$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa File: 3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: yeUkkYPIyf6NnLm5WV4n81Me7u81Whf8v4sbyjqz8Is= Subject key identifier: 66:05:2D:EC:9B:61:94:5D:3C:0A:5B:D2:E1:5D:D9:7D:66:55:23:6B Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 7A14B73877244BB2F2D8B2202DC544F24CF3E57A Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa Signing time: Thu 26 Oct 2023 15:49:36 +0000 ROA not before: Thu 26 Oct 2023 15:44:36 +0000 ROA not after: Thu 24 Oct 2024 15:49:36 +0000 asID: 140456 IP address blocks: 103.96.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:14:b7:38:77:24:4b:b2:f2:d8:b2:20:2d:c5:44:f2:4c:f3:e5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Oct 26 15:44:36 2023 GMT Not After : Oct 24 15:49:36 2024 GMT Subject: CN=66052DEC9B61945D3C0A5BD2E15DD97D6655236B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:17:b5:5b:d0:b2:17:8f:53:57:74:a0:ba:3d: c9:a6:02:9d:e0:eb:3e:ec:ca:04:5d:16:78:ec:05: c0:7e:6a:75:ac:e2:e5:9f:fb:88:16:d1:b6:08:ba: 2e:3c:ad:5b:2d:b4:da:78:6e:ab:b2:c1:b8:b8:58: c8:14:d2:24:03:e4:52:08:6a:fe:06:72:5f:be:e8: 85:21:2d:3c:fc:55:4c:d6:d0:12:12:85:f5:fc:5a: d0:96:c6:7a:3c:b0:07:9b:82:25:ac:9d:74:69:ce: be:36:74:7a:fd:01:b9:e8:27:d2:9e:90:d6:01:70: d7:8c:0b:9d:bb:fe:ff:af:5f:61:49:ad:bb:88:1f: 36:2d:5d:a3:f3:b2:24:1f:86:58:18:48:a1:6b:75: b5:de:37:8c:40:66:bb:93:f3:d3:84:98:79:a4:df: 3b:6a:b9:b9:ed:0b:8c:2c:f6:3e:15:34:bd:5c:7c: ba:1b:4f:09:94:5a:f9:ce:8b:d2:23:6a:cd:f6:7c: 90:eb:a7:22:86:33:c7:1a:3f:65:fb:c5:4b:f0:ef: 08:e9:18:73:d6:67:db:d2:c3:34:7b:12:6f:13:5f: 41:d9:68:0c:6a:64:e0:2d:73:e2:99:8a:c9:16:6e: 9d:64:ac:e5:aa:d8:49:11:a9:f3:d2:dc:53:cd:5e: da:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:05:2D:EC:9B:61:94:5D:3C:0A:5B:D2:E1:5D:D9:7D:66:55:23:6B X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.146.0/23 Signature Algorithm: sha256WithRSAEncryption c9:22:dc:d2:9e:16:b3:5f:0e:1c:5d:45:5f:95:c8:4b:f3:ac: 7e:02:4d:ca:05:ba:b1:87:d5:5e:c4:27:9c:0c:b3:09:d7:25: 60:b7:58:84:a3:16:a8:e9:0c:60:52:8f:43:6d:3b:29:81:3d: 54:d8:e6:af:6e:7f:33:4e:ca:52:5a:ce:c2:99:23:14:e5:61: 60:b8:99:b0:00:31:5b:b3:3e:5e:12:39:15:2b:30:32:b5:ea: 0b:40:92:52:7a:43:21:29:e5:41:ef:1d:9f:26:46:f5:9f:5e: a9:ab:70:1e:66:a1:3a:49:ab:e2:9e:fc:71:67:ed:0b:aa:7a: 3c:df:1c:40:6b:15:f8:a1:c9:25:57:ad:13:fe:29:f2:fa:8b: 12:d0:f2:b0:d7:02:4a:e9:c0:ca:53:05:71:83:77:28:83:0f: ec:25:70:ea:94:58:90:7a:ec:3e:5a:66:19:ba:35:57:c8:87: 23:fb:bf:27:5c:ac:f7:dd:43:9e:62:3c:8c:40:19:18:83:a2: a9:7d:f4:73:9f:31:f7:01:a3:78:9c:a7:bf:d7:7a:06:f9:1d: 79:f4:52:f9:7f:b8:f3:12:3e:e6:c1:4e:74:66:b2:9a:c5:6f: e3:86:06:7b:a4:f5:67:0e:44:fd:ce:85:b0:a7:89:8a:5a:bf: 3f:ac:cb:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUehS3OHckS7Ly2LIgLcVE8kzz5XowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yMzEwMjYxNTQ0MzZaFw0yNDEwMjQxNTQ5MzZaMDMxMTAvBgNV BAMTKDY2MDUyREVDOUI2MTk0NUQzQzBBNUJEMkUxNUREOTdENjY1NTIzNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVF7Vb0LIXj1NXdKC6PcmmAp3g 6z7sygRdFnjsBcB+anWs4uWf+4gW0bYIui48rVsttNp4bquywbi4WMgU0iQD5FII av4Gcl++6IUhLTz8VUzW0BIShfX8WtCWxno8sAebgiWsnXRpzr42dHr9AbnoJ9Ke kNYBcNeMC527/v+vX2FJrbuIHzYtXaPzsiQfhlgYSKFrdbXeN4xAZruT89OEmHmk 3ztqubntC4ws9j4VNL1cfLobTwmUWvnOi9Ijas32fJDrpyKGM8caP2X7xUvw7wjp GHPWZ9vSwzR7Em8TX0HZaAxqZOAtc+KZiskWbp1krOWq2EkRqfPS3FPNXtpTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZgUt7JthlF08ClvS4V3ZfWZVI2swHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2CSMA0GCSqG SIb3DQEBCwUAA4IBAQDJItzSnhazXw4cXUVflchL86x+Ak3KBbqxh9VexCecDLMJ 1yVgt1iEoxao6QxgUo9DbTspgT1U2Oavbn8zTspSWs7CmSMU5WFguJmwADFbsz5e EjkVKzAyteoLQJJSekMhKeVB7x2fJkb1n16pq3AeZqE6SavinvxxZ+0Lqno83xxA axX4ocklV60T/iny+osS0PKw1wJK6cDKUwVxg3cogw/sJXDqlFiQeuw+WmYZujVX yIcj+78nXKz33UOeYjyMQBkYg6KpffRznzH3AaN4nKe/13oG+R159FL5f7jzEj7m wU50ZrKaxW/jhgZ7pPVnDkT9zoWwp4mKWr8/rMv7 -----END CERTIFICATE-----Generated at Fri May 3 20:32:19 2024 by rpki-client on console-fra.rpki-client.org