$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa File: 3130332e3134332e342e302f32342d3234203d3e20313339343034.roa (raw, json) Hash identifier: fokYhW9/gFIK27xSf2UWcGLNcXafIAYFOvtqI4bMTpQ= Subject key identifier: E1:63:28:46:BB:83:8C:87:15:6B:27:20:AC:C9:7B:B2:DE:FD:CA:70 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 2DBC6D10E10FD2BCAE73B98D654E4D5486D81FF5 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa Signing time: Mon 23 Oct 2023 09:00:00 +0000 ROA not before: Mon 23 Oct 2023 08:55:00 +0000 ROA not after: Mon 21 Oct 2024 09:00:00 +0000 asID: 139404 IP address blocks: 103.143.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bc:6d:10:e1:0f:d2:bc:ae:73:b9:8d:65:4e:4d:54:86:d8:1f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Oct 23 08:55:00 2023 GMT Not After : Oct 21 09:00:00 2024 GMT Subject: CN=E1632846BB838C87156B2720ACC97BB2DEFDCA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:72:0d:d8:5e:f8:3b:72:c0:99:b6:0c:4a:dc: 0b:23:96:27:a2:dd:d1:ca:5c:73:90:71:a8:8f:0b: a6:f2:06:58:ae:1f:07:0c:c0:db:37:3c:19:e7:fd: 7a:a9:f5:a9:1c:63:35:d5:75:14:34:7d:7f:52:26: ad:85:5d:b8:36:72:30:b3:14:12:1c:68:dc:74:23: e2:3c:56:fa:65:99:fe:f9:eb:eb:f4:cd:70:17:02: 13:ec:96:31:bb:73:9f:ca:80:cb:d3:60:d5:a7:15: 82:49:ef:10:3a:e3:ec:90:56:aa:0e:66:79:f1:40: 96:86:c6:2b:87:a6:13:81:02:32:b4:60:cd:ce:f6: d4:2d:dc:fc:20:44:62:7c:b6:bd:fc:72:10:9c:35: 8a:5b:44:2c:72:a2:6e:2b:fa:61:0e:99:71:bb:ba: 8d:8f:fc:af:1a:23:4c:b0:f1:ba:e8:59:24:a8:21: 4c:a2:9f:63:e7:00:d6:db:1b:cc:a8:9b:63:69:1a: 0d:b2:da:c1:3a:29:6b:50:e1:65:7e:f9:ee:c2:f6: b7:78:04:81:e7:85:cd:d5:a1:c4:0c:6a:85:6b:1c: 27:96:ef:46:40:21:5e:0e:d1:ca:1e:f4:6e:2f:77: ff:16:19:80:30:17:40:10:f6:0f:67:49:d3:9a:be: 46:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:63:28:46:BB:83:8C:87:15:6B:27:20:AC:C9:7B:B2:DE:FD:CA:70 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.4.0/24 Signature Algorithm: sha256WithRSAEncryption 25:22:7e:3f:29:a6:a3:53:65:48:ce:85:81:dc:f9:7d:27:cb: 4d:3c:85:0a:3d:94:7e:16:74:1b:fb:0c:87:af:11:78:c1:0d: 13:eb:f0:56:ac:e0:43:ba:29:a1:3b:f1:d6:34:ba:10:a2:e6: a4:6e:08:97:d7:5c:f5:d4:9e:49:2d:af:de:b7:00:f8:55:ea: 49:c9:2f:c3:e4:1d:9b:b0:3b:48:54:57:22:85:54:cd:e7:82: af:98:11:6a:57:7c:03:44:65:e9:d9:63:21:12:d6:95:26:37: 21:8d:87:e5:5d:91:8b:9b:d9:c0:09:05:21:3c:e4:aa:8c:27: 35:dd:c7:a5:32:ec:d5:7e:0b:25:c4:8a:21:36:b0:e5:d2:34: f5:b6:b1:e8:e1:30:38:52:57:b1:57:97:60:38:35:9e:a8:f9: 40:48:ff:07:c5:cb:66:1b:bd:84:8a:84:0a:97:53:f9:11:3c: 60:9c:df:74:19:35:50:c0:80:4f:a1:9d:32:6d:88:fa:ff:2d: 5c:ca:b2:52:8e:97:07:54:4c:b1:8f:b6:d5:a7:18:cd:f8:04: 26:e3:89:7e:4d:ec:44:42:cf:43:4a:8e:71:1d:90:80:d6:25: 3c:53:5e:8f:c4:a6:83:1f:ef:37:ed:35:e3:d0:aa:30:cb:35: 51:35:5e:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULbxtEOEP0ryuc7mNZU5NVIbYH/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yMzEwMjMwODU1MDBaFw0yNDEwMjEwOTAwMDBaMDMxMTAvBgNV BAMTKEUxNjMyODQ2QkI4MzhDODcxNTZCMjcyMEFDQzk3QkIyREVGRENBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOcg3YXvg7csCZtgxK3Asjliei 3dHKXHOQcaiPC6byBliuHwcMwNs3PBnn/Xqp9akcYzXVdRQ0fX9SJq2FXbg2cjCz FBIcaNx0I+I8Vvplmf756+v0zXAXAhPsljG7c5/KgMvTYNWnFYJJ7xA64+yQVqoO ZnnxQJaGxiuHphOBAjK0YM3O9tQt3PwgRGJ8tr38chCcNYpbRCxyom4r+mEOmXG7 uo2P/K8aI0yw8broWSSoIUyin2PnANbbG8yom2NpGg2y2sE6KWtQ4WV++e7C9rd4 BIHnhc3VocQMaoVrHCeW70ZAIV4O0coe9G4vd/8WGYAwF0AQ9g9nSdOavkZ9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4WMoRruDjIcVaycgrMl7st79ynAwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePBDANBgkqhkiG 9w0BAQsFAAOCAQEAJSJ+Pymmo1NlSM6Fgdz5fSfLTTyFCj2UfhZ0G/sMh68ReMEN E+vwVqzgQ7opoTvx1jS6EKLmpG4Il9dc9dSeSS2v3rcA+FXqSckvw+Qdm7A7SFRX IoVUzeeCr5gRald8A0Rl6dljIRLWlSY3IY2H5V2Ri5vZwAkFITzkqownNd3HpTLs 1X4LJcSKITaw5dI09bax6OEwOFJXsVeXYDg1nqj5QEj/B8XLZhu9hIqECpdT+RE8 YJzfdBk1UMCAT6GdMm2I+v8tXMqyUo6XB1RMsY+21acYzfgEJuOJfk3sRELPQ0qO cR2QgNYlPFNej8Smgx/vN+0149CqMMs1UTVeSw== -----END CERTIFICATE-----Generated at Sat Jun 22 21:55:35 2024 by rpki-client on console-ams.rpki-client.org