$ rpki-client -vvf repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: BcSe6bmfvH7lU+i3a6H9OGHOKq/AFu7XtdC0A7giNp4= Subject key identifier: C3:6F:2A:95:32:17:74:52:FE:59:D7:86:1B:BF:B3:2C:B4:8C:23:49 Certificate issuer: /CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Certificate serial: 61111D7F27D4B77C691E2C8E3D15655EEE51CED2 Authority key identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:01:54 +0000 ROA not before: Wed 03 Jan 2024 08:56:54 +0000 ROA not after: Wed 01 Jan 2025 09:01:54 +0000 asID: 135478 IP address blocks: 103.129.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 01:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:11:1d:7f:27:d4:b7:7c:69:1e:2c:8e:3d:15:65:5e:ee:51:ce:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Validity Not Before: Jan 3 08:56:54 2024 GMT Not After : Jan 1 09:01:54 2025 GMT Subject: CN=C36F2A9532177452FE59D7861BBFB32CB48C2349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4a:09:e1:69:74:5d:a4:92:d0:b9:31:82:c0: 32:6e:a0:c8:fe:80:91:2d:5d:d3:8c:b6:92:8e:08: 59:94:88:52:3c:42:ed:54:58:44:06:19:96:30:77: 9f:b4:7b:3f:8e:16:74:da:af:e1:06:5a:f8:b1:38: 62:07:00:9e:21:77:39:62:cf:a2:a3:36:81:09:74: 54:21:8c:b3:8e:a7:47:5b:76:cf:43:65:35:49:0b: 09:fe:7b:ca:03:c3:20:d9:c3:a4:9b:b1:d5:f3:73: 77:b1:79:a7:13:63:e9:11:22:c1:32:57:8a:65:f0: d7:08:b3:7d:52:14:94:75:fd:71:9f:57:24:5c:f1: 92:89:c7:f6:8f:e1:08:b9:f1:4f:11:fb:74:e9:27: 8e:17:a9:a8:5f:9f:2c:fb:7d:9d:51:73:5f:52:d2: ab:91:f8:52:81:4c:5f:da:57:32:cf:d1:a9:e5:6d: 9c:7d:81:88:c5:bb:45:b7:d0:93:e5:50:51:7b:78: 9f:4e:50:b8:20:9f:70:73:d6:85:47:57:4f:c5:76: 46:fc:13:aa:de:17:2a:bd:a8:7e:02:ae:59:dd:17: d2:0b:11:e6:bc:c0:ed:d2:80:6e:83:9b:e2:f1:d8: 7f:9c:92:24:af:90:62:9f:fe:9d:14:1e:6a:3f:d5: 09:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6F:2A:95:32:17:74:52:FE:59:D7:86:1B:BF:B3:2C:B4:8C:23:49 X509v3 Authority Key Identifier: keyid:B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.40.0/23 Signature Algorithm: sha256WithRSAEncryption 61:e8:b8:f9:49:16:49:ec:2d:97:c1:10:56:35:ba:99:40:f9: 2c:f0:c6:45:d9:0d:73:62:34:21:49:c2:ed:14:73:8c:78:b2: 22:fa:5a:d7:87:76:72:4f:ab:12:7a:2c:37:92:52:c6:48:25: cf:92:bf:2f:b2:d8:f6:57:c4:5e:da:5e:79:de:27:e1:35:27: ce:cf:0d:93:9a:2c:5d:76:f7:88:a8:ce:e8:ab:c8:09:0f:9e: f3:5c:39:2b:49:77:f1:8d:06:c5:97:e0:c5:89:97:bd:1b:b5: 86:16:81:fd:8f:0a:ce:b8:f7:44:2b:ee:9e:89:c7:87:51:4a: c2:e3:98:67:e2:8f:3c:fe:bf:b8:4e:fa:b8:5e:5b:84:93:23: 41:f4:ac:c9:ec:34:e5:67:ae:26:1d:5c:6c:3d:d9:b3:2f:ab: 32:44:1e:a9:39:18:e0:38:b6:36:78:cb:d6:82:e5:f1:3a:aa: e6:0c:1c:54:48:5e:37:72:bf:a0:48:ad:38:04:fc:3d:e5:55: ef:82:95:f7:03:95:f2:65:e8:76:d9:50:85:67:39:76:f3:bb: 4e:08:d5:6d:94:a9:ac:ab:f6:94:0b:6a:1a:1d:db:ae:fb:e0: f6:d4:70:06:59:da:b9:89:18:52:41:c2:71:15:df:24:7f:b6: 35:73:b5:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYREdfyfUt3xpHiyOPRVlXu5RztIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIw OTEwRkYwMjAeFw0yNDAxMDMwODU2NTRaFw0yNTAxMDEwOTAxNTRaMDMxMTAvBgNV BAMTKEMzNkYyQTk1MzIxNzc0NTJGRTU5RDc4NjFCQkZCMzJDQjQ4QzIzNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuSgnhaXRdpJLQuTGCwDJuoMj+ gJEtXdOMtpKOCFmUiFI8Qu1UWEQGGZYwd5+0ez+OFnTar+EGWvixOGIHAJ4hdzli z6KjNoEJdFQhjLOOp0dbds9DZTVJCwn+e8oDwyDZw6SbsdXzc3exeacTY+kRIsEy V4pl8NcIs31SFJR1/XGfVyRc8ZKJx/aP4Qi58U8R+3TpJ44Xqahfnyz7fZ1Rc19S 0quR+FKBTF/aVzLP0anlbZx9gYjFu0W30JPlUFF7eJ9OULggn3Bz1oVHV0/Fdkb8 E6reFyq9qH4CrlndF9ILEea8wO3SgG6Dm+Lx2H+ckiSvkGKf/p0UHmo/1QmNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw28qlTIXdFL+WdeGG7+zLLSMI0kwHwYDVR0j BBgwFoAUtwky7WxojViJfjLh1cmQsgkQ/wIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTkwZGE0OS05ODYyLTQxZGUtODMzZS1iMzA0ZjBjMWFlNTcvMC9CNzA5MzJFRDZD Njg4RDU4ODk3RTMyRTFENUM5OTBCMjA5MTBGRjAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIwOTEw RkYwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5OTBkYTQ5LTk4NjItNDFkZS04 MzNlLWIzMDRmMGMxYWU1Ny8wLzMxMzAzMzJlMzEzMjM5MmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EoMA0GCSqG SIb3DQEBCwUAA4IBAQBh6Lj5SRZJ7C2XwRBWNbqZQPks8MZF2Q1zYjQhScLtFHOM eLIi+lrXh3ZyT6sSeiw3klLGSCXPkr8vstj2V8Re2l553ifhNSfOzw2TmixddveI qM7oq8gJD57zXDkrSXfxjQbFl+DFiZe9G7WGFoH9jwrOuPdEK+6eiceHUUrC45hn 4o88/r+4Tvq4XluEkyNB9KzJ7DTlZ64mHVxsPdmzL6syRB6pORjgOLY2eMvWguXx OqrmDBxUSF43cr+gSK04BPw95VXvgpX3A5XyZeh22VCFZzl287tOCNVtlKmsq/aU C2oaHduu++D21HAGWdq5iRhSQcJxFd8kf7Y1c7XV -----END CERTIFICATE-----Generated at Thu May 2 04:01:23 2024 by rpki-client on console-fra.rpki-client.org