$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa File: 3130332e3134332e342e302f32332d3233203d3e20313339343034.roa (raw, json) Hash identifier: vCviBuLccT7CWRQRRe12L7Vl5powdA2YAudQFBNsUgs= Subject key identifier: CE:C1:66:AB:2B:F8:52:A8:A0:9F:AF:4D:1B:FA:15:77:22:9A:42:BF Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 7E6816BAE0F04970AC81CFB45451C61B28D78138 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa Signing time: Mon 23 Oct 2023 09:00:00 +0000 ROA not before: Mon 23 Oct 2023 08:55:00 +0000 ROA not after: Mon 21 Oct 2024 09:00:00 +0000 asID: 139404 IP address blocks: 103.143.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:68:16:ba:e0:f0:49:70:ac:81:cf:b4:54:51:c6:1b:28:d7:81:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Oct 23 08:55:00 2023 GMT Not After : Oct 21 09:00:00 2024 GMT Subject: CN=CEC166AB2BF852A8A09FAF4D1BFA1577229A42BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3b:e9:d4:08:91:27:ad:10:39:3b:1f:65:00: 47:74:4f:a3:2f:7a:37:b5:b5:d5:32:42:05:e4:cc: a8:c7:ba:63:02:c6:79:9c:47:f5:23:c2:62:16:ce: 3e:f6:17:1f:d5:9f:7f:5f:db:44:bb:34:21:d6:3e: 52:43:04:8a:15:7f:bb:fd:74:fc:41:5d:21:71:79: ea:5e:b5:35:ba:5f:84:79:4f:a9:cf:cc:8c:f5:1d: 7d:6a:6f:05:17:1f:58:60:93:16:39:95:9e:7f:33: 1e:77:a7:4d:6a:16:e4:f8:09:d1:fa:35:8a:52:12: e0:10:fb:7c:c2:fb:f3:1f:4a:2b:fa:61:85:48:ff: 3d:1a:7e:96:dd:50:ac:a0:50:58:2f:2a:60:01:ba: 08:77:c0:a2:b2:57:2a:68:7d:f4:56:9d:76:24:64: 6e:c8:46:5e:c2:14:ce:d4:e5:9a:3d:00:79:f0:8a: f4:e2:e6:a1:76:05:92:cb:33:3e:d4:11:04:2c:17: 67:c6:eb:d8:29:24:17:85:da:8c:a3:6c:21:e6:47: f3:c3:95:94:95:04:e1:3a:f5:6b:ed:17:f4:b7:fc: 1d:8c:b5:57:c4:51:18:a5:aa:83:13:f6:34:1c:97: 83:f0:85:a2:9b:e7:5c:fc:ec:6b:77:19:a5:cf:cf: da:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C1:66:AB:2B:F8:52:A8:A0:9F:AF:4D:1B:FA:15:77:22:9A:42:BF X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.4.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:15:0d:da:6b:f6:e2:24:63:51:ec:20:18:0a:6c:1c:78:cd: 58:d1:8c:ca:aa:bd:14:53:74:81:52:dd:e3:0c:64:3d:f4:e9: 8a:fb:7c:31:d8:b8:20:33:53:a7:12:94:00:37:e0:1e:11:fe: 5e:81:82:e7:0a:37:87:36:f9:9c:cc:47:53:40:ad:df:42:fc: 9f:f5:44:7a:46:dc:64:20:80:f3:55:45:96:6b:c8:d0:19:63: 24:d4:91:c0:0f:b4:ba:71:e5:d4:5b:fb:77:08:e2:2f:a7:7c: fb:09:05:af:d4:81:78:35:00:7f:68:81:2f:1c:ff:e5:f6:9a: 83:2d:98:ff:fa:a5:8a:88:d3:c9:c0:7e:9a:21:1f:fa:a0:da: 15:e2:ae:e3:b3:69:a1:5c:57:25:56:ba:42:a4:b7:74:b3:59: e1:8d:17:c5:10:df:e0:a1:ae:07:b1:c6:96:b7:7b:44:a8:0a: ab:45:31:7c:f1:54:fb:f8:00:55:a4:74:99:c6:f1:a6:3d:25: 31:62:7f:d1:86:c1:d9:48:d7:95:af:63:05:9e:3d:fd:aa:65: 4a:a0:9b:29:0b:51:00:14:90:61:68:c8:fc:7a:d1:f2:35:0d: ab:01:44:40:07:6f:c3:19:d0:b3:0b:a7:fc:f3:b0:67:54:a7: 8b:b2:2e:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfmgWuuDwSXCsgc+0VFHGGyjXgTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yMzEwMjMwODU1MDBaFw0yNDEwMjEwOTAwMDBaMDMxMTAvBgNV BAMTKENFQzE2NkFCMkJGODUyQThBMDlGQUY0RDFCRkExNTc3MjI5QTQyQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFO+nUCJEnrRA5Ox9lAEd0T6Mv eje1tdUyQgXkzKjHumMCxnmcR/UjwmIWzj72Fx/Vn39f20S7NCHWPlJDBIoVf7v9 dPxBXSFxeepetTW6X4R5T6nPzIz1HX1qbwUXH1hgkxY5lZ5/Mx53p01qFuT4CdH6 NYpSEuAQ+3zC+/MfSiv6YYVI/z0afpbdUKygUFgvKmABugh3wKKyVypoffRWnXYk ZG7IRl7CFM7U5Zo9AHnwivTi5qF2BZLLMz7UEQQsF2fG69gpJBeF2oyjbCHmR/PD lZSVBOE69WvtF/S3/B2MtVfEURilqoMT9jQcl4PwhaKb51z87Gt3GaXPz9pVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzsFmqyv4Uqign69NG/oVdyKaQr8wHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWePBDANBgkqhkiG 9w0BAQsFAAOCAQEAjRUN2mv24iRjUewgGApsHHjNWNGMyqq9FFN0gVLd4wxkPfTp ivt8Mdi4IDNTpxKUADfgHhH+XoGC5wo3hzb5nMxHU0Ct30L8n/VEekbcZCCA81VF lmvI0BljJNSRwA+0unHl1Fv7dwjiL6d8+wkFr9SBeDUAf2iBLxz/5faagy2Y//ql iojTycB+miEf+qDaFeKu47NpoVxXJVa6QqS3dLNZ4Y0XxRDf4KGuB7HGlrd7RKgK q0UxfPFU+/gAVaR0mcbxpj0lMWJ/0YbB2UjXla9jBZ49/aplSqCbKQtRABSQYWjI /HrR8jUNqwFEQAdvwxnQswun/POwZ1Sni7Iu9w== -----END CERTIFICATE-----Generated at Sat Jun 22 21:00:07 2024 by rpki-client on console-fra.rpki-client.org