$ rpki-client -vvf repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa File: 3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa (raw, json) Hash identifier: sNVSyyId+pKhRU7SCXz++K/1q6I0WmlzRqnk37T/knM= Subject key identifier: CD:AE:FE:11:EA:61:8A:C0:56:38:A8:31:76:1C:36:B0:7E:4D:FC:C6 Certificate issuer: /CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Certificate serial: 54F48B5053DDF2574DC16DA37B41C9934FC065AA Authority key identifier: CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa Signing time: Mon 31 Jul 2023 00:07:25 +0000 ROA not before: Mon 31 Jul 2023 00:02:25 +0000 ROA not after: Mon 29 Jul 2024 00:07:25 +0000 asID: 58821 IP address blocks: 103.242.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f4:8b:50:53:dd:f2:57:4d:c1:6d:a3:7b:41:c9:93:4f:c0:65:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Validity Not Before: Jul 31 00:02:25 2023 GMT Not After : Jul 29 00:07:25 2024 GMT Subject: CN=CDAEFE11EA618AC05638A831761C36B07E4DFCC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2d:cf:d2:cc:fc:11:a6:fa:f4:c2:4d:98:1e: ee:e2:40:28:d6:b6:dd:1e:1e:ec:ca:ea:bf:22:bf: 7f:a8:af:69:81:c8:ba:ff:47:88:57:2f:bf:dd:d6: 38:b9:73:1a:73:86:94:cd:7c:3b:cf:b8:99:0c:4c: 50:e5:1f:87:95:1e:61:e6:e8:7c:49:7e:07:31:33: b2:48:58:f7:95:07:d8:7d:b1:c9:c5:f2:0a:6b:f2: 8c:fd:a6:ba:a9:fc:e4:73:7e:d4:1c:9a:8a:a5:e7: 7b:b4:78:42:bf:6a:89:b6:0b:00:b0:c5:9e:f7:c3: d9:b4:8a:82:ad:ae:1d:43:24:46:d5:fe:7f:b6:f9: e3:b4:75:01:7b:ad:b0:87:0f:ca:de:68:29:58:88: 5d:2e:3a:b3:07:7a:31:fb:96:69:8d:0b:2b:e9:f4: e5:0f:5a:e4:ed:19:79:6b:20:eb:2e:b2:81:ba:10: c3:62:f3:69:c2:81:a8:11:28:6c:ca:36:57:bb:54: 33:9d:83:ad:62:8f:83:05:a8:d1:ad:5e:c1:f1:60: 2c:ed:96:71:fb:09:ef:e6:0e:c0:27:65:1f:b4:26: 7b:f1:b7:e5:a1:9a:22:47:a9:02:51:c3:4b:70:d8: 57:33:d2:68:7d:a4:24:bd:8a:6e:78:5e:1e:d5:a4: 55:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AE:FE:11:EA:61:8A:C0:56:38:A8:31:76:1C:36:B0:7E:4D:FC:C6 X509v3 Authority Key Identifier: keyid:CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.104.0/22 Signature Algorithm: sha256WithRSAEncryption b5:55:45:44:c7:59:56:15:c4:42:b9:c4:ee:27:35:e2:e4:05: b5:9b:30:11:e5:45:13:e1:ff:68:29:bb:08:95:bb:5c:7c:04: 0c:13:05:47:f8:dc:1c:bf:14:5b:e9:a7:c6:13:dd:23:37:b4: e2:da:0a:82:5b:a4:c5:fd:fe:1f:7b:cf:dc:6b:cd:56:53:16: aa:76:d5:fa:9e:06:93:2a:5c:ac:01:7f:4f:a3:58:7f:2b:81: c9:8e:04:29:78:fe:96:be:54:3d:ef:93:01:a7:c6:93:e8:81: 80:da:03:91:27:46:27:80:22:e2:73:f2:6a:1d:fe:15:63:0c: 64:13:b1:49:7f:35:6c:66:17:4a:ba:ef:ed:3d:8b:56:16:80: da:d3:01:b5:c6:38:91:8a:13:ef:83:6e:3e:ee:c9:60:d7:f1: 2c:13:fe:c1:a0:cc:17:a7:bb:14:24:ef:ea:91:db:b1:a7:c4: ba:40:16:c9:7e:3c:b2:f3:f5:65:0a:d8:65:9b:f7:ee:b5:a0: 93:0f:30:d3:97:1d:30:5c:8e:38:da:bd:22:65:31:b8:6f:50: e4:25:86:e1:6d:de:74:e0:e6:c9:cd:f2:55:44:f8:2b:8a:cc: 10:2d:c1:64:eb:78:57:d0:45:70:69:5e:b7:2b:9c:49:95:72: 60:af:8d:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVPSLUFPd8ldNwW2je0HJk0/AZaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0 OEUxNkVEQjAeFw0yMzA3MzEwMDAyMjVaFw0yNDA3MjkwMDA3MjVaMDMxMTAvBgNV BAMTKENEQUVGRTExRUE2MThBQzA1NjM4QTgzMTc2MUMzNkIwN0U0REZDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhLc/SzPwRpvr0wk2YHu7iQCjW tt0eHuzK6r8iv3+or2mByLr/R4hXL7/d1ji5cxpzhpTNfDvPuJkMTFDlH4eVHmHm 6HxJfgcxM7JIWPeVB9h9scnF8gpr8oz9prqp/ORzftQcmoql53u0eEK/aom2CwCw xZ73w9m0ioKtrh1DJEbV/n+2+eO0dQF7rbCHD8reaClYiF0uOrMHejH7lmmNCyvp 9OUPWuTtGXlrIOsusoG6EMNi82nCgagRKGzKNle7VDOdg61ij4MFqNGtXsHxYCzt lnH7Ce/mDsAnZR+0Jnvxt+WhmiJHqQJRw0tw2Fcz0mh9pCS9im54Xh7VpFVPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUza7+EephisBWOKgxdhw2sH5N/MYwHwYDVR0j BBgwFoAUzEMFqgtoSN/Qdmz+e0LStEjhbtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTQ1YzllYi0zYmI2LTQyMDMtOGM4Ni1mMDhiNjRkYTNlYTkvMC9DQzQzMDVBQTBC Njg0OERGRDA3NjZDRkU3QjQyRDJCNDQ4RTE2RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0OEUx NkVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlNDVjOWViLTNiYjYtNDIwMy04 Yzg2LWYwOGI2NGRhM2VhOS8wLzMxMzAzMzJlMzIzNDMyMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/JoMA0GCSqG SIb3DQEBCwUAA4IBAQC1VUVEx1lWFcRCucTuJzXi5AW1mzAR5UUT4f9oKbsIlbtc fAQMEwVH+NwcvxRb6afGE90jN7Ti2gqCW6TF/f4fe8/ca81WUxaqdtX6ngaTKlys AX9Po1h/K4HJjgQpeP6WvlQ975MBp8aT6IGA2gORJ0YngCLic/JqHf4VYwxkE7FJ fzVsZhdKuu/tPYtWFoDa0wG1xjiRihPvg24+7slg1/EsE/7BoMwXp7sUJO/qkdux p8S6QBbJfjyy8/VlCthlm/futaCTDzDTlx0wXI442r0iZTG4b1DkJYbhbd504ObJ zfJVRPgriswQLcFk63hX0EVwaV63K5xJlXJgr43U -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:38 2024 by rpki-client on console-fra.rpki-client.org