$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa File: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (raw, json) Hash identifier: SQC23ocYZsQmTwD7P5ZRHzJeO5DITt5lrqUtXpi9lOA= Subject key identifier: 01:8E:AE:9C:33:B2:03:2A:4F:D1:74:3F:4B:27:1C:95:0A:68:D6:23 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 37FDCD4C56CF1ED38A60FDEAB48B739BF4AB7D7A Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa Signing time: Wed 18 Oct 2023 13:00:00 +0000 ROA not before: Wed 18 Oct 2023 12:55:00 +0000 ROA not after: Wed 16 Oct 2024 13:00:00 +0000 asID: 141081 IP address blocks: 103.156.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:fd:cd:4c:56:cf:1e:d3:8a:60:fd:ea:b4:8b:73:9b:f4:ab:7d:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Oct 18 12:55:00 2023 GMT Not After : Oct 16 13:00:00 2024 GMT Subject: CN=018EAE9C33B2032A4FD1743F4B271C950A68D623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9f:1f:fb:e6:cf:86:a9:2e:84:d2:f0:e6:61: e5:9e:9c:0b:5b:32:21:a7:b9:6b:58:63:c8:16:02: 4f:92:40:f3:03:65:11:22:79:e5:aa:dc:03:7e:8c: 71:ad:15:30:d9:9a:01:ef:14:98:83:95:2f:e6:a3: 5c:88:12:7b:38:f2:93:d5:e5:9e:50:bc:c7:c3:13: 71:41:da:72:34:d7:6f:c2:92:50:42:70:7d:9e:cc: a0:bf:8e:96:5b:fa:b3:96:25:2e:6f:a1:d8:40:4c: bc:36:32:bf:40:91:3b:fb:18:43:1f:5a:f8:3a:c8: 30:72:80:86:6a:15:42:23:1a:18:82:63:ab:ea:47: f1:70:9d:c5:b9:d4:22:18:91:f3:68:73:59:b2:5b: 92:6d:f7:4a:61:af:51:a6:e0:90:b5:88:fd:dc:e1: 00:ae:f6:0c:16:99:a1:05:eb:3e:56:ae:37:a9:4d: 99:f0:07:f9:1c:64:14:8d:9c:fa:70:96:7d:eb:f6: 87:a0:b9:c0:2a:19:31:9b:22:25:e6:91:90:4d:dc: 54:42:82:0b:86:bd:4e:6e:86:63:56:15:8c:66:2d: 8d:15:c9:e2:89:99:6d:41:b6:28:6c:82:72:d9:17: 57:d4:44:cb:01:c8:9f:31:f7:fb:68:ab:c5:e2:41: 8b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8E:AE:9C:33:B2:03:2A:4F:D1:74:3F:4B:27:1C:95:0A:68:D6:23 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:89:15:03:58:50:c5:66:e5:5f:a2:5f:67:55:12:61:45:ef: 3f:52:31:b7:0b:84:ef:9d:12:43:44:8a:a9:a2:fb:be:5c:68: dc:8c:f3:a3:69:55:b1:06:e2:16:53:27:28:f6:3d:4f:e2:01: 83:84:5b:c4:66:0d:a9:15:c4:24:c6:6e:f2:7c:6f:71:b4:9b: 58:8c:bd:18:0b:7a:c8:c5:7b:cf:27:4b:ed:83:c7:c9:76:1c: f3:d9:13:54:f5:ef:a3:a0:d8:ca:e5:fb:c7:e2:9e:4b:d5:d1: 6a:3f:ce:32:89:d0:b5:a3:34:f7:c7:7e:7a:11:7e:21:6c:2e: f0:74:56:69:13:c6:64:e6:de:87:62:60:6b:06:03:0d:5d:a1: ac:1b:16:f3:5b:22:64:31:f7:79:64:79:48:b8:4a:d9:15:ea: 23:e2:6c:03:51:9c:dc:f5:55:47:d4:11:18:2c:f3:38:dd:a7: 61:53:43:4d:c0:9a:3c:ce:33:6f:49:1e:50:c4:4d:f7:5d:1c: 64:5d:55:e9:aa:f5:06:ef:e6:14:5e:65:04:a2:aa:43:b6:0e: 79:b8:8a:72:7a:dc:f2:1e:67:b9:d8:23:ad:58:93:5c:fa:0a: 8a:5d:74:87:58:c0:39:e3:3c:54:9c:b4:26:7c:a8:b5:c6:2c: 01:bb:40:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN/3NTFbPHtOKYP3qtItzm/SrfXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yMzEwMTgxMjU1MDBaFw0yNDEwMTYxMzAwMDBaMDMxMTAvBgNV BAMTKDAxOEVBRTlDMzNCMjAzMkE0RkQxNzQzRjRCMjcxQzk1MEE2OEQ2MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrnx/75s+GqS6E0vDmYeWenAtb MiGnuWtYY8gWAk+SQPMDZREieeWq3AN+jHGtFTDZmgHvFJiDlS/mo1yIEns48pPV 5Z5QvMfDE3FB2nI012/CklBCcH2ezKC/jpZb+rOWJS5vodhATLw2Mr9AkTv7GEMf Wvg6yDBygIZqFUIjGhiCY6vqR/FwncW51CIYkfNoc1myW5Jt90phr1Gm4JC1iP3c 4QCu9gwWmaEF6z5WrjepTZnwB/kcZBSNnPpwln3r9oegucAqGTGbIiXmkZBN3FRC gguGvU5uhmNWFYxmLY0VyeKJmW1BtihsgnLZF1fURMsByJ8x9/toq8XiQYvPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAY6unDOyAypP0XQ/SycclQpo1iMwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQB9iRUDWFDFZuVfol9nVRJhRe8/UjG3C4TvnRJDRIqpovu+ XGjcjPOjaVWxBuIWUyco9j1P4gGDhFvEZg2pFcQkxm7yfG9xtJtYjL0YC3rIxXvP J0vtg8fJdhzz2RNU9e+joNjK5fvH4p5L1dFqP84yidC1ozT3x356EX4hbC7wdFZp E8Zk5t6HYmBrBgMNXaGsGxbzWyJkMfd5ZHlIuErZFeoj4mwDUZzc9VVH1BEYLPM4 3adhU0NNwJo8zjNvSR5QxE33XRxkXVXpqvUG7+YUXmUEoqpDtg55uIpyetzyHme5 2COtWJNc+gqKXXSHWMA54zxUnLQmfKi1xiwBu0D8 -----END CERTIFICATE-----Generated at Sat Jun 1 22:08:22 2024 by rpki-client on console-fra.rpki-client.org