$ rpki-client -vvf repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa File: 3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa (raw, json) Hash identifier: jdbCx7rHUO3TAJTxh5MYk7t/nh5Y+oTgbMPqyitcqoo= Subject key identifier: E0:B0:80:82:A9:D8:92:FB:DB:17:AB:1F:BE:A8:3C:AC:09:34:9F:16 Certificate issuer: /CN=146D9338596ECF1F976FB37F330D8C0CD48414C9 Certificate serial: 7F2C54677E3D34F1B8075B96D2168D2CE60FDF65 Authority key identifier: 14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa Signing time: Tue 30 Jan 2024 08:00:02 +0000 ROA not before: Tue 30 Jan 2024 07:55:02 +0000 ROA not after: Tue 28 Jan 2025 08:00:02 +0000 asID: 140409 IP address blocks: 103.151.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.crl rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:2c:54:67:7e:3d:34:f1:b8:07:5b:96:d2:16:8d:2c:e6:0f:df:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=146D9338596ECF1F976FB37F330D8C0CD48414C9 Validity Not Before: Jan 30 07:55:02 2024 GMT Not After : Jan 28 08:00:02 2025 GMT Subject: CN=E0B08082A9D892FBDB17AB1FBEA83CAC09349F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:c7:92:2e:55:9f:0e:e2:bb:d6:f7:97:51: 03:14:a7:da:d1:c8:e4:3d:85:8e:19:ab:e1:e4:cd: b9:54:f9:f6:2e:9c:16:9e:a8:a5:d5:ed:9c:86:a4: e0:95:f9:cd:c5:21:42:f0:a3:6d:64:62:e1:69:14: d9:2c:b0:7d:14:49:20:0d:97:8f:37:a5:15:59:c6: dd:89:30:bf:47:10:9e:9f:19:d1:65:6b:1b:fc:3c: 4e:55:08:de:0c:0b:c2:86:28:6f:86:c6:36:0d:d4: 46:66:b9:69:a6:f9:d0:22:d6:4d:ad:c4:16:bf:1b: dc:b4:ea:28:a3:36:e9:e5:12:fc:c6:fc:fa:05:59: a6:94:bd:79:a7:46:a9:c9:a1:c8:7e:98:eb:6e:77: 5c:ea:4f:da:83:7c:eb:ee:ac:b2:e9:fb:5f:66:7a: df:24:4a:ef:98:7c:97:1d:9e:0d:cb:0a:50:16:4c: f5:18:dc:c2:64:bb:27:4b:16:81:04:4f:67:0d:c5: f1:bd:6e:94:b0:bf:6b:6e:5b:8a:7a:bb:35:d8:aa: ef:1b:3e:79:38:6e:33:68:98:d7:19:c6:dc:ff:c5: 18:ce:9d:63:0d:4a:58:bb:84:0b:53:e2:c0:d2:53: 4b:28:0b:6f:04:eb:f6:b1:bb:b7:49:0a:68:7b:4b: 15:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B0:80:82:A9:D8:92:FB:DB:17:AB:1F:BE:A8:3C:AC:09:34:9F:16 X509v3 Authority Key Identifier: keyid:14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.72.0/23 Signature Algorithm: sha256WithRSAEncryption 96:c2:3c:17:19:47:26:fa:88:98:9e:97:34:fc:20:17:3e:be: 74:82:7b:8e:74:80:f0:81:fe:cc:a3:e7:92:f7:be:de:f6:e0: b8:4d:6d:22:fa:d5:80:24:9f:9a:ee:a8:34:f6:bf:0e:ce:a9: c6:06:e5:bc:41:7c:55:ea:8a:ce:92:c3:20:57:2a:f3:8b:bf: 31:ab:b3:ad:ca:ca:b0:be:d1:ab:cc:39:2e:91:3b:5f:ca:19: b2:36:c9:f6:79:32:5d:34:da:20:52:50:bd:c9:d6:74:e8:a0: 67:ae:0d:74:f9:16:93:d6:87:9c:14:59:88:5c:b3:19:66:55: 79:66:c2:f1:15:ab:00:8d:ac:e0:44:68:ba:ea:53:ff:11:84: 07:83:0a:68:99:e0:55:ea:fc:43:99:92:c2:ad:ad:6f:6c:d3: ab:7d:4c:48:07:5c:fe:47:8f:d2:7f:6a:b2:23:b1:08:a4:5c: 7e:38:32:16:61:4d:cf:11:65:52:5c:e8:5c:a1:07:14:15:af: c4:61:29:34:64:33:9b:cc:1c:54:5d:39:d4:e8:ec:5c:c3:38: 9c:f8:10:8c:96:f3:6f:91:48:89:95:7c:b4:7b:99:5b:4e:03: 9a:36:36:a3:47:d5:f5:d4:f6:26:2e:4d:ab:57:16:88:11:84: 4a:3a:67:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfyxUZ349NPG4B1uW0haNLOYP32UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ2RDkzMzg1OTZFQ0YxRjk3NkZCMzdGMzMwRDhDMENE NDg0MTRDOTAeFw0yNDAxMzAwNzU1MDJaFw0yNTAxMjgwODAwMDJaMDMxMTAvBgNV BAMTKEUwQjA4MDgyQTlEODkyRkJEQjE3QUIxRkJFQTgzQ0FDMDkzNDlGMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjc8eSLlWfDuK71veXUQMUp9rR yOQ9hY4Zq+HkzblU+fYunBaeqKXV7ZyGpOCV+c3FIULwo21kYuFpFNkssH0USSAN l483pRVZxt2JML9HEJ6fGdFlaxv8PE5VCN4MC8KGKG+GxjYN1EZmuWmm+dAi1k2t xBa/G9y06iijNunlEvzG/PoFWaaUvXmnRqnJoch+mOtud1zqT9qDfOvurLLp+19m et8kSu+YfJcdng3LClAWTPUY3MJkuydLFoEET2cNxfG9bpSwv2tuW4p6uzXYqu8b Pnk4bjNomNcZxtz/xRjOnWMNSli7hAtT4sDSU0soC28E6/axu7dJCmh7SxWfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4LCAgqnYkvvbF6sfvqg8rAk0nxYwHwYDVR0j BBgwFoAUFG2TOFluzx+Xb7N/Mw2MDNSEFMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDRjZmZlMC0xZjk0LTQzZDItODFlZS04MDAzMGI1YzM3NDYvMC8xNDZEOTMzODU5 NkVDRjFGOTc2RkIzN0YzMzBEOEMwQ0Q0ODQxNEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQ2RDkzMzg1OTZFQ0YxRjk3NkZCMzdGMzMwRDhDMENENDg0 MTRDOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkNGNmZmUwLTFmOTQtNDNkMi04 MWVlLTgwMDMwYjVjMzc0Ni8wLzMxMzAzMzJlMzEzNTMxMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5dIMA0GCSqG SIb3DQEBCwUAA4IBAQCWwjwXGUcm+oiYnpc0/CAXPr50gnuOdIDwgf7Mo+eS977e 9uC4TW0i+tWAJJ+a7qg09r8OzqnGBuW8QXxV6orOksMgVyrzi78xq7OtysqwvtGr zDkukTtfyhmyNsn2eTJdNNogUlC9ydZ06KBnrg10+RaT1oecFFmIXLMZZlV5ZsLx FasAjazgRGi66lP/EYQHgwpomeBV6vxDmZLCra1vbNOrfUxIB1z+R4/Sf2qyI7EI pFx+ODIWYU3PEWVSXOhcoQcUFa/EYSk0ZDObzBxUXTnU6Oxcwzic+BCMlvNvkUiJ lXy0e5lbTgOaNjajR9X11PYmLk2rVxaIEYRKOmf7 -----END CERTIFICATE-----Generated at Sat Jun 22 00:59:38 2024 by rpki-client on console-fra.rpki-client.org