$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa File: 3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa (raw, json) Hash identifier: NHt6KUniZp5NZ5o+YLn1lZ8+zjnv5kf/uZtCUjWEk8U= Subject key identifier: 99:0B:5E:48:41:01:AD:ED:67:A7:33:14:B3:AD:36:F6:01:D6:52:2B Certificate issuer: /CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Certificate serial: 4945CAD2A9C938738356F07C3FC140BBECE336B7 Authority key identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa Signing time: Sun 30 Jul 2023 23:00:00 +0000 ROA not before: Sun 30 Jul 2023 22:55:00 +0000 ROA not after: Sun 28 Jul 2024 23:00:00 +0000 asID: 136821 IP address blocks: 103.98.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 06:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:45:ca:d2:a9:c9:38:73:83:56:f0:7c:3f:c1:40:bb:ec:e3:36:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Validity Not Before: Jul 30 22:55:00 2023 GMT Not After : Jul 28 23:00:00 2024 GMT Subject: CN=990B5E484101ADED67A73314B3AD36F601D6522B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8c:63:3f:84:02:2e:20:72:29:d1:bc:97:b2: b0:0e:f9:18:4a:04:b6:58:eb:ad:73:4f:82:ab:e7: 9d:44:3c:42:95:68:d0:8f:a3:db:e7:34:07:40:cb: 74:92:15:0c:ba:7f:98:47:44:9c:fe:71:11:29:f2: 02:ad:37:73:38:f8:e0:6a:2d:e8:6f:ef:3b:4c:94: 64:6a:e1:ab:69:c2:75:32:c8:1c:fb:46:20:1e:47: 41:55:8e:d9:0d:9f:28:37:4e:7c:f2:42:bc:d5:1e: 38:50:00:a6:98:de:7d:e9:9b:44:66:5b:98:f6:28: cd:11:94:f5:d0:0e:2f:ff:9c:89:38:4d:a3:2a:8c: b6:11:a8:65:1d:19:8b:d1:a6:fa:af:78:96:cf:2f: e1:74:dd:90:20:f4:a0:0a:d8:1a:92:53:86:d5:b6: 02:55:e7:ee:67:00:11:ba:9a:a0:56:97:0d:73:46: fc:7a:c6:31:c6:03:55:16:b2:4d:c9:bf:50:4e:20: a5:30:f7:81:4b:61:23:0a:4d:56:4e:62:9a:03:04: ba:32:d5:7a:49:aa:57:63:9f:4f:6e:44:a0:7b:bc: f0:e4:ef:2e:80:e1:bc:01:26:99:0f:56:18:b5:d2: bd:4f:78:9c:bf:07:a2:84:01:72:6c:a5:71:27:1d: 21:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0B:5E:48:41:01:AD:ED:67:A7:33:14:B3:AD:36:F6:01:D6:52:2B X509v3 Authority Key Identifier: keyid:9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.104.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:e9:90:71:9d:bb:34:19:82:80:02:13:e1:38:71:1f:4f:14: 1e:02:d4:0a:9d:53:19:f4:29:4e:bb:b8:e6:4f:d6:4e:67:60: 1c:81:1a:9a:fd:f7:2e:1a:c8:c2:0a:c2:7c:09:e3:9c:66:ae: 24:3d:8e:cc:e1:e5:bb:63:d3:4d:64:98:b5:54:e1:13:05:ab: 30:5d:27:03:ca:55:b1:b3:c4:b2:04:e3:60:b2:b5:d6:50:04: f2:96:3f:56:78:a4:0c:38:a5:2d:e5:32:d2:8f:27:a2:60:2d: 66:3b:e8:f2:33:9d:eb:cf:e8:df:d6:48:69:ad:e9:a0:ee:00: 0a:8c:4f:8a:9c:16:03:dc:3c:7a:9b:e8:79:2f:d7:aa:d8:20: 54:2a:cd:1e:c3:1f:fe:9f:59:ff:a4:26:d6:aa:37:f8:ee:3a: 22:12:d9:05:f2:81:7e:27:99:01:a3:05:9d:42:20:ee:af:d1: bc:cf:a6:4f:41:8c:c4:ba:c8:cc:27:04:61:1e:46:a6:1f:36: 30:97:5d:73:02:18:44:79:0e:f7:f1:0e:53:39:1f:ab:00:ec: 95:68:27:84:0d:16:c2:a9:59:20:53:b5:26:b5:93:91:55:c0: 44:da:15:0b:a7:0f:a6:03:be:b7:52:46:b7:36:88:ac:38:bd: 04:b6:3e:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSUXK0qnJOHODVvB8P8FAu+zjNrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTky RDQ4MkU0QTAeFw0yMzA3MzAyMjU1MDBaFw0yNDA3MjgyMzAwMDBaMDMxMTAvBgNV BAMTKDk5MEI1RTQ4NDEwMUFERUQ2N0E3MzMxNEIzQUQzNkY2MDFENjUyMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBjGM/hAIuIHIp0byXsrAO+RhK BLZY661zT4Kr551EPEKVaNCPo9vnNAdAy3SSFQy6f5hHRJz+cREp8gKtN3M4+OBq Lehv7ztMlGRq4atpwnUyyBz7RiAeR0FVjtkNnyg3TnzyQrzVHjhQAKaY3n3pm0Rm W5j2KM0RlPXQDi//nIk4TaMqjLYRqGUdGYvRpvqveJbPL+F03ZAg9KAK2BqSU4bV tgJV5+5nABG6mqBWlw1zRvx6xjHGA1UWsk3Jv1BOIKUw94FLYSMKTVZOYpoDBLoy 1XpJqldjn09uRKB7vPDk7y6A4bwBJpkPVhi10r1PeJy/B6KEAXJspXEnHSHdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmQteSEEBre1npzMUs6029gHWUiswHwYDVR0j BBgwFoAUn21dVknQAdK3ozePmTFKmS1ILkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQzZmMyNC03NWEyLTQ3ZjYtOTI4ZS00ZTk4MDJiOTcwODUvMC85RjZENUQ1NjQ5 RDAwMUQyQjdBMzM3OEY5OTMxNEE5OTJENDgyRTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTkyRDQ4 MkU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDNmYzI0LTc1YTItNDdmNi05 MjhlLTRlOTgwMmI5NzA4NS8wLzMxMzAzMzJlMzkzODJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2JoMA0GCSqG SIb3DQEBCwUAA4IBAQAq6ZBxnbs0GYKAAhPhOHEfTxQeAtQKnVMZ9ClOu7jmT9ZO Z2AcgRqa/fcuGsjCCsJ8CeOcZq4kPY7M4eW7Y9NNZJi1VOETBaswXScDylWxs8Sy BONgsrXWUATylj9WeKQMOKUt5TLSjyeiYC1mO+jyM53rz+jf1khpremg7gAKjE+K nBYD3Dx6m+h5L9eq2CBUKs0ewx/+n1n/pCbWqjf47joiEtkF8oF+J5kBowWdQiDu r9G8z6ZPQYzEusjMJwRhHkamHzYwl11zAhhEeQ738Q5TOR+rAOyVaCeEDRbCqVkg U7UmtZORVcBE2hULpw+mA763Uka3NoisOL0Etj5Y -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:35 2024 by rpki-client on console-fra.rpki-client.org