$ rpki-client -vvf repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa File: 3130332e3138362e382e302f32332d3234203d3e20313339393737.roa (raw, json) Hash identifier: ZLKMzF4hF/QgHktfyy1RGBHDQiddcmycRYFX/Ur1Q1E= Subject key identifier: 7A:F8:86:97:7B:D3:E4:E1:81:10:A8:80:A1:B8:8C:20:78:1E:14:8D Certificate issuer: /CN=625D3D358DEFDD65359387A6A36775411462B4D4 Certificate serial: 40CD245BC7B88A3E3D7F9D4B37E3C8AA06A6B3FE Authority key identifier: 62:5D:3D:35:8D:EF:DD:65:35:93:87:A6:A3:67:75:41:14:62:B4:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa Signing time: Mon 12 Feb 2024 09:02:01 +0000 ROA not before: Mon 12 Feb 2024 08:57:01 +0000 ROA not after: Mon 10 Feb 2025 09:02:01 +0000 asID: 139977 IP address blocks: 103.186.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.crl rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cd:24:5b:c7:b8:8a:3e:3d:7f:9d:4b:37:e3:c8:aa:06:a6:b3:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=625D3D358DEFDD65359387A6A36775411462B4D4 Validity Not Before: Feb 12 08:57:01 2024 GMT Not After : Feb 10 09:02:01 2025 GMT Subject: CN=7AF886977BD3E4E18110A880A1B88C20781E148D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c8:bf:9d:58:a6:20:49:56:6e:4a:da:e5:ab: 06:4d:56:44:cd:72:59:82:99:80:d1:38:b7:26:9c: bb:be:09:6b:10:66:d3:84:b9:2d:41:b1:49:e7:e9: f5:38:36:bd:22:df:65:0d:ac:4e:06:6a:e7:ac:9b: c6:41:69:55:c3:c9:1b:0e:33:09:0e:a9:36:cf:24: 70:ca:48:db:35:e6:ac:15:de:5f:b5:92:81:f7:ca: 61:c9:e4:4e:cb:d1:68:e2:57:21:73:b4:c6:59:60: 4c:12:4f:d5:f0:c0:c0:04:2f:bb:02:bf:94:df:fa: da:d4:4a:de:57:aa:fa:d3:c3:6c:8f:9b:98:96:87: fd:10:29:87:58:37:47:ce:c4:5d:3a:56:66:fc:8e: 50:c3:39:18:a7:d0:a9:6f:e2:33:38:d0:2d:bb:8c: 90:ce:4a:67:67:22:ab:3c:90:86:ae:79:b8:99:02: 0d:7a:88:20:03:a6:1b:4a:70:9c:ff:e8:64:28:5a: 0b:06:ac:c7:35:c8:22:a8:9e:d7:be:6d:99:0a:74: 78:c5:fb:3d:b9:e0:fc:a3:ef:a5:be:ad:ed:94:88: 4d:8e:17:74:a9:b4:b6:09:c2:ea:5b:8a:2c:45:8a: b8:7d:bb:e6:72:e6:10:3f:d2:16:d9:83:d2:f9:0a: 89:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F8:86:97:7B:D3:E4:E1:81:10:A8:80:A1:B8:8C:20:78:1E:14:8D X509v3 Authority Key Identifier: keyid:62:5D:3D:35:8D:EF:DD:65:35:93:87:A6:A3:67:75:41:14:62:B4:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.8.0/23 Signature Algorithm: sha256WithRSAEncryption 18:aa:8a:05:15:0a:a7:85:88:05:24:67:38:ca:d0:c9:86:0f: 2a:d9:fa:90:1a:f6:37:91:15:3e:7b:da:83:12:53:2e:ee:ac: e8:3e:89:c7:88:10:59:6e:da:a3:55:3e:0c:45:2a:e6:2e:c8: 09:79:75:77:6f:e6:29:c8:c4:ba:8c:c5:ad:36:a5:4e:eb:0d: 2c:d6:6c:61:55:eb:40:8d:a8:9b:4d:8a:7d:e8:7d:36:f4:05: 04:48:ad:db:b9:2c:31:d4:b4:a6:5c:ff:54:27:ec:a0:be:30: 94:bd:18:f7:b8:f6:e7:50:6e:5f:13:64:d9:67:52:75:a7:1c: 6f:7f:90:3a:d1:1c:27:e3:1f:ad:b5:46:cb:ed:e3:de:f7:17: 95:a9:dd:6d:cd:85:a6:48:02:50:01:a3:ac:31:c2:c0:08:77: 55:d6:65:96:6a:70:45:cd:6e:49:bf:ab:88:57:44:44:a3:be: 3e:20:47:e0:05:da:c8:e5:57:38:10:05:d0:38:82:5e:4d:70: 97:5b:9a:19:1d:5e:19:7e:d8:3c:9d:d5:34:8e:14:fe:99:57: 51:0f:42:91:d9:f8:37:29:d9:8b:dc:0e:fb:07:ad:e0:58:49: a3:32:ad:fd:5c:5c:ec:fe:1c:af:12:82:e3:fa:ea:31:49:7c: 91:9b:6b:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQM0kW8e4ij49f51LN+PIqgams/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1RDNEMzU4REVGREQ2NTM1OTM4N0E2QTM2Nzc1NDEx NDYyQjRENDAeFw0yNDAyMTIwODU3MDFaFw0yNTAyMTAwOTAyMDFaMDMxMTAvBgNV BAMTKDdBRjg4Njk3N0JEM0U0RTE4MTEwQTg4MEExQjg4QzIwNzgxRTE0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqyL+dWKYgSVZuStrlqwZNVkTN clmCmYDROLcmnLu+CWsQZtOEuS1BsUnn6fU4Nr0i32UNrE4Gauesm8ZBaVXDyRsO MwkOqTbPJHDKSNs15qwV3l+1koH3ymHJ5E7L0WjiVyFztMZZYEwST9XwwMAEL7sC v5Tf+trUSt5XqvrTw2yPm5iWh/0QKYdYN0fOxF06Vmb8jlDDORin0Klv4jM40C27 jJDOSmdnIqs8kIauebiZAg16iCADphtKcJz/6GQoWgsGrMc1yCKonte+bZkKdHjF +z254Pyj76W+re2UiE2OF3SptLYJwupbiixFirh9u+Zy5hA/0hbZg9L5ConZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeviGl3vT5OGBEKiAobiMIHgeFI0wHwYDVR0j BBgwFoAUYl09NY3v3WU1k4emo2d1QRRitNQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZjNkNGRhOS0xODJmLTRhNzMtYTExMC00YzhiZmY4OTRmYmMvMC82MjVEM0QzNThE RUZERDY1MzU5Mzg3QTZBMzY3NzU0MTE0NjJCNEQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjI1RDNEMzU4REVGREQ2NTM1OTM4N0E2QTM2Nzc1NDExNDYy QjRENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VmM2Q0ZGE5LTE4MmYtNGE3My1h MTEwLTRjOGJmZjg5NGZiYy8wLzMxMzAzMzJlMzEzODM2MmUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzOTM5MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe6CDANBgkqhkiG 9w0BAQsFAAOCAQEAGKqKBRUKp4WIBSRnOMrQyYYPKtn6kBr2N5EVPnvagxJTLu6s 6D6Jx4gQWW7ao1U+DEUq5i7ICXl1d2/mKcjEuozFrTalTusNLNZsYVXrQI2om02K feh9NvQFBEit27ksMdS0plz/VCfsoL4wlL0Y97j251BuXxNk2WdSdaccb3+QOtEc J+MfrbVGy+3j3vcXlandbc2FpkgCUAGjrDHCwAh3VdZllmpwRc1uSb+riFdERKO+ PiBH4AXayOVXOBAF0DiCXk1wl1uaGR1eGX7YPJ3VNI4U/plXUQ9Ckdn4NynZi9wO +wet4FhJozKt/Vxc7P4crxKC4/rqMUl8kZtrRQ== -----END CERTIFICATE-----Generated at Sun May 5 08:19:49 2024 by rpki-client on console-ams.rpki-client.org