$ rpki-client -vvf repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/3130332e3234352e3232362e302f32342d3234203d3e203233363739.roa File: 3130332e3234352e3232362e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: FvIgOVpZSJrWrFuZ5rZUOnZ+w8qNmO67alX6PKPGCFU= Subject key identifier: F3:8C:97:66:C4:8C:7A:99:98:D7:E1:E5:94:5F:17:07:F9:25:50:7E Certificate issuer: /CN=215123CDB8D789B3519CFF4175FFDD832853F5BE Certificate serial: 0FC9AA6444E8DD6833F730A5D7DA6765148ED4C0 Authority key identifier: 21:51:23:CD:B8:D7:89:B3:51:9C:FF:41:75:FF:DD:83:28:53:F5:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215123CDB8D789B3519CFF4175FFDD832853F5BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/3130332e3234352e3232362e302f32342d3234203d3e203233363739.roa Signing time: Fri 26 Jan 2024 03:55:07 +0000 ROA not before: Fri 26 Jan 2024 03:50:07 +0000 ROA not after: Fri 24 Jan 2025 03:55:07 +0000 asID: 23679 IP address blocks: 103.245.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/215123CDB8D789B3519CFF4175FFDD832853F5BE.crl rsync://repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/215123CDB8D789B3519CFF4175FFDD832853F5BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215123CDB8D789B3519CFF4175FFDD832853F5BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c9:aa:64:44:e8:dd:68:33:f7:30:a5:d7:da:67:65:14:8e:d4:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215123CDB8D789B3519CFF4175FFDD832853F5BE Validity Not Before: Jan 26 03:50:07 2024 GMT Not After : Jan 24 03:55:07 2025 GMT Subject: CN=F38C9766C48C7A9998D7E1E5945F1707F925507E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:f0:fb:e6:29:74:29:f4:84:5b:95:c0:51: 6a:5b:d1:f8:8e:e7:63:08:22:bf:c8:54:3f:42:57: 80:e7:f6:77:68:22:4e:f8:d6:e4:db:f7:37:52:49: 31:bf:8a:1b:80:a7:c4:db:99:44:6f:2a:68:05:83: 83:88:d3:53:01:7a:c6:f2:06:fc:24:b8:68:e5:00: 88:ea:e6:e9:43:c0:b9:02:56:c6:67:67:06:7f:16: b0:b8:89:35:a0:30:aa:77:3a:11:92:c3:d5:6d:4a: e6:bf:e3:38:95:df:f4:19:87:74:97:3f:34:81:2c: 6c:5e:a8:77:71:a7:3d:a4:99:42:f7:b7:8f:0d:96: bb:84:66:16:35:bd:04:2c:14:09:44:72:5e:c9:08: 8d:70:a3:89:91:a9:12:f2:9f:27:33:a8:2d:80:90: 3d:e3:38:bd:4b:5a:95:b0:ca:59:36:b5:ab:23:6f: 60:51:c4:17:58:c3:55:50:fc:a6:db:99:f0:04:c0: e4:61:89:36:d6:d1:c7:c7:f0:b6:11:0c:8b:9a:80: 65:a8:73:d7:ba:27:02:d8:e4:9f:d2:59:16:56:9b: c7:2a:86:b5:a5:02:c8:b0:91:8b:50:90:f5:02:d0: ba:1e:6b:51:ec:31:0c:20:5f:b2:06:bf:0d:ac:3d: f0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8C:97:66:C4:8C:7A:99:98:D7:E1:E5:94:5F:17:07:F9:25:50:7E X509v3 Authority Key Identifier: keyid:21:51:23:CD:B8:D7:89:B3:51:9C:FF:41:75:FF:DD:83:28:53:F5:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/215123CDB8D789B3519CFF4175FFDD832853F5BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215123CDB8D789B3519CFF4175FFDD832853F5BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fcd2a42-92b9-40a4-a0bf-09b65a318b5e/0/3130332e3234352e3232362e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.226.0/24 Signature Algorithm: sha256WithRSAEncryption 84:78:c4:00:c5:dc:cc:2d:61:36:8c:23:97:cb:fd:2b:58:5d: 67:6a:aa:4f:53:3d:fc:91:58:47:2f:e9:85:0c:bf:47:54:d4: 21:eb:54:2e:47:1a:dc:ee:b8:99:75:da:cb:62:05:96:a3:b5: f5:9d:5e:41:98:69:cc:cb:46:21:7e:92:6d:20:44:c2:44:11: 79:be:38:7f:b3:6d:2f:80:73:5c:68:09:6d:3a:9b:5e:9f:33: ad:c3:f9:03:d3:30:18:32:22:78:b9:e4:0d:6a:52:4d:07:cf: 43:72:f4:99:bb:06:79:ce:ac:ac:7c:df:6e:6a:d7:20:7f:04: 77:07:4f:31:37:ca:a8:fb:9c:04:63:d4:b1:7e:64:8b:10:96: 5c:00:44:fa:6c:ce:0d:63:a2:d7:d2:a0:3e:f0:15:c2:7d:97: f3:aa:ef:79:ba:2a:ad:c4:9a:cd:1f:61:5d:60:21:8e:19:7d: d1:d9:d4:44:5e:79:85:ce:a3:86:f3:81:37:b5:5e:ea:4e:e6: 73:03:2e:30:74:b3:7f:95:a1:0a:4d:1b:07:32:c8:b8:c0:dc: 1c:34:41:48:64:a9:8f:20:af:e8:d5:d2:8f:c5:2c:65:7a:7b: ac:d6:98:df:9b:a4:78:ca:dd:29:eb:f8:5b:99:5f:ac:97:36: d3:39:37:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD8mqZETo3Wgz9zCl19pnZRSO1MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE1MTIzQ0RCOEQ3ODlCMzUxOUNGRjQxNzVGRkREODMy ODUzRjVCRTAeFw0yNDAxMjYwMzUwMDdaFw0yNTAxMjQwMzU1MDdaMDMxMTAvBgNV BAMTKEYzOEM5NzY2QzQ4QzdBOTk5OEQ3RTFFNTk0NUYxNzA3RjkyNTUwN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/z/D75il0KfSEW5XAUWpb0fiO 52MIIr/IVD9CV4Dn9ndoIk741uTb9zdSSTG/ihuAp8TbmURvKmgFg4OI01MBesby BvwkuGjlAIjq5ulDwLkCVsZnZwZ/FrC4iTWgMKp3OhGSw9VtSua/4ziV3/QZh3SX PzSBLGxeqHdxpz2kmUL3t48NlruEZhY1vQQsFAlEcl7JCI1wo4mRqRLynyczqC2A kD3jOL1LWpWwylk2tasjb2BRxBdYw1VQ/KbbmfAEwORhiTbW0cfH8LYRDIuagGWo c9e6JwLY5J/SWRZWm8cqhrWlAsiwkYtQkPUC0Loea1HsMQwgX7IGvw2sPfCNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU84yXZsSMepmY1+HllF8XB/klUH4wHwYDVR0j BBgwFoAUIVEjzbjXibNRnP9Bdf/dgyhT9b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZmNkMmE0Mi05MmI5LTQwYTQtYTBiZi0wOWI2NWEzMThiNWUvMC8yMTUxMjNDREI4 RDc4OUIzNTE5Q0ZGNDE3NUZGREQ4MzI4NTNGNUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE1MTIzQ0RCOEQ3ODlCMzUxOUNGRjQxNzVGRkREODMyODUz RjVCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmY2QyYTQyLTkyYjktNDBhNC1h MGJmLTA5YjY1YTMxOGI1ZS8wLzMxMzAzMzJlMzIzNDM1MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/XiMA0GCSqG SIb3DQEBCwUAA4IBAQCEeMQAxdzMLWE2jCOXy/0rWF1naqpPUz38kVhHL+mFDL9H VNQh61QuRxrc7riZddrLYgWWo7X1nV5BmGnMy0YhfpJtIETCRBF5vjh/s20vgHNc aAltOptenzOtw/kD0zAYMiJ4ueQNalJNB89DcvSZuwZ5zqysfN9uatcgfwR3B08x N8qo+5wEY9SxfmSLEJZcAET6bM4NY6LX0qA+8BXCfZfzqu95uiqtxJrNH2FdYCGO GX3R2dREXnmFzqOG84E3tV7qTuZzAy4wdLN/laEKTRsHMsi4wNwcNEFIZKmPIK/o 1dKPxSxlenus1pjfm6R4yt0p6/hbmV+slzbTOTeP -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org