$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa File: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: meK9UPSwIRMuipjtbgcuzGV+cj84sTnXn/vqXnCE+eM= Subject key identifier: AD:64:C8:34:E6:E3:76:53:4F:7B:14:46:A1:D2:4E:9D:5C:E5:9C:B9 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 61976A20B9D6B9FC53CD6004C425E65D5A179812 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa Signing time: Mon 31 Jul 2023 00:12:20 +0000 ROA not before: Mon 31 Jul 2023 00:07:20 +0000 ROA not after: Mon 29 Jul 2024 00:12:20 +0000 asID: 24532 IP address blocks: 103.245.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:97:6a:20:b9:d6:b9:fc:53:cd:60:04:c4:25:e6:5d:5a:17:98:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 31 00:07:20 2023 GMT Not After : Jul 29 00:12:20 2024 GMT Subject: CN=AD64C834E6E376534F7B1446A1D24E9D5CE59CB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:29:41:c6:b4:4e:8b:be:e0:2a:18:7d:45:2b: 75:3d:2b:43:7e:95:c5:da:d2:3f:92:4c:f9:0f:54: 23:ec:ac:49:20:54:c9:b3:eb:35:9e:0e:23:93:57: 57:95:af:35:c3:65:87:12:d7:92:5c:4f:15:d1:5d: 64:a7:66:e8:79:1c:bc:70:ff:f4:92:5d:fe:72:93: e9:57:90:10:fe:9c:fd:61:ce:46:b8:26:6d:25:5c: c7:55:d3:1a:b9:80:95:c0:9f:0e:41:5c:89:b2:d7: a7:a0:2b:b4:4e:40:2e:b3:05:5a:4f:44:64:d0:b4: 7b:26:87:4c:57:64:1a:92:ec:ec:8e:25:f8:ed:26: fd:4c:37:54:d1:d2:98:2a:8f:7e:bb:a1:de:e7:80: ca:73:fc:bc:b2:97:ab:5a:9a:08:d9:aa:f9:bb:e1: ac:f8:13:37:9d:7a:c0:3f:33:15:0e:48:4e:3d:9f: ef:cd:77:c8:f3:49:1a:c9:e2:47:0f:95:9f:d8:be: 98:b7:4f:de:03:02:bd:e3:bb:d8:04:1f:83:4e:9e: 99:4e:20:37:23:9a:04:2a:ea:34:fe:fc:68:91:b8: 6c:00:a4:ba:82:b3:6f:ac:3e:7b:d8:43:b1:e3:95: 5d:24:35:20:6e:a4:3b:c2:4d:f5:3f:89:54:17:9d: f6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:64:C8:34:E6:E3:76:53:4F:7B:14:46:A1:D2:4E:9D:5C:E5:9C:B9 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.180.0/22 Signature Algorithm: sha256WithRSAEncryption 65:5c:13:91:e0:e8:74:60:e9:1d:2b:8a:32:38:f9:19:54:a5: de:17:6b:62:17:f6:72:d4:32:09:e2:d1:90:51:64:b7:b2:77: 35:1b:ba:72:ef:40:60:c6:b0:f1:04:0e:a6:77:5b:77:06:c3: cf:60:90:15:1f:2b:85:fe:e8:cb:91:e5:ee:2b:e2:0c:cf:7f: ca:36:90:75:25:bc:da:99:b6:69:63:66:be:84:a4:a4:e1:ee: c3:a2:e7:39:06:07:24:1a:d5:b4:94:26:1f:bb:36:ad:d3:fc: 8a:46:67:02:68:3c:de:bc:b2:12:ac:05:08:c6:20:23:9c:c1: 33:80:07:a1:7e:4b:6d:31:5d:f4:f7:cc:54:77:7e:db:32:32: ed:a4:3f:b4:52:75:a6:0a:c4:9c:aa:0c:c4:1c:dd:7d:07:28: 2a:a4:b8:b7:9d:fc:8b:6a:73:c1:5e:47:65:85:b6:15:26:77: a7:e9:65:d1:0d:1d:76:2b:e8:e0:a4:34:73:b0:8a:20:b7:9d: 04:7b:bc:e9:3f:cf:14:5c:b5:dc:27:50:fe:b9:61:36:a1:c5: b8:a9:a8:96:ff:49:3f:67:e5:ce:a0:7d:66:6a:17:2c:d4:1b: d5:bd:01:30:e5:62:fe:56:8d:5f:b6:65:a6:ba:9d:cf:05:97: 9a:c4:08:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYZdqILnWufxTzWAExCXmXVoXmBIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yMzA3MzEwMDA3MjBaFw0yNDA3MjkwMDEyMjBaMDMxMTAvBgNV BAMTKEFENjRDODM0RTZFMzc2NTM0RjdCMTQ0NkExRDI0RTlENUNFNTlDQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVKUHGtE6LvuAqGH1FK3U9K0N+ lcXa0j+STPkPVCPsrEkgVMmz6zWeDiOTV1eVrzXDZYcS15JcTxXRXWSnZuh5HLxw //SSXf5yk+lXkBD+nP1hzka4Jm0lXMdV0xq5gJXAnw5BXImy16egK7ROQC6zBVpP RGTQtHsmh0xXZBqS7OyOJfjtJv1MN1TR0pgqj367od7ngMpz/Lyyl6tamgjZqvm7 4az4EzedesA/MxUOSE49n+/Nd8jzSRrJ4kcPlZ/Yvpi3T94DAr3ju9gEH4NOnplO IDcjmgQq6jT+/GiRuGwApLqCs2+sPnvYQ7HjlV0kNSBupDvCTfU/iVQXnfYdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrWTINObjdlNPexRGodJOnVzlnLkwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM4MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzUzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/W0MA0GCSqG SIb3DQEBCwUAA4IBAQBlXBOR4Oh0YOkdK4oyOPkZVKXeF2tiF/Zy1DIJ4tGQUWS3 snc1G7py70BgxrDxBA6md1t3BsPPYJAVHyuF/ujLkeXuK+IMz3/KNpB1JbzambZp Y2a+hKSk4e7Douc5BgckGtW0lCYfuzat0/yKRmcCaDzevLISrAUIxiAjnMEzgAeh fkttMV3098xUd37bMjLtpD+0UnWmCsScqgzEHN19BygqpLi3nfyLanPBXkdlhbYV Jnen6WXRDR12K+jgpDRzsIogt50Ee7zpP88UXLXcJ1D+uWE2ocW4qaiW/0k/Z+XO oH1mahcs1BvVvQEw5WL+Vo1ftmWmup3PBZeaxAiB -----END CERTIFICATE-----Generated at Thu Apr 25 01:59:06 2024 by rpki-client on console-ams.rpki-client.org