$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa File: 3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa (raw, json) Hash identifier: KJraJguQ7laMIEBC1Np5Kt1fMBfmXEvcADkiF683UEk= Subject key identifier: E1:04:C8:F1:3C:92:66:7E:6D:FD:D6:3A:10:41:46:04:83:67:B5:EB Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 4B62FAC4FCE02B9360E13414A4388F6C698F0A6C Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa Signing time: Thu 19 Oct 2023 08:00:00 +0000 ROA not before: Thu 19 Oct 2023 07:55:00 +0000 ROA not after: Thu 17 Oct 2024 08:00:00 +0000 asID: 139978 IP address blocks: 103.148.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:62:fa:c4:fc:e0:2b:93:60:e1:34:14:a4:38:8f:6c:69:8f:0a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Oct 19 07:55:00 2023 GMT Not After : Oct 17 08:00:00 2024 GMT Subject: CN=E104C8F13C92667E6DFDD63A104146048367B5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1b:2d:e4:1e:90:d6:5b:4c:eb:f7:7c:89:4a: fd:42:b9:38:a0:da:21:3a:50:3d:3e:38:34:fe:41: 1e:bf:13:d3:8c:46:3d:6b:c4:c8:50:0a:7b:bc:00: 7e:6b:30:53:17:cb:0e:69:cc:5d:43:fd:ac:6d:aa: 98:27:7c:f0:87:04:2d:23:ef:a4:b6:8c:93:48:6b: e6:f4:60:c2:61:9a:c0:e7:b2:30:f6:36:c8:7d:ba: 4b:1c:c9:77:a6:6f:cb:0f:0e:6f:95:ed:fb:a3:f8: d8:fb:53:0d:fc:36:13:9b:a9:84:c6:ee:84:43:8b: 2f:6b:14:19:c4:57:99:89:bc:b5:88:6f:34:cb:e0: f8:da:a4:a6:0d:ca:33:fc:b0:e8:04:a6:b7:d8:f3: 3e:45:fb:38:db:4c:37:6b:10:ff:f3:aa:d2:57:b8: 76:fa:bf:8b:67:82:48:59:c5:3f:fa:49:2e:8f:4b: c7:5a:17:43:44:e8:45:29:59:99:2e:45:b9:7e:3d: 37:4b:f4:7b:f7:b3:25:23:a1:1e:15:2b:f9:04:e9: 18:04:b9:61:d9:af:23:2e:32:1e:a1:b7:ab:ce:4b: d3:60:a1:7c:7a:11:21:bd:01:f3:29:e4:cc:73:0a: 7f:8c:ac:ad:a7:71:3c:4e:d2:27:a9:0b:6a:6f:a2: 0d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:04:C8:F1:3C:92:66:7E:6D:FD:D6:3A:10:41:46:04:83:67:B5:EB X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.18.0/24 Signature Algorithm: sha256WithRSAEncryption 53:10:83:5a:b5:ad:85:dc:38:bd:c6:7b:7b:f5:7a:f3:eb:98: 7c:49:aa:67:7c:9b:81:ac:88:af:ea:06:91:f9:a4:36:07:90: 87:3f:85:19:19:ff:73:a1:64:15:54:70:f3:49:29:0d:1f:91: 69:e9:16:3e:53:d5:13:d0:82:b1:75:c2:fe:56:d3:67:ba:03: ec:32:2a:f3:49:9c:de:37:11:97:0a:41:3e:73:5c:18:c9:18: 1f:bc:00:94:bb:9d:fe:68:b6:5b:74:e8:55:ec:96:d9:a5:81: 79:a8:55:d1:c6:ac:c9:2a:f8:62:38:04:15:c4:0e:c5:b7:98: 84:ae:2a:e1:55:01:c2:42:e0:69:05:cb:ea:79:f7:d2:b6:92: 47:35:05:bd:3c:fe:46:35:7e:1f:eb:e8:5f:13:b1:23:23:e3: a9:e0:34:d8:4e:8c:21:5e:13:ae:17:ec:73:f5:89:4a:9c:1b: 63:5a:ea:90:1b:09:a3:83:85:95:a5:05:ea:2c:63:53:2a:f4: 9f:b4:a3:64:fe:76:39:a4:dd:a2:1e:7f:bf:f5:66:65:1c:4a: 38:69:77:ae:db:fa:3c:bb:68:cb:c9:96:49:8b:2f:20:80:d9: c9:51:87:66:e8:4b:f4:e9:a1:cb:54:25:45:ab:99:25:43:e2: b0:23:7d:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS2L6xPzgK5Ng4TQUpDiPbGmPCmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yMzEwMTkwNzU1MDBaFw0yNDEwMTcwODAwMDBaMDMxMTAvBgNV BAMTKEUxMDRDOEYxM0M5MjY2N0U2REZERDYzQTEwNDE0NjA0ODM2N0I1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzGy3kHpDWW0zr93yJSv1CuTig 2iE6UD0+ODT+QR6/E9OMRj1rxMhQCnu8AH5rMFMXyw5pzF1D/axtqpgnfPCHBC0j 76S2jJNIa+b0YMJhmsDnsjD2Nsh9ukscyXemb8sPDm+V7fuj+Nj7Uw38NhObqYTG 7oRDiy9rFBnEV5mJvLWIbzTL4PjapKYNyjP8sOgEprfY8z5F+zjbTDdrEP/zqtJX uHb6v4tngkhZxT/6SS6PS8daF0NE6EUpWZkuRbl+PTdL9Hv3syUjoR4VK/kE6RgE uWHZryMuMh6ht6vOS9NgoXx6ESG9AfMp5MxzCn+MrK2ncTxO0iepC2pvog1PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4QTI8TySZn5t/dY6EEFGBINnteswHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5QSMA0GCSqG SIb3DQEBCwUAA4IBAQBTEINata2F3Di9xnt79Xrz65h8SapnfJuBrIiv6gaR+aQ2 B5CHP4UZGf9zoWQVVHDzSSkNH5Fp6RY+U9UT0IKxdcL+VtNnugPsMirzSZzeNxGX CkE+c1wYyRgfvACUu53+aLZbdOhV7JbZpYF5qFXRxqzJKvhiOAQVxA7Ft5iErirh VQHCQuBpBcvqeffStpJHNQW9PP5GNX4f6+hfE7EjI+Op4DTYTowhXhOuF+xz9YlK nBtjWuqQGwmjg4WVpQXqLGNTKvSftKNk/nY5pN2iHn+/9WZlHEo4aXeu2/o8u2jL yZZJiy8ggNnJUYdm6Ev06aHLVCVFq5klQ+KwI32V -----END CERTIFICATE-----Generated at Sat Jun 22 16:30:38 2024 by rpki-client on console-fra.rpki-client.org