$ rpki-client -vvf repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa File: 3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa (raw, json) Hash identifier: hRAXCm5ivP0B7Fbrw/fb/bDQQN2DxAL85nboYPhpgAI= Subject key identifier: BC:63:BA:71:EA:B6:C4:6C:B2:0C:1E:DA:87:A6:AD:FF:36:D7:72:EC Certificate issuer: /CN=FBF979FD5B6D1AF690338C406BB657208D98F3DE Certificate serial: 421E616EB2398A5C1C3D364106E13B31ADCF4295 Authority key identifier: FB:F9:79:FD:5B:6D:1A:F6:90:33:8C:40:6B:B6:57:20:8D:98:F3:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBF979FD5B6D1AF690338C406BB657208D98F3DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa Signing time: Mon 31 Jul 2023 00:08:13 +0000 ROA not before: Mon 31 Jul 2023 00:03:13 +0000 ROA not after: Mon 29 Jul 2024 00:08:13 +0000 asID: 140019 IP address blocks: 103.149.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/FBF979FD5B6D1AF690338C406BB657208D98F3DE.crl rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/FBF979FD5B6D1AF690338C406BB657208D98F3DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBF979FD5B6D1AF690338C406BB657208D98F3DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:1e:61:6e:b2:39:8a:5c:1c:3d:36:41:06:e1:3b:31:ad:cf:42:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBF979FD5B6D1AF690338C406BB657208D98F3DE Validity Not Before: Jul 31 00:03:13 2023 GMT Not After : Jul 29 00:08:13 2024 GMT Subject: CN=BC63BA71EAB6C46CB20C1EDA87A6ADFF36D772EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:01:65:3e:c0:cb:dd:3a:0f:28:ac:78:0f:69: aa:dd:d5:c6:56:69:de:ca:60:06:79:c5:9c:43:d8: 02:36:a3:d2:b9:0a:82:16:94:f7:06:01:16:64:8c: 13:7f:00:91:da:1f:c4:b3:75:45:dd:08:6f:ef:27: d7:7b:c1:12:56:20:a9:ca:20:37:b4:d0:ec:de:74: b6:fe:f8:10:09:9e:fd:70:f5:c5:ac:ba:8a:1a:55: 2c:74:50:d4:07:c0:e6:2d:8c:4e:71:80:14:72:0e: 5f:20:9b:63:48:41:49:05:8c:6e:b7:0c:f3:fd:8c: c8:86:b2:bb:d5:25:5f:8a:4a:7c:7d:28:b2:7d:cb: 44:ad:34:bb:fd:93:a2:db:24:24:da:6f:d2:d4:28: 1d:fd:03:48:62:e5:4e:d0:fa:6a:34:3f:7e:1b:53: 54:08:ee:d1:82:47:e3:b8:21:4c:45:77:8f:65:e3: cf:6a:86:ed:3e:43:2f:01:30:ff:55:84:89:6f:80: a6:ff:ff:b1:27:71:21:78:3f:25:d4:b3:f0:7b:9e: 10:e1:7b:95:bc:42:ea:63:44:03:80:79:d4:20:39: 1a:42:26:03:94:0e:a7:0d:a4:6e:58:62:a0:21:16: f4:79:c0:03:ae:e1:a2:8f:5d:dd:0e:bf:a7:2f:83: 10:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:63:BA:71:EA:B6:C4:6C:B2:0C:1E:DA:87:A6:AD:FF:36:D7:72:EC X509v3 Authority Key Identifier: keyid:FB:F9:79:FD:5B:6D:1A:F6:90:33:8C:40:6B:B6:57:20:8D:98:F3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/FBF979FD5B6D1AF690338C406BB657208D98F3DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBF979FD5B6D1AF690338C406BB657208D98F3DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.116.0/24 Signature Algorithm: sha256WithRSAEncryption c3:ff:e0:68:3e:35:df:0d:6a:53:ff:b4:d9:c8:da:fa:b3:0d: bd:e0:7b:22:b8:4f:e0:01:26:27:f4:46:19:4c:4c:4a:5d:68: 87:36:b4:73:94:9f:10:7b:1d:15:5a:3b:58:dd:6f:de:4a:fc: ef:3e:6d:f6:6c:70:c8:64:58:14:93:85:dc:a9:df:0e:be:8c: bb:a7:37:e1:a8:f7:85:a9:8e:3a:13:79:79:da:5e:37:3c:83: fd:89:e1:5d:1a:aa:a0:d7:53:b4:35:60:10:c9:5c:a6:7b:2d: 84:dc:f4:b9:6f:4d:3a:68:9f:ec:a3:3c:fe:74:9a:64:ef:7a: fe:af:31:c2:32:87:a5:02:8f:27:ae:3a:04:f5:0c:8d:94:7d: c7:5f:3b:38:9e:ff:4b:66:bf:f1:3c:70:b5:76:be:ad:96:95: 3f:87:95:7a:7d:97:3e:9a:31:7a:2b:3c:c0:2b:d8:7c:b0:fa: b1:8f:6c:01:40:e8:19:da:90:30:73:11:cc:23:38:7b:4d:9c: 35:ed:d2:e3:89:27:03:03:78:17:64:0d:37:09:f1:50:8b:13: 32:7e:a0:f7:0e:27:d8:0c:55:06:a5:4d:7b:4b:05:41:fa:60: 5c:27:95:9f:07:ea:3d:5f:38:f0:59:f2:28:30:ba:31:36:84: 13:63:f4:c5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQh5hbrI5ilwcPTZBBuE7Ma3PQpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJGOTc5RkQ1QjZEMUFGNjkwMzM4QzQwNkJCNjU3MjA4 RDk4RjNERTAeFw0yMzA3MzEwMDAzMTNaFw0yNDA3MjkwMDA4MTNaMDMxMTAvBgNV BAMTKEJDNjNCQTcxRUFCNkM0NkNCMjBDMUVEQTg3QTZBREZGMzZENzcyRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfAWU+wMvdOg8orHgPaard1cZW ad7KYAZ5xZxD2AI2o9K5CoIWlPcGARZkjBN/AJHaH8SzdUXdCG/vJ9d7wRJWIKnK IDe00OzedLb++BAJnv1w9cWsuooaVSx0UNQHwOYtjE5xgBRyDl8gm2NIQUkFjG63 DPP9jMiGsrvVJV+KSnx9KLJ9y0StNLv9k6LbJCTab9LUKB39A0hi5U7Q+mo0P34b U1QI7tGCR+O4IUxFd49l489qhu0+Qy8BMP9VhIlvgKb//7EncSF4PyXUs/B7nhDh e5W8QupjRAOAedQgORpCJgOUDqcNpG5YYqAhFvR5wAOu4aKPXd0Ov6cvgxChAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvGO6ceq2xGyyDB7ah6at/zbXcuwwHwYDVR0j BBgwFoAU+/l5/VttGvaQM4xAa7ZXII2Y894wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzJkNzYyNy00N2Q3LTRmZDAtYWUwZi02M2I4NzNmZTJjODgvMC9GQkY5NzlGRDVC NkQxQUY2OTAzMzhDNDA2QkI2NTcyMDhEOThGM0RFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJGOTc5RkQ1QjZEMUFGNjkwMzM4QzQwNkJCNjU3MjA4RDk4 RjNERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzMmQ3NjI3LTQ3ZDctNGZkMC1h ZTBmLTYzYjg3M2ZlMmM4OC8wLzMxMzAzMzJlMzEzNDM5MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXQwDQYJ KoZIhvcNAQELBQADggEBAMP/4Gg+Nd8NalP/tNnI2vqzDb3geyK4T+ABJif0RhlM TEpdaIc2tHOUnxB7HRVaO1jdb95K/O8+bfZscMhkWBSThdyp3w6+jLunN+Go94Wp jjoTeXnaXjc8g/2J4V0aqqDXU7Q1YBDJXKZ7LYTc9LlvTTpon+yjPP50mmTvev6v McIyh6UCjyeuOgT1DI2UfcdfOzie/0tmv/E8cLV2vq2WlT+HlXp9lz6aMXorPMAr 2Hyw+rGPbAFA6BnakDBzEcwjOHtNnDXt0uOJJwMDeBdkDTcJ8VCLEzJ+oPcOJ9gM VQalTXtLBUH6YFwnlZ8H6j1fOPBZ8igwujE2hBNj9MU= -----END CERTIFICATE-----Generated at Sat Jun 1 18:06:23 2024 by rpki-client on console-ams.rpki-client.org