$ rpki-client -vvf repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa File: 3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa (raw, json) Hash identifier: p/PG7M6bvmcXfVdmsw48vkWAa7JqlT1k7HjqxXEwBA8= Subject key identifier: 9B:AA:6B:62:80:D5:D8:61:E0:67:3B:06:14:69:72:5F:49:47:50:7C Certificate issuer: /CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Certificate serial: 7219263214C8B6F6D653D2884B24A0F93200FC51 Authority key identifier: 06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject info access: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa Signing time: Fri 19 Apr 2024 08:00:00 +0000 ROA not before: Fri 19 Apr 2024 07:55:00 +0000 ROA not after: Fri 18 Apr 2025 08:00:00 +0000 asID: 139423 IP address blocks: 103.144.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 21:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:19:26:32:14:c8:b6:f6:d6:53:d2:88:4b:24:a0:f9:32:00:fc:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Validity Not Before: Apr 19 07:55:00 2024 GMT Not After : Apr 18 08:00:00 2025 GMT Subject: CN=9BAA6B6280D5D861E0673B061469725F4947507C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:93:62:83:c5:01:44:b8:69:f9:65:be:46:7f: be:81:a7:ae:16:7b:34:04:0f:ba:3f:c1:45:49:23: ab:5c:33:63:2a:c9:4b:70:70:60:1b:c1:2d:76:a7: 01:df:34:e7:40:9c:40:fd:ec:f4:d1:24:4c:f9:d6: dc:41:de:b9:ba:36:d1:b7:41:b0:3e:19:4c:79:e9: 0b:6a:fa:0c:dd:c0:3a:7b:0c:2b:a8:0b:29:76:fb: 11:6d:1f:5f:bb:e2:89:9e:3f:46:34:9a:93:19:a7: 89:fa:e7:19:3e:d3:66:cf:b3:0a:13:33:19:59:a0: 29:24:39:3d:2a:26:73:9b:a3:f4:d6:c7:08:99:f8: 7e:9c:19:ab:58:b8:d1:6d:c0:40:a6:1a:83:81:24: 1b:75:bb:2e:be:50:11:81:43:13:a6:2e:44:67:10: 55:04:65:15:ea:9f:b0:0e:de:63:e8:f0:c8:2c:f9: 19:e9:39:d8:64:28:80:46:a7:73:8f:1e:ee:42:e9: c9:a6:76:0a:c4:53:a5:28:e9:a3:7a:f6:68:31:ae: 9e:4f:e6:bc:e9:17:db:b2:02:8f:68:37:9e:b6:00: 39:af:66:7b:b9:b4:32:3e:54:39:16:a3:08:0a:fd: 20:01:68:0c:36:41:57:cf:fa:2a:32:b6:8d:da:31: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:AA:6B:62:80:D5:D8:61:E0:67:3B:06:14:69:72:5F:49:47:50:7C X509v3 Authority Key Identifier: keyid:06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32312e302f32342d3234203d3e20313339343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.21.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:c7:73:8e:c1:12:0b:74:b9:cc:e4:bd:51:6b:c6:8a:80:48: d0:a2:d6:d2:05:64:f7:99:e8:52:56:cf:81:c7:b1:95:bc:1f: bd:3c:84:09:30:2c:87:ee:4d:2e:24:e5:29:5f:78:2b:b2:41: a4:b7:33:67:aa:91:0c:e4:a1:0b:a8:15:b8:bf:7c:3f:11:9d: 08:d6:ef:2b:01:ca:5a:d4:69:ba:92:5b:5f:dd:81:a0:d0:47: a6:fd:fb:69:7b:0e:30:36:75:e4:a2:76:74:da:94:2c:7b:fc: 8e:b4:3d:94:38:7a:f7:87:8e:20:e6:53:dd:98:77:ed:d1:3e: 9c:f3:c7:0c:5b:a4:0f:bb:a5:05:f2:b2:b8:92:e8:c4:cb:85: af:aa:6b:b6:a5:27:1d:f6:be:f5:58:28:bc:35:86:a9:f9:e9: 25:4a:77:d3:d3:05:9f:1f:63:0a:78:7a:5f:e4:8f:e7:3e:ec: ed:f0:07:9f:ff:c4:22:ea:44:33:0a:c1:1b:42:75:a3:35:0f: b0:4d:80:be:a8:d0:46:04:be:71:61:69:0c:8f:26:ce:52:2c: 43:42:6e:59:d9:4b:c6:0b:0c:75:51:7d:5b:7b:b3:dc:3a:72: dc:3e:f8:e0:b1:5a:e7:c2:7e:d2:7c:18:72:72:d1:23:85:a7: f7:57:1d:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUchkmMhTItvbWU9KISySg+TIA/FEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdF NjY3NDkzNzAeFw0yNDA0MTkwNzU1MDBaFw0yNTA0MTgwODAwMDBaMDMxMTAvBgNV BAMTKDlCQUE2QjYyODBENUQ4NjFFMDY3M0IwNjE0Njk3MjVGNDk0NzUwN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCok2KDxQFEuGn5Zb5Gf76Bp64W ezQED7o/wUVJI6tcM2MqyUtwcGAbwS12pwHfNOdAnED97PTRJEz51txB3rm6NtG3 QbA+GUx56Qtq+gzdwDp7DCuoCyl2+xFtH1+74omeP0Y0mpMZp4n65xk+02bPswoT MxlZoCkkOT0qJnObo/TWxwiZ+H6cGatYuNFtwECmGoOBJBt1uy6+UBGBQxOmLkRn EFUEZRXqn7AO3mPo8Mgs+RnpOdhkKIBGp3OPHu5C6cmmdgrEU6Uo6aN69mgxrp5P 5rzpF9uyAo9oN562ADmvZnu5tDI+VDkWowgK/SABaAw2QVfP+ioyto3aMUjzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm6prYoDV2GHgZzsGFGlyX0lHUHwwHwYDVR0j BBgwFoAUBkqPn71IerBDcKMbfWA7J+ZnSTcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDFmZjNlMi03NmI2LTQ4MzMtODZiNS04MmYzZmE0ZWJjYjcvMC8wNjRBOEY5RkJE NDg3QUIwNDM3MEEzMUI3RDYwM0IyN0U2Njc0OTM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdFNjY3 NDkzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0MWZmM2UyLTc2YjYtNDgzMy04 NmI1LTgyZjNmYTRlYmNiNy8wLzMxMzAzMzJlMzEzNDM0MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AVMA0GCSqG SIb3DQEBCwUAA4IBAQAex3OOwRILdLnM5L1Ra8aKgEjQotbSBWT3mehSVs+Bx7GV vB+9PIQJMCyH7k0uJOUpX3grskGktzNnqpEM5KELqBW4v3w/EZ0I1u8rAcpa1Gm6 kltf3YGg0Eem/ftpew4wNnXkonZ02pQse/yOtD2UOHr3h44g5lPdmHft0T6c88cM W6QPu6UF8rK4kujEy4Wvqmu2pScd9r71WCi8NYap+eklSnfT0wWfH2MKeHpf5I/n Puzt8Aef/8Qi6kQzCsEbQnWjNQ+wTYC+qNBGBL5xYWkMjybOUixDQm5Z2UvGCwx1 UX1be7PcOnLcPvjgsVrnwn7SfBhyctEjhaf3Vx3k -----END CERTIFICATE-----Generated at Thu May 2 14:39:40 2024 by rpki-client on console-ams.rpki-client.org