$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa File: 3130332e31342e32302e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: 5XZK7F7w2VPEpq8hok3C+UE2feMf4mMOUw0NiACNu1Y= Subject key identifier: A9:0C:55:5C:D7:D3:F4:DC:2D:5A:E4:FD:B7:C0:AF:1B:C6:17:2B:7E Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 32527F19C69DF4DBF8D0D214BF2DE5D5E9D6314F Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:12 +0000 ROA not before: Sun 30 Jul 2023 23:58:12 +0000 ROA not after: Mon 29 Jul 2024 00:03:12 +0000 asID: 131717 IP address blocks: 103.14.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 02:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:52:7f:19:c6:9d:f4:db:f8:d0:d2:14:bf:2d:e5:d5:e9:d6:31:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:12 2023 GMT Not After : Jul 29 00:03:12 2024 GMT Subject: CN=A90C555CD7D3F4DC2D5AE4FDB7C0AF1BC6172B7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:20:6c:55:7a:2e:bc:93:a6:8c:b3:8e:4e:fd: 8f:c8:a0:16:ea:04:05:30:10:85:1e:b7:99:aa:5b: a0:9d:84:b4:0d:01:31:5f:a4:8f:dd:8e:3c:7e:a2: dd:9b:eb:1c:3a:b4:71:a9:30:a9:cf:47:cf:09:03: 08:d5:fc:99:9e:9b:ef:8c:a4:76:1d:85:6d:46:c9: 1b:fc:a7:05:28:cd:5d:c1:7e:03:10:54:74:e7:90: 0b:06:da:16:dd:e4:d0:1b:1c:76:74:fe:45:98:0c: a1:f9:ca:58:7b:1a:ce:bf:03:3e:f4:b0:85:7e:a4: 39:0e:09:2e:4c:74:d5:08:9a:f7:86:e9:e5:ec:84: eb:3e:cb:5e:52:dd:42:a4:bb:86:a0:f9:ef:2f:b9: b7:6d:01:93:3b:19:5d:14:00:24:4f:79:86:00:dc: 62:54:18:ee:ca:7b:38:f7:4b:2c:dd:bb:93:8d:1f: bf:6f:b0:62:5a:10:c0:a2:62:0e:29:82:25:6d:c9: dd:1e:b0:08:4b:c2:a9:2d:4a:0d:65:ac:f0:68:ad: 84:4b:9f:55:4e:2c:03:d2:3e:6c:7c:5b:e8:01:b9: 4a:1c:fb:73:4b:11:64:79:05:1a:b9:af:65:73:40: bb:5b:ac:6e:72:8f:2b:d5:2b:fa:b1:49:0f:50:f7: bc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0C:55:5C:D7:D3:F4:DC:2D:5A:E4:FD:B7:C0:AF:1B:C6:17:2B:7E X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.20.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:82:dc:26:99:9c:53:49:18:2b:17:25:e4:e2:0d:75:d7:03: 64:21:28:8e:31:b0:a8:34:2b:29:d0:d5:f1:ea:64:94:c9:b0: 4b:5d:33:a7:ab:a3:b1:37:e4:bc:eb:59:3c:a3:01:8b:6a:87: 44:b7:87:e1:fa:f3:c0:c0:b1:ed:e7:1a:78:1f:15:ec:ed:6b: 80:ca:39:4c:cc:e7:d6:0a:d2:31:70:b2:cf:b7:a5:bc:a9:9c: 29:19:c8:38:bd:08:44:7e:75:e4:75:ab:e3:de:8a:1c:90:c4: ae:32:af:35:25:61:ab:c9:03:4d:0b:82:43:ab:df:ae:f1:06: c3:ff:1c:b6:6a:e6:55:bd:43:cc:7a:5f:63:cb:c7:a3:53:93: d5:71:5b:ba:d0:f1:db:d9:73:6d:14:d6:ef:de:bf:20:8c:d0: 58:f2:c9:66:ba:f8:46:39:82:f4:c6:0b:a6:e5:8a:da:a6:68: 5d:c5:e8:49:df:aa:6a:ea:c8:2d:56:ab:02:65:75:04:e2:85: c7:0d:b8:2c:e4:5e:d0:82:56:3d:12:a0:a4:12:bb:62:5a:b6: 67:60:e3:1b:b5:7d:a2:02:ff:e6:d3:ef:1c:4e:54:bb:cb:37: 1c:7e:0a:61:93:f6:b2:0b:9b:a7:9a:78:81:db:c1:b1:15:9d: c5:9a:69:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMlJ/Gcad9Nv40NIUvy3l1enWMU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTJaFw0yNDA3MjkwMDAzMTJaMDMxMTAvBgNV BAMTKEE5MEM1NTVDRDdEM0Y0REMyRDVBRTRGREI3QzBBRjFCQzYxNzJCN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWIGxVei68k6aMs45O/Y/IoBbq BAUwEIUet5mqW6CdhLQNATFfpI/djjx+ot2b6xw6tHGpMKnPR88JAwjV/Jmem++M pHYdhW1GyRv8pwUozV3BfgMQVHTnkAsG2hbd5NAbHHZ0/kWYDKH5ylh7Gs6/Az70 sIV+pDkOCS5MdNUImveG6eXshOs+y15S3UKku4ag+e8vubdtAZM7GV0UACRPeYYA 3GJUGO7Kezj3Syzdu5ONH79vsGJaEMCiYg4pgiVtyd0esAhLwqktSg1lrPBorYRL n1VOLAPSPmx8W+gBuUoc+3NLEWR5BRq5r2VzQLtbrG5yjyvVK/qxSQ9Q97wtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqQxVXNfT9NwtWuT9t8CvG8YXK34wHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzEzNDJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcOFDANBgkqhkiG 9w0BAQsFAAOCAQEALILcJpmcU0kYKxcl5OINddcDZCEojjGwqDQrKdDV8epklMmw S10zp6ujsTfkvOtZPKMBi2qHRLeH4frzwMCx7ecaeB8V7O1rgMo5TMzn1grSMXCy z7elvKmcKRnIOL0IRH515HWr496KHJDErjKvNSVhq8kDTQuCQ6vfrvEGw/8ctmrm Vb1DzHpfY8vHo1OT1XFbutDx29lzbRTW796/IIzQWPLJZrr4RjmC9MYLpuWK2qZo XcXoSd+qaurILVarAmV1BOKFxw24LORe0IJWPRKgpBK7Ylq2Z2DjG7V9ogL/5tPv HE5Uu8s3HH4KYZP2sgubp5p4gdvBsRWdxZppdA== -----END CERTIFICATE-----Generated at Thu Apr 18 20:08:49 2024 by rpki-client on console-fra.rpki-client.org