$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa File: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (raw, json) Hash identifier: QlzJ/xeVRrTJPumT32aGQMH+v6gP8YnAasN6CoqTH+4= Subject key identifier: B0:DA:8A:00:BC:D2:4A:F5:7F:95:25:BA:29:8C:31:85:FF:1B:70:FF Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 29CF18663FB6BB0634C5C1EA922068599A9BA82D Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa Signing time: Wed 31 Jan 2024 04:29:54 +0000 ROA not before: Wed 31 Jan 2024 04:24:54 +0000 ROA not after: Wed 29 Jan 2025 04:29:54 +0000 asID: 141073 IP address blocks: 103.155.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:cf:18:66:3f:b6:bb:06:34:c5:c1:ea:92:20:68:59:9a:9b:a8:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jan 31 04:24:54 2024 GMT Not After : Jan 29 04:29:54 2025 GMT Subject: CN=B0DA8A00BCD24AF57F9525BA298C3185FF1B70FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:24:40:6c:58:46:ff:d2:99:13:0f:67:bf:18: 10:c6:ae:78:8b:df:5c:23:8e:c2:2d:8d:9f:f4:43: 9d:37:37:dd:a2:90:71:db:8d:2a:73:71:7e:48:3a: 48:96:ac:66:8f:ad:18:52:15:43:1c:20:aa:6e:12: e6:c4:75:b0:25:6e:d7:1e:00:e0:64:71:d0:0a:00: fa:10:03:35:d6:6e:7f:48:f5:e7:a9:9f:c0:66:96: 16:a9:3b:bb:c5:80:99:ab:82:e8:ed:9a:bf:00:e3: 2a:10:04:27:12:e9:84:2f:d0:32:43:5d:3d:c5:cf: 4a:c4:e0:e0:ea:bc:1c:10:80:98:31:89:50:ee:07: dd:b4:16:93:36:d7:cb:55:72:a9:86:1f:c0:14:b2: 60:79:d9:7a:2f:58:59:56:ba:56:03:18:72:68:a2: a7:96:15:ab:34:4f:4a:6d:4c:13:e7:64:cb:61:6f: 48:df:7b:a9:6d:b0:7a:5a:63:b1:eb:94:ef:47:c3: 5f:fe:e1:9f:cb:e8:27:c1:77:ed:7f:f3:87:d3:fa: 83:0b:7f:dd:3f:ea:47:0f:d8:81:8c:ad:50:08:38: a6:2e:15:e9:31:4e:bb:47:cd:42:3e:7b:97:ae:ef: e5:dd:a8:24:41:30:94:b9:20:1c:cc:8f:aa:19:86: 6a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DA:8A:00:BC:D2:4A:F5:7F:95:25:BA:29:8C:31:85:FF:1B:70:FF X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.200.0/23 Signature Algorithm: sha256WithRSAEncryption 30:59:6a:23:80:ed:2f:5f:7b:e4:f4:2d:c0:45:35:fa:8b:e8: a6:33:b9:e6:27:4b:41:5b:26:c3:ad:94:89:ad:0d:9d:e0:40: aa:9b:53:dd:39:12:83:e3:34:f3:0c:ac:2a:75:95:7c:e4:96: 73:86:94:7e:0a:ee:e3:91:65:67:32:30:8a:67:0e:d9:cf:3c: d8:71:7d:50:3a:d1:78:55:79:6a:e2:34:94:9b:fa:e6:0e:0e: 68:59:d3:e6:26:33:81:e2:32:dc:a9:ea:dc:d2:b0:1b:68:21: 3c:2b:21:48:47:e8:bb:15:51:b3:bd:66:51:1e:5b:8a:91:33: e9:77:96:66:c6:e6:98:42:3f:ad:c0:90:49:3a:b6:20:25:39: ad:05:09:2f:6b:79:33:25:e8:a0:1c:6e:4a:b9:b3:03:e5:d6: 7f:b4:e2:f0:8f:ba:e2:1a:1b:9d:c7:0c:66:fa:8e:00:74:19: 64:e2:93:a5:ff:b4:84:fc:aa:59:dc:20:d2:69:58:52:d2:12: 5e:89:6c:6e:6a:6c:ea:bf:59:49:fb:d4:0d:ae:fb:7e:14:cc: ec:ce:48:e8:13:c0:37:da:dc:e6:cf:1d:8e:da:69:bd:a8:b6: e0:20:cf:c5:88:96:9a:49:ad:81:74:a8:0e:06:85:90:e7:2f: 10:98:cf:6d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKc8YZj+2uwY0xcHqkiBoWZqbqC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNDAxMzEwNDI0NTRaFw0yNTAxMjkwNDI5NTRaMDMxMTAvBgNV BAMTKEIwREE4QTAwQkNEMjRBRjU3Rjk1MjVCQTI5OEMzMTg1RkYxQjcwRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJEBsWEb/0pkTD2e/GBDGrniL 31wjjsItjZ/0Q503N92ikHHbjSpzcX5IOkiWrGaPrRhSFUMcIKpuEubEdbAlbtce AOBkcdAKAPoQAzXWbn9I9eepn8BmlhapO7vFgJmrgujtmr8A4yoQBCcS6YQv0DJD XT3Fz0rE4ODqvBwQgJgxiVDuB920FpM218tVcqmGH8AUsmB52XovWFlWulYDGHJo oqeWFas0T0ptTBPnZMthb0jfe6ltsHpaY7HrlO9Hw1/+4Z/L6CfBd+1/84fT+oML f90/6kcP2IGMrVAIOKYuFekxTrtHzUI+e5eu7+XdqCRBMJS5IBzMj6oZhmpTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsNqKALzSSvV/lSW6KYwxhf8bcP8wHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NThmODVjLWE0NTgtNGE1OC1i YmRlLTRiZmIzNDNkYzRiMC8wLzMxMzAzMzJlMzEzNTM1MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm8gwDQYJ KoZIhvcNAQELBQADggEBADBZaiOA7S9fe+T0LcBFNfqL6KYzueYnS0FbJsOtlImt DZ3gQKqbU905EoPjNPMMrCp1lXzklnOGlH4K7uORZWcyMIpnDtnPPNhxfVA60XhV eWriNJSb+uYODmhZ0+YmM4HiMtyp6tzSsBtoITwrIUhH6LsVUbO9ZlEeW4qRM+l3 lmbG5phCP63AkEk6tiAlOa0FCS9reTMl6KAcbkq5swPl1n+04vCPuuIaG53HDGb6 jgB0GWTik6X/tIT8qlncINJpWFLSEl6JbG5qbOq/WUn71A2u+34UzOzOSOgTwDfa 3ObPHY7aab2otuAgz8WIlppJrYF0qA4GhZDnLxCYz20= -----END CERTIFICATE-----Generated at Mon May 6 09:06:28 2024 by rpki-client on console-fra.rpki-client.org