$ rpki-client -vvf repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa File: 3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa (raw, json) Hash identifier: M4CHsh1Zpo4k27Jed0PNLwQx0mh8Rgv0fjLTqTq7hVA= Subject key identifier: 08:D3:5D:5C:74:5D:FD:2E:0E:C1:26:CC:51:92:76:1B:D1:BF:6F:E5 Certificate issuer: /CN=CA47BA6D9780611AEA68BC9BF72724AE94799AA6 Certificate serial: 0669DE96396AD0F1CF0BB5BE4D0EABFDA3D6ED9E Authority key identifier: CA:47:BA:6D:97:80:61:1A:EA:68:BC:9B:F7:27:24:AE:94:79:9A:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa Signing time: Sun 10 Dec 2023 02:00:00 +0000 ROA not before: Sun 10 Dec 2023 01:55:00 +0000 ROA not after: Sun 08 Dec 2024 02:00:00 +0000 asID: 136855 IP address blocks: 103.108.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.crl rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 06:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:69:de:96:39:6a:d0:f1:cf:0b:b5:be:4d:0e:ab:fd:a3:d6:ed:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA47BA6D9780611AEA68BC9BF72724AE94799AA6 Validity Not Before: Dec 10 01:55:00 2023 GMT Not After : Dec 8 02:00:00 2024 GMT Subject: CN=08D35D5C745DFD2E0EC126CC5192761BD1BF6FE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a7:ad:c9:6d:3a:2c:00:22:3c:a1:e3:83:78: 18:cc:98:b3:d7:7f:5b:7e:4e:0c:8e:c7:67:a6:e8: 0e:df:e8:dd:ca:d3:6d:71:2b:7a:2f:50:de:d6:ff: 57:21:4e:65:e6:c3:b7:a7:9a:fb:4b:8d:6a:b3:02: 5b:fa:ef:5d:94:6c:23:9c:15:f5:ac:7d:49:d3:5b: 23:b9:78:08:64:18:f5:76:24:1a:51:ae:55:55:97: ba:8a:6d:12:6e:ba:9a:fe:05:05:e7:96:40:1c:30: 77:0d:98:13:73:2d:8d:e4:5a:89:7b:9a:94:d7:eb: a3:39:24:e4:72:8c:53:bb:6f:ca:5d:6e:dd:70:f5: f3:2d:d6:66:08:d8:44:f3:93:7e:08:47:51:a0:45: d9:41:6e:52:c0:31:43:59:2a:27:a9:84:da:86:17: 1d:24:68:cb:1d:fc:9c:03:6c:6c:98:33:b3:fe:34: 08:77:9f:9d:c6:e2:fd:cc:39:bd:eb:c6:f0:d0:3e: f8:76:73:b8:16:64:3a:bd:d9:c6:45:8e:b4:33:1c: 5c:f7:45:1c:24:91:97:a9:ba:a1:8d:43:db:f9:d0: 74:c0:98:5f:1f:23:6c:93:df:36:57:02:ce:2a:0e: a9:07:97:0f:df:31:55:11:b5:d4:ef:66:d7:e2:8a: 26:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D3:5D:5C:74:5D:FD:2E:0E:C1:26:CC:51:92:76:1B:D1:BF:6F:E5 X509v3 Authority Key Identifier: keyid:CA:47:BA:6D:97:80:61:1A:EA:68:BC:9B:F7:27:24:AE:94:79:9A:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.240.0/22 Signature Algorithm: sha256WithRSAEncryption 87:28:93:55:32:99:c0:4e:bf:12:8e:41:1d:df:93:16:95:1d: 93:0b:b2:50:31:8a:f2:00:bd:23:31:be:9c:f4:1a:62:98:35: 14:fc:a5:23:45:19:24:96:81:43:6a:36:26:3b:9d:a8:84:74: 14:f2:17:f6:ce:4e:63:03:5b:e1:4b:6b:c7:b0:90:58:9b:f9: 94:14:2e:26:4c:18:16:ef:dd:40:31:c8:57:b3:77:56:d5:10: 35:46:c8:28:d9:e1:70:d1:99:ff:31:91:b0:66:3e:06:fc:d6: e0:ad:8c:7a:b2:e5:48:a5:90:81:21:5d:ec:5c:b4:0a:61:92: 23:db:a2:ee:c3:c9:54:30:14:ba:83:7b:8b:56:fa:55:91:d8: c3:e0:fb:43:89:06:85:fb:71:34:6b:3e:db:cd:1a:cc:ea:68: d3:4d:43:84:a1:31:db:2c:98:88:57:7d:79:0b:7f:50:12:d7: 8a:80:68:88:7e:be:35:59:15:e4:2b:1f:ec:a3:89:89:f7:aa: 4a:61:1a:8f:62:9a:17:a6:c2:14:68:1b:c5:96:73:ed:f7:c5: 85:1e:89:36:71:24:c7:fb:7e:e0:a9:26:f5:ad:f0:69:72:d5: 70:27:74:99:7d:76:96:9e:d6:eb:93:cc:85:71:0b:9a:37:cf: 2f:a7:8e:c6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBmneljlq0PHPC7W+TQ6r/aPW7Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E0N0JBNkQ5NzgwNjExQUVBNjhCQzlCRjcyNzI0QUU5 NDc5OUFBNjAeFw0yMzEyMTAwMTU1MDBaFw0yNDEyMDgwMjAwMDBaMDMxMTAvBgNV BAMTKDA4RDM1RDVDNzQ1REZEMkUwRUMxMjZDQzUxOTI3NjFCRDFCRjZGRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDp63JbTosACI8oeODeBjMmLPX f1t+TgyOx2em6A7f6N3K021xK3ovUN7W/1chTmXmw7enmvtLjWqzAlv6712UbCOc FfWsfUnTWyO5eAhkGPV2JBpRrlVVl7qKbRJuupr+BQXnlkAcMHcNmBNzLY3kWol7 mpTX66M5JORyjFO7b8pdbt1w9fMt1mYI2ETzk34IR1GgRdlBblLAMUNZKiephNqG Fx0kaMsd/JwDbGyYM7P+NAh3n53G4v3MOb3rxvDQPvh2c7gWZDq92cZFjrQzHFz3 RRwkkZepuqGNQ9v50HTAmF8fI2yT3zZXAs4qDqkHlw/fMVURtdTvZtfiiibBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCNNdXHRd/S4OwSbMUZJ2G9G/b+UwHwYDVR0j BBgwFoAUyke6bZeAYRrqaLyb9yckrpR5mqYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YjgxYmNlYS1iNzBmLTQzNzQtOTI0Yi1iNmM3NzgxMDk4MzcvMC9DQTQ3QkE2RDk3 ODA2MTFBRUE2OEJDOUJGNzI3MjRBRTk0Nzk5QUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E0N0JBNkQ5NzgwNjExQUVBNjhCQzlCRjcyNzI0QUU5NDc5 OUFBNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViODFiY2VhLWI3MGYtNDM3NC05 MjRiLWI2Yzc3ODEwOTgzNy8wLzMxMzAzMzJlMzEzMDM4MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbPAwDQYJ KoZIhvcNAQELBQADggEBAIcok1UymcBOvxKOQR3fkxaVHZMLslAxivIAvSMxvpz0 GmKYNRT8pSNFGSSWgUNqNiY7naiEdBTyF/bOTmMDW+FLa8ewkFib+ZQULiZMGBbv 3UAxyFezd1bVEDVGyCjZ4XDRmf8xkbBmPgb81uCtjHqy5UilkIEhXexctAphkiPb ou7DyVQwFLqDe4tW+lWR2MPg+0OJBoX7cTRrPtvNGszqaNNNQ4ShMdssmIhXfXkL f1AS14qAaIh+vjVZFeQrH+yjiYn3qkphGo9imhemwhRoG8WWc+33xYUeiTZxJMf7 fuCpJvWt8Gly1XAndJl9dpae1uuTzIVxC5o3zy+njsY= -----END CERTIFICATE-----Generated at Thu Jun 20 06:02:44 2024 by rpki-client on console-ams.rpki-client.org