$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa File: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: U3o9BQeYChXJ+0vmQJSkGGv7NcvxQseEIi+/CE0Bl/Q= Subject key identifier: 17:A0:87:C3:46:6B:87:A9:57:6C:B1:9E:E7:32:B7:89:06:BF:83:73 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 4AB53135E5C02096B485CC3192A1E481D5B36626 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa Signing time: Mon 31 Jul 2023 00:09:31 +0000 ROA not before: Mon 31 Jul 2023 00:04:31 +0000 ROA not after: Mon 29 Jul 2024 00:09:31 +0000 asID: 58477 IP address blocks: 103.28.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b5:31:35:e5:c0:20:96:b4:85:cc:31:92:a1:e4:81:d5:b3:66:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Jul 31 00:04:31 2023 GMT Not After : Jul 29 00:09:31 2024 GMT Subject: CN=17A087C3466B87A9576CB19EE732B78906BF8373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:12:c8:79:59:b8:88:c8:1c:dc:86:70:4d:ad: 95:54:47:30:bf:52:af:fe:74:c4:e4:ac:85:df:94: 95:c2:9c:a2:46:ae:ce:3c:37:55:e7:41:52:3a:68: 95:1a:f4:4b:6c:10:99:51:77:4d:d0:63:04:07:6b: 9d:b7:06:33:ef:39:f2:6e:46:9f:24:d5:cd:4a:2e: 3a:37:e6:1b:6a:bc:7d:0f:b3:2e:df:8e:ba:91:07: 5f:86:26:ca:1d:a3:c1:86:3e:36:71:b4:6e:22:61: ec:34:13:5a:d6:09:e6:7a:64:a5:de:38:de:33:01: 92:22:57:4a:33:ad:e1:f3:89:92:32:8c:5a:c1:43: 30:7f:a2:05:ac:a2:d5:d5:3d:06:ce:50:bc:af:0e: fc:24:02:7f:61:e2:50:d8:87:e9:ca:39:23:d4:a1: 70:a8:bf:f2:fa:f1:20:09:1c:54:63:22:65:64:87: 82:2e:70:6f:77:a3:07:0a:1b:82:49:bc:12:d9:69: 0f:02:fe:1a:e9:4c:4e:c5:91:13:20:75:40:67:78: 7e:83:b4:a4:b0:97:7e:3d:b2:73:60:f8:ea:36:0c: a7:5b:3a:d4:15:47:ec:27:ce:2d:e1:61:53:db:26: 8a:8f:a6:d5:54:e2:da:1f:3a:3f:4e:f4:88:90:04: 8a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A0:87:C3:46:6B:87:A9:57:6C:B1:9E:E7:32:B7:89:06:BF:83:73 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/3130332e32382e3134382e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.148.0/24 Signature Algorithm: sha256WithRSAEncryption b6:3e:7a:35:76:e4:ee:85:73:8a:31:1f:c1:23:40:ac:c1:e7: 0b:86:be:e7:3b:6a:1f:05:7e:db:76:44:1a:d5:5f:b3:81:c8: a2:3c:45:e8:1e:28:12:f8:b1:b0:cb:9d:b6:dd:c3:87:ec:eb: 12:9f:b5:55:dd:33:02:30:5a:01:a6:c5:61:65:47:30:1b:94: 85:8b:70:50:d3:d2:05:f3:01:69:e5:75:3c:4e:18:0a:da:4a: f8:ab:c5:5d:e5:f8:19:41:29:37:91:0e:fc:b1:75:47:1c:2e: 2e:4d:2a:49:86:97:ff:85:18:8b:63:4d:46:d1:0f:54:0d:38: 7a:8f:52:61:38:b5:2d:51:aa:06:4a:64:83:4d:1a:c0:1f:fd: 8c:b1:4b:65:55:2b:88:f0:98:2f:b4:a7:dc:b6:ee:24:01:9d: 89:3e:3a:2c:6e:21:cd:15:a2:33:38:ca:8c:07:5f:4a:bb:a2: b4:5d:d5:f8:ab:0c:8d:b4:4b:1e:f1:95:19:6f:2a:12:4a:8e: ca:41:88:3c:e8:ac:d7:ed:e6:e4:21:6b:cf:a4:75:aa:ba:34: b6:b5:c7:a3:df:65:1f:c3:1e:ea:3c:22:3d:be:5e:e8:8a:e1: 02:f6:8c:dd:23:57:c4:04:55:2f:90:17:31:36:67:55:fb:78: c4:51:64:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSrUxNeXAIJa0hcwxkqHkgdWzZiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yMzA3MzEwMDA0MzFaFw0yNDA3MjkwMDA5MzFaMDMxMTAvBgNV BAMTKDE3QTA4N0MzNDY2Qjg3QTk1NzZDQjE5RUU3MzJCNzg5MDZCRjgzNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEsh5WbiIyBzchnBNrZVURzC/ Uq/+dMTkrIXflJXCnKJGrs48N1XnQVI6aJUa9EtsEJlRd03QYwQHa523BjPvOfJu Rp8k1c1KLjo35htqvH0Psy7fjrqRB1+GJsodo8GGPjZxtG4iYew0E1rWCeZ6ZKXe ON4zAZIiV0ozreHziZIyjFrBQzB/ogWsotXVPQbOULyvDvwkAn9h4lDYh+nKOSPU oXCov/L68SAJHFRjImVkh4IucG93owcKG4JJvBLZaQ8C/hrpTE7FkRMgdUBneH6D tKSwl349snNg+Oo2DKdbOtQVR+wnzi3hYVPbJoqPptVU4tofOj9O9IiQBIpvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF6CHw0Zrh6lXbLGe5zK3iQa/g3MwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAzLTFiNGQtNDM4ZS1h OWYzLWVmZWFhZTZiMDkyMS8wLzMxMzAzMzJlMzIzODJlMzEzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcclDANBgkqhkiG 9w0BAQsFAAOCAQEAtj56NXbk7oVzijEfwSNArMHnC4a+5ztqHwV+23ZEGtVfs4HI ojxF6B4oEvixsMudtt3Dh+zrEp+1Vd0zAjBaAabFYWVHMBuUhYtwUNPSBfMBaeV1 PE4YCtpK+KvFXeX4GUEpN5EO/LF1RxwuLk0qSYaX/4UYi2NNRtEPVA04eo9SYTi1 LVGqBkpkg00awB/9jLFLZVUriPCYL7Sn3LbuJAGdiT46LG4hzRWiMzjKjAdfSrui tF3V+KsMjbRLHvGVGW8qEkqOykGIPOis1+3m5CFrz6R1qro0trXHo99lH8Me6jwi Pb5e6IrhAvaM3SNXxARVL5AXMTZnVft4xFFkzA== -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:38 2024 by rpki-client on console-ams.rpki-client.org