$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa File: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: P4apv1GzK7+cT56iwQ6hCEXom/pspFjbfeX0y7AzWbs= Subject key identifier: E1:C8:3E:6F:94:25:52:6A:5B:E5:81:09:54:B7:4B:7D:B2:73:1E:16 Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 500F27C58C43A79125D521ED3CDED3F8E757C3C1 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa Signing time: Tue 02 Apr 2024 05:03:15 +0000 ROA not before: Tue 02 Apr 2024 04:58:15 +0000 ROA not after: Tue 01 Apr 2025 05:03:15 +0000 asID: 136841 IP address blocks: 103.100.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0f:27:c5:8c:43:a7:91:25:d5:21:ed:3c:de:d3:f8:e7:57:c3:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Apr 2 04:58:15 2024 GMT Not After : Apr 1 05:03:15 2025 GMT Subject: CN=E1C83E6F9425526A5BE5810954B74B7DB2731E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a2:86:a3:94:3d:36:35:c5:63:6d:df:fa:4a: fa:80:cb:0d:91:39:66:a7:bd:5d:34:ec:50:38:9d: c4:09:14:0f:77:f7:b9:cc:66:93:31:3a:e1:da:f8: 65:db:bf:27:83:aa:e3:6d:4e:47:08:9f:87:6d:09: de:11:f6:77:72:c8:ed:33:bd:77:d0:40:8b:3e:38: f2:3f:54:4e:b5:5f:cb:4a:1d:7e:ff:ea:54:17:aa: c2:bd:13:9c:e9:ef:91:67:1b:b7:d9:f4:80:16:f2: df:26:e1:51:28:cd:ba:82:fa:18:91:71:be:27:f3: 38:90:20:17:9e:b3:24:0c:97:4c:2b:96:e8:28:a3: 9c:25:2f:7a:1c:46:b2:ac:79:92:7b:71:3a:b2:e9: 8b:61:46:a9:32:66:cc:fc:bd:42:b6:af:38:de:f7: fc:db:67:ff:bf:e9:f6:a4:7a:98:5e:9e:d1:f5:95: 15:88:f3:ac:52:cb:c1:41:77:ab:37:2d:71:00:11: f3:e6:84:55:54:32:53:bc:88:14:c4:13:74:a2:d1: 21:09:c0:34:d0:28:45:b3:68:03:e9:ce:81:d5:53: 74:4b:04:ec:83:d7:06:1b:5e:83:b4:84:c7:30:b6: 19:93:bd:db:24:fe:b5:06:18:01:0c:6d:ad:a6:54: b4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C8:3E:6F:94:25:52:6A:5B:E5:81:09:54:B7:4B:7D:B2:73:1E:16 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.173.0/24 Signature Algorithm: sha256WithRSAEncryption 72:bd:58:6a:97:90:68:23:ad:cb:7c:6f:5d:71:bd:01:d8:e3: fd:50:d5:a8:fd:c2:87:5a:11:37:4c:0e:1e:b7:3e:a1:96:35: 6d:a5:ab:5a:04:44:c9:a3:01:f0:37:c0:10:6a:d5:f9:56:43: df:05:12:a1:a7:5d:b0:7a:32:ec:8a:1a:88:bb:98:43:57:3c: 00:fa:70:91:a4:f0:9e:f2:07:90:a3:9b:2b:a5:22:16:ba:50: 5d:76:a0:fd:7d:98:4c:25:70:f1:04:d6:dc:00:77:59:a7:b8: ab:5b:d7:75:5f:1e:08:cb:2e:19:bb:e5:2f:9c:a4:55:2e:b2: 87:a9:7b:0c:e0:09:28:5c:ef:03:ae:5c:c0:b9:6f:32:73:5b: c4:63:79:08:e5:33:c1:cd:fc:08:05:3c:30:2c:09:9e:93:cd: de:93:e2:f0:6a:51:53:25:5e:b5:d6:99:dc:51:99:45:de:f0: b8:46:f6:9e:63:b3:4c:23:da:70:7b:ff:d7:e8:15:1b:56:8e: 31:b5:f5:fb:3c:f6:12:0b:a7:a0:a8:9f:dc:58:01:27:db:10: 22:6f:cf:7a:a6:dd:d5:6f:1a:33:30:ac:98:9d:68:51:bc:15: f6:56:3b:bf:05:70:8c:08:cf:cf:e2:fd:36:b9:ed:c4:48:fa: 6b:5c:fe:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUA8nxYxDp5El1SHtPN7T+OdXw8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNDA0MDIwNDU4MTVaFw0yNTA0MDEwNTAzMTVaMDMxMTAvBgNV BAMTKEUxQzgzRTZGOTQyNTUyNkE1QkU1ODEwOTU0Qjc0QjdEQjI3MzFFMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmooajlD02NcVjbd/6SvqAyw2R OWanvV007FA4ncQJFA9397nMZpMxOuHa+GXbvyeDquNtTkcIn4dtCd4R9ndyyO0z vXfQQIs+OPI/VE61X8tKHX7/6lQXqsK9E5zp75FnG7fZ9IAW8t8m4VEozbqC+hiR cb4n8ziQIBeesyQMl0wrlugoo5wlL3ocRrKseZJ7cTqy6YthRqkyZsz8vUK2rzje 9/zbZ/+/6fakephentH1lRWI86xSy8FBd6s3LXEAEfPmhFVUMlO8iBTEE3Si0SEJ wDTQKEWzaAPpzoHVU3RLBOyD1wYbXoO0hMcwthmTvdsk/rUGGAEMba2mVLSrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4cg+b5QlUmpb5YEJVLdLfbJzHhYwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMxMzAzMzJlMzEzMDMwMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZK0wDQYJ KoZIhvcNAQELBQADggEBAHK9WGqXkGgjrct8b11xvQHY4/1Q1aj9wodaETdMDh63 PqGWNW2lq1oERMmjAfA3wBBq1flWQ98FEqGnXbB6MuyKGoi7mENXPAD6cJGk8J7y B5CjmyulIha6UF12oP19mEwlcPEE1twAd1mnuKtb13VfHgjLLhm75S+cpFUusoep ewzgCShc7wOuXMC5bzJzW8RjeQjlM8HN/AgFPDAsCZ6Tzd6T4vBqUVMlXrXWmdxR mUXe8LhG9p5js0wj2nB7/9foFRtWjjG19fs89hILp6Con9xYASfbECJvz3qm3dVv GjMwrJidaFG8FfZWO78FcIwIz8/i/Ta57cRI+mtc/jY= -----END CERTIFICATE-----Generated at Mon May 6 11:49:27 2024 by rpki-client on console-fra.rpki-client.org