$ rpki-client -vvf repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa File: 3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa (raw, json) Hash identifier: +oXnPFJJvwc61WUVTOPwyI8ikG9eZxhp1R/huTTQBPY= Subject key identifier: C4:EB:07:56:5E:9D:40:A1:F5:57:2F:D7:19:56:1A:A3:DE:2C:BE:63 Certificate issuer: /CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Certificate serial: 652BF41F533DFE752F392845E09CFDCB7812155C Authority key identifier: 40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa Signing time: Sun 22 Oct 2023 11:00:00 +0000 ROA not before: Sun 22 Oct 2023 10:55:00 +0000 ROA not after: Sun 20 Oct 2024 11:00:00 +0000 asID: 139405 IP address blocks: 103.143.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2b:f4:1f:53:3d:fe:75:2f:39:28:45:e0:9c:fd:cb:78:12:15:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Validity Not Before: Oct 22 10:55:00 2023 GMT Not After : Oct 20 11:00:00 2024 GMT Subject: CN=C4EB07565E9D40A1F5572FD719561AA3DE2CBE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e3:07:28:04:d8:c5:5c:40:dd:1b:c4:3d:dd: 0d:f5:17:d1:15:4f:ad:5c:46:61:22:a3:20:05:ba: 93:eb:29:ae:e0:42:c7:e4:80:de:3a:2e:29:67:d6: 09:dc:f5:9f:90:58:5c:ff:d6:db:29:32:62:89:0b: 8a:ce:8e:cc:d8:d9:33:f0:63:0b:d4:19:7b:ea:ec: c4:47:66:92:5c:2c:2e:a5:ca:32:32:ce:33:87:be: f2:bf:35:4e:fb:21:4f:0f:b7:4c:d8:52:7f:fd:1c: ef:fd:2c:24:ea:f1:bf:b4:9e:76:3f:08:f7:27:f9: ef:d8:40:ee:1a:d5:2a:e8:c9:23:e3:e3:d8:89:08: 7e:87:98:ab:25:6b:cf:28:dc:4f:c4:51:47:fc:c2: 50:9c:ea:9a:3c:c4:84:24:10:94:36:39:89:17:b3: 98:10:1f:3d:ed:4e:fe:65:00:c8:99:ff:84:25:23: ee:24:87:12:bc:96:32:95:c5:f1:63:0a:f3:7b:44: 84:86:03:4d:49:5e:71:da:8e:42:78:bb:fb:0e:a4: b0:59:c5:f8:c8:5e:20:29:d0:e1:cc:44:35:de:ff: 9e:54:e9:10:34:1f:36:e7:d6:2d:6c:00:cb:ea:bb: c0:0f:9e:9d:4b:f7:96:51:9d:ac:c1:26:96:fd:28: d9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EB:07:56:5E:9D:40:A1:F5:57:2F:D7:19:56:1A:A3:DE:2C:BE:63 X509v3 Authority Key Identifier: keyid:40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.20.0/24 Signature Algorithm: sha256WithRSAEncryption 60:b1:bc:09:ca:63:ec:a4:18:c1:ae:49:83:96:4d:f3:cd:1c: 6f:90:2e:49:43:fa:ea:b4:8f:42:95:f7:0c:04:05:02:17:81: dc:66:99:6d:fa:a0:f4:28:fe:6a:78:c7:09:65:42:04:55:59: dd:77:3b:5c:7b:ce:18:4b:1b:92:dc:cd:33:c9:01:fc:8a:cf: 54:af:c2:8d:f2:d8:f5:0b:94:3f:d9:a9:cb:b2:cf:cc:04:36: 36:58:e7:0e:07:57:ad:e5:8a:8f:81:74:0c:a7:ab:fa:e1:89: 57:ef:e7:45:8b:23:b3:24:11:4d:80:33:55:cf:02:7a:e9:7c: 31:63:d4:7b:b7:00:c6:71:2d:1c:a4:ef:1c:0e:72:63:c3:29: 6d:f3:5a:92:7f:47:17:27:2e:13:2f:59:15:a2:de:d8:63:35: d7:71:a0:ad:86:83:9a:00:35:c8:11:64:20:ba:e2:a7:7c:ce: 3a:b5:41:8c:ff:3c:a0:7b:7c:5d:eb:de:fb:37:28:2e:a2:28: 25:ce:97:65:ec:f5:d4:1e:de:df:11:b9:44:bf:3f:6f:58:98: 6c:78:3e:3e:2c:76:41:d8:52:bd:57:e4:e8:f0:de:bf:be:56: 99:d6:4f:cc:1a:d7:17:70:f0:71:72:85:21:d5:3e:96:d0:14: 9e:f5:71:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZSv0H1M9/nUvOShF4Jz9y3gSFVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYx RTA4MDFGMjAeFw0yMzEwMjIxMDU1MDBaFw0yNDEwMjAxMTAwMDBaMDMxMTAvBgNV BAMTKEM0RUIwNzU2NUU5RDQwQTFGNTU3MkZENzE5NTYxQUEzREUyQ0JFNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS4wcoBNjFXEDdG8Q93Q31F9EV T61cRmEioyAFupPrKa7gQsfkgN46Liln1gnc9Z+QWFz/1tspMmKJC4rOjszY2TPw YwvUGXvq7MRHZpJcLC6lyjIyzjOHvvK/NU77IU8Pt0zYUn/9HO/9LCTq8b+0nnY/ CPcn+e/YQO4a1SroySPj49iJCH6HmKsla88o3E/EUUf8wlCc6po8xIQkEJQ2OYkX s5gQHz3tTv5lAMiZ/4QlI+4khxK8ljKVxfFjCvN7RISGA01JXnHajkJ4u/sOpLBZ xfjIXiAp0OHMRDXe/55U6RA0Hzbn1i1sAMvqu8APnp1L95ZRnazBJpb9KNk1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxOsHVl6dQKH1Vy/XGVYao94svmMwHwYDVR0j BBgwFoAUQIOVkUoadP9OarHeBj+Cxh4IAfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzhjM2M2OS0zNmQwLTRhZTgtYThkZi02M2QzZjQ0Y2NkOGQvMC80MDgzOTU5MTRB MUE3NEZGNEU2QUIxREUwNjNGODJDNjFFMDgwMUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYxRTA4 MDFGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OGMzYzY5LTM2ZDAtNGFlOC1h OGRmLTYzZDNmNDRjY2Q4ZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ48UMA0GCSqG SIb3DQEBCwUAA4IBAQBgsbwJymPspBjBrkmDlk3zzRxvkC5JQ/rqtI9ClfcMBAUC F4HcZplt+qD0KP5qeMcJZUIEVVnddztce84YSxuS3M0zyQH8is9Ur8KN8tj1C5Q/ 2anLss/MBDY2WOcOB1et5YqPgXQMp6v64YlX7+dFiyOzJBFNgDNVzwJ66XwxY9R7 twDGcS0cpO8cDnJjwylt81qSf0cXJy4TL1kVot7YYzXXcaCthoOaADXIEWQguuKn fM46tUGM/zyge3xd6977Nyguoiglzpdl7PXUHt7fEblEvz9vWJhseD4+LHZB2FK9 V+To8N6/vlaZ1k/MGtcXcPBxcoUh1T6W0BSe9XEU -----END CERTIFICATE-----Generated at Sun Jun 2 16:36:13 2024 by rpki-client on console-fra.rpki-client.org