$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: LbI7qqBUf4I1x2xiJm2uSvRkcz5xtTecDHA8C9LeAV8= Subject key identifier: 70:34:3E:2F:6B:C3:08:60:7D:92:98:9F:C0:A1:7A:AB:DF:89:F8:4B Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Certificate serial: 64E18510A0521236D8599634104AF80F0BD6EB01 Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:02:02 +0000 ROA not before: Wed 03 Jan 2024 07:57:02 +0000 ROA not after: Wed 01 Jan 2025 08:02:02 +0000 asID: 135478 IP address blocks: 103.121.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e1:85:10:a0:52:12:36:d8:59:96:34:10:4a:f8:0f:0b:d6:eb:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Validity Not Before: Jan 3 07:57:02 2024 GMT Not After : Jan 1 08:02:02 2025 GMT Subject: CN=70343E2F6BC308607D92989FC0A17AABDF89F84B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:e6:f0:cf:f9:5e:2f:f3:94:fc:43:38:ea: f4:4f:c3:c5:75:8d:c3:77:dd:e1:1c:0d:e4:88:26: 05:8d:df:8a:49:89:7f:e9:c1:04:d2:27:b5:f0:d4: 86:f0:1a:ae:23:2c:9d:ca:a5:3d:28:5a:d0:45:42: 45:51:ce:f8:3a:38:ed:df:fc:9b:b8:1f:17:50:28: e4:f8:16:61:2e:83:fc:fb:0c:51:c2:9c:0f:e8:73: 2b:c3:d0:1a:d3:91:d3:e3:f5:f0:6a:fc:7e:b0:2f: 76:ad:eb:d9:89:9c:18:f7:cc:d2:f0:12:ca:06:82: f0:83:8c:8b:7e:d2:6f:7d:e6:ae:28:3f:ed:40:d2: 36:d9:80:09:5d:74:4b:46:1d:c6:0e:a1:34:8e:a0: 5c:29:58:8e:92:d6:b7:8d:fa:ef:df:4e:10:c5:b8: 33:18:35:c8:d8:c5:ae:22:8e:ca:32:29:fe:f5:17: 2a:02:dc:1a:ac:a1:7e:a1:b4:a4:87:30:59:d0:95: 77:2a:ac:a1:07:97:ca:aa:19:75:81:95:0e:85:d9: 15:c3:05:75:2e:97:6c:b9:3e:7b:9b:97:c5:60:de: db:7d:23:36:f9:05:b6:96:bb:1d:3c:8d:70:8b:e7: b1:8a:f6:4c:90:95:5a:06:01:07:96:05:b5:cc:b7: 76:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:34:3E:2F:6B:C3:08:60:7D:92:98:9F:C0:A1:7A:AB:DF:89:F8:4B X509v3 Authority Key Identifier: keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.168.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:64:be:d4:3e:e5:8a:ac:f7:8d:ff:90:0f:2e:be:3e:a3:e5: 5f:42:0b:80:fa:2a:7c:47:41:5c:36:7c:d4:6f:ea:9f:6a:29: 0f:02:9e:73:e4:33:20:f2:1f:62:19:6f:8f:9d:4d:e9:57:54: 5c:57:40:5c:24:d2:22:68:7d:84:82:8d:6d:fa:5d:82:bf:69: d2:9c:53:04:c6:98:13:fd:7c:9a:9f:c3:22:40:f6:a8:fe:a8: bb:9c:dd:a9:f8:b6:8a:8b:fa:f7:e3:5b:11:b8:21:9b:87:3a: 47:75:99:45:c5:7b:e8:a2:39:98:17:e2:56:df:c0:ce:a0:6f: 7c:a9:7e:00:a6:09:3c:a5:3e:b5:77:e6:29:d5:17:44:15:5e: e5:c8:2f:c0:bb:88:dc:45:ef:63:a3:42:4a:65:b4:d4:b1:47: 14:e5:c2:4f:ac:a1:71:ee:eb:67:21:c3:53:55:b8:43:50:9f: be:c0:65:a5:a4:1b:3e:d7:8e:19:c1:38:8c:95:f4:8f:74:6a: cd:f4:9a:40:d4:1d:7b:2e:2b:0c:8f:b5:26:77:66:ef:e7:b7: d2:4e:ba:d6:37:53:40:08:27:a7:eb:79:18:a9:67:34:50:bd: d0:20:cb:53:3e:b8:b6:52:c6:c5:72:42:74:73:06:9f:03:29: 7c:54:3c:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZOGFEKBSEjbYWZY0EEr4DwvW6wEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJE RDA3MkM5QjAeFw0yNDAxMDMwNzU3MDJaFw0yNTAxMDEwODAyMDJaMDMxMTAvBgNV BAMTKDcwMzQzRTJGNkJDMzA4NjA3RDkyOTg5RkMwQTE3QUFCREY4OUY4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmFubwz/leL/OU/EM46vRPw8V1 jcN33eEcDeSIJgWN34pJiX/pwQTSJ7Xw1IbwGq4jLJ3KpT0oWtBFQkVRzvg6OO3f /Ju4HxdQKOT4FmEug/z7DFHCnA/ocyvD0BrTkdPj9fBq/H6wL3at69mJnBj3zNLw EsoGgvCDjIt+0m995q4oP+1A0jbZgAlddEtGHcYOoTSOoFwpWI6S1reN+u/fThDF uDMYNcjYxa4ijsoyKf71FyoC3BqsoX6htKSHMFnQlXcqrKEHl8qqGXWBlQ6F2RXD BXUul2y5Pnubl8Vg3tt9Izb5BbaWux08jXCL57GK9kyQlVoGAQeWBbXMt3axAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcDQ+L2vDCGB9kpifwKF6q9+J+EswHwYDVR0j BBgwFoAUh8e0t5MyZqCgniKQsJNGIt0HLJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMC84N0M3QjRCNzkz MzI2NkEwQTA5RTIyOTBCMDkzNDYyMkREMDcyQzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJERDA3 MkM5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneagwDQYJ KoZIhvcNAQELBQADggEBAA9kvtQ+5Yqs943/kA8uvj6j5V9CC4D6KnxHQVw2fNRv 6p9qKQ8CnnPkMyDyH2IZb4+dTelXVFxXQFwk0iJofYSCjW36XYK/adKcUwTGmBP9 fJqfwyJA9qj+qLuc3an4toqL+vfjWxG4IZuHOkd1mUXFe+iiOZgX4lbfwM6gb3yp fgCmCTylPrV35inVF0QVXuXIL8C7iNxF72OjQkpltNSxRxTlwk+soXHu62chw1NV uENQn77AZaWkGz7XjhnBOIyV9I90as30mkDUHXsuKwyPtSZ3Zu/nt9JOutY3U0AI J6freRipZzRQvdAgy1M+uLZSxsVyQnRzBp8DKXxUPCk= -----END CERTIFICATE-----Generated at Tue Apr 30 22:54:57 2024 by rpki-client on console-fra.rpki-client.org