$ rpki-client -vvf repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa File: 3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa (raw, json) Hash identifier: Tze4U3aeH0WFoVLno4wZX33dUgQE5sVy7Qu7BC7pGjw= Subject key identifier: 38:C2:D5:06:2D:2D:A2:4A:FA:2B:C1:77:86:E2:B4:E9:28:49:F0:10 Certificate issuer: /CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Certificate serial: 27B7CECD0625CAC3865CA34AFFF81419537CA182 Authority key identifier: DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa Signing time: Mon 31 Jul 2023 00:08:24 +0000 ROA not before: Mon 31 Jul 2023 00:03:24 +0000 ROA not after: Mon 29 Jul 2024 00:08:24 +0000 asID: 136880 IP address blocks: 103.106.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b7:ce:cd:06:25:ca:c3:86:5c:a3:4a:ff:f8:14:19:53:7c:a1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Validity Not Before: Jul 31 00:03:24 2023 GMT Not After : Jul 29 00:08:24 2024 GMT Subject: CN=38C2D5062D2DA24AFA2BC17786E2B4E92849F010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b7:4f:6c:cf:6a:4f:9b:df:13:33:19:e2:65: 5c:7a:fd:0a:2d:b1:a5:b0:46:d8:9f:25:51:10:ba: f2:ee:1f:1d:d4:9f:1f:17:31:7f:3f:b5:c8:1a:fe: 15:2f:0e:ac:9c:99:29:9e:f2:cf:65:55:3b:14:4d: 98:b6:04:33:5e:03:e3:6f:94:d0:48:a1:7a:cd:30: 0d:ba:e4:e9:33:e3:7a:38:e1:1f:f7:c1:12:39:a0: af:c1:d4:25:72:82:73:e5:97:cd:f8:56:1e:4a:e9: 3e:f5:a8:5a:2b:75:09:65:85:a7:6d:72:ad:f5:57: 7a:e5:04:ad:98:ff:1b:22:80:78:41:f8:8b:64:91: 05:42:89:b1:cd:10:26:2d:b2:7b:31:cc:ae:13:6c: 20:2a:85:91:57:87:b5:a8:d1:5e:09:80:ec:56:4c: b0:e3:c2:1e:55:d7:32:6d:e1:39:be:48:03:f5:f5: a7:ee:fc:a3:e7:5f:b1:06:6d:28:ab:2c:7e:ca:6b: ca:7f:a5:b8:d8:c6:30:58:b4:f0:d6:2d:b3:1d:25: ec:4e:38:28:e9:d5:3f:11:5f:48:fb:64:04:a4:db: 8d:d2:7f:7f:30:ad:93:30:a5:27:6e:61:63:c7:70: 34:10:87:9a:a7:48:aa:db:7a:39:5e:34:c4:03:86: 17:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C2:D5:06:2D:2D:A2:4A:FA:2B:C1:77:86:E2:B4:E9:28:49:F0:10 X509v3 Authority Key Identifier: keyid:DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.112.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:d7:f6:db:59:c3:d2:5f:30:f0:31:29:ab:f0:a2:c0:de:bc: af:08:11:c8:d3:e1:93:bf:4e:47:39:28:ca:ba:14:fb:66:aa: 0e:a8:ce:dd:80:61:4c:36:67:2f:9d:4f:eb:27:0f:5e:5e:2d: 08:48:6e:9e:3b:d7:59:9b:d3:47:95:b0:7f:61:23:8f:c7:cf: d6:af:c9:58:50:75:b1:d5:63:36:e4:de:62:1d:3a:53:e1:c2: 12:1f:d1:29:bc:69:dd:71:5f:ea:ff:b4:68:d3:0b:af:90:2b: 60:9e:2f:59:a1:b9:18:b8:fc:1f:14:91:54:03:2b:a4:f7:44: 83:97:d4:dc:b5:7c:3f:68:63:7b:a3:80:1b:b3:dc:fa:05:cb: 09:16:c3:cc:fb:18:40:0f:16:e2:6f:94:0f:c3:00:7a:6b:3b: 33:ee:d3:11:71:04:5e:cf:95:a9:db:d2:b5:ea:39:be:eb:76: df:6c:9e:16:c9:3c:1b:9c:12:fc:a0:12:f5:1a:27:2c:50:f8: 9d:39:a7:1e:5b:c9:19:15:7f:25:c2:ee:35:5f:90:85:ee:e6: 15:f1:f6:e1:40:85:82:a2:fa:27:0a:89:a6:9d:8d:13:b5:69: c8:0f:9e:7d:62:78:41:cc:8f:60:e5:fe:f6:54:bc:51:ab:9d: ab:0f:b8:65 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ7fOzQYlysOGXKNK//gUGVN8oYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBD MUIwRjkxNTAeFw0yMzA3MzEwMDAzMjRaFw0yNDA3MjkwMDA4MjRaMDMxMTAvBgNV BAMTKDM4QzJENTA2MkQyREEyNEFGQTJCQzE3Nzg2RTJCNEU5Mjg0OUYwMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0t09sz2pPm98TMxniZVx6/Qot saWwRtifJVEQuvLuHx3Unx8XMX8/tcga/hUvDqycmSme8s9lVTsUTZi2BDNeA+Nv lNBIoXrNMA265Okz43o44R/3wRI5oK/B1CVygnPll834Vh5K6T71qFordQllhadt cq31V3rlBK2Y/xsigHhB+ItkkQVCibHNECYtsnsxzK4TbCAqhZFXh7Wo0V4JgOxW TLDjwh5V1zJt4Tm+SAP19afu/KPnX7EGbSirLH7Ka8p/pbjYxjBYtPDWLbMdJexO OCjp1T8RX0j7ZASk243Sf38wrZMwpSduYWPHcDQQh5qnSKrbejleNMQDhhcTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOMLVBi0tokr6K8F3huK06ShJ8BAwHwYDVR0j BBgwFoAU3ICGACKk1dFNt4CCuscF4MGw+RUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjA3YjM3Yy0wNTA3LTQ5MTMtODMyOS0zZjE2MWI2YWZmNTYvMC9EQzgwODYwMDIy QTRENUQxNERCNzgwODJCQUM3MDVFMEMxQjBGOTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBDMUIw RjkxNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMDdiMzdjLTA1MDctNDkxMy04 MzI5LTNmMTYxYjZhZmY1Ni8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnanAwDQYJ KoZIhvcNAQELBQADggEBAJzX9ttZw9JfMPAxKavwosDevK8IEcjT4ZO/Tkc5KMq6 FPtmqg6ozt2AYUw2Zy+dT+snD15eLQhIbp4711mb00eVsH9hI4/Hz9avyVhQdbHV Yzbk3mIdOlPhwhIf0Sm8ad1xX+r/tGjTC6+QK2CeL1mhuRi4/B8UkVQDK6T3RIOX 1Ny1fD9oY3ujgBuz3PoFywkWw8z7GEAPFuJvlA/DAHprOzPu0xFxBF7Planb0rXq Ob7rdt9snhbJPBucEvygEvUaJyxQ+J05px5byRkVfyXC7jVfkIXu5hXx9uFAhYKi +icKiaadjRO1acgPnn1ieEHMj2Dl/vZUvFGrnasPuGU= -----END CERTIFICATE-----Generated at Sat Jun 22 20:20:12 2024 by rpki-client on console-fra.rpki-client.org