$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: BXaQn3BDVdnxLlfAeCzESPCIHdwWAshzHZHf5U7xXhQ= Subject key identifier: FE:F8:FE:66:9F:89:3C:FB:F1:B3:0C:04:43:E3:B5:46:66:D7:E3:06 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 6DFC066BA200C567946543AA7CFF4071CA281445 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa Signing time: Wed 08 Nov 2023 05:00:02 +0000 ROA not before: Wed 08 Nov 2023 04:55:02 +0000 ROA not after: Wed 06 Nov 2024 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fc:06:6b:a2:00:c5:67:94:65:43:aa:7c:ff:40:71:ca:28:14:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Nov 8 04:55:02 2023 GMT Not After : Nov 6 05:00:02 2024 GMT Subject: CN=FEF8FE669F893CFBF1B30C0443E3B54666D7E306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d4:84:f1:79:95:20:d3:c8:2a:c2:45:4f:5f: 96:24:45:69:bf:c4:fe:d4:c7:43:82:75:ed:4a:85: bc:bc:fa:28:79:f8:2e:db:e3:c3:a8:22:93:30:1f: d4:ef:a3:1d:eb:6e:56:f5:51:2e:a9:df:f5:25:96: af:c6:dd:50:3c:54:24:b1:f7:bd:fa:88:90:6a:c2: 08:39:22:b4:52:8c:06:42:a3:58:47:fd:f1:1b:b6: 7f:4c:aa:35:ec:c6:1c:47:f4:db:3f:45:a4:cc:41: 54:39:d3:f7:27:17:66:e5:e7:dc:c6:64:47:8b:f8: fb:77:7b:ee:66:bc:f1:56:cd:d8:b5:f9:67:37:96: 2f:bd:f3:3e:f1:e0:da:6c:ac:99:18:a3:68:ae:2c: dd:82:85:02:fe:98:1c:80:dd:98:16:03:9d:18:61: 68:76:af:d2:62:61:c8:77:7c:c9:42:7f:25:7c:99: 69:52:46:60:1a:a3:5b:08:96:3c:88:1d:e5:30:f4: 12:ce:f2:46:a7:30:f9:ce:24:a2:3e:2f:c3:7c:68: 35:cf:6a:f0:f2:ab:59:35:75:7c:a1:91:5d:76:ab: 63:6d:37:9a:c0:63:b5:43:2f:01:b1:11:e6:a6:88: 66:b1:86:9f:0d:8f:df:c1:37:6a:0b:fb:d7:d0:22: 7f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F8:FE:66:9F:89:3C:FB:F1:B3:0C:04:43:E3:B5:46:66:D7:E3:06 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.131.0/24 Signature Algorithm: sha256WithRSAEncryption 53:af:dd:67:88:7f:60:c0:4c:2b:44:df:ca:2c:32:f8:6f:f6: 28:94:8e:0c:0e:9c:8d:b2:75:17:63:cd:b0:26:84:79:b5:7f: 62:57:96:e9:5f:ce:c8:2a:f7:78:01:4f:e1:3e:50:58:3a:3e: a2:5d:c1:fd:eb:ec:4b:a7:1a:03:57:a2:a3:37:93:01:2c:b0: 62:de:e6:64:8e:2f:49:4b:1d:91:9c:ca:24:59:6e:aa:71:74: ea:c3:6b:d7:16:02:ce:c7:29:11:76:ee:75:6b:7d:1d:3b:8e: 17:30:f3:14:9c:39:85:26:8d:62:c7:f6:20:a2:a9:56:85:66: bb:bd:0a:1e:d5:1d:8b:68:4e:45:cc:f1:32:6b:03:06:5e:b6: a3:b8:ec:b9:4c:41:f2:0d:a5:e6:40:a7:8f:a9:99:74:0e:af: 80:45:b7:43:85:6f:9b:59:5d:f6:ed:98:38:68:c4:4d:f3:b5: 87:b4:ba:d4:91:22:4f:1f:47:b9:69:1f:ea:a2:75:59:74:65: de:5b:ec:b9:63:1e:f2:f0:51:e2:0d:70:a6:e3:51:78:2f:d0: 73:20:9e:49:f6:ca:49:a7:b8:1e:ea:5d:8b:1e:6d:7c:b7:38: 12:85:8a:a1:3f:7c:54:4e:0b:e8:44:a0:25:2a:02:72:ad:72: 59:d6:2d:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbfwGa6IAxWeUZUOqfP9AccooFEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yMzExMDgwNDU1MDJaFw0yNDExMDYwNTAwMDJaMDMxMTAvBgNV BAMTKEZFRjhGRTY2OUY4OTNDRkJGMUIzMEMwNDQzRTNCNTQ2NjZEN0UzMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1ITxeZUg08gqwkVPX5YkRWm/ xP7Ux0OCde1Khby8+ih5+C7b48OoIpMwH9Tvox3rblb1US6p3/Ullq/G3VA8VCSx 9736iJBqwgg5IrRSjAZCo1hH/fEbtn9MqjXsxhxH9Ns/RaTMQVQ50/cnF2bl59zG ZEeL+Pt3e+5mvPFWzdi1+Wc3li+98z7x4NpsrJkYo2iuLN2ChQL+mByA3ZgWA50Y YWh2r9JiYch3fMlCfyV8mWlSRmAao1sIljyIHeUw9BLO8kanMPnOJKI+L8N8aDXP avDyq1k1dXyhkV12q2NtN5rAY7VDLwGxEeamiGaxhp8Nj9/BN2oL+9fQIn9XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/vj+Zp+JPPvxswwEQ+O1RmbX4wYwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mDMA0GCSqG SIb3DQEBCwUAA4IBAQBTr91niH9gwEwrRN/KLDL4b/YolI4MDpyNsnUXY82wJoR5 tX9iV5bpX87IKvd4AU/hPlBYOj6iXcH96+xLpxoDV6KjN5MBLLBi3uZkji9JSx2R nMokWW6qcXTqw2vXFgLOxykRdu51a30dO44XMPMUnDmFJo1ix/YgoqlWhWa7vQoe 1R2LaE5FzPEyawMGXrajuOy5TEHyDaXmQKePqZl0Dq+ARbdDhW+bWV327Zg4aMRN 87WHtLrUkSJPH0e5aR/qonVZdGXeW+y5Yx7y8FHiDXCm41F4L9BzIJ5J9spJp7ge 6l2LHm18tzgShYqhP3xUTgvoRKAlKgJyrXJZ1i3e -----END CERTIFICATE-----Generated at Wed May 1 07:05:33 2024 by rpki-client on console-fra.rpki-client.org