$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa File: 3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: oZo/C0jflUCx3cjXn0TyHORu9xFMFWIKspzZNngwks4= Subject key identifier: E3:75:8E:B6:5D:C2:0F:3E:C8:C3:1A:56:9A:8B:63:25:8C:2A:06:5E Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 205B3BCB9B495E1D683C1A8AA02B8288754D9918 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa Signing time: Fri 01 Sep 2023 08:41:32 +0000 ROA not before: Fri 01 Sep 2023 08:36:32 +0000 ROA not after: Fri 30 Aug 2024 08:41:32 +0000 asID: 23679 IP address blocks: 103.103.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 07:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5b:3b:cb:9b:49:5e:1d:68:3c:1a:8a:a0:2b:82:88:75:4d:99:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Sep 1 08:36:32 2023 GMT Not After : Aug 30 08:41:32 2024 GMT Subject: CN=E3758EB65DC20F3EC8C31A569A8B63258C2A065E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:ef:06:0c:17:c1:1f:ef:ed:f6:99:9b:20: c2:97:95:d3:33:78:e1:04:c3:2f:f0:e3:57:8c:92: 65:d1:0a:b4:e2:12:35:ea:dd:f0:d5:39:40:53:22: 64:1b:ae:75:25:10:ce:85:e2:39:d8:bb:a3:7c:7f: 42:5f:0e:1c:8b:6e:c8:f6:6d:22:83:e0:d1:01:d3: 28:b8:02:49:26:c1:1f:f8:c9:be:78:36:ed:eb:e8: d8:55:ba:c0:73:7e:f3:02:56:f8:08:eb:b2:ba:99: 4d:87:65:ed:f6:c6:65:42:11:3b:00:43:1f:3d:6b: 51:9b:72:0e:45:ec:73:c1:b2:34:97:90:4e:3a:5d: 51:1b:3c:d4:fe:a8:77:72:31:1f:2c:04:70:98:a6: c8:c2:ff:7c:e4:8f:84:49:ed:46:d2:cd:71:4c:72: 92:d7:cf:f0:b8:ab:e5:30:f0:0f:48:46:8e:32:57: 71:9d:dc:7e:33:b6:c1:36:48:32:a7:21:31:a0:16: 6c:78:39:c3:61:f7:f9:b7:56:34:59:83:17:ea:7d: 87:c1:ba:bd:fe:f0:1e:4a:a9:4b:0a:63:a4:73:03: 7c:0a:48:78:f7:d2:38:54:74:4b:ee:ce:c1:2f:b3: 74:54:de:56:98:d4:1b:4d:97:3a:86:ce:ae:c0:06: 78:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:75:8E:B6:5D:C2:0F:3E:C8:C3:1A:56:9A:8B:63:25:8C:2A:06:5E X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3130332e3133392e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.139.0/24 Signature Algorithm: sha256WithRSAEncryption a7:0d:6b:e1:a3:2e:42:af:68:02:f6:25:d1:63:c6:69:a9:4d: f3:7a:ae:39:61:09:be:6a:63:d0:b7:4e:08:43:4f:66:74:4a: c9:ab:da:a6:c7:a5:36:91:3e:94:fc:ce:ec:b1:91:9a:10:aa: 7f:a5:ce:05:45:50:19:cb:1a:61:c0:55:7a:f8:c7:37:7b:2f: 74:3d:6f:ec:8f:1c:55:e4:b6:16:f8:77:92:e9:ee:92:63:10: 4f:53:a6:2f:30:6f:db:1e:db:e8:d8:5b:81:c8:83:7c:12:16: 11:99:66:6f:a2:d8:76:2e:0d:8b:34:b1:06:3b:d5:da:24:0e: 95:e2:fe:40:a0:9a:cb:cd:0e:15:a2:3c:b5:da:75:a0:a1:85: 3d:55:3a:d6:55:4c:cb:cc:2d:7a:f0:54:b1:50:94:4e:55:60: c6:c3:38:a4:40:1f:2c:ed:3f:6e:84:f9:82:b5:d4:ad:f4:37: 9b:16:6b:5c:d7:8f:82:f0:db:9d:21:36:76:2f:f3:77:ae:00: 47:92:f1:84:a0:7f:90:b2:30:81:5d:01:07:7f:59:e2:54:e7: 8f:75:c9:9b:2e:5b:f9:2d:51:69:9b:ae:9f:fd:cc:b6:90:16: 16:38:21:11:de:d7:eb:d0:6f:9d:c1:12:c9:f7:f5:86:79:85: e2:2a:00:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIFs7y5tJXh1oPBqKoCuCiHVNmRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yMzA5MDEwODM2MzJaFw0yNDA4MzAwODQxMzJaMDMxMTAvBgNV BAMTKEUzNzU4RUI2NURDMjBGM0VDOEMzMUE1NjlBOEI2MzI1OEMyQTA2NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3j+8GDBfBH+/t9pmbIMKXldMz eOEEwy/w41eMkmXRCrTiEjXq3fDVOUBTImQbrnUlEM6F4jnYu6N8f0JfDhyLbsj2 bSKD4NEB0yi4AkkmwR/4yb54Nu3r6NhVusBzfvMCVvgI67K6mU2HZe32xmVCETsA Qx89a1Gbcg5F7HPBsjSXkE46XVEbPNT+qHdyMR8sBHCYpsjC/3zkj4RJ7UbSzXFM cpLXz/C4q+Uw8A9IRo4yV3Gd3H4ztsE2SDKnITGgFmx4OcNh9/m3VjRZgxfqfYfB ur3+8B5KqUsKY6RzA3wKSHj30jhUdEvuzsEvs3RU3laY1BtNlzqGzq7ABnhTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU43WOtl3CDz7IwxpWmotjJYwqBl4wHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzEzMDMzMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2eLMA0GCSqG SIb3DQEBCwUAA4IBAQCnDWvhoy5Cr2gC9iXRY8ZpqU3zeq45YQm+amPQt04IQ09m dErJq9qmx6U2kT6U/M7ssZGaEKp/pc4FRVAZyxphwFV6+Mc3ey90PW/sjxxV5LYW +HeS6e6SYxBPU6YvMG/bHtvo2FuByIN8EhYRmWZvoth2Lg2LNLEGO9XaJA6V4v5A oJrLzQ4Vojy12nWgoYU9VTrWVUzLzC168FSxUJROVWDGwzikQB8s7T9uhPmCtdSt 9DebFmtc14+C8NudITZ2L/N3rgBHkvGEoH+QsjCBXQEHf1niVOePdcmbLlv5LVFp m66f/cy2kBYWOCER3tfr0G+dwRLJ9/WGeYXiKgBS -----END CERTIFICATE-----Generated at Sun Jun 16 08:01:12 2024 by rpki-client on console-fra.rpki-client.org