$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa File: 3130332e37322e3131312e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: NP7z5cwCFZTdJ749n0SddRyuAaOAh9AUSM88iN1HI84= Subject key identifier: FF:3B:9C:D7:72:0F:E2:3B:67:C5:8D:A7:FF:0F:C7:89:FB:04:F3:29 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 718D1DF9E1BECB4502761E478434627D8AF003DC Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa Signing time: Mon 31 Jul 2023 00:09:24 +0000 ROA not before: Mon 31 Jul 2023 00:04:24 +0000 ROA not after: Mon 29 Jul 2024 00:09:24 +0000 asID: 58476 IP address blocks: 103.72.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8d:1d:f9:e1:be:cb:45:02:76:1e:47:84:34:62:7d:8a:f0:03:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 31 00:04:24 2023 GMT Not After : Jul 29 00:09:24 2024 GMT Subject: CN=FF3B9CD7720FE23B67C58DA7FF0FC789FB04F329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ab:4e:3d:81:62:9d:62:e6:61:66:e1:3c:fd: 24:d7:5d:d5:b8:53:55:35:b8:8d:62:62:d4:12:e6: 99:08:e6:f3:42:dc:54:32:9d:13:b8:2f:a2:7e:c3: d0:cc:ef:a8:a9:a4:01:db:28:ae:d8:54:5a:06:05: 73:31:f1:ed:ca:1d:ac:c4:83:ab:da:ad:67:24:3d: 6a:44:e6:39:5e:da:f1:f2:86:01:0d:f0:18:d9:41: 4f:44:b2:bf:07:27:27:d5:2d:30:f4:3b:4a:58:49: 1e:64:87:5c:29:14:bd:95:cf:41:7b:2c:2b:9a:16: 2b:be:86:28:4a:27:7e:a0:d4:83:d5:29:52:d6:27: 7c:c8:60:fb:4f:e7:3a:39:b4:d5:fa:c1:73:35:b4: 1d:74:59:5f:4e:d4:bb:68:2b:c1:7e:ee:da:8a:85: ce:c8:17:7c:e2:38:64:7c:52:f2:71:4f:d8:4f:f8: fd:7a:b8:c6:01:77:73:e7:dd:ce:a5:f1:70:37:35: 7c:76:a3:50:44:88:71:78:20:f1:98:7b:e6:0e:54: e9:af:c9:0b:31:fd:52:1c:0c:84:29:2d:4e:df:10: 91:a1:b4:a3:a4:0b:15:59:7b:ed:28:1f:47:15:a2: 82:7e:9a:ce:1c:d7:d4:72:e8:1d:90:14:30:e2:7f: 06:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3B:9C:D7:72:0F:E2:3B:67:C5:8D:A7:FF:0F:C7:89:FB:04:F3:29 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.72.111.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:59:25:da:17:e7:73:76:a3:6e:05:58:09:52:ba:0f:ad:7b: 20:43:e8:02:f8:7b:0a:8a:54:3d:e0:32:22:39:d3:84:86:3e: 23:72:7b:94:2e:e5:1a:e5:4e:78:26:44:eb:40:09:97:14:cd: 94:70:ca:8b:a8:43:61:13:4c:96:be:86:d3:ea:19:b1:e4:8b: e4:d2:24:c3:7c:c7:3a:64:6c:91:a7:18:e1:6c:ee:19:7f:be: aa:10:68:9d:54:b1:b0:d9:9a:bc:f5:73:21:a3:df:9b:f5:78: 86:62:05:f4:96:89:e5:ec:d0:00:d7:04:3e:8b:16:75:ae:10: 0b:6d:93:d2:29:3e:16:66:50:c1:ad:09:f8:b3:e0:a7:d1:e4: d0:c0:3c:20:45:af:06:ae:db:97:34:50:2b:c4:80:2d:53:12: a8:5e:06:db:d5:c9:71:69:8e:d5:42:56:57:5b:9a:47:49:b1: 98:c0:d6:23:62:8c:e2:8a:13:88:bc:f1:83:0a:a4:f9:b5:cc: 2a:b9:17:fd:1e:d9:56:5e:a5:6a:00:aa:46:b3:f0:8a:b6:6d: 51:a3:6e:1a:2d:fb:c0:f7:f9:37:af:97:66:f3:2e:a0:8b:c3: 24:4e:7c:6c:01:7e:6f:a6:26:a7:f8:35:60:7e:99:42:04:6d: 23:ef:be:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcY0d+eG+y0UCdh5HhDRifYrwA9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yMzA3MzEwMDA0MjRaFw0yNDA3MjkwMDA5MjRaMDMxMTAvBgNV BAMTKEZGM0I5Q0Q3NzIwRkUyM0I2N0M1OERBN0ZGMEZDNzg5RkIwNEYzMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCq049gWKdYuZhZuE8/STXXdW4 U1U1uI1iYtQS5pkI5vNC3FQynRO4L6J+w9DM76ippAHbKK7YVFoGBXMx8e3KHazE g6varWckPWpE5jle2vHyhgEN8BjZQU9Esr8HJyfVLTD0O0pYSR5kh1wpFL2Vz0F7 LCuaFiu+hihKJ36g1IPVKVLWJ3zIYPtP5zo5tNX6wXM1tB10WV9O1LtoK8F+7tqK hc7IF3ziOGR8UvJxT9hP+P16uMYBd3Pn3c6l8XA3NXx2o1BEiHF4IPGYe+YOVOmv yQsx/VIcDIQpLU7fEJGhtKOkCxVZe+0oH0cVooJ+ms4c19Ry6B2QFDDifwYtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/zuc13IP4jtnxY2n/w/HifsE8ykwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzczMjJlMzEzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdIbzANBgkqhkiG 9w0BAQsFAAOCAQEAilkl2hfnc3ajbgVYCVK6D617IEPoAvh7CopUPeAyIjnThIY+ I3J7lC7lGuVOeCZE60AJlxTNlHDKi6hDYRNMlr6G0+oZseSL5NIkw3zHOmRskacY 4WzuGX++qhBonVSxsNmavPVzIaPfm/V4hmIF9JaJ5ezQANcEPosWda4QC22T0ik+ FmZQwa0J+LPgp9Hk0MA8IEWvBq7blzRQK8SALVMSqF4G29XJcWmO1UJWV1uaR0mx mMDWI2KM4ooTiLzxgwqk+bXMKrkX/R7ZVl6lagCqRrPwirZtUaNuGi37wPf5N6+X ZvMuoIvDJE58bAF+b6Ymp/g1YH6ZQgRtI+++sA== -----END CERTIFICATE-----Generated at Sat Jun 1 01:40:18 2024 by rpki-client on console-fra.rpki-client.org