$ rpki-client -vvf repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e37302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e37302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: L1hRzxE9lmcWg/BjtXeL7156zMfMKEw38z3N/7PthNI= Subject key identifier: E8:AE:13:4D:0C:AC:47:93:A9:B4:4F:7E:68:F3:B3:5D:AB:CB:99:D7 Certificate issuer: /CN=CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A Certificate serial: 3A5BCDB57F34CD2CF245006AC7D1E849D6F63B58 Authority key identifier: CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e37302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:01:14 +0000 ROA not before: Wed 03 Jan 2024 08:56:14 +0000 ROA not after: Wed 01 Jan 2025 09:01:14 +0000 asID: 135478 IP address blocks: 103.129.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.crl rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5b:cd:b5:7f:34:cd:2c:f2:45:00:6a:c7:d1:e8:49:d6:f6:3b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A Validity Not Before: Jan 3 08:56:14 2024 GMT Not After : Jan 1 09:01:14 2025 GMT Subject: CN=E8AE134D0CAC4793A9B44F7E68F3B35DABCB99D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:de:b6:45:ba:e6:76:1c:d5:24:6e:65:a7: 8b:c6:89:0a:7e:24:07:a0:44:41:ff:e1:e4:9d:33: 4a:b6:6a:fd:b9:b1:1f:03:c2:76:69:cd:30:e7:a0: 6a:e1:a4:27:32:7e:98:6f:7c:9e:13:1f:64:d5:bc: e4:22:21:23:a3:da:a8:5f:18:ed:db:c0:6f:39:63: e0:b0:55:10:ea:1d:8b:22:45:ca:8f:52:dc:ac:7c: a9:e7:4b:f2:da:a7:cc:ac:c3:97:25:6b:ae:6d:34: 1f:bd:e0:47:8b:fb:46:ac:74:aa:fe:13:81:6f:5a: fa:35:f0:2c:d4:1e:86:f2:f6:b9:80:c9:3b:4f:1f: 8a:ff:29:3b:e0:bd:cc:3f:f1:03:23:5a:55:8e:9e: df:46:8a:96:7d:f3:0e:0a:35:61:3e:84:c8:71:02: 36:2d:4e:59:0b:46:5a:05:43:b4:94:ae:41:77:7c: 17:ae:9f:74:f7:29:80:b3:61:e8:fb:62:5e:cd:af: a9:8b:84:10:ea:55:4a:45:73:51:ce:ab:09:03:62: 96:8e:6b:05:b2:63:be:9c:30:ee:85:21:54:de:e2: 22:b0:18:04:5b:99:75:51:46:f4:9a:34:33:ca:ed: cf:68:a3:ff:25:88:d8:e3:a3:c3:30:7e:ed:a5:8c: f6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AE:13:4D:0C:AC:47:93:A9:B4:4F:7E:68:F3:B3:5D:AB:CB:99:D7 X509v3 Authority Key Identifier: keyid:CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/3130332e3132392e37302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.70.0/23 Signature Algorithm: sha256WithRSAEncryption 83:72:4d:ed:5b:b9:2b:8c:d4:2a:e1:03:8b:90:32:55:a9:9e: 6d:86:a6:21:d4:76:61:26:f3:e3:af:20:fb:86:b3:da:60:d6: 8f:1d:33:53:51:07:54:f9:6e:2b:6d:2a:a6:b8:c6:2d:49:42: 7e:cc:02:ec:ab:d1:2e:91:07:50:d8:15:34:13:a7:c4:e7:38: 73:79:cf:7d:f0:cf:c2:12:27:d6:3f:d6:ba:00:84:ee:c6:8c: 52:03:70:d6:0e:a7:bc:44:46:5e:c0:36:90:5b:6c:de:d9:12: 24:af:35:38:ed:24:0a:94:bb:63:3d:cb:56:29:56:b3:d1:54: e2:1f:3f:b3:90:d8:e3:5e:6c:2b:dd:74:b8:36:bc:32:fd:b1: eb:1b:a6:ac:df:d2:49:d7:78:7a:e8:0a:c0:ca:c2:e2:fe:4a: 2c:a1:a8:4b:a5:60:35:0a:95:85:d3:72:9a:52:30:a1:55:80: 14:42:e5:c5:cc:77:7a:63:8c:ac:af:df:8d:0a:9a:eb:da:54: e7:95:05:01:7f:b8:63:bd:9f:63:9d:ce:f5:96:22:c8:e4:e1: 6f:d6:14:69:a4:16:82:21:b7:d7:73:f5:0a:f4:a0:f0:f2:d6: 1d:67:05:a9:6c:97:0b:24:77:9a:0a:48:8a:25:2f:bd:12:58: f0:c6:9d:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOlvNtX80zSzyRQBqx9HoSdb2O1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JCNUU4RDg3OTk2QzQ4OTdDOUY1REMwQ0IzMjg2NEY0 RjBDNUE3QTAeFw0yNDAxMDMwODU2MTRaFw0yNTAxMDEwOTAxMTRaMDMxMTAvBgNV BAMTKEU4QUUxMzREMENBQzQ3OTNBOUI0NEY3RTY4RjNCMzVEQUJDQjk5RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXN62RbrmdhzVJG5lp4vGiQp+ JAegREH/4eSdM0q2av25sR8DwnZpzTDnoGrhpCcyfphvfJ4TH2TVvOQiISOj2qhf GO3bwG85Y+CwVRDqHYsiRcqPUtysfKnnS/Lap8ysw5cla65tNB+94EeL+0asdKr+ E4FvWvo18CzUHoby9rmAyTtPH4r/KTvgvcw/8QMjWlWOnt9GipZ98w4KNWE+hMhx AjYtTlkLRloFQ7SUrkF3fBeun3T3KYCzYej7Yl7Nr6mLhBDqVUpFc1HOqwkDYpaO awWyY76cMO6FIVTe4iKwGARbmXVRRvSaNDPK7c9oo/8liNjjo8Mwfu2ljPYtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6K4TTQysR5OptE9+aPOzXavLmdcwHwYDVR0j BBgwFoAUy7Xo2HmWxIl8n13AyzKGT08MWnowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2Y2ZTU3Yi00YzI2LTQ0MmItOGFmYy0wMzI5ZWVkYWZiNzIvMC9DQkI1RThEODc5 OTZDNDg5N0M5RjVEQzBDQjMyODY0RjRGMEM1QTdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0JCNUU4RDg3OTk2QzQ4OTdDOUY1REMwQ0IzMjg2NEY0RjBD NUE3QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3ZjZlNTdiLTRjMjYtNDQyYi04 YWZjLTAzMjllZWRhZmI3Mi8wLzMxMzAzMzJlMzEzMjM5MmUzNzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4FGMA0GCSqG SIb3DQEBCwUAA4IBAQCDck3tW7krjNQq4QOLkDJVqZ5thqYh1HZhJvPjryD7hrPa YNaPHTNTUQdU+W4rbSqmuMYtSUJ+zALsq9EukQdQ2BU0E6fE5zhzec998M/CEifW P9a6AITuxoxSA3DWDqe8REZewDaQW2ze2RIkrzU47SQKlLtjPctWKVaz0VTiHz+z kNjjXmwr3XS4Nrwy/bHrG6as39JJ13h66ArAysLi/kosoahLpWA1CpWF03KaUjCh VYAUQuXFzHd6Y4ysr9+NCprr2lTnlQUBf7hjvZ9jnc71liLI5OFv1hRppBaCIbfX c/UK9KDw8tYdZwWpbJcLJHeaCkiKJS+9Eljwxp1c -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org