$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3130332e3231332e3132382e302f32322d3234203d3e203137363730.roa File: 3130332e3231332e3132382e302f32322d3234203d3e203137363730.roa (raw, json) Hash identifier: 8/0SjjzNEyDp/MoMvXfi1pnsjLhs1tqUD5z9JQqkSr8= Subject key identifier: 41:58:1E:57:7F:9F:FD:20:DF:0A:17:25:6C:24:E0:EF:BE:B3:6E:F9 Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 55B0DB759C58B5EE5F571D20494191F2681AA1AE Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3130332e3231332e3132382e302f32322d3234203d3e203137363730.roa Signing time: Sat 10 Feb 2024 06:00:00 +0000 ROA not before: Sat 10 Feb 2024 05:55:00 +0000 ROA not after: Sat 08 Feb 2025 06:00:00 +0000 asID: 17670 IP address blocks: 103.213.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 00:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b0:db:75:9c:58:b5:ee:5f:57:1d:20:49:41:91:f2:68:1a:a1:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Feb 10 05:55:00 2024 GMT Not After : Feb 8 06:00:00 2025 GMT Subject: CN=41581E577F9FFD20DF0A17256C24E0EFBEB36EF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:99:92:f2:8c:51:f7:22:02:6f:cb:68:9e:b7: 8f:6c:fc:22:f6:8e:d2:b0:c5:e6:2e:fe:0f:c1:47: 79:12:00:e8:5e:22:85:19:69:6b:c4:7f:55:f0:e2: 08:31:2c:41:bb:74:33:a2:ca:bc:47:80:0d:7b:92: ae:cc:75:df:c8:26:13:a4:d0:9a:3f:fe:1f:19:bd: c0:92:10:71:35:c6:64:74:80:31:21:be:50:1f:54: da:2e:2d:b2:7f:6f:0d:9e:f3:dc:32:00:3a:b7:b4: 3e:ea:20:0a:b8:e1:bb:5a:5b:97:36:39:39:a5:d8: 65:03:fe:a2:db:b6:95:61:9b:a4:d9:17:f0:09:dc: 68:aa:0a:3e:fa:90:0b:73:44:e1:ce:09:70:df:66: b0:f8:5f:47:d3:aa:f4:2a:7b:be:bd:48:2c:08:25: 33:19:99:48:1a:a2:3a:05:b1:1c:39:ca:95:21:b6: 95:21:4c:e6:2f:20:d8:81:bc:a2:3e:56:24:e4:6b: 0e:93:0e:d2:fc:79:46:6d:73:ee:2d:02:a4:95:0d: 86:22:28:90:1e:d9:97:b2:9d:78:22:43:ef:ca:5b: aa:f0:e7:91:ae:df:61:e6:5b:f3:08:a0:c0:75:86: 99:d2:60:cf:22:58:46:03:64:3e:c5:15:73:4e:20: b5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:58:1E:57:7F:9F:FD:20:DF:0A:17:25:6C:24:E0:EF:BE:B3:6E:F9 X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3130332e3231332e3132382e302f32322d3234203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.128.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:9b:00:ea:a7:fe:e6:e7:e9:47:7c:13:24:8b:aa:ab:cb:96: bb:85:37:ce:5d:6d:6d:96:7b:36:9d:a1:e4:eb:fc:b9:4c:a7: b5:8f:12:7b:80:bd:3c:f9:87:7b:e3:8a:ce:f5:67:cb:92:c6: 3b:fa:ed:1d:f6:3d:a7:cf:03:80:19:a2:21:b2:c1:08:36:6d: 29:ee:9d:73:81:a9:72:8b:e9:60:53:81:a7:32:a9:ef:4b:47: 6c:c2:72:61:cc:67:5a:46:de:93:09:c2:5b:b1:4a:99:c0:10: aa:2f:12:d7:b1:15:55:95:3d:f3:1f:60:cc:fc:c9:f7:dd:b8: 3f:27:56:36:51:7e:e6:22:f6:1e:70:d4:7f:78:98:21:c2:a0: 13:b1:9d:52:d7:d4:d0:12:bf:9e:e3:1e:cc:c1:f2:3b:92:72: 94:58:4e:70:08:aa:7e:c6:20:2c:f3:9b:d6:0e:d2:b5:f8:74: 31:a5:77:e9:ee:cb:89:71:5a:91:d7:5e:dc:f3:ac:0f:d6:c6: 4a:b5:e1:1c:56:5e:8a:f6:7b:a9:dc:9a:71:76:8e:ac:e8:52: aa:8d:1f:cc:05:83:7a:9c:cd:a6:e3:12:b6:c2:76:73:88:58: a8:f4:47:3f:cc:95:8d:77:31:4f:c0:65:01:72:ef:ca:13:8d: b6:94:03:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVbDbdZxYte5fVx0gSUGR8mgaoa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNDAyMTAwNTU1MDBaFw0yNTAyMDgwNjAwMDBaMDMxMTAvBgNV BAMTKDQxNTgxRTU3N0Y5RkZEMjBERjBBMTcyNTZDMjRFMEVGQkVCMzZFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzmZLyjFH3IgJvy2iet49s/CL2 jtKwxeYu/g/BR3kSAOheIoUZaWvEf1Xw4ggxLEG7dDOiyrxHgA17kq7Mdd/IJhOk 0Jo//h8ZvcCSEHE1xmR0gDEhvlAfVNouLbJ/bw2e89wyADq3tD7qIAq44btaW5c2 OTml2GUD/qLbtpVhm6TZF/AJ3GiqCj76kAtzROHOCXDfZrD4X0fTqvQqe769SCwI JTMZmUgaojoFsRw5ypUhtpUhTOYvINiBvKI+ViTkaw6TDtL8eUZtc+4tAqSVDYYi KJAe2ZeynXgiQ+/KW6rw55Gu32HmW/MIoMB1hpnSYM8iWEYDZD7FFXNOILV3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQVgeV3+f/SDfChclbCTg776zbvkwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMxMzAzMzJlMzIzMTMzMmUzMTMyMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM3MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ9WAMA0GCSqG SIb3DQEBCwUAA4IBAQB6mwDqp/7m5+lHfBMki6qry5a7hTfOXW1tlns2naHk6/y5 TKe1jxJ7gL08+Yd744rO9WfLksY7+u0d9j2nzwOAGaIhssEINm0p7p1zgalyi+lg U4GnMqnvS0dswnJhzGdaRt6TCcJbsUqZwBCqLxLXsRVVlT3zH2DM/Mn33bg/J1Y2 UX7mIvYecNR/eJghwqATsZ1S19TQEr+e4x7MwfI7knKUWE5wCKp+xiAs85vWDtK1 +HQxpXfp7suJcVqR117c86wP1sZKteEcVl6K9nup3Jpxdo6s6FKqjR/MBYN6nM2m 4xK2wnZziFio9Ec/zJWNdzFPwGUBcu/KE422lAON -----END CERTIFICATE-----Generated at Sun Apr 14 16:04:21 2024 by rpki-client on console-fra.rpki-client.org