d:bb:49:71:ed:6d:63:0b:ee:da:1f: ca:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:86:76:E5:84:D1:83:8D:0A:44:04:FD:2C:91:DA:E5:D4:9D:B1:6F X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.239.0/24 Signature Algorithm: sha256WithRSAEncryption 23:d9:41:e7:d1:05:8a:20:18:94:b9:42:56:97:a2:bd:76:d8: b8:6f:6d:4e:88:2b:20:22:f8:49:c2:7a:17:44:72:95:08:7c: fe:d3:c0:3c:fe:b9:b1:03:e1:aa:0f:72:8f:38:50:9d:fb:da: 52:71:e1:05:35:3c:2c:60:1c:ff:d8:3e:05:ee:9a:3f:6a:34: b3:dd:75:df:7c:d6:d1:7d:16:f0:02:77:b5:67:b9:43:1e:3b: 27:26:01:12:45:32:5a:0f:e3:c0:6f:a1:a2:3c:69:71:95:f0: e5:f2:a9:65:fc:4b:c0:96:18:a7:63:ba:13:5c:60:8d:4a:f5: 7e:24:fb:54:dd:50:80:9d:67:f6:22:ca:48:bd:06:96:01:75: 97:83:9c:e0:df:55:1b:90:c4:21:1b:23:8c:32:fa:f9:37:18: 6c:a0:6d:f6:14:0c:1c:28:e3:db:1a:0b:07:06:cf:ee:07:bb: b0:6a:40:92:1e:88:ca:b3:20:e3:da:09:ad:fb:db:24:f1:ad: 9d:20:7e:9e:27:97:34:a2:ef:65:07:4d:35:f0:11:59:af:49: b2:9a:b6:89:ce:58:97:e3:83:4a:d1:ff:09:a3:20:ab:89:1f: 8a:e0:3f:ef:ce:a6:bd:d5:24:15:92:08:d8:6a:58:f0:83:7b: 1e:b2:20:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfLuVqBd134QiFDqNOmTS1zWvJywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yMzA5MTAwNDU1MDBaFw0yNDA5MDgwNTAwMDBaMDMxMTAvBgNV BAMTKDRCODY3NkU1ODREMTgzOEQwQTQ0MDRGRDJDOTFEQUU1RDQ5REIxNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUM/e44/5Fc2qkIKrDgJk1Uxc6 G5uGKgtOncNiNFoLiih5aGzrIk7YDAFvjdEapGEvztOEeIaeoJgtIwgnJc8TBfuK /297Z8AuHXictga27EOp13Gzb6Nyuqu7BAMq6yCOZ5EiOXS2dWOwCckSWqFL1Vae EK0FRty4nMlGkZNf0JWRU3TEsCeHH7PMDBU9+GT9p7PiLSpFMKKRTxS4k7lU8Eq8 xn8jWRfORGavlfehEOBt6wXb6MMt5MJxGT0MyV/DP1C2o/XVygPdLH5lIn/eXgrJ H2WGdG0XrD35OxEsPflF0ZFJajWJ8gA6eBvbgXaBfnydu0lx7W1jC+7aH8ojAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUS4Z25YTRg40KRAT9LJHa5dSdsW8wHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1O8wDQYJ KoZIhvcNAQELBQADggEBACPZQefRBYogGJS5QlaXor122LhvbU6IKyAi+EnCehdE cpUIfP7TwDz+ubED4aoPco84UJ372lJx4QU1PCxgHP/YPgXumj9qNLPddd981tF9 FvACd7VnuUMeOycmARJFMloP48BvoaI8aXGV8OXyqWX8S8CWGKdjuhNcYI1K9X4k +1TdUICdZ/Yiyki9BpYBdZeDnODfVRuQxCEbI4wy+vk3GGygbfYUDBwo49saCwcG z+4Hu7BqQJIeiMqzIOPaCa372yTxrZ0gfp4nlzSi72UHTTXwEVmvSbKatonOWJfj g0rR/wmjIKuJH4rgP+/Opr3VJBWSCNhqWPCDex6yIK0= -----END CERTIFICATE-----Generated at Fri May 3 14:51:17 2024 by rpki-client on console-fra.rpki-client.org