$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa File: 3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: cLoeR07jwdEnf5o4Wsohmy6Wzaa01FQ4o5oLqnHp4AA= Subject key identifier: 15:2A:1F:E4:DA:13:B6:53:C1:08:7F:2A:D3:C0:5D:15:C2:6D:A8:67 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 6102F2819F7F74E7FC3FF219039D515DDFAF990E Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa Signing time: Tue 08 Aug 2023 17:16:37 +0000 ROA not before: Tue 08 Aug 2023 17:11:37 +0000 ROA not after: Tue 06 Aug 2024 17:16:37 +0000 asID: 23679 IP address blocks: 103.238.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:02:f2:81:9f:7f:74:e7:fc:3f:f2:19:03:9d:51:5d:df:af:99:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Aug 8 17:11:37 2023 GMT Not After : Aug 6 17:16:37 2024 GMT Subject: CN=152A1FE4DA13B653C1087F2AD3C05D15C26DA867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2c:bb:a8:b8:2e:ef:54:1b:17:f9:b4:c4:bc: 23:6c:53:6f:c2:f2:ba:c3:f3:6f:99:24:ab:e9:a4: 17:b7:59:47:91:75:0f:9c:af:8e:9e:28:b0:28:fb: 5b:8e:8d:81:90:02:8e:17:b0:a9:f9:e3:a2:84:51: 98:e6:15:00:d1:73:43:84:6a:96:2f:52:ac:80:38: f1:48:c4:a7:30:70:84:f7:a1:0d:c9:b9:d5:4e:b4: 44:b5:3e:76:70:6c:63:71:1d:a7:bf:67:7e:45:88: 73:12:d0:3f:21:75:72:34:06:26:e2:8f:f7:f6:59: 20:e2:d0:82:38:23:e1:13:64:b8:5e:f6:8f:89:43: 39:b9:dc:1b:85:22:a3:ff:6c:f1:78:3f:d6:11:9d: ee:59:78:11:86:80:4a:d4:e2:45:a4:4d:16:5f:68: 86:2f:29:a9:49:dc:db:67:5f:90:a2:39:75:eb:26: 6e:8f:3e:fb:35:93:d8:8b:eb:03:be:f2:08:18:0e: 04:9d:41:b1:89:d3:e8:a4:70:ab:a1:ac:f6:35:41: 03:78:f5:cd:c2:5e:22:9d:59:1e:cd:d1:f3:0c:36: f9:e9:04:2a:12:3d:f2:55:77:87:c3:0b:b8:38:7d: d2:c6:57:83:2c:83:be:09:e7:b0:7d:66:d3:cd:79: 2c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2A:1F:E4:DA:13:B6:53:C1:08:7F:2A:D3:C0:5D:15:C2:6D:A8:67 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230312e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.201.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e9:ea:b8:77:9f:d0:9f:85:99:b9:8b:2e:3c:9c:7d:1f:f5: 9f:b7:5f:77:68:c6:cb:e9:69:fa:2a:2a:fb:50:ff:d5:9b:d0: db:d1:c0:0c:2e:4f:1a:63:cf:fa:a6:9f:b9:11:08:3c:dd:c2: f0:65:10:ff:29:48:1e:6b:e4:c7:91:b1:44:34:4e:2a:a9:68: bf:b6:70:f6:2b:83:9d:c5:df:41:81:81:77:cc:88:29:3c:29: aa:41:cd:20:1d:e6:35:06:3d:df:04:8c:fc:47:8e:b8:7f:77: cb:e0:9f:d6:38:42:81:cd:d9:25:b9:6d:a1:d5:7d:e1:9b:0f: b5:b8:95:9c:c5:f0:a9:58:2e:d3:59:0b:1a:cb:a5:bb:8c:12: d4:63:6b:bd:15:15:08:e8:35:6c:08:b6:ac:69:34:98:c3:50: 74:11:e8:2c:bf:c8:83:d9:93:69:da:17:c1:68:0d:c7:08:30: 91:4c:bf:be:9e:a1:26:10:5e:fb:4f:1b:9a:d5:c7:4f:a1:c8: 99:f3:23:dd:c8:11:7a:9f:bb:a4:16:1b:6f:35:60:4a:bf:cf: 2c:1e:98:48:8b:e3:90:a7:38:b4:d6:2f:e6:d0:89:ee:0c:ef: bc:d4:00:26:32:a8:68:96:72:59:91:e7:54:47:5d:d4:4c:ef: 45:41:e3:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYQLygZ9/dOf8P/IZA51RXd+vmQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yMzA4MDgxNzExMzdaFw0yNDA4MDYxNzE2MzdaMDMxMTAvBgNV BAMTKDE1MkExRkU0REExM0I2NTNDMTA4N0YyQUQzQzA1RDE1QzI2REE4NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLLuouC7vVBsX+bTEvCNsU2/C 8rrD82+ZJKvppBe3WUeRdQ+cr46eKLAo+1uOjYGQAo4XsKn546KEUZjmFQDRc0OE apYvUqyAOPFIxKcwcIT3oQ3JudVOtES1PnZwbGNxHae/Z35FiHMS0D8hdXI0Bibi j/f2WSDi0II4I+ETZLhe9o+JQzm53BuFIqP/bPF4P9YRne5ZeBGGgErU4kWkTRZf aIYvKalJ3NtnX5CiOXXrJm6PPvs1k9iL6wO+8ggYDgSdQbGJ0+ikcKuhrPY1QQN4 9c3CXiKdWR7N0fMMNvnpBCoSPfJVd4fDC7g4fdLGV4Msg74J57B9ZtPNeSwFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFSof5NoTtlPBCH8q08BdFcJtqGcwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzIzMzM4MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+7JMA0GCSqG SIb3DQEBCwUAA4IBAQBn6eq4d5/Qn4WZuYsuPJx9H/Wft193aMbL6Wn6Kir7UP/V m9Db0cAMLk8aY8/6pp+5EQg83cLwZRD/KUgea+THkbFENE4qqWi/tnD2K4Odxd9B gYF3zIgpPCmqQc0gHeY1Bj3fBIz8R464f3fL4J/WOEKBzdkluW2h1X3hmw+1uJWc xfCpWC7TWQsay6W7jBLUY2u9FRUI6DVsCLasaTSYw1B0Eegsv8iD2ZNp2hfBaA3H CDCRTL++nqEmEF77Txua1cdPociZ8yPdyBF6n7ukFhtvNWBKv88sHphIi+OQpzi0 1i/m0InuDO+81AAmMqholnJZkedUR13UTO9FQeNQ -----END CERTIFICATE-----Generated at Sat May 4 02:34:29 2024 by rpki-client on console-fra.rpki-client.org