$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa File: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (raw, json) Hash identifier: Q7+Ig3st9QH7BYXbx8Ft103oTEokxpM9tTzrewLqJMw= Subject key identifier: C6:CD:5A:8B:41:02:D3:C9:FC:F8:3D:F9:9D:06:3C:8C:DA:F9:15:CD Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 39458227449E84378965C16082AB0897406839F5 Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa Signing time: Fri 15 Sep 2023 04:00:00 +0000 ROA not before: Fri 15 Sep 2023 03:55:00 +0000 ROA not after: Fri 13 Sep 2024 04:00:00 +0000 asID: 38756 IP address blocks: 103.212.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:45:82:27:44:9e:84:37:89:65:c1:60:82:ab:08:97:40:68:39:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Sep 15 03:55:00 2023 GMT Not After : Sep 13 04:00:00 2024 GMT Subject: CN=C6CD5A8B4102D3C9FCF83DF99D063C8CDAF915CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:30:30:24:3d:84:e5:d3:35:3a:d9:d1:18:f1: f2:ac:75:d9:1f:92:48:6c:86:4a:a7:b2:04:a9:94: 6f:8a:39:d2:ae:5d:f8:04:66:7e:fc:80:2d:ae:47: 1f:ad:08:13:d0:a6:d9:cd:61:ac:4a:0f:fa:7c:1f: ef:fc:3b:f4:be:1d:ed:35:09:87:e1:42:83:ac:a2: e1:bb:bb:f2:65:51:ee:f3:f4:b1:7c:6a:5a:ee:e5: 53:b5:83:02:ed:9f:61:80:c9:89:0e:90:33:b5:6b: f1:cb:c1:62:75:a0:1b:78:95:ea:d7:b0:05:be:39: b0:46:24:87:5d:03:f7:22:c1:78:0d:30:d1:d5:84: b9:1d:8a:c8:14:28:6d:5a:de:26:7d:fa:af:da:2d: b6:19:49:80:9e:4d:ba:2f:d6:36:1a:39:b2:c5:4a: 3c:0f:49:ae:cf:70:4c:6b:b3:13:00:a4:6e:d0:40: 35:7a:d5:95:48:a6:a1:12:34:45:b5:5b:01:4c:b9: a0:b1:bc:b4:68:24:3d:19:a1:d9:62:6c:fd:e7:14: 7b:3c:1a:d2:be:52:ee:4c:ef:fe:49:42:09:bb:e1: 78:37:b2:3d:5a:8d:e2:41:ed:c8:22:a6:d8:fb:ae: 41:4d:79:14:03:7b:3b:58:26:e0:11:a7:86:7f:fd: e2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CD:5A:8B:41:02:D3:C9:FC:F8:3D:F9:9D:06:3C:8C:DA:F9:15:CD X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.236.0/23 Signature Algorithm: sha256WithRSAEncryption a2:12:94:81:b4:53:eb:e6:cf:fb:17:ad:24:98:ab:eb:d8:68: af:72:2d:e1:f7:22:f0:77:95:3f:88:b0:be:ca:34:c0:4f:e6: d0:3c:48:2a:96:e5:e9:e3:0a:61:dd:62:33:6b:ec:1e:41:7b: 2d:97:84:ae:48:f4:9e:09:d5:43:fa:8f:5c:fb:98:13:e5:56: 34:e9:bd:fe:b3:8e:93:cd:41:70:cd:23:85:45:88:07:0f:33: 66:db:a1:45:58:8e:f2:01:74:21:98:7a:98:3e:61:b0:a5:c4: 5e:44:3e:5c:a5:3e:e8:6d:3b:14:83:d6:ab:bd:30:fa:48:4d: ac:49:21:8d:6c:67:2f:2c:a7:99:7d:b3:00:f7:03:d6:64:71: 52:6d:4c:22:d1:d9:1c:96:2b:f5:5a:31:21:e5:11:25:73:ca: 28:92:81:1b:0a:97:13:6c:92:52:1e:c1:92:6e:79:96:c6:c9: 31:30:f3:34:7d:35:a6:8e:49:81:15:b5:b3:48:4c:ba:0f:7f: e7:38:36:8f:c2:d3:a0:9d:4f:c4:a7:3d:7f:9a:e1:3e:e8:59: 60:e5:ac:ad:ad:b6:b3:c3:c7:f0:11:c8:7e:78:9e:d9:4a:28: c0:3f:d2:d6:7f:32:da:16:ce:78:35:da:9a:b7:c8:d3:18:3e: 83:62:03:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOUWCJ0SehDeJZcFggqsIl0BoOfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yMzA5MTUwMzU1MDBaFw0yNDA5MTMwNDAwMDBaMDMxMTAvBgNV BAMTKEM2Q0Q1QThCNDEwMkQzQzlGQ0Y4M0RGOTlEMDYzQzhDREFGOTE1Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8MDAkPYTl0zU62dEY8fKsddkf kkhshkqnsgSplG+KOdKuXfgEZn78gC2uRx+tCBPQptnNYaxKD/p8H+/8O/S+He01 CYfhQoOsouG7u/JlUe7z9LF8alru5VO1gwLtn2GAyYkOkDO1a/HLwWJ1oBt4lerX sAW+ObBGJIddA/ciwXgNMNHVhLkdisgUKG1a3iZ9+q/aLbYZSYCeTbov1jYaObLF SjwPSa7PcExrsxMApG7QQDV61ZVIpqESNEW1WwFMuaCxvLRoJD0ZodlibP3nFHs8 GtK+Uu5M7/5JQgm74Xg3sj1ajeJB7cgiptj7rkFNeRQDeztYJuARp4Z//eKfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxs1ai0EC08n8+D35nQY8jNr5Fc0wHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9TsMA0GCSqG SIb3DQEBCwUAA4IBAQCiEpSBtFPr5s/7F60kmKvr2Givci3h9yLwd5U/iLC+yjTA T+bQPEgqluXp4wph3WIza+weQXstl4SuSPSeCdVD+o9c+5gT5VY06b3+s46TzUFw zSOFRYgHDzNm26FFWI7yAXQhmHqYPmGwpcReRD5cpT7obTsUg9arvTD6SE2sSSGN bGcvLKeZfbMA9wPWZHFSbUwi0dkcliv1WjEh5RElc8ookoEbCpcTbJJSHsGSbnmW xskxMPM0fTWmjkmBFbWzSEy6D3/nODaPwtOgnU/Epz1/muE+6Flg5aytrbazw8fw Ech+eJ7ZSijAP9LWfzLaFs54Ndqat8jTGD6DYgOS -----END CERTIFICATE-----Generated at Wed May 1 05:56:38 2024 by rpki-client on console-fra.rpki-client.org