$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa File: 3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: ivW2xvcGM2OioZtls7lDXDqBd7RYylqhzZXxNSg6f+k= Subject key identifier: C0:04:3A:A0:BF:BB:90:3B:08:99:32:96:0C:57:23:71:04:7B:76:B9 Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 04110BBCB9D2D5C6988405D4B76D44ADFC0670A1 Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa Signing time: Thu 26 Oct 2023 15:52:05 +0000 ROA not before: Thu 26 Oct 2023 15:47:05 +0000 ROA not after: Thu 24 Oct 2024 15:52:05 +0000 asID: 140456 IP address blocks: 103.96.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:11:0b:bc:b9:d2:d5:c6:98:84:05:d4:b7:6d:44:ad:fc:06:70:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Oct 26 15:47:05 2023 GMT Not After : Oct 24 15:52:05 2024 GMT Subject: CN=C0043AA0BFBB903B089932960C572371047B76B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:e3:7c:10:78:62:b1:5e:a4:5f:98:0d:c7: d5:23:fb:df:f4:26:0c:e7:ab:75:cf:06:be:33:9c: 07:0d:4a:dc:c7:40:de:16:6a:0d:c1:95:f7:f7:ed: 22:e5:4b:14:49:fc:9f:f7:b7:b4:89:b1:c3:10:f3: f7:0e:54:06:ca:b7:89:28:f8:c8:82:fc:8f:d1:4b: 18:04:2a:d7:0d:01:96:c1:be:0e:5d:cd:35:d2:a1: 40:32:25:c2:fd:3f:d5:39:03:10:7f:ba:61:f2:d4: 8f:3e:a7:37:2c:a9:a6:48:63:4b:8d:b9:e3:a6:74: 0d:f1:c0:f0:41:e8:37:44:14:7b:5c:33:d8:ff:2a: d0:bd:30:15:f2:b4:34:94:c3:89:2a:7d:d8:72:d1: 1b:81:59:97:7b:bf:52:6f:22:b2:e0:d2:3e:d0:3d: 5f:f9:98:02:af:9a:a8:de:a7:c3:85:aa:2e:15:d0: d4:84:7c:27:b3:b3:e0:a1:56:97:39:e5:dd:63:35: 5e:b1:43:78:82:88:ee:d3:f2:54:2f:33:42:47:e1: 19:6c:be:56:7c:c4:94:50:eb:0f:84:84:21:1c:6b: c2:39:49:1e:db:ef:9b:56:91:79:55:e9:9c:7a:26: 28:4e:0a:e5:98:cc:85:4f:38:a4:e3:64:b8:a8:a4: be:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:04:3A:A0:BF:BB:90:3B:08:99:32:96:0C:57:23:71:04:7B:76:B9 X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.147.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:69:b6:71:b7:c7:56:32:22:87:80:d5:55:2a:2f:d4:f5:62: 8a:b6:cc:38:e2:6d:72:12:ac:34:71:ef:d8:ec:86:cd:6f:cb: 51:a9:40:bd:41:0d:cc:6d:dc:98:cc:a0:d1:35:94:55:73:be: d7:09:95:33:86:e1:e2:6d:4b:01:15:b0:43:ac:18:51:e0:1d: f3:38:06:09:f3:a6:90:ca:de:e9:9b:ca:4b:e6:9f:8b:08:2d: f2:56:56:ac:8c:f5:4e:c8:7b:25:95:46:86:dc:d8:38:eb:e3: ef:03:c6:04:77:12:94:5e:cc:ee:14:d1:ca:38:06:56:4f:81: 83:dd:b9:67:85:0e:1c:1b:d3:ab:d8:01:ed:93:d5:89:bf:c3: 8e:56:26:23:18:cc:d7:df:59:7e:35:5c:42:1d:e2:ab:78:34: 29:4a:ce:54:85:ec:f6:fe:1f:f1:31:13:59:ec:b2:54:dd:e9: 30:b4:e7:6b:ab:cc:97:5d:94:75:97:58:da:36:24:77:37:70: cb:a8:bf:06:a8:20:3b:e3:5a:ea:d4:c2:a5:67:14:33:32:0b: bd:5f:26:c0:54:1b:31:e9:5c:f4:2a:2b:4d:79:dd:d6:46:56: 23:b6:1a:fa:ca:7d:64:00:f6:79:dd:29:c2:33:91:a5:06:7d: 99:d1:ce:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBBELvLnS1caYhAXUt21ErfwGcKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yMzEwMjYxNTQ3MDVaFw0yNDEwMjQxNTUyMDVaMDMxMTAvBgNV BAMTKEMwMDQzQUEwQkZCQjkwM0IwODk5MzI5NjBDNTcyMzcxMDQ3Qjc2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrguN8EHhisV6kX5gNx9Uj+9/0 Jgznq3XPBr4znAcNStzHQN4Wag3Blff37SLlSxRJ/J/3t7SJscMQ8/cOVAbKt4ko +MiC/I/RSxgEKtcNAZbBvg5dzTXSoUAyJcL9P9U5AxB/umHy1I8+pzcsqaZIY0uN ueOmdA3xwPBB6DdEFHtcM9j/KtC9MBXytDSUw4kqfdhy0RuBWZd7v1JvIrLg0j7Q PV/5mAKvmqjep8OFqi4V0NSEfCezs+ChVpc55d1jNV6xQ3iCiO7T8lQvM0JH4Rls vlZ8xJRQ6w+EhCEca8I5SR7b75tWkXlV6Zx6JihOCuWYzIVPOKTjZLiopL4rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwAQ6oL+7kDsImTKWDFcjcQR7drkwHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CTMA0GCSqG SIb3DQEBCwUAA4IBAQBuabZxt8dWMiKHgNVVKi/U9WKKtsw44m1yEqw0ce/Y7IbN b8tRqUC9QQ3MbdyYzKDRNZRVc77XCZUzhuHibUsBFbBDrBhR4B3zOAYJ86aQyt7p m8pL5p+LCC3yVlasjPVOyHsllUaG3Ng46+PvA8YEdxKUXszuFNHKOAZWT4GD3bln hQ4cG9Or2AHtk9WJv8OOViYjGMzX31l+NVxCHeKreDQpSs5Uhez2/h/xMRNZ7LJU 3ekwtOdrq8yXXZR1l1jaNiR3N3DLqL8GqCA741rq1MKlZxQzMgu9XybAVBsx6Vz0 KitNed3WRlYjthr6yn1kAPZ53SnCM5GlBn2Z0c5F -----END CERTIFICATE-----Generated at Fri May 3 20:32:19 2024 by rpki-client on console-fra.rpki-client.org