$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa File: 3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa (raw, json) Hash identifier: fJfkrNUZ22LXZ2eFwdxloDXOCffqaxnvAKklKrizBbA= Subject key identifier: 16:ED:DD:96:BE:B9:C5:DE:10:D9:82:92:7F:28:74:32:A1:76:23:7B Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 2A386C89D1FB6F43A85A75446FEEA043B37CF111 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa Signing time: Thu 20 Jun 2024 04:00:00 +0000 ROA not before: Thu 20 Jun 2024 03:55:00 +0000 ROA not after: Thu 19 Jun 2025 04:00:00 +0000 asID: 139978 IP address blocks: 103.148.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:38:6c:89:d1:fb:6f:43:a8:5a:75:44:6f:ee:a0:43:b3:7c:f1:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jun 20 03:55:00 2024 GMT Not After : Jun 19 04:00:00 2025 GMT Subject: CN=16EDDD96BEB9C5DE10D982927F287432A176237B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:dc:db:07:16:bc:16:36:5d:3d:21:82:5f: 39:ac:31:6a:87:1d:8d:7a:16:69:fb:6d:51:40:1a: 71:28:89:8e:e4:d9:0f:47:55:6a:e0:de:e2:c1:19: 00:4c:ae:0e:14:d5:2b:3e:98:58:ab:a1:84:f7:0c: 70:50:13:77:4d:c9:22:89:62:34:41:53:c0:17:6c: 59:5d:16:54:72:c6:bf:a2:00:e9:a9:ee:e7:4f:2f: d0:67:84:ba:63:4b:a0:70:1e:dc:00:29:a9:bf:c6: 6c:77:c7:48:0f:77:e8:7d:ba:0b:3f:a0:67:f4:0b: 91:c6:47:4a:83:a0:27:85:ae:ba:b6:eb:9d:08:14: a6:eb:97:91:4d:f1:74:ba:e1:b5:2a:54:91:3a:f4: 1b:e8:5d:27:8c:bd:33:5d:82:33:2d:75:d9:9a:32: ca:69:4c:81:52:f8:19:ca:ae:72:7c:47:3a:17:16: 4c:f2:80:e9:4d:8d:c2:c9:f9:1e:f6:4e:cf:ed:f0: 3b:67:a6:78:23:31:14:71:25:e8:ed:5a:91:c3:48: c6:3c:6d:f2:d3:32:f8:14:b8:ed:c2:ad:d4:ac:a4: 23:55:94:3d:cc:1c:18:6a:a5:0b:63:55:0d:76:8a: 9b:8d:73:f9:51:9e:12:3f:df:73:0d:05:fa:e6:8b: 38:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:ED:DD:96:BE:B9:C5:DE:10:D9:82:92:7F:28:74:32:A1:76:23:7B X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.19.0/24 Signature Algorithm: sha256WithRSAEncryption a9:fd:87:ae:c3:ef:31:a8:42:00:4e:22:d0:a2:f6:a7:f0:e7: 04:1a:1f:ae:a8:39:4c:39:14:ae:84:bb:d7:3b:6f:6c:4e:c1: a8:5d:b9:b7:b3:05:3e:06:59:d6:72:2f:2d:44:6f:a3:51:00: db:38:4d:88:8f:c7:78:07:63:a6:1f:5f:36:27:8d:fc:b1:42: 29:e0:f4:f6:cc:15:cf:95:b2:4b:92:fc:b3:28:73:bc:9a:4a: 66:a5:22:91:e8:a9:21:43:c2:cf:f3:28:43:a0:11:9b:8d:e1: ad:72:06:b7:ab:91:99:40:ac:3e:ab:c1:8d:60:ca:31:52:99: 63:c1:8c:f8:b0:ed:02:c1:e6:49:0e:bd:5d:88:7b:28:02:f6: c3:43:4e:64:8a:f3:31:d0:6c:73:92:61:74:a0:6a:d7:42:8e: 8b:9d:88:4a:63:7b:64:e1:7d:f6:a0:88:51:eb:bf:d1:af:dd: e5:fb:ef:59:6e:75:3a:f1:1f:ee:25:34:b1:ea:94:e5:f2:51: d5:01:38:56:b4:fe:a0:00:48:ea:35:1d:30:07:29:63:a5:a4: ed:c2:a6:8c:cd:bb:3e:67:be:aa:bb:64:09:48:29:85:dc:ff: 40:c0:3f:ca:03:1b:25:71:1d:0d:6f:cd:68:43:77:8b:42:98: 49:e8:dd:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKjhsidH7b0OoWnVEb+6gQ7N88REwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNDA2MjAwMzU1MDBaFw0yNTA2MTkwNDAwMDBaMDMxMTAvBgNV BAMTKDE2RURERDk2QkVCOUM1REUxMEQ5ODI5MjdGMjg3NDMyQTE3NjIzN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR7NzbBxa8FjZdPSGCXzmsMWqH HY16Fmn7bVFAGnEoiY7k2Q9HVWrg3uLBGQBMrg4U1Ss+mFiroYT3DHBQE3dNySKJ YjRBU8AXbFldFlRyxr+iAOmp7udPL9BnhLpjS6BwHtwAKam/xmx3x0gPd+h9ugs/ oGf0C5HGR0qDoCeFrrq2650IFKbrl5FN8XS64bUqVJE69BvoXSeMvTNdgjMtddma MsppTIFS+BnKrnJ8RzoXFkzygOlNjcLJ+R72Ts/t8DtnpngjMRRxJejtWpHDSMY8 bfLTMvgUuO3CrdSspCNVlD3MHBhqpQtjVQ12ipuNc/lRnhI/33MNBfrmizglAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFu3dlr65xd4Q2YKSfyh0MqF2I3swHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5QTMA0GCSqG SIb3DQEBCwUAA4IBAQCp/Yeuw+8xqEIATiLQovan8OcEGh+uqDlMORSuhLvXO29s TsGoXbm3swU+BlnWci8tRG+jUQDbOE2Ij8d4B2OmH182J438sUIp4PT2zBXPlbJL kvyzKHO8mkpmpSKR6KkhQ8LP8yhDoBGbjeGtcga3q5GZQKw+q8GNYMoxUpljwYz4 sO0CweZJDr1diHsoAvbDQ05kivMx0GxzkmF0oGrXQo6LnYhKY3tk4X32oIhR67/R r93l++9ZbnU68R/uJTSx6pTl8lHVAThWtP6gAEjqNR0wByljpaTtwqaMzbs+Z76q u2QJSCmF3P9AwD/KAxslcR0Nb81oQ3eLQphJ6N29 -----END CERTIFICATE-----Generated at Sat Jun 22 16:30:38 2024 by rpki-client on console-fra.rpki-client.org