$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa File: 3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: 6x2nuX2Z6vNOiUxM4T/KILUtW2zibSzy3cGk4dQSOkI= Subject key identifier: 68:D7:62:4F:83:15:BA:E1:62:CD:71:D1:51:8A:7B:17:A9:44:F9:53 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 5404BA01CC4F91D858AFF383C0035FEFE18C2A7D Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa Signing time: Sun 16 Jul 2023 10:00:28 +0000 ROA not before: Sun 16 Jul 2023 09:55:28 +0000 ROA not after: Sun 14 Jul 2024 10:00:28 +0000 asID: 138866 IP address blocks: 103.140.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:04:ba:01:cc:4f:91:d8:58:af:f3:83:c0:03:5f:ef:e1:8c:2a:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 16 09:55:28 2023 GMT Not After : Jul 14 10:00:28 2024 GMT Subject: CN=68D7624F8315BAE162CD71D1518A7B17A944F953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:96:2f:0b:23:38:a1:f3:aa:91:00:5f:57:ca: ed:5f:c4:be:e8:5e:d1:ad:02:04:81:9a:35:5b:0f: 4b:68:00:d4:a1:86:ed:f6:34:ae:bc:c7:b2:49:39: 3c:06:f6:9b:39:38:fe:c2:41:24:b2:ed:4c:78:9d: 9d:f0:1b:5e:e2:92:f5:1f:cc:46:a3:02:01:f9:40: 36:2c:3a:a8:5d:63:a9:3d:98:53:d1:a3:49:f6:f1: 70:a1:44:8b:59:de:1a:dd:25:d8:df:fd:0e:c8:61: b4:35:ac:d4:83:28:76:f4:33:f9:93:07:f4:fe:c9: 04:9c:f5:b8:ed:81:d3:bc:9c:2a:d8:63:49:da:d7: 25:96:ad:8d:45:a1:79:57:ac:5b:63:85:7c:73:5b: 8a:fe:03:2d:f9:5e:68:a5:25:15:24:92:94:75:6c: 55:16:9c:e6:6e:a1:6c:4a:2a:ea:76:81:02:68:96: 19:00:b9:9b:74:a4:07:68:50:7a:d0:6f:d6:bc:da: 0c:f7:bd:3e:b7:ee:59:41:3e:83:34:9b:14:f5:bb: 80:4f:bf:13:4d:e9:6e:4f:b1:60:bf:01:fb:a8:91: a9:cb:50:a0:06:1d:33:f4:a8:aa:5c:a0:48:79:8a: 32:8c:fc:40:40:fd:f9:9c:0b:d1:71:8e:06:bf:d8: 51:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D7:62:4F:83:15:BA:E1:62:CD:71:D1:51:8A:7B:17:A9:44:F9:53 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.130.0/24 Signature Algorithm: sha256WithRSAEncryption 86:0d:5f:46:14:55:15:96:b1:fc:7f:27:46:fd:d3:7f:9f:7a: 07:f2:a5:9b:96:36:7f:8f:2b:ca:bf:c7:e0:43:98:eb:f4:1b: 20:ca:a1:f1:95:63:d2:dc:16:b6:1a:89:c6:aa:c0:70:3f:da: cf:0d:48:99:e2:7d:a4:33:15:23:9c:38:a6:1d:53:ba:d9:2f: e3:70:d0:85:b0:0d:8c:44:31:36:ad:a8:8c:44:97:ff:bb:23: 0b:eb:81:b1:3f:5b:5f:98:e9:44:d5:36:67:54:95:2d:8c:fd: 51:e3:99:2b:83:da:a7:48:10:80:3e:75:94:66:7e:b7:2e:23: bc:ec:50:cb:36:5b:09:35:14:8f:a1:1c:c3:2d:d3:47:51:1a: 51:23:27:7c:23:c8:24:da:83:1e:41:20:5c:0e:cc:5b:3b:64: 88:ae:c0:ee:65:63:8a:75:b6:70:62:9e:6d:c0:96:cc:72:f2: 34:3a:c1:6e:90:c4:02:45:79:64:d3:e7:04:73:71:7d:cc:a4: e0:4f:89:fc:4b:84:f2:f2:c5:42:ec:28:0c:1e:69:ed:50:2c: e1:90:c3:0f:62:89:1b:55:25:73:44:c6:46:38:56:b6:96:ac: 86:20:05:66:01:6c:6f:0f:72:d6:a2:86:88:36:a7:40:9e:60: 81:c9:4e:8d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVAS6AcxPkdhYr/ODwANf7+GMKn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yMzA3MTYwOTU1MjhaFw0yNDA3MTQxMDAwMjhaMDMxMTAvBgNV BAMTKDY4RDc2MjRGODMxNUJBRTE2MkNENzFEMTUxOEE3QjE3QTk0NEY5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPli8LIzih86qRAF9Xyu1fxL7o XtGtAgSBmjVbD0toANShhu32NK68x7JJOTwG9ps5OP7CQSSy7Ux4nZ3wG17ikvUf zEajAgH5QDYsOqhdY6k9mFPRo0n28XChRItZ3hrdJdjf/Q7IYbQ1rNSDKHb0M/mT B/T+yQSc9bjtgdO8nCrYY0na1yWWrY1FoXlXrFtjhXxzW4r+Ay35XmilJRUkkpR1 bFUWnOZuoWxKKup2gQJolhkAuZt0pAdoUHrQb9a82gz3vT637llBPoM0mxT1u4BP vxNN6W5PsWC/AfuokanLUKAGHTP0qKpcoEh5ijKM/EBA/fmcC9Fxjga/2FE5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaNdiT4MVuuFizXHRUYp7F6lE+VMwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjIIwDQYJ KoZIhvcNAQELBQADggEBAIYNX0YUVRWWsfx/J0b903+fegfypZuWNn+PK8q/x+BD mOv0GyDKofGVY9LcFrYaicaqwHA/2s8NSJnifaQzFSOcOKYdU7rZL+Nw0IWwDYxE MTatqIxEl/+7IwvrgbE/W1+Y6UTVNmdUlS2M/VHjmSuD2qdIEIA+dZRmfrcuI7zs UMs2Wwk1FI+hHMMt00dRGlEjJ3wjyCTagx5BIFwOzFs7ZIiuwO5lY4p1tnBinm3A lsxy8jQ6wW6QxAJFeWTT5wRzcX3MpOBPifxLhPLyxULsKAweae1QLOGQww9iiRtV JXNExkY4VraWrIYgBWYBbG8Pctaihog2p0CeYIHJTo0= -----END CERTIFICATE-----Generated at Fri May 3 04:42:12 2024 by rpki-client on console-fra.rpki-client.org