$ rpki-client -vvf repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/3130332e3134392e31342e302f32332d3233203d3e20313430303136.roa File: 3130332e3134392e31342e302f32332d3233203d3e20313430303136.roa (raw, json) Hash identifier: b0NxctWBq2vKtUZseKfO78sRofV4gWRSUe6ku9NV6r8= Subject key identifier: E7:4E:1D:B7:CE:6F:D8:6C:38:05:DC:92:F7:1C:A3:80:C0:A8:D9:CC Certificate issuer: /CN=416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730 Certificate serial: 5ED4D94D5D916B1DFFF0001B57116200909A87F9 Authority key identifier: 41:66:66:F3:F3:35:ED:7A:8B:1B:CB:AD:17:E6:ED:C4:F3:B7:E7:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/3130332e3134392e31342e302f32332d3233203d3e20313430303136.roa Signing time: Mon 31 Jul 2023 00:08:21 +0000 ROA not before: Mon 31 Jul 2023 00:03:21 +0000 ROA not after: Mon 29 Jul 2024 00:08:21 +0000 asID: 140016 IP address blocks: 103.149.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.crl rsync://repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 11:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d4:d9:4d:5d:91:6b:1d:ff:f0:00:1b:57:11:62:00:90:9a:87:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730 Validity Not Before: Jul 31 00:03:21 2023 GMT Not After : Jul 29 00:08:21 2024 GMT Subject: CN=E74E1DB7CE6FD86C3805DC92F71CA380C0A8D9CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:94:d9:60:67:b2:b2:a6:d3:aa:50:1e:d0:8d: e9:ad:1d:bd:1a:8a:08:c4:9d:ca:8a:7f:72:0d:9e: 6c:c9:11:e1:04:0e:05:78:82:0c:f0:57:db:a1:6b: 95:b2:b3:2d:40:ce:05:b0:da:bb:e8:f0:19:d1:13: f6:8c:b2:b1:23:71:c2:d0:c5:bc:86:bd:31:6c:63: 77:72:34:fd:ea:3d:3a:6b:ec:e1:ce:8c:9a:62:60: 36:c9:77:8d:c7:00:95:32:66:12:ab:9f:15:f2:eb: f5:6d:8e:e5:f7:5c:0d:f0:44:7d:74:ea:29:c5:fa: 35:84:45:47:c7:58:23:a8:27:f6:e5:16:f7:f6:a8: cc:0f:aa:ee:a2:de:87:bf:d3:12:77:5e:79:4b:e3: f0:99:cf:7b:8b:78:78:b9:f1:3f:c9:e8:64:b6:5b: 22:88:69:46:f1:a5:ef:77:20:f1:94:f8:34:62:09: 20:2b:10:c2:09:3a:da:11:a5:5d:7f:0b:1f:9a:67: cf:60:b9:4e:e8:22:ce:46:ec:7f:1c:ba:ce:8d:98: ba:31:9b:63:06:96:5c:79:5a:3c:8c:46:47:48:bb: d6:8a:5e:e7:51:72:40:bf:1a:0e:d4:8b:72:ac:64: 2b:79:98:05:c3:52:2f:bb:39:d9:1f:3c:f2:53:0b: 72:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4E:1D:B7:CE:6F:D8:6C:38:05:DC:92:F7:1C:A3:80:C0:A8:D9:CC X509v3 Authority Key Identifier: keyid:41:66:66:F3:F3:35:ED:7A:8B:1B:CB:AD:17:E6:ED:C4:F3:B7:E7:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/416666F3F335ED7A8B1BCBAD17E6EDC4F3B7E730.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04391698-08ec-4790-a184-922852fa4d0a/0/3130332e3134392e31342e302f32332d3233203d3e20313430303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.14.0/23 Signature Algorithm: sha256WithRSAEncryption a6:d0:bf:43:e6:c5:3d:36:22:cb:6f:6b:36:fc:c7:c3:45:03: 1b:38:8f:f4:8e:1b:3a:48:29:d5:87:7d:35:ec:37:c6:d3:e6: 95:59:68:ff:d2:1c:b1:30:e4:c9:73:f9:5d:83:2f:5a:d6:8f: 99:07:12:0a:b0:96:b2:a0:c6:34:25:dd:52:cd:f5:64:14:05: 3c:81:66:01:f8:6d:16:c1:2b:93:c2:c1:b9:8f:4f:2c:30:8a: f1:ca:40:41:85:75:82:c2:62:d5:e9:55:bd:d7:74:4d:26:92: 0e:7e:08:0b:2c:db:3c:9f:c1:76:ae:52:d3:de:1b:5a:91:18: bb:9a:bc:1f:ed:85:86:77:42:97:7b:6c:66:77:55:0c:17:b2: db:71:4d:7a:a1:4e:d7:c2:b6:28:59:fd:53:33:41:6c:7c:06: 13:19:c2:1c:49:8e:90:cf:21:fa:6a:bc:e2:f2:a8:88:93:b0: fd:48:8f:5c:02:b8:82:d7:30:4c:1d:44:ba:f7:66:ae:22:59: 5f:f7:3e:8c:4b:6f:fa:8e:96:59:7f:db:a4:6c:61:45:a6:da: 72:d6:0b:e7:6f:22:05:19:b2:72:71:a7:9e:1e:5e:ba:15:95: 48:8d:7b:b8:27:9b:16:eb:2d:72:50:d6:03:90:45:c8:85:19: 20:8c:e4:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXtTZTV2Rax3/8AAbVxFiAJCah/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE2NjY2RjNGMzM1RUQ3QThCMUJDQkFEMTdFNkVEQzRG M0I3RTczMDAeFw0yMzA3MzEwMDAzMjFaFw0yNDA3MjkwMDA4MjFaMDMxMTAvBgNV BAMTKEU3NEUxREI3Q0U2RkQ4NkMzODA1REM5MkY3MUNBMzgwQzBBOEQ5Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRlNlgZ7KyptOqUB7QjemtHb0a igjEncqKf3INnmzJEeEEDgV4ggzwV9uha5Wysy1AzgWw2rvo8BnRE/aMsrEjccLQ xbyGvTFsY3dyNP3qPTpr7OHOjJpiYDbJd43HAJUyZhKrnxXy6/VtjuX3XA3wRH10 6inF+jWERUfHWCOoJ/blFvf2qMwPqu6i3oe/0xJ3XnlL4/CZz3uLeHi58T/J6GS2 WyKIaUbxpe93IPGU+DRiCSArEMIJOtoRpV1/Cx+aZ89guU7oIs5G7H8cus6NmLox m2MGllx5WjyMRkdIu9aKXudRckC/Gg7Ui3KsZCt5mAXDUi+7OdkfPPJTC3LrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU504dt85v2Gw4BdyS9xyjgMCo2cwwHwYDVR0j BBgwFoAUQWZm8/M17XqLG8utF+btxPO35zAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDM5MTY5OC0wOGVjLTQ3OTAtYTE4NC05MjI4NTJmYTRkMGEvMC80MTY2NjZGM0Yz MzVFRDdBOEIxQkNCQUQxN0U2RURDNEYzQjdFNzMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE2NjY2RjNGMzM1RUQ3QThCMUJDQkFEMTdFNkVEQzRGM0I3 RTczMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MzkxNjk4LTA4ZWMtNDc5MC1h MTg0LTkyMjg1MmZhNGQwYS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzAzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5UOMA0GCSqG SIb3DQEBCwUAA4IBAQCm0L9D5sU9NiLLb2s2/MfDRQMbOI/0jhs6SCnVh3017DfG 0+aVWWj/0hyxMOTJc/ldgy9a1o+ZBxIKsJayoMY0Jd1SzfVkFAU8gWYB+G0WwSuT wsG5j08sMIrxykBBhXWCwmLV6VW913RNJpIOfggLLNs8n8F2rlLT3htakRi7mrwf 7YWGd0KXe2xmd1UMF7LbcU16oU7XwrYoWf1TM0FsfAYTGcIcSY6QzyH6arzi8qiI k7D9SI9cAriC1zBMHUS692auIllf9z6MS2/6jpZZf9ukbGFFptpy1gvnbyIFGbJy caeeHl66FZVIjXu4J5sW6y1yUNYDkEXIhRkgjORZ -----END CERTIFICATE-----Generated at Tue Apr 16 10:33:01 2024 by rpki-client on console-fra.rpki-client.org