$ rpki-client -vvf repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa File: 3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa (raw, json) Hash identifier: xWbyGtFMD6upQQVa9RHq1SAi1oPRPSjqXIfIgN6ZBxI= Subject key identifier: B8:1F:21:31:9B:75:27:D0:E5:9F:21:3F:47:5E:7B:98:95:B0:E9:FF Certificate issuer: /CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Certificate serial: 3BCDDF856701940334146A1C942CDDF066F0F84B Authority key identifier: 5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa Signing time: Mon 31 Jul 2023 00:06:13 +0000 ROA not before: Mon 31 Jul 2023 00:01:13 +0000 ROA not after: Mon 29 Jul 2024 00:06:13 +0000 asID: 136102 IP address blocks: 103.90.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cd:df:85:67:01:94:03:34:14:6a:1c:94:2c:dd:f0:66:f0:f8:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Validity Not Before: Jul 31 00:01:13 2023 GMT Not After : Jul 29 00:06:13 2024 GMT Subject: CN=B81F21319B7527D0E59F213F475E7B9895B0E9FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:6f:a8:c2:70:e7:46:59:a7:f2:88:88:1d: fd:df:de:5e:f2:72:a5:18:83:2e:0f:22:ae:23:d2: a3:c7:09:b3:cf:2d:f5:9d:12:b0:1f:be:3e:a8:a1: 7a:7a:d6:98:4e:66:0e:ed:da:7e:9e:5b:19:51:a3: 7f:3c:d8:58:5b:b2:fb:4d:89:9a:67:46:a6:35:27: 47:67:12:d5:17:65:51:cf:14:30:4b:6e:de:1a:0e: 46:fe:d1:c8:a8:d9:86:a6:4c:55:c3:8c:35:d1:a2: 67:d6:87:ab:07:4f:e3:4c:24:5c:88:62:db:8d:ac: f6:b7:51:01:1b:32:57:fc:02:66:91:06:c8:d0:5c: b1:83:2d:b3:c1:01:ca:37:f2:7b:6f:fa:02:ad:6e: 77:56:9c:e5:2e:75:be:62:e7:59:5b:fc:27:ad:18: fc:aa:86:c2:c7:33:6e:9a:1b:90:4f:5c:55:33:ff: 17:f2:b4:10:f0:2e:55:1e:bb:f0:96:8f:91:a7:d2: 16:49:7a:fe:65:e0:33:0e:56:aa:ad:0b:7f:5c:fb: 84:e6:d8:b0:58:a8:81:a6:42:53:d7:78:b2:7a:3e: 7c:67:89:6b:ba:9f:51:0b:46:9b:f9:20:ba:b2:ec: 46:3b:ab:e4:f5:1b:b9:60:4e:aa:67:5e:4a:df:1a: 5f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1F:21:31:9B:75:27:D0:E5:9F:21:3F:47:5E:7B:98:95:B0:E9:FF X509v3 Authority Key Identifier: keyid:5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.250.0/23 Signature Algorithm: sha256WithRSAEncryption 13:fb:e0:71:a1:51:04:2c:db:8d:04:6e:93:21:45:09:66:79: 2a:f4:8f:50:f2:26:8d:c8:2a:68:dc:5b:4b:15:32:06:1a:7f: 33:a0:e8:e0:1d:b8:dc:5e:c3:b8:88:ed:57:51:1f:ac:84:1e: d9:1d:40:4f:cb:65:5f:bd:d6:30:3e:4e:22:3a:89:8e:fd:99: 43:82:c7:20:6f:5a:be:83:0c:c1:84:0f:e8:7f:4d:39:01:6e: 8e:d9:e2:88:80:8a:00:b9:28:3e:80:69:01:25:8e:61:f0:ba: f1:70:b2:5f:f6:24:f6:47:97:cb:ee:cc:48:b0:2e:2a:6c:4f: 55:33:23:60:80:61:16:d2:83:36:92:4b:ea:b7:dd:9c:e8:ed: 1d:4d:28:62:99:51:fe:2e:d0:9b:f3:78:f1:83:d6:cb:11:3f: 11:45:ab:79:ec:a9:87:69:38:c7:cf:f8:ad:a9:10:e7:7f:61: 3b:9d:63:80:09:c8:f3:0c:2f:8d:71:66:61:fa:a3:99:18:24: b4:0c:eb:9c:15:09:0e:d5:4c:30:ba:ae:03:a2:26:03:88:5e: ba:10:26:4d:a7:73:0b:86:01:e0:ac:7f:6c:83:50:c4:25:34: f3:8a:d2:fd:73:f4:56:66:da:d5:a6:4e:5d:cc:db:54:b7:6f: cf:ad:d5:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO83fhWcBlAM0FGoclCzd8Gbw+EswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNF MTczRTcxQzAeFw0yMzA3MzEwMDAxMTNaFw0yNDA3MjkwMDA2MTNaMDMxMTAvBgNV BAMTKEI4MUYyMTMxOUI3NTI3RDBFNTlGMjEzRjQ3NUU3Qjk4OTVCMEU5RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzIW+ownDnRlmn8oiIHf3f3l7y cqUYgy4PIq4j0qPHCbPPLfWdErAfvj6ooXp61phOZg7t2n6eWxlRo3882FhbsvtN iZpnRqY1J0dnEtUXZVHPFDBLbt4aDkb+0cio2YamTFXDjDXRomfWh6sHT+NMJFyI YtuNrPa3UQEbMlf8AmaRBsjQXLGDLbPBAco38ntv+gKtbndWnOUudb5i51lb/Cet GPyqhsLHM26aG5BPXFUz/xfytBDwLlUeu/CWj5Gn0hZJev5l4DMOVqqtC39c+4Tm 2LBYqIGmQlPXeLJ6PnxniWu6n1ELRpv5ILqy7EY7q+T1G7lgTqpnXkrfGl+1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuB8hMZt1J9DlnyE/R157mJWw6f8wHwYDVR0j BBgwFoAUXx7AN4x7OokSyjLjgtLAg+Fz5xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDAyZGFhNS1mYjBjLTRhMjQtOTg4OS0zM2JkNTBkYjRmZTAvMC81RjFFQzAzNzhD N0IzQTg5MTJDQTMyRTM4MkQyQzA4M0UxNzNFNzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNFMTcz RTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzkzMDJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1r6MA0GCSqG SIb3DQEBCwUAA4IBAQAT++BxoVEELNuNBG6TIUUJZnkq9I9Q8iaNyCpo3FtLFTIG Gn8zoOjgHbjcXsO4iO1XUR+shB7ZHUBPy2VfvdYwPk4iOomO/ZlDgscgb1q+gwzB hA/of005AW6O2eKIgIoAuSg+gGkBJY5h8LrxcLJf9iT2R5fL7sxIsC4qbE9VMyNg gGEW0oM2kkvqt92c6O0dTShimVH+LtCb83jxg9bLET8RRat57KmHaTjHz/itqRDn f2E7nWOACcjzDC+NcWZh+qOZGCS0DOucFQkO1Uwwuq4DoiYDiF66ECZNp3MLhgHg rH9sg1DEJTTzitL9c/RWZtrVpk5dzNtUt2/PrdUm -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:59 2024 by rpki-client on console-ams.rpki-client.org