$ rpki-client -vvf repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa File: 3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: PfX9DzwLXvyNxdDllNSw2ct9smQ0aZK1Th1xA0yBymQ= Subject key identifier: 73:9F:25:C5:7B:8E:7D:03:5D:C8:FB:63:67:16:4E:28:0B:F4:D3:9E Certificate issuer: /CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Certificate serial: 345E1892090FE00FFFE46EE32BAFD11B601B2CCC Authority key identifier: 9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa Signing time: Tue 10 Oct 2023 05:00:00 +0000 ROA not before: Tue 10 Oct 2023 04:55:00 +0000 ROA not after: Tue 08 Oct 2024 05:00:00 +0000 asID: 149883 IP address blocks: 103.156.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:5e:18:92:09:0f:e0:0f:ff:e4:6e:e3:2b:af:d1:1b:60:1b:2c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Validity Not Before: Oct 10 04:55:00 2023 GMT Not After : Oct 8 05:00:00 2024 GMT Subject: CN=739F25C57B8E7D035DC8FB6367164E280BF4D39E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:3b:5b:a7:92:08:6c:a2:e2:c6:55:94:16: 9e:c4:f6:f9:2f:49:f4:e0:b0:06:38:8d:9e:b6:9f: a2:70:9d:a6:6c:aa:f6:90:ee:1e:eb:ee:1f:e9:40: f4:c4:97:a2:64:6d:06:3a:f8:7a:1f:25:1d:35:d7: 51:6e:d3:d8:57:2b:e0:8a:41:c5:09:cc:70:ed:ac: a7:35:f3:ce:91:50:e6:7a:4a:ee:04:81:46:30:30: 94:94:39:a7:ee:92:9c:7e:60:16:d3:3c:2e:73:e7: 19:c1:a5:6a:f0:13:6f:7e:2d:01:6e:4c:89:d6:20: e9:e1:8f:e0:0e:29:3a:7e:26:31:85:55:00:75:92: 54:57:4a:02:af:92:d2:7b:9c:e6:41:43:6b:fb:44: 12:29:4a:80:f0:9b:19:af:63:05:a9:4d:d3:2b:d6: db:94:37:81:00:d0:a6:6b:98:e5:72:c5:94:f0:ae: 7a:61:81:7c:1e:9e:d8:23:73:a1:ab:d1:af:e2:32: c2:b2:8b:71:70:e3:98:81:ae:63:41:e9:7f:cc:97: f8:63:75:0b:69:ad:61:81:8f:dd:12:f7:fc:61:34: 3c:60:82:97:3d:14:4f:7b:1a:56:d9:95:4a:4b:a3: f0:ff:e3:9e:bb:60:4f:34:83:54:71:40:cd:ff:4e: 52:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9F:25:C5:7B:8E:7D:03:5D:C8:FB:63:67:16:4E:28:0B:F4:D3:9E X509v3 Authority Key Identifier: keyid:9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:ba:2d:f0:cc:73:28:5c:b2:86:73:66:4f:b9:4e:ac:03:3e: 1f:a1:25:af:95:8c:ce:1b:ba:86:0f:66:4d:cf:8c:3d:e9:89: b9:37:c2:9b:0e:0e:89:58:31:56:2a:38:09:55:46:5e:61:45: 92:43:ce:44:aa:19:e7:cf:30:88:e3:c3:7b:65:9b:a6:81:8d: 87:1e:74:e8:f5:77:be:ad:ba:ae:2b:ff:01:2f:70:7b:86:2e: db:31:6e:d5:80:9d:1c:01:fd:3e:f0:55:d2:af:51:79:34:75: 4f:49:02:2c:1c:b0:37:e3:6e:ff:f2:e7:30:6a:17:60:81:6c: f2:de:13:d3:67:3c:ed:95:bd:0f:f0:65:6d:13:21:45:f9:4d: 5a:8d:ec:3e:71:5a:bf:00:dd:27:99:54:53:ee:f8:c3:87:8b: 03:05:f5:fd:c2:cb:7f:ad:e7:ea:f9:c4:a5:6a:42:1e:60:42: 7c:b0:2a:ff:c1:e7:6b:ed:f7:53:76:00:72:ad:a0:83:88:a0: 63:9b:2e:7e:ea:20:75:3a:46:6a:c2:ce:28:22:7c:df:51:32: c3:6e:2b:6e:c0:2e:d6:e4:d1:5b:7c:6c:19:57:cc:41:01:e9: e1:08:dc:81:13:a6:bc:d1:f5:50:a6:4b:06:b3:27:9f:64:84: 15:cb:6c:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNF4YkgkP4A//5G7jK6/RG2AbLMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVC MTFCMjYzMzAeFw0yMzEwMTAwNDU1MDBaFw0yNDEwMDgwNTAwMDBaMDMxMTAvBgNV BAMTKDczOUYyNUM1N0I4RTdEMDM1REM4RkI2MzY3MTY0RTI4MEJGNEQzOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwwztbp5IIbKLixlWUFp7E9vkv SfTgsAY4jZ62n6JwnaZsqvaQ7h7r7h/pQPTEl6JkbQY6+HofJR0111Fu09hXK+CK QcUJzHDtrKc1886RUOZ6Su4EgUYwMJSUOafukpx+YBbTPC5z5xnBpWrwE29+LQFu TInWIOnhj+AOKTp+JjGFVQB1klRXSgKvktJ7nOZBQ2v7RBIpSoDwmxmvYwWpTdMr 1tuUN4EA0KZrmOVyxZTwrnphgXwentgjc6Gr0a/iMsKyi3Fw45iBrmNB6X/Ml/hj dQtprWGBj90S9/xhNDxggpc9FE97GlbZlUpLo/D/4567YE80g1RxQM3/TlJxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc58lxXuOfQNdyPtjZxZOKAv0054wHwYDVR0j BBgwFoAUnmi3D35WsbqG8QUV8q6N9bEbJjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDkxNzkzZS1iZDY5LTQ1YTQtOTdhOC1jNjhhYTNkZDQ3YTMvMC85RTY4QjcwRjdF NTZCMUJBODZGMTA1MTVGMkFFOERGNUIxMUIyNjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVCMTFC MjYzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnIwwDQYJ KoZIhvcNAQELBQADggEBAD+6LfDMcyhcsoZzZk+5TqwDPh+hJa+VjM4buoYPZk3P jD3pibk3wpsODolYMVYqOAlVRl5hRZJDzkSqGefPMIjjw3tlm6aBjYcedOj1d76t uq4r/wEvcHuGLtsxbtWAnRwB/T7wVdKvUXk0dU9JAiwcsDfjbv/y5zBqF2CBbPLe E9NnPO2VvQ/wZW0TIUX5TVqN7D5xWr8A3SeZVFPu+MOHiwMF9f3Cy3+t5+r5xKVq Qh5gQnywKv/B52vt91N2AHKtoIOIoGObLn7qIHU6RmrCzigifN9RMsNuK27ALtbk 0Vt8bBlXzEEB6eEI3IETprzR9VCmSwazJ59khBXLbFI= -----END CERTIFICATE-----Generated at Fri May 31 13:02:53 2024 by rpki-client on console-ams.rpki-client.org