$ rpki-client -vvf repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: TZeEIkmHK9TVhZX+UFGdVg/ANerILeCaKXo5A0dLFk0= Subject key identifier: AF:49:8F:FD:3F:BF:B9:BB:71:37:55:21:16:AF:08:DD:B2:E8:EA:51 Certificate issuer: /CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Certificate serial: 5842AFB6F0662DCAE3F6EFDA1E28348B4A87C4FF Authority key identifier: 0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa Signing time: Tue 31 Oct 2023 03:01:00 +0000 ROA not before: Tue 31 Oct 2023 02:56:00 +0000 ROA not after: Tue 29 Oct 2024 03:01:00 +0000 asID: 17769 IP address blocks: 103.147.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:42:af:b6:f0:66:2d:ca:e3:f6:ef:da:1e:28:34:8b:4a:87:c4:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Validity Not Before: Oct 31 02:56:00 2023 GMT Not After : Oct 29 03:01:00 2024 GMT Subject: CN=AF498FFD3FBFB9BB7137552116AF08DDB2E8EA51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:91:39:0e:a6:d3:bc:62:4e:f9:49:cc:a0:49: b5:7f:f2:64:7a:b0:1e:47:01:d1:14:f6:1c:7a:79: 26:4e:8e:72:40:17:27:1d:ae:f9:f6:75:8c:e9:79: c0:15:fb:12:6a:9b:7a:46:62:80:c6:b5:b9:db:bb: 07:4b:e2:5c:b8:95:8c:ac:b2:4e:c4:a8:ba:87:e2: 77:a8:35:74:fd:77:4c:8a:fb:6f:8b:61:c7:78:10: 32:08:a2:2a:af:09:42:0a:22:22:e1:71:34:6b:64: f2:dd:b3:66:86:71:6b:47:0b:8f:5a:ce:5e:cb:ce: 47:94:d2:b4:6f:15:d6:88:5d:2f:5d:e7:b8:de:a2: b9:f4:8b:cc:f2:f7:37:7c:7f:79:da:aa:e7:fa:69: 84:59:29:f3:de:ed:f9:3b:1f:fa:b4:8e:76:ea:57: 69:c4:57:99:49:cf:25:28:35:d7:e4:18:b7:4d:c3: 00:c6:51:ce:40:9e:0d:b1:97:c3:be:0f:01:5c:63: 41:3b:49:e9:b5:cd:2e:c4:8b:03:0b:94:3d:91:de: fa:2d:e4:58:2d:b8:74:5c:93:02:fb:ec:e6:78:36: 03:a3:c6:91:75:f9:58:1f:c1:44:4e:a8:a4:46:06: 3a:e8:03:4f:3d:80:80:4b:4e:b7:29:25:ab:64:ab: 87:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:8F:FD:3F:BF:B9:BB:71:37:55:21:16:AF:08:DD:B2:E8:EA:51 X509v3 Authority Key Identifier: keyid:0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.144.0/23 Signature Algorithm: sha256WithRSAEncryption d0:60:57:21:49:c5:c6:bb:67:52:b8:b5:e2:01:8c:9c:e6:2c: b6:fa:02:21:f3:7a:62:ff:d3:43:b6:f1:f9:a5:f6:a6:28:e1: de:92:0d:86:71:1e:e0:34:ad:f5:29:f5:6b:de:e7:cd:35:2d: bb:ca:44:1a:f6:b1:19:05:d7:4b:91:44:bc:b2:11:b0:3c:4c: 81:98:bc:10:6e:97:30:cb:0d:3f:bf:67:b9:70:1d:31:52:26: 52:6d:09:54:5e:90:80:4e:ab:24:be:71:6d:eb:91:9d:51:e3: 2e:f5:a1:6f:ef:a9:bc:1f:3f:07:33:2a:8c:05:ff:12:20:07: 40:b0:8f:76:5c:d7:3c:26:d4:be:6e:58:d5:14:97:2e:c9:6e: e4:2b:1e:8f:4b:ea:ec:de:09:e7:e3:09:29:a3:74:d9:cc:1d: d0:7b:3d:22:3f:7e:ba:65:5e:5f:d6:3c:81:ba:ab:26:7f:62: 47:35:4a:7e:88:37:fe:a1:59:8e:c3:1c:c6:f5:21:cf:aa:3d: b8:25:84:ef:58:00:03:8c:97:0f:fc:a4:83:e0:31:12:e0:b1: 12:9b:3d:20:2e:5b:5f:8c:d1:b6:87:6e:77:54:a7:04:32:95: 8d:a9:04:70:20:6f:aa:e8:fe:cb:34:d0:ef:71:8d:56:ca:63: 24:9a:0f:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWEKvtvBmLcrj9u/aHig0i0qHxP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4 NUJGQURGRDAeFw0yMzEwMzEwMjU2MDBaFw0yNDEwMjkwMzAxMDBaMDMxMTAvBgNV BAMTKEFGNDk4RkZEM0ZCRkI5QkI3MTM3NTUyMTE2QUYwOEREQjJFOEVBNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbkTkOptO8Yk75ScygSbV/8mR6 sB5HAdEU9hx6eSZOjnJAFycdrvn2dYzpecAV+xJqm3pGYoDGtbnbuwdL4ly4lYys sk7EqLqH4neoNXT9d0yK+2+LYcd4EDIIoiqvCUIKIiLhcTRrZPLds2aGcWtHC49a zl7LzkeU0rRvFdaIXS9d57jeorn0i8zy9zd8f3naquf6aYRZKfPe7fk7H/q0jnbq V2nEV5lJzyUoNdfkGLdNwwDGUc5Ang2xl8O+DwFcY0E7Sem1zS7EiwMLlD2R3vot 5FgtuHRckwL77OZ4NgOjxpF1+VgfwUROqKRGBjroA089gIBLTrcpJatkq4djAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUr0mP/T+/ubtxN1UhFq8I3bLo6lEwHwYDVR0j BBgwFoAUCh38tKQ4YeSnG81kV5IAVIW/rf0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODVjYmQ5NS01NzRmLTQwNWItOGJkZS0wZGRiOWM5YmRkYmEvMC8wQTFERkNCNEE0 Mzg2MUU0QTcxQkNENjQ1NzkyMDA1NDg1QkZBREZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4NUJG QURGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NWNiZDk1LTU3NGYtNDA1Yi04 YmRlLTBkZGI5YzliZGRiYS8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OQMA0GCSqG SIb3DQEBCwUAA4IBAQDQYFchScXGu2dSuLXiAYyc5iy2+gIh83pi/9NDtvH5pfam KOHekg2GcR7gNK31KfVr3ufNNS27ykQa9rEZBddLkUS8shGwPEyBmLwQbpcwyw0/ v2e5cB0xUiZSbQlUXpCATqskvnFt65GdUeMu9aFv76m8Hz8HMyqMBf8SIAdAsI92 XNc8JtS+bljVFJcuyW7kKx6PS+rs3gnn4wkpo3TZzB3Qez0iP366ZV5f1jyBuqsm f2JHNUp+iDf+oVmOwxzG9SHPqj24JYTvWAADjJcP/KSD4DES4LESmz0gLltfjNG2 h253VKcEMpWNqQRwIG+q6P7LNNDvcY1WymMkmg8l -----END CERTIFICATE-----Generated at Wed May 1 12:16:16 2024 by rpki-client on console-ams.rpki-client.org