$ rpki-client -vvf repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: HnK5rPPVFfyD/xRRte9Dtw1105T+SCeG9gs4ICI6NZ8= Subject key identifier: 5F:59:3F:81:D3:F6:8F:02:B8:F9:21:1E:97:AA:8B:09:83:03:ED:13 Certificate issuer: /CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Certificate serial: 225568C519A1C19B80CE82A6E4A0D76B8A7976B1 Authority key identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa Signing time: Tue 27 Jun 2023 07:00:00 +0000 ROA not before: Tue 27 Jun 2023 06:55:00 +0000 ROA not after: Tue 25 Jun 2024 07:00:00 +0000 asID: 4800 IP address blocks: 103.191.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:55:68:c5:19:a1:c1:9b:80:ce:82:a6:e4:a0:d7:6b:8a:79:76:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Validity Not Before: Jun 27 06:55:00 2023 GMT Not After : Jun 25 07:00:00 2024 GMT Subject: CN=5F593F81D3F68F02B8F9211E97AA8B098303ED13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:9e:66:c5:a2:fe:4d:da:e2:0d:1a:96:1c: 23:d5:a8:26:9f:01:a0:18:2a:05:a2:6e:6d:46:d1: 44:0f:ee:91:8b:56:01:1c:88:f6:a9:42:0f:b7:96: e7:37:12:0a:72:09:47:d0:d1:df:47:9e:33:37:36: 40:ef:37:e3:30:d4:0b:29:9b:94:f9:fe:78:07:9e: 43:98:9b:cd:38:c1:55:98:eb:1c:bd:00:68:a3:04: 55:ec:09:75:34:56:ef:c8:5e:90:20:11:8a:48:bb: cf:af:26:07:b8:3d:78:5a:e1:66:b8:c7:05:e2:57: 16:d0:26:5a:3f:be:a7:cb:64:15:8b:31:8f:8e:3b: 52:89:9b:5b:d9:3e:99:73:9e:55:a1:65:d2:14:d0: dc:ce:62:16:17:ec:51:2d:61:e0:53:59:24:6b:b8: b1:e6:75:3b:9d:4a:97:8c:2b:65:08:09:02:b8:04: c2:4b:cb:54:2e:5f:91:e5:e8:9a:e1:a5:88:59:e9: be:ee:b9:97:21:ff:7c:b9:8e:55:79:9b:56:14:68: e8:27:3c:f3:27:0f:31:f3:55:4c:07:73:5a:26:5b: df:c3:62:40:46:c3:ed:88:a9:d3:21:5a:05:39:69: f1:f5:d1:4a:6a:30:cb:2b:96:e6:3e:07:15:77:90: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:59:3F:81:D3:F6:8F:02:B8:F9:21:1E:97:AA:8B:09:83:03:ED:13 X509v3 Authority Key Identifier: keyid:29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.176.0/23 Signature Algorithm: sha256WithRSAEncryption b4:03:ab:48:80:77:21:72:fc:a1:92:2b:c2:8c:f9:70:c7:20: 81:94:1a:fa:fe:be:cb:d1:af:87:62:88:0a:ce:de:9a:67:3f: 17:46:81:79:df:75:5f:a8:ec:b4:8a:43:11:e0:41:87:ef:8d: a9:db:30:63:70:78:e1:af:0e:78:40:a2:f6:1d:3c:66:4b:be: 28:19:fa:5a:da:22:ca:1c:ab:4c:d5:7f:5a:da:30:b6:34:2c: a4:32:58:46:24:db:52:80:ac:c5:7d:29:66:f0:11:65:c7:16: cf:a7:cf:50:8c:15:74:9d:4e:4a:de:2d:43:2a:49:df:e0:0a: 73:e5:e4:9c:04:b1:00:15:89:5a:f6:fa:80:52:24:61:d5:82: 91:ef:89:9c:9f:2c:26:d4:cd:15:03:d8:53:2b:42:d8:94:09: a7:3e:77:40:e3:17:4d:bb:9a:15:94:fa:78:61:8f:5f:9e:b4: 9e:05:0f:17:6d:5c:02:76:ea:a2:66:aa:db:3f:8d:08:53:e1: 8a:b6:fb:16:dc:6d:0b:df:35:e5:bc:e7:7a:10:54:92:43:82: 3d:f7:b9:81:06:f7:49:23:91:a6:51:90:ee:3d:3b:32:00:97: d3:23:a3:8a:27:e6:3d:bb:7b:6a:26:b4:49:dd:0d:0f:0a:d1: e0:5c:7a:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIlVoxRmhwZuAzoKm5KDXa4p5drEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3 QzVCRDJBNDAeFw0yMzA2MjcwNjU1MDBaFw0yNDA2MjUwNzAwMDBaMDMxMTAvBgNV BAMTKDVGNTkzRjgxRDNGNjhGMDJCOEY5MjExRTk3QUE4QjA5ODMwM0VEMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIdZ5mxaL+TdriDRqWHCPVqCaf AaAYKgWibm1G0UQP7pGLVgEciPapQg+3luc3EgpyCUfQ0d9HnjM3NkDvN+Mw1Asp m5T5/ngHnkOYm804wVWY6xy9AGijBFXsCXU0Vu/IXpAgEYpIu8+vJge4PXha4Wa4 xwXiVxbQJlo/vqfLZBWLMY+OO1KJm1vZPplznlWhZdIU0NzOYhYX7FEtYeBTWSRr uLHmdTudSpeMK2UICQK4BMJLy1QuX5Hl6JrhpYhZ6b7uuZch/3y5jlV5m1YUaOgn PPMnDzHzVUwHc1omW9/DYkBGw+2IqdMhWgU5afH10UpqMMsrluY+BxV3kGLHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUX1k/gdP2jwK4+SEel6qLCYMD7RMwHwYDVR0j BBgwFoAUKc8A21whCcS1CQk1NoyaxXxb0qQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTIyYjRlMi0yNmY2LTQxZTgtODkxMC0yMDZiZWE3ODNkYjkvMC8yOUNGMDBEQjVD MjEwOUM0QjUwOTA5MzUzNjhDOUFDNTdDNUJEMkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3QzVC RDJBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMjJiNGUyLTI2ZjYtNDFlOC04 OTEwLTIwNmJlYTc4M2RiOS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/sDANBgkqhkiG 9w0BAQsFAAOCAQEAtAOrSIB3IXL8oZIrwoz5cMcggZQa+v6+y9Gvh2KICs7emmc/ F0aBed91X6jstIpDEeBBh++NqdswY3B44a8OeECi9h08Zku+KBn6WtoiyhyrTNV/ WtowtjQspDJYRiTbUoCsxX0pZvARZccWz6fPUIwVdJ1OSt4tQypJ3+AKc+XknASx ABWJWvb6gFIkYdWCke+JnJ8sJtTNFQPYUytC2JQJpz53QOMXTbuaFZT6eGGPX560 ngUPF21cAnbqomaq2z+NCFPhirb7FtxtC9815bznehBUkkOCPfe5gQb3SSORplGQ 7j07MgCX0yOjiifmPbt7aia0Sd0NDwrR4Fx6Hg== -----END CERTIFICATE-----Generated at Mon May 6 03:06:50 2024 by rpki-client on console-fra.rpki-client.org