$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa File: 3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa (raw, json) Hash identifier: VRlEMBsdZ13dWBBxjd5/IJZXqkYYr5RaxtHTuTZRIZE= Subject key identifier: FA:46:36:D1:EF:EF:5E:D9:C3:D1:23:E5:35:71:CC:5F:04:79:39:94 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 4FFA63150484AF00DCF3896C1AE00AE68ABE8D5D Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa Signing time: Tue 31 Oct 2023 05:00:02 +0000 ROA not before: Tue 31 Oct 2023 04:55:02 +0000 ROA not after: Tue 29 Oct 2024 05:00:02 +0000 asID: 138128 IP address blocks: 103.148.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fa:63:15:04:84:af:00:dc:f3:89:6c:1a:e0:0a:e6:8a:be:8d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Oct 31 04:55:02 2023 GMT Not After : Oct 29 05:00:02 2024 GMT Subject: CN=FA4636D1EFEF5ED9C3D123E53571CC5F04793994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:95:5c:fb:5c:a6:81:de:03:c0:75:f1:d3:08: f4:19:47:ab:2e:9f:d7:22:43:ae:01:a0:55:da:b0: 63:7f:b7:6b:4e:e2:e9:ec:23:4e:54:af:f3:98:14: 78:d1:8c:84:d3:8d:8f:bd:5c:4f:97:d1:ef:e3:f2: be:d1:08:ca:4a:93:ab:70:fe:92:cc:db:52:85:59: ce:2e:96:1a:64:81:36:4c:5c:f6:7e:97:60:64:45: 12:57:e4:ba:a7:ea:99:03:f2:a2:ff:8e:3b:67:47: 0b:0a:b4:7c:40:8c:bc:16:65:88:c8:1c:05:e3:e8: 23:86:35:06:f3:50:5c:ec:e1:bd:c7:ad:d2:07:2b: b1:80:de:f4:d5:f4:d9:3a:23:08:02:bc:c6:fe:d7: f8:9d:a7:d5:c7:83:4b:fd:e7:03:23:c7:97:e4:1b: 23:7a:fb:b3:a3:28:8c:a3:25:2f:b8:70:e5:d1:e0: d1:b8:b8:e8:94:ba:09:95:94:52:65:50:c9:93:fa: d8:87:76:58:fb:20:ba:44:ea:98:ab:d1:9a:28:f2: 91:68:4d:ef:80:21:de:7e:18:b6:4f:d7:d4:d1:5b: f5:f7:49:04:6d:38:3d:c9:47:5a:dd:9b:d4:cd:e7: 68:0d:82:0f:a3:d5:d3:24:40:34:8e:df:9a:dc:63: 09:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:46:36:D1:EF:EF:5E:D9:C3:D1:23:E5:35:71:CC:5F:04:79:39:94 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/23 Signature Algorithm: sha256WithRSAEncryption 43:f1:dd:8a:8c:31:82:e2:f5:34:94:2c:16:3d:a2:5f:02:13: 5a:b9:0d:f9:24:d3:e6:ee:d5:33:53:f8:02:70:10:15:b9:2a: 31:4b:51:1e:f9:d0:21:84:1d:4b:8c:bf:24:bf:4f:87:70:01: 72:a4:b6:19:ea:ab:f6:79:b1:92:6f:9b:65:17:52:bf:89:55: 82:96:b6:03:51:ad:1e:c9:80:98:64:c7:ba:b5:4b:3f:0e:4b: f3:d9:3a:82:b9:f8:70:13:64:ce:8d:be:eb:20:d8:b8:52:e8: 9c:c5:7d:64:d0:6b:d3:a2:15:f0:23:0d:9a:3c:d6:30:09:62: a9:db:79:78:de:78:89:3b:aa:7d:70:de:c7:60:17:ec:97:3b: 69:7a:9c:95:e9:4e:d9:cf:ff:0a:13:a5:bf:4c:bd:3f:bc:e0: 77:8d:c6:aa:6c:98:b1:99:57:d8:45:42:c4:51:10:7a:6d:df: 79:29:af:48:37:b2:f1:7e:2c:f4:e1:2d:df:7c:76:9f:a5:19: 41:35:be:5d:48:da:3c:d6:58:69:45:8e:30:8e:a9:ab:c0:c9: 58:a7:54:b5:33:36:32:ae:75:00:ef:02:52:36:ab:db:db:ff: 3c:1a:3b:50:cb:b1:cf:5f:1d:df:52:4d:28:d5:69:8e:d2:13: f3:99:43:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT/pjFQSErwDc84lsGuAK5oq+jV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yMzEwMzEwNDU1MDJaFw0yNDEwMjkwNTAwMDJaMDMxMTAvBgNV BAMTKEZBNDYzNkQxRUZFRjVFRDlDM0QxMjNFNTM1NzFDQzVGMDQ3OTM5OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChlVz7XKaB3gPAdfHTCPQZR6su n9ciQ64BoFXasGN/t2tO4unsI05Ur/OYFHjRjITTjY+9XE+X0e/j8r7RCMpKk6tw /pLM21KFWc4ulhpkgTZMXPZ+l2BkRRJX5Lqn6pkD8qL/jjtnRwsKtHxAjLwWZYjI HAXj6COGNQbzUFzs4b3HrdIHK7GA3vTV9Nk6IwgCvMb+1/idp9XHg0v95wMjx5fk GyN6+7OjKIyjJS+4cOXR4NG4uOiUugmVlFJlUMmT+tiHdlj7ILpE6pir0Zoo8pFo Te+AId5+GLZP19TRW/X3SQRtOD3JR1rdm9TN52gNgg+j1dMkQDSO35rcYwkvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+kY20e/vXtnD0SPlNXHMXwR5OZQwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlMYwDQYJ KoZIhvcNAQELBQADggEBAEPx3YqMMYLi9TSULBY9ol8CE1q5Dfkk0+bu1TNT+AJw EBW5KjFLUR750CGEHUuMvyS/T4dwAXKkthnqq/Z5sZJvm2UXUr+JVYKWtgNRrR7J gJhkx7q1Sz8OS/PZOoK5+HATZM6Nvusg2LhS6JzFfWTQa9OiFfAjDZo81jAJYqnb eXjeeIk7qn1w3sdgF+yXO2l6nJXpTtnP/woTpb9MvT+84HeNxqpsmLGZV9hFQsRR EHpt33kpr0g3svF+LPThLd98dp+lGUE1vl1I2jzWWGlFjjCOqavAyVinVLUzNjKu dQDvAlI2q9vb/zwaO1DLsc9fHd9STSjVaY7SE/OZQ/s= -----END CERTIFICATE-----Generated at Sat May 4 02:34:29 2024 by rpki-client on console-fra.rpki-client.org