$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa File: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: 5qwmY9O185zbXjU6YOTm6J83xbXJWcL5L1q6TrzoTS8= Subject key identifier: 21:31:12:56:9A:F5:E8:4E:30:4F:F2:55:B9:8A:3A:A4:5D:28:F4:29 Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 29475452FF196A386C98C3F4AEDC6726F2E3F990 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa Signing time: Mon 04 Dec 2023 01:00:01 +0000 ROA not before: Mon 04 Dec 2023 00:55:01 +0000 ROA not after: Mon 02 Dec 2024 01:00:01 +0000 asID: 136052 IP address blocks: 103.59.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 15:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:54:52:ff:19:6a:38:6c:98:c3:f4:ae:dc:67:26:f2:e3:f9:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Dec 4 00:55:01 2023 GMT Not After : Dec 2 01:00:01 2024 GMT Subject: CN=213112569AF5E84E304FF255B98A3AA45D28F429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:83:a0:e7:c7:95:27:b8:2b:c1:d5:2d:f8:67: 05:65:6f:26:40:0b:60:57:a9:68:42:1f:ed:b0:b0: 4a:8f:c2:05:0e:85:8e:1e:1a:71:fb:a6:dc:0f:26: 8b:ea:36:81:a4:af:79:04:66:eb:f4:9c:18:7b:de: d2:72:19:16:0e:e1:37:bf:98:09:cb:23:4a:13:d1: b8:27:02:04:03:6b:ff:5d:3f:3f:8d:45:cd:bb:00: 4a:13:d8:a5:f1:d1:ef:ec:f2:0a:ae:b1:2d:ba:86: f2:30:a3:d8:e0:61:56:a5:6c:0a:ec:41:04:48:07: 33:8f:a7:1c:04:1b:a5:da:43:b8:38:d0:05:8a:fa: 83:31:6f:d0:e0:64:e7:ae:af:b6:1a:88:d3:0a:85: 68:60:b1:95:0e:32:c4:ae:ae:50:5f:66:6d:02:dd: e5:f4:11:78:d7:d4:67:27:84:b8:1b:f7:6a:99:b7: 10:01:dc:6d:cd:59:62:89:02:ef:36:5c:05:6a:b8: 18:ab:b0:d4:66:9c:1f:ad:ac:cc:78:8f:43:5a:f1: 36:8c:6f:a1:46:90:11:80:aa:60:96:76:f4:b7:c6: 05:a8:9b:90:bb:85:fd:3d:a6:af:21:b5:b5:2d:ab: 5e:12:e5:b3:98:82:2a:1e:f5:d9:d2:56:76:72:bf: f9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:31:12:56:9A:F5:E8:4E:30:4F:F2:55:B9:8A:3A:A4:5D:28:F4:29 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.94.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:7b:8f:79:cf:5d:bc:2e:45:d4:99:1c:1a:c1:b5:65:47:b9: 00:52:0a:21:95:ae:a3:df:fd:5e:f4:4f:d1:22:3c:02:06:9b: e9:47:de:3f:dd:32:9c:13:63:83:f8:ce:ff:e8:ac:46:60:35: 88:24:8d:aa:df:72:b6:c5:1b:14:75:bb:fb:e1:03:d9:1e:8a: e4:35:75:20:86:b1:1d:fa:07:28:60:af:20:6a:53:6f:af:e9: f2:f7:3c:fd:79:31:6a:61:4b:4d:51:bd:53:27:da:f4:2b:5f: e4:b5:37:ae:9f:e3:90:1c:ca:74:9d:0d:9c:f0:94:d0:c5:a5: 0e:96:a6:e7:b3:8d:04:c7:06:6c:cc:f3:b0:26:27:11:e9:93: 49:7f:b2:3e:d4:2a:60:00:c8:6f:96:ac:33:f1:7c:31:d8:af: a7:71:36:8e:af:ff:b5:fb:38:c9:5f:6b:83:98:d6:d3:8f:87: 3e:45:bd:79:63:ad:da:46:cf:f8:fa:0a:75:ae:5b:62:99:03: ab:d3:74:89:77:21:4f:4d:a9:75:b4:4d:92:c0:62:c4:96:37: 25:0e:7b:f2:a5:a1:ee:3c:3c:9d:9b:50:c4:ea:47:b8:c7:09: 22:28:aa:7d:10:d0:e4:9e:76:e1:49:0b:5c:d8:52:b3:40:62: 02:09:35:54 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUdUUv8ZajhsmMP0rtxnJvLj+ZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yMzEyMDQwMDU1MDFaFw0yNDEyMDIwMTAwMDFaMDMxMTAvBgNV BAMTKDIxMzExMjU2OUFGNUU4NEUzMDRGRjI1NUI5OEEzQUE0NUQyOEY0MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgg6Dnx5UnuCvB1S34ZwVlbyZA C2BXqWhCH+2wsEqPwgUOhY4eGnH7ptwPJovqNoGkr3kEZuv0nBh73tJyGRYO4Te/ mAnLI0oT0bgnAgQDa/9dPz+NRc27AEoT2KXx0e/s8gqusS26hvIwo9jgYValbArs QQRIBzOPpxwEG6XaQ7g40AWK+oMxb9DgZOeur7YaiNMKhWhgsZUOMsSurlBfZm0C 3eX0EXjX1GcnhLgb92qZtxAB3G3NWWKJAu82XAVquBirsNRmnB+trMx4j0Na8TaM b6FGkBGAqmCWdvS3xgWom5C7hf09pq8htbUtq14S5bOYgioe9dnSVnZyv/kXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUITESVpr16E4wT/JVuYo6pF0o9CkwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NmE4ZjI4LTlhMDMtNDM3Ni1i NjEyLTMxZjVhZDFjMWVkNi8wLzMxMzAzMzJlMzUzOTJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7XjANBgkqhkiG 9w0BAQsFAAOCAQEADHuPec9dvC5F1JkcGsG1ZUe5AFIKIZWuo9/9XvRP0SI8Agab 6UfeP90ynBNjg/jO/+isRmA1iCSNqt9ytsUbFHW7++ED2R6K5DV1IIaxHfoHKGCv IGpTb6/p8vc8/XkxamFLTVG9Uyfa9Ctf5LU3rp/jkBzKdJ0NnPCU0MWlDpam57ON BMcGbMzzsCYnEemTSX+yPtQqYADIb5asM/F8Mdivp3E2jq//tfs4yV9rg5jW04+H PkW9eWOt2kbP+PoKda5bYpkDq9N0iXchT02pdbRNksBixJY3JQ578qWh7jw8nZtQ xOpHuMcJIiiqfRDQ5J524UkLXNhSs0BiAgk1VA== -----END CERTIFICATE-----Generated at Wed May 1 13:28:23 2024 by rpki-client on console-fra.rpki-client.org