$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32342d3234203d3e20313331373035.roa File: 3130332e3135342e3137382e302f32342d3234203d3e20313331373035.roa (raw, json) Hash identifier: K6wVrrcLEBjlC6xeoIoIGULUclDZlzAkoc88QQdbCvU= Subject key identifier: 98:A1:6E:47:E6:10:4E:1C:50:B3:7B:0C:CF:CF:28:E4:6A:1D:C9:35 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 1BEB280757575DF34C571AB7FD30F44FE8C5CAF4 Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32342d3234203d3e20313331373035.roa Signing time: Fri 14 Jun 2024 07:00:00 +0000 ROA not before: Fri 14 Jun 2024 06:55:00 +0000 ROA not after: Fri 13 Jun 2025 07:00:00 +0000 asID: 131705 IP address blocks: 103.154.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:eb:28:07:57:57:5d:f3:4c:57:1a:b7:fd:30:f4:4f:e8:c5:ca:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jun 14 06:55:00 2024 GMT Not After : Jun 13 07:00:00 2025 GMT Subject: CN=98A16E47E6104E1C50B37B0CCFCF28E46A1DC935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:74:9c:c0:26:88:01:8b:66:af:c4:ea:b1: 3a:6e:97:d8:29:ad:f2:38:88:83:49:1d:6d:37:f2: 72:49:d4:e6:4c:e0:dd:72:6e:e9:ee:19:33:71:6b: c8:b2:64:1f:34:68:28:d5:37:ec:bc:ce:4b:41:9d: 53:b0:09:93:01:d2:4c:c2:e9:28:a4:bb:ad:ac:50: 92:f4:a1:dd:18:33:71:78:ee:89:0d:b2:1d:d4:be: 9e:b4:bc:77:95:47:e0:f4:aa:7e:40:f3:83:35:0f: 9d:24:8b:cc:70:39:ff:a6:eb:c4:a7:48:20:b4:10: 15:99:a6:61:ef:4a:59:f9:1a:1f:cf:a2:6a:87:f6: 06:15:30:4b:63:a4:eb:53:56:49:55:65:42:1d:c4: 27:42:ad:e1:a7:41:4a:75:92:0e:61:eb:db:19:45: f2:21:85:90:51:c6:62:c1:c5:8f:1c:6b:c0:47:d4: 74:fd:2f:6d:8c:f0:65:17:64:19:ca:25:a9:4b:48: c4:82:10:2c:34:cf:ad:d0:79:be:e1:18:02:29:bc: 03:33:d6:2b:ca:d2:39:41:29:6c:16:53:dd:26:ed: ad:36:4b:3a:88:41:bb:71:7f:a2:2a:2a:0d:e1:13: 3c:cf:67:42:a2:17:e9:49:6a:20:20:3a:83:53:57: 1a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A1:6E:47:E6:10:4E:1C:50:B3:7B:0C:CF:CF:28:E4:6A:1D:C9:35 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137382e302f32342d3234203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.178.0/24 Signature Algorithm: sha256WithRSAEncryption 27:8c:ba:b1:85:ee:a9:1e:b9:ba:79:cf:c0:52:af:4e:b5:9d: 44:73:25:ed:80:40:83:9e:86:64:d7:6b:12:81:d6:4e:99:c2: 94:44:17:67:3e:0b:cd:fb:4a:3b:9a:8d:ca:af:a6:2e:24:35: 57:d4:91:ba:cd:bc:ca:24:09:0c:76:84:62:01:f8:dc:93:0f: 87:20:82:d9:82:fc:aa:5d:f3:f9:5f:c7:86:4a:99:ea:7f:22: f7:e6:e3:30:8f:75:ba:7c:ee:db:d6:ae:6e:9e:52:37:3d:67: e2:ef:7b:d9:24:3a:5a:e5:31:b3:e7:26:ee:06:24:45:66:f9: e3:d7:12:9c:e5:6a:ae:59:e9:63:e6:c3:2f:74:df:55:7e:14: e2:37:96:06:8f:35:cd:6a:04:35:87:4a:46:3d:69:e6:ed:8d: 23:50:5a:99:19:24:55:3a:f9:4b:14:88:ac:3d:1c:ab:d9:80: f0:f1:26:ca:81:ac:29:ab:b7:85:f2:c5:cb:7b:c0:29:95:0e: b1:a8:71:74:64:cf:59:6d:f2:61:92:0b:2c:22:dc:ac:e9:ae: bb:fc:58:39:d8:27:12:3f:bb:23:c0:64:d9:53:b1:a4:a4:1f: c0:5d:df:c4:2a:ec:5c:2a:2a:92:68:1c:0b:0b:38:3a:e0:ed: 00:86:74:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG+soB1dXXfNMVxq3/TD0T+jFyvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNDA2MTQwNjU1MDBaFw0yNTA2MTMwNzAwMDBaMDMxMTAvBgNV BAMTKDk4QTE2RTQ3RTYxMDRFMUM1MEIzN0IwQ0NGQ0YyOEU0NkExREM5MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmX3ScwCaIAYtmr8TqsTpul9gp rfI4iINJHW038nJJ1OZM4N1ybunuGTNxa8iyZB80aCjVN+y8zktBnVOwCZMB0kzC 6Siku62sUJL0od0YM3F47okNsh3Uvp60vHeVR+D0qn5A84M1D50ki8xwOf+m68Sn SCC0EBWZpmHvSln5Gh/PomqH9gYVMEtjpOtTVklVZUIdxCdCreGnQUp1kg5h69sZ RfIhhZBRxmLBxY8ca8BH1HT9L22M8GUXZBnKJalLSMSCECw0z63Qeb7hGAIpvAMz 1ivK0jlBKWwWU90m7a02SzqIQbtxf6IqKg3hEzzPZ0KiF+lJaiAgOoNTVxrRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmKFuR+YQThxQs3sMz88o5GodyTUwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmrIwDQYJ KoZIhvcNAQELBQADggEBACeMurGF7qkeubp5z8BSr061nURzJe2AQIOehmTXaxKB 1k6ZwpREF2c+C837Sjuajcqvpi4kNVfUkbrNvMokCQx2hGIB+NyTD4cggtmC/Kpd 8/lfx4ZKmep/Ivfm4zCPdbp87tvWrm6eUjc9Z+Lve9kkOlrlMbPnJu4GJEVm+ePX Epzlaq5Z6WPmwy9031V+FOI3lgaPNc1qBDWHSkY9aebtjSNQWpkZJFU6+UsUiKw9 HKvZgPDxJsqBrCmrt4Xyxct7wCmVDrGocXRkz1lt8mGSCywi3Kzprrv8WDnYJxI/ uyPAZNlTsaSkH8Bd38Qq7FwqKpJoHAsLODrg7QCGdKg= -----END CERTIFICATE-----Generated at Fri Jun 21 11:44:11 2024 by rpki-client on console-fra.rpki-client.org