$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa File: 3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa (raw, json) Hash identifier: m9HEvaPr+MCHUScC/S8/ZbPl5+d+RZJ8L/y0XuZIprU= Subject key identifier: 8B:37:F7:D3:0D:3E:37:74:2D:7C:7F:B3:AB:FF:F1:57:33:64:FB:FE Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 7DE8D1404AA5DE064E49F07BA70D3C991ABBE811 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa Signing time: Sun 28 Apr 2024 07:00:00 +0000 ROA not before: Sun 28 Apr 2024 06:55:00 +0000 ROA not after: Sun 27 Apr 2025 07:00:00 +0000 asID: 23951 IP address blocks: 103.101.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 20:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e8:d1:40:4a:a5:de:06:4e:49:f0:7b:a7:0d:3c:99:1a:bb:e8:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Apr 28 06:55:00 2024 GMT Not After : Apr 27 07:00:00 2025 GMT Subject: CN=8B37F7D30D3E37742D7C7FB3ABFFF1573364FBFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:84:ca:97:f4:bf:4f:ad:a3:75:42:00:87:0c: bf:07:9e:1b:ba:7c:c4:5b:cc:5a:8e:3b:df:4c:95: e6:1b:f6:46:b2:a5:71:6d:ad:bb:56:3a:7b:a9:89: 69:ca:e7:2f:14:1e:8f:8b:a6:a5:52:fd:e2:cf:68: e1:b1:5f:4e:f7:09:a6:e8:41:11:42:ce:8e:66:26: b7:66:84:54:2c:0b:fa:11:be:b1:09:48:5b:1e:d8: c3:14:bf:38:c0:08:c3:65:b9:3a:4b:53:0d:ad:0e: fa:11:45:a7:16:4d:ca:3e:85:65:4e:df:11:27:cb: d8:01:fb:6d:a4:b0:06:54:82:78:20:b9:5f:65:7a: cb:74:b0:e9:bc:62:c4:12:44:51:cd:15:45:1e:c5: 09:e2:d9:9f:78:ab:7b:5d:49:0e:10:7d:57:56:9d: 8a:4f:33:45:10:f4:61:56:db:7c:c3:d5:fa:63:1d: bb:05:67:0e:ed:ef:e3:ff:2e:de:2c:b3:ad:29:1c: e2:42:22:37:e0:ee:18:7f:51:8a:00:71:ac:ce:eb: 00:60:7d:1d:cb:48:36:39:57:d1:63:bd:af:aa:f0: 08:be:70:95:a8:e4:e2:33:5b:c8:e9:31:1c:09:57: 85:fb:40:4a:df:ba:57:24:57:bf:62:dc:0a:80:51: 97:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:37:F7:D3:0D:3E:37:74:2D:7C:7F:B3:AB:FF:F1:57:33:64:FB:FE X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/22 Signature Algorithm: sha256WithRSAEncryption 14:9e:14:87:3c:f5:4a:13:3a:37:24:f5:fb:06:81:b8:0f:66: a3:a3:5a:71:32:a3:1c:91:02:b6:f7:54:4e:26:7c:c5:57:6b: 70:db:0b:6c:0b:d0:85:e3:3f:b1:1a:ff:13:69:65:42:33:ad: 27:1f:37:40:2b:03:75:19:b9:ee:59:e9:89:de:f8:6a:15:9c: 40:75:fb:a1:40:26:0b:a8:7e:b8:bc:4c:aa:5a:00:2f:97:de: 18:e7:3a:65:fd:f0:01:6e:d8:13:1c:97:77:ab:fa:cf:24:0c: bd:0e:6b:0b:39:a6:54:45:28:7a:9e:91:3f:8e:2c:ec:ad:97: 5c:64:1a:a2:e1:b3:1a:59:47:cc:a6:3e:76:bb:3c:6d:ad:18: ae:dd:ba:2d:79:f0:16:6d:7c:fa:c3:ba:75:3d:c4:65:50:73: a6:f2:e6:34:8e:32:4f:7f:48:de:eb:f7:74:ab:d3:27:82:6d: 67:50:b2:b6:7e:62:7f:94:6d:34:b3:23:54:d7:37:65:40:a5: 4c:e7:a9:cc:cc:90:af:9e:2a:52:93:97:af:27:7c:c6:78:4f: ab:03:b4:95:5a:88:a4:46:85:64:9e:20:b2:ab:fa:27:8e:76: 4e:83:b1:60:e3:db:87:c6:62:fb:6f:d9:3c:b8:d6:ba:0c:8a: 96:42:b6:a2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfejRQEql3gZOSfB7pw08mRq76BEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA0MjgwNjU1MDBaFw0yNTA0MjcwNzAwMDBaMDMxMTAvBgNV BAMTKDhCMzdGN0QzMEQzRTM3NzQyRDdDN0ZCM0FCRkZGMTU3MzM2NEZCRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6hMqX9L9PraN1QgCHDL8Hnhu6 fMRbzFqOO99MleYb9kaypXFtrbtWOnupiWnK5y8UHo+LpqVS/eLPaOGxX073Cabo QRFCzo5mJrdmhFQsC/oRvrEJSFse2MMUvzjACMNluTpLUw2tDvoRRacWTco+hWVO 3xEny9gB+22ksAZUgngguV9lest0sOm8YsQSRFHNFUUexQni2Z94q3tdSQ4QfVdW nYpPM0UQ9GFW23zD1fpjHbsFZw7t7+P/Lt4ss60pHOJCIjfg7hh/UYoAcazO6wBg fR3LSDY5V9Fjva+q8Ai+cJWo5OIzW8jpMRwJV4X7QErfulckV79i3AqAUZfxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUizf30w0+N3QtfH+zq//xVzNk+/4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQAUnhSHPPVKEzo3JPX7BoG4D2ajo1pxMqMckQK291ROJnzF V2tw2wtsC9CF4z+xGv8TaWVCM60nHzdAKwN1GbnuWemJ3vhqFZxAdfuhQCYLqH64 vEyqWgAvl94Y5zpl/fABbtgTHJd3q/rPJAy9DmsLOaZURSh6npE/jizsrZdcZBqi 4bMaWUfMpj52uzxtrRiu3botefAWbXz6w7p1PcRlUHOm8uY0jjJPf0je6/d0q9Mn gm1nULK2fmJ/lG00syNU1zdlQKVM56nMzJCvnipSk5evJ3zGeE+rA7SVWoikRoVk niCyq/onjnZOg7Fg49uHxmL7b9k8uNa6DIqWQrai -----END CERTIFICATE-----Generated at Thu May 2 14:39:40 2024 by rpki-client on console-ams.rpki-client.org