$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa File: 3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa (raw, json) Hash identifier: tQJZy0KJNB1ZBuDsIhsn3DVCCsplGm46lX0jDwGf6cw= Subject key identifier: F4:74:D3:7F:24:D0:84:C6:BA:9A:E3:B3:92:B0:3E:1B:21:D2:E0:B1 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 3C04F9ECFEB5111E74F0BC8550FEE9F6E0EF5113 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa Signing time: Mon 31 Jul 2023 00:03:43 +0000 ROA not before: Sun 30 Jul 2023 23:58:43 +0000 ROA not after: Mon 29 Jul 2024 00:03:43 +0000 asID: 139949 IP address blocks: 103.147.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 04:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:04:f9:ec:fe:b5:11:1e:74:f0:bc:85:50:fe:e9:f6:e0:ef:51:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 30 23:58:43 2023 GMT Not After : Jul 29 00:03:43 2024 GMT Subject: CN=F474D37F24D084C6BA9AE3B392B03E1B21D2E0B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:60:7e:72:24:7d:35:de:81:b7:77:ad:71:66: f9:26:59:02:81:af:03:3c:4f:d0:02:82:3f:27:17: 3f:1a:fe:e8:d3:63:cf:84:ea:52:c3:d4:b4:4e:bf: 6c:f5:ea:9b:f3:4a:b8:4d:c4:12:bc:04:a1:09:b4: 66:f4:0e:06:79:a9:bf:27:fc:a6:44:e5:40:c9:a8: 8f:d8:80:c9:3c:ad:1c:89:e8:17:fe:45:46:4e:ec: 5a:21:1c:97:73:5b:3c:b7:fd:f0:4c:30:e5:18:8e: e5:9a:8b:b9:bd:41:4c:a5:58:07:ef:9c:da:1b:ae: 5e:bb:c7:dd:29:59:04:aa:02:db:35:34:22:fe:9e: ac:a9:5a:7c:9e:53:9c:d8:c7:6e:01:35:0d:78:7c: 64:2b:23:cd:a0:cb:b5:36:b1:2c:d2:84:5a:d1:cf: b8:1e:38:e6:74:d8:b6:f4:33:c5:c7:5a:c1:18:df: 8b:ab:89:bf:dd:ac:5b:22:12:b6:20:9f:48:b1:38: 23:0c:3d:02:16:c6:bc:8d:c4:7e:d2:46:75:4f:fd: 9d:11:52:e0:01:ac:34:03:8e:be:26:7b:eb:9b:74: dc:42:0b:e9:ff:b5:98:39:4e:6d:49:6e:d1:0b:3d: 32:c3:fd:41:a1:38:0c:90:bd:45:b1:7a:3c:67:62: b1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:74:D3:7F:24:D0:84:C6:BA:9A:E3:B3:92:B0:3E:1B:21:D2:E0:B1 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35322e302f32342d3234203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.52.0/24 Signature Algorithm: sha256WithRSAEncryption aa:16:55:fe:c8:81:b6:a2:85:fb:0f:f6:a1:60:93:14:54:eb: be:04:0d:ed:49:27:7f:c7:af:3b:2d:7c:cb:87:6e:6b:7e:ee: 7b:03:14:22:3a:55:da:bd:cf:90:8d:b0:09:5f:e4:e2:c5:39: c1:7d:c2:a6:2c:a5:02:46:34:d3:e4:30:e7:4d:77:f0:88:fc: d7:35:e0:9d:aa:a5:50:a3:df:76:26:67:4d:ac:95:17:0c:92: 05:c4:4c:e0:4f:b7:b3:9a:37:ab:fe:07:0b:c5:de:54:74:c6: f2:66:48:b5:b9:d9:61:ac:56:62:bb:87:75:80:0e:fa:9a:c6: a4:a6:ab:68:f6:f7:45:56:a9:cc:da:11:d3:8c:41:33:2a:83: 86:96:9c:30:a8:ba:1a:5d:be:4e:37:61:9c:90:55:d6:a9:e1: f4:54:1a:51:49:55:2b:d0:98:e9:8c:38:6d:a3:07:65:de:64: 2c:ed:ac:ce:9b:08:79:b3:23:85:5a:a5:2b:ea:d8:d2:2e:fb: 39:05:c8:c7:ef:ae:67:3f:a0:fb:0c:01:b3:2f:d1:e0:5c:50: 52:c9:ad:a3:71:c3:a0:cf:0e:61:17:e2:45:04:c1:16:5c:ac: 49:ab:81:76:45:9d:6a:7c:69:26:21:5f:bc:d5:24:7c:6e:29: d7:4c:3a:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPAT57P61ER508LyFUP7p9uDvURMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzA3MzAyMzU4NDNaFw0yNDA3MjkwMDAzNDNaMDMxMTAvBgNV BAMTKEY0NzREMzdGMjREMDg0QzZCQTlBRTNCMzkyQjAzRTFCMjFEMkUwQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyYH5yJH013oG3d61xZvkmWQKB rwM8T9ACgj8nFz8a/ujTY8+E6lLD1LROv2z16pvzSrhNxBK8BKEJtGb0DgZ5qb8n /KZE5UDJqI/YgMk8rRyJ6Bf+RUZO7FohHJdzWzy3/fBMMOUYjuWai7m9QUylWAfv nNobrl67x90pWQSqAts1NCL+nqypWnyeU5zYx24BNQ14fGQrI82gy7U2sSzShFrR z7geOOZ02Lb0M8XHWsEY34urib/drFsiErYgn0ixOCMMPQIWxryNxH7SRnVP/Z0R UuABrDQDjr4me+ubdNxCC+n/tZg5Tm1JbtELPTLD/UGhOAyQvUWxejxnYrEpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9HTTfyTQhMa6muOzkrA+GyHS4LEwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M0MA0GCSqG SIb3DQEBCwUAA4IBAQCqFlX+yIG2ooX7D/ahYJMUVOu+BA3tSSd/x687LXzLh25r fu57AxQiOlXavc+QjbAJX+TixTnBfcKmLKUCRjTT5DDnTXfwiPzXNeCdqqVQo992 JmdNrJUXDJIFxEzgT7ezmjer/gcLxd5UdMbyZki1udlhrFZiu4d1gA76msakpqto 9vdFVqnM2hHTjEEzKoOGlpwwqLoaXb5ON2GckFXWqeH0VBpRSVUr0JjpjDhtowdl 3mQs7azOmwh5syOFWqUr6tjSLvs5BcjH765nP6D7DAGzL9HgXFBSya2jccOgzw5h F+JFBMEWXKxJq4F2RZ1qfGkmIV+81SR8binXTDqz -----END CERTIFICATE-----Generated at Wed Apr 17 21:21:46 2024 by rpki-client on console-fra.rpki-client.org