$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa File: 3130332e3132322e382e302f32342d3234203d3e20313530393635.roa (raw, json) Hash identifier: 8VMOmQIuXD0Wt8KNy72jxOCLFC8zDLZV4QE9gwnPRwo= Subject key identifier: 0D:A2:A9:B1:73:FB:63:34:AE:2B:8E:A1:19:92:02:D5:F7:39:D5:79 Certificate issuer: /CN=8B19ACE0A7391492B18BE27AC01D2A602872BFC0 Certificate serial: 7AAB06552F184326A01FAF096629BBA77ECCF091 Authority key identifier: 8B:19:AC:E0:A7:39:14:92:B1:8B:E2:7A:C0:1D:2A:60:28:72:BF:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa Signing time: Sat 12 Aug 2023 01:57:43 +0000 ROA not before: Sat 12 Aug 2023 01:52:43 +0000 ROA not after: Sat 10 Aug 2024 01:57:43 +0000 asID: 150965 IP address blocks: 103.122.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.crl rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ab:06:55:2f:18:43:26:a0:1f:af:09:66:29:bb:a7:7e:cc:f0:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B19ACE0A7391492B18BE27AC01D2A602872BFC0 Validity Not Before: Aug 12 01:52:43 2023 GMT Not After : Aug 10 01:57:43 2024 GMT Subject: CN=0DA2A9B173FB6334AE2B8EA1199202D5F739D579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fa:6b:59:04:00:f0:7f:fc:cd:00:d1:b9:e8: a4:7e:11:38:76:13:c8:e3:90:30:d2:27:49:2e:b6: 00:13:21:a4:47:04:1c:cd:ef:14:67:4c:1b:65:fe: c2:ee:b7:3c:b0:4d:88:bc:6d:8e:78:67:b9:eb:15: c3:2f:40:78:37:7c:be:24:d4:27:b8:c7:d4:39:29: b9:3c:6f:f0:0b:47:78:01:39:f3:3d:a8:4d:be:ab: 9b:2d:3a:1f:45:10:7b:ac:c9:42:88:d3:b7:29:cb: fb:4b:03:f6:85:f3:53:41:56:59:94:65:50:cd:76: fa:c8:34:48:c0:5d:c1:b7:4f:82:30:ca:b8:58:8e: c1:26:0b:d3:f1:75:74:a2:20:be:19:50:80:5b:68: 76:3a:25:03:d8:31:4a:6b:e1:88:39:c5:fa:84:b4: 1a:13:2f:32:e3:d8:a5:fe:33:7a:0e:6f:e3:29:da: 0c:fd:a1:67:48:13:e0:e1:cc:91:75:1b:54:db:d0: 22:7d:59:b9:0c:ec:56:55:78:92:ff:8f:4f:6a:04: 4a:e6:a8:f1:22:c6:f1:fc:66:19:a6:1b:0e:8b:03: 62:40:68:7b:cd:ec:07:8f:88:7e:59:54:ea:21:32: 52:33:85:84:90:83:82:16:56:90:c7:ff:b4:7a:e4: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A2:A9:B1:73:FB:63:34:AE:2B:8E:A1:19:92:02:D5:F7:39:D5:79 X509v3 Authority Key Identifier: keyid:8B:19:AC:E0:A7:39:14:92:B1:8B:E2:7A:C0:1D:2A:60:28:72:BF:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.8.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:89:30:f8:06:cc:6d:a0:69:a2:43:58:c6:27:f9:ec:2a:ed: 8d:fe:2b:17:bc:b7:ec:a3:c4:72:60:4c:b0:fa:2c:88:4b:a1: c3:bc:47:d0:1f:51:0d:05:92:32:f9:ce:2e:46:7b:55:a8:b9: 31:df:e7:c9:67:e3:88:57:08:a7:37:9e:de:49:89:89:9a:0c: 4b:f7:0e:f8:73:3b:05:b1:03:da:6e:24:df:b5:f4:9d:20:e5: 4c:c0:8e:61:49:12:5f:26:f6:0f:cb:21:4d:a4:67:a5:07:42: 53:e3:d4:8c:53:23:62:0c:a0:74:e3:35:01:db:a6:a4:2f:ef: 5c:70:de:06:c8:7d:27:34:f8:ab:dd:7a:ea:a8:b3:2f:86:5c: 11:0b:ff:78:58:6d:3e:77:93:f7:5a:a0:df:79:40:fe:b6:06: 79:55:3f:9b:67:91:90:bb:bd:da:82:8d:d2:45:9c:1a:51:cb: 04:fc:52:cc:36:ad:fa:1c:72:19:fa:6a:f6:a6:7a:ae:cc:96: 29:f7:1d:bb:cb:37:ab:9c:c4:34:08:55:8e:c0:70:ef:1d:2f: 01:b6:3a:61:8a:a4:24:e1:d7:30:bb:15:36:09:88:aa:f0:09: 14:db:0c:5a:45:3d:5e:ee:39:d6:98:52:67:93:39:87:41:76: 00:64:b3:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeqsGVS8YQyagH68JZim7p37M8JEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIxOUFDRTBBNzM5MTQ5MkIxOEJFMjdBQzAxRDJBNjAy ODcyQkZDMDAeFw0yMzA4MTIwMTUyNDNaFw0yNDA4MTAwMTU3NDNaMDMxMTAvBgNV BAMTKDBEQTJBOUIxNzNGQjYzMzRBRTJCOEVBMTE5OTIwMkQ1RjczOUQ1NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+mtZBADwf/zNANG56KR+ETh2 E8jjkDDSJ0kutgATIaRHBBzN7xRnTBtl/sLutzywTYi8bY54Z7nrFcMvQHg3fL4k 1Ce4x9Q5Kbk8b/ALR3gBOfM9qE2+q5stOh9FEHusyUKI07cpy/tLA/aF81NBVlmU ZVDNdvrINEjAXcG3T4IwyrhYjsEmC9PxdXSiIL4ZUIBbaHY6JQPYMUpr4Yg5xfqE tBoTLzLj2KX+M3oOb+Mp2gz9oWdIE+DhzJF1G1Tb0CJ9WbkM7FZVeJL/j09qBErm qPEixvH8ZhmmGw6LA2JAaHvN7AePiH5ZVOohMlIzhYSQg4IWVpDH/7R65FY7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDaKpsXP7YzSuK46hGZIC1fc51XkwHwYDVR0j BBgwFoAUixms4Kc5FJKxi+J6wB0qYChyv8AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDY1MjlkYi05MzMwLTRlOTctYWRmMS1iMGRkZjFhNmU1OTkvMC84QjE5QUNFMEE3 MzkxNDkyQjE4QkUyN0FDMDFEMkE2MDI4NzJCRkMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIxOUFDRTBBNzM5MTQ5MkIxOEJFMjdBQzAxRDJBNjAyODcy QkZDMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNjUyOWRiLTkzMzAtNGU5Ny1h ZGYxLWIwZGRmMWE2ZTU5OS8wLzMxMzAzMzJlMzEzMjMyMmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6CDANBgkqhkiG 9w0BAQsFAAOCAQEAW4kw+AbMbaBpokNYxif57Crtjf4rF7y37KPEcmBMsPosiEuh w7xH0B9RDQWSMvnOLkZ7Vai5Md/nyWfjiFcIpzee3kmJiZoMS/cO+HM7BbED2m4k 37X0nSDlTMCOYUkSXyb2D8shTaRnpQdCU+PUjFMjYgygdOM1AdumpC/vXHDeBsh9 JzT4q9166qizL4ZcEQv/eFhtPneT91qg33lA/rYGeVU/m2eRkLu92oKN0kWcGlHL BPxSzDat+hxyGfpq9qZ6rsyWKfcdu8s3q5zENAhVjsBw7x0vAbY6YYqkJOHXMLsV NgmIqvAJFNsMWkU9Xu451phSZ5M5h0F2AGSzGA== -----END CERTIFICATE-----Generated at Sat Jun 22 20:36:51 2024 by rpki-client on console-ams.rpki-client.org