$ rpki-client -vvf repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa File: 3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa (raw, json) Hash identifier: +4iPJjUKsKFf0mIBblTK6A7hTyTLKDIonH02e0eFREg= Subject key identifier: 9F:21:89:E2:48:50:04:BC:B3:0F:8E:9F:F3:CE:2D:5D:25:6F:DD:C0 Certificate issuer: /CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Certificate serial: 30B68C15EA77DF3C484B0FFFF09D5850EBDC3255 Authority key identifier: 25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa Signing time: Fri 13 Oct 2023 12:01:46 +0000 ROA not before: Fri 13 Oct 2023 11:56:46 +0000 ROA not after: Fri 11 Oct 2024 12:01:46 +0000 asID: 138842 IP address blocks: 103.138.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 15:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:b6:8c:15:ea:77:df:3c:48:4b:0f:ff:f0:9d:58:50:eb:dc:32:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Validity Not Before: Oct 13 11:56:46 2023 GMT Not After : Oct 11 12:01:46 2024 GMT Subject: CN=9F2189E2485004BCB30F8E9FF3CE2D5D256FDDC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:c2:00:ed:1c:02:c6:bb:41:4a:3d:04:e9: 4e:0e:36:a1:ad:44:3f:69:65:9a:b7:b2:02:de:4e: f3:3c:bc:1f:09:59:5d:ed:04:60:93:59:7c:89:ce: 51:52:98:32:80:cc:87:07:eb:82:3f:b2:c8:b4:d7: 3a:45:71:83:07:47:04:6b:cc:70:91:d7:80:4d:8d: 0a:98:92:d0:b8:fe:90:55:8a:13:0e:0b:4b:f0:ee: ac:d9:7e:0f:0b:59:74:f1:8e:92:32:7e:94:af:70: 93:60:fe:9a:1d:64:88:39:55:b1:d8:b1:75:9d:7b: 11:03:d7:f5:85:c7:09:32:ec:93:85:81:6f:18:d1: a5:74:b4:1a:be:f7:e4:55:d2:93:4d:00:06:6a:e3: 56:42:6f:98:13:8a:3d:59:3e:45:8b:67:d7:36:d4: ec:fb:2e:0b:e1:a4:9e:9d:b4:39:2c:bd:13:f8:84: 5d:ab:5d:fc:c5:e1:a9:dd:fb:a1:37:e8:d9:0e:bd: 96:f6:88:00:45:6a:e5:8a:d4:71:02:af:09:aa:af: c5:6f:ba:81:6f:24:0c:bf:10:a8:7c:d6:fe:50:3f: a2:c5:ff:54:27:a7:a8:ab:8a:09:0a:5b:79:5f:ce: c5:ee:8b:ff:3d:32:98:a9:61:e0:d3:6d:06:64:66: 46:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:21:89:E2:48:50:04:BC:B3:0F:8E:9F:F3:CE:2D:5D:25:6F:DD:C0 X509v3 Authority Key Identifier: keyid:25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.68.0/23 Signature Algorithm: sha256WithRSAEncryption 65:af:88:ac:8f:64:d2:f3:23:dd:90:e7:25:bf:04:34:e8:45: ab:05:28:c7:3e:45:cd:ce:0e:5a:8a:31:6d:a1:9a:2d:05:38: e9:49:85:42:ca:32:22:95:8e:00:b9:2c:d6:e4:20:77:3b:21: ac:35:32:c3:d0:42:17:3a:05:83:98:62:ba:ce:22:a1:4b:df: 8f:73:33:a9:a8:5c:ed:a5:98:a5:0b:bd:66:69:44:da:47:ee: 69:fe:dd:6a:b2:25:b8:ec:2f:0b:10:6b:9a:21:2a:fe:47:d4: 3f:1b:89:03:7e:d8:00:ee:11:ff:53:d2:82:c3:1e:30:19:5d: 02:e1:57:a7:ae:af:8f:dc:db:53:3a:f7:bb:f4:a6:f6:0d:97: b5:2d:2f:dc:c1:76:3c:f0:a5:5f:61:b9:c8:d7:5b:b9:ba:e6: a4:c9:e5:fa:e8:89:37:5d:42:bb:8c:f0:aa:7b:81:f3:03:be: 07:df:3e:10:fa:60:69:a1:7b:06:e8:7e:f1:8b:93:6b:1f:f5: 57:b6:1f:df:52:85:77:b1:3b:f6:99:6f:87:0b:20:16:73:c0: b8:cc:e1:67:37:1c:be:d4:89:03:4e:06:1e:19:3b:48:5b:a9: 31:dc:b3:9c:19:98:3d:3d:22:57:b2:fc:f4:18:57:f5:91:7e: 38:e2:52:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMLaMFep33zxISw//8J1YUOvcMlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1 NTgxQTkzODAeFw0yMzEwMTMxMTU2NDZaFw0yNDEwMTExMjAxNDZaMDMxMTAvBgNV BAMTKDlGMjE4OUUyNDg1MDA0QkNCMzBGOEU5RkYzQ0UyRDVEMjU2RkREQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE0MIA7RwCxrtBSj0E6U4ONqGt RD9pZZq3sgLeTvM8vB8JWV3tBGCTWXyJzlFSmDKAzIcH64I/ssi01zpFcYMHRwRr zHCR14BNjQqYktC4/pBVihMOC0vw7qzZfg8LWXTxjpIyfpSvcJNg/podZIg5VbHY sXWdexED1/WFxwky7JOFgW8Y0aV0tBq+9+RV0pNNAAZq41ZCb5gTij1ZPkWLZ9c2 1Oz7LgvhpJ6dtDksvRP4hF2rXfzF4and+6E36NkOvZb2iABFauWK1HECrwmqr8Vv uoFvJAy/EKh81v5QP6LF/1Qnp6irigkKW3lfzsXui/89MpipYeDTbQZkZkZZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnyGJ4khQBLyzD46f884tXSVv3cAwHwYDVR0j BBgwFoAUJRhZ+nJuhOuO8Vhcax89klWBqTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTM2NzRhNi0xMTRmLTRiYjUtODViYi1jYmI2N2RiMmE5NTUvMC8yNTE4NTlGQTcy NkU4NEVCOEVGMTU4NUM2QjFGM0Q5MjU1ODFBOTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1NTgx QTkzOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MzY3NGE2LTExNGYtNGJiNS04 NWJiLWNiYjY3ZGIyYTk1NS8wLzMxMzAzMzJlMzEzMzM4MmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4pEMA0GCSqG SIb3DQEBCwUAA4IBAQBlr4isj2TS8yPdkOclvwQ06EWrBSjHPkXNzg5aijFtoZot BTjpSYVCyjIilY4AuSzW5CB3OyGsNTLD0EIXOgWDmGK6ziKhS9+PczOpqFztpZil C71maUTaR+5p/t1qsiW47C8LEGuaISr+R9Q/G4kDftgA7hH/U9KCwx4wGV0C4Ven rq+P3NtTOve79Kb2DZe1LS/cwXY88KVfYbnI11u5uuakyeX66Ik3XUK7jPCqe4Hz A74H3z4Q+mBpoXsG6H7xi5NrH/VXth/fUoV3sTv2mW+HCyAWc8C4zOFnNxy+1IkD TgYeGTtIW6kx3LOcGZg9PSJXsvz0GFf1kX444lJn -----END CERTIFICATE-----Generated at Thu Apr 18 18:14:08 2024 by rpki-client on console-fra.rpki-client.org