$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131362e302f32342d3234203d3e203536323433.roa File: 3130332e3234362e3131362e302f32342d3234203d3e203536323433.roa (raw, json) Hash identifier: wTJjb+QXebTgfRO38HUzzgAPQiK+sPdAHn7sScYUe7k= Subject key identifier: CD:31:2F:34:26:CE:6F:4B:32:47:4B:59:FA:8A:A1:92:B8:65:14:65 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 57826E54917117EB6361A32941762F70C1E81C18 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131362e302f32342d3234203d3e203536323433.roa Signing time: Wed 05 Jul 2023 09:39:13 +0000 ROA not before: Wed 05 Jul 2023 09:34:13 +0000 ROA not after: Wed 03 Jul 2024 09:39:13 +0000 asID: 56243 IP address blocks: 103.246.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 01:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:82:6e:54:91:71:17:eb:63:61:a3:29:41:76:2f:70:c1:e8:1c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jul 5 09:34:13 2023 GMT Not After : Jul 3 09:39:13 2024 GMT Subject: CN=CD312F3426CE6F4B32474B59FA8AA192B8651465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c6:f0:af:82:71:ab:08:30:40:72:1b:57:4b: 66:8b:d9:20:15:5f:ea:3c:6e:a5:c8:78:59:c2:6f: a9:46:e9:2e:6e:71:05:b6:0b:50:c9:3b:e6:e5:7c: 8d:ca:a8:04:90:24:a1:94:1a:22:c2:df:ed:11:b6: 79:6c:7e:24:2e:b6:4f:b0:20:c3:1b:13:a8:18:e5: 06:34:c3:ed:a7:f3:a3:31:46:ca:8c:4d:37:8e:8a: ab:8a:aa:dd:c0:28:3c:31:26:43:53:07:18:84:84: 36:c2:e5:2e:3d:ed:cc:2e:98:74:b2:e3:c4:e7:97: 02:08:3a:db:c6:36:ea:07:97:14:50:09:0d:bf:f8: 2b:d6:94:cd:fe:9e:05:0d:49:dd:b5:f8:fc:6f:16: b6:e8:c5:7d:d5:ad:e6:81:d5:5c:e0:71:a7:3c:98: 5c:2d:e0:cc:4b:9d:38:01:23:64:0d:76:34:3e:a8: 5c:bd:5e:c6:cf:e1:2b:0b:cb:70:8c:f1:2b:64:bd: a6:2a:14:e1:19:b3:9f:a9:57:93:e1:1f:8e:06:85: 03:f2:5b:d9:43:c3:2b:d5:73:c6:8b:4c:19:18:ac: 76:b9:a0:81:c1:64:6b:09:12:3b:9e:0e:9a:8c:5a: bb:84:ff:e2:dd:19:58:ae:b8:e4:89:a1:9b:09:5c: 13:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:31:2F:34:26:CE:6F:4B:32:47:4B:59:FA:8A:A1:92:B8:65:14:65 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131362e302f32342d3234203d3e203536323433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.116.0/24 Signature Algorithm: sha256WithRSAEncryption c4:e8:e9:04:35:9b:ef:e4:d3:e0:61:7e:fd:36:87:8d:72:47: b9:6e:3e:12:e6:4e:29:71:c4:db:44:db:3c:3d:a1:9d:29:06: c5:cd:ff:4b:f9:41:21:2d:4f:82:af:f3:af:1f:9b:b6:fd:67: 92:81:08:14:98:1d:08:48:d7:1c:5c:5c:2e:00:89:e9:81:f2: b5:4a:e1:09:c3:a1:8f:74:6d:ed:fe:53:46:b7:81:cd:f1:99: c3:63:f2:38:55:23:0e:53:fe:3f:f8:4a:21:6d:02:9e:e2:66: 0c:8c:06:60:ca:81:2a:fb:0d:b8:1b:90:f2:16:8b:6f:c9:76: 5e:ef:ce:04:be:b5:ad:f1:c6:e0:e9:1a:e7:a2:19:f6:cf:b8: be:e9:5c:2c:b3:75:6d:9f:01:f3:34:dc:f3:eb:f2:d7:16:91: 15:41:1f:7b:69:2e:d1:6d:89:14:41:f7:e3:b4:c5:62:22:b6: 2a:ac:f1:d2:8e:eb:2a:ea:08:2a:c7:a4:ee:d2:4c:42:d8:eb: 6b:f1:6d:96:43:5a:32:0a:e5:b6:75:b2:09:7a:8a:af:2e:ea: 21:39:78:6c:10:f2:aa:1c:52:27:06:16:59:5b:28:84:11:2a: 6f:a2:12:49:be:34:59:17:9a:d9:ed:a1:17:f5:89:ff:3b:bc: 31:ef:7b:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV4JuVJFxF+tjYaMpQXYvcMHoHBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yMzA3MDUwOTM0MTNaFw0yNDA3MDMwOTM5MTNaMDMxMTAvBgNV BAMTKENEMzEyRjM0MjZDRTZGNEIzMjQ3NEI1OUZBOEFBMTkyQjg2NTE0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLxvCvgnGrCDBAchtXS2aL2SAV X+o8bqXIeFnCb6lG6S5ucQW2C1DJO+blfI3KqASQJKGUGiLC3+0RtnlsfiQutk+w IMMbE6gY5QY0w+2n86MxRsqMTTeOiquKqt3AKDwxJkNTBxiEhDbC5S497cwumHSy 48TnlwIIOtvGNuoHlxRQCQ2/+CvWlM3+ngUNSd21+PxvFrboxX3VreaB1Vzgcac8 mFwt4MxLnTgBI2QNdjQ+qFy9XsbP4SsLy3CM8StkvaYqFOEZs5+pV5PhH44GhQPy W9lDwyvVc8aLTBkYrHa5oIHBZGsJEjueDpqMWruE/+LdGViuuOSJoZsJXBPpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzTEvNCbOb0syR0tZ+oqhkrhlFGUwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMxMzAzMzJlMzIzNDM2MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/Z0MA0GCSqG SIb3DQEBCwUAA4IBAQDE6OkENZvv5NPgYX79NoeNcke5bj4S5k4pccTbRNs8PaGd KQbFzf9L+UEhLU+Cr/OvH5u2/WeSgQgUmB0ISNccXFwuAInpgfK1SuEJw6GPdG3t /lNGt4HN8ZnDY/I4VSMOU/4/+EohbQKe4mYMjAZgyoEq+w24G5DyFotvyXZe784E vrWt8cbg6Rrnohn2z7i+6Vwss3VtnwHzNNzz6/LXFpEVQR97aS7RbYkUQffjtMVi IrYqrPHSjusq6ggqx6Tu0kxC2Otr8W2WQ1oyCuW2dbIJeoqvLuohOXhsEPKqHFIn BhZZWyiEESpvohJJvjRZF5rZ7aEX9Yn/O7wx73tZ -----END CERTIFICATE-----Generated at Thu May 2 20:47:14 2024 by rpki-client on console-fra.rpki-client.org