$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa File: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: +nqofuvEbBfsZqlztZgscbdrDBEKeChRARKHZSmH79g= Subject key identifier: 51:09:24:2B:58:88:80:B9:1F:0F:59:65:BA:EA:45:13:BA:63:A6:9F Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70 Certificate serial: 1081A39D7597C3BE5C2896B34FE5990FD4E8333B Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa Signing time: Fri 05 Apr 2024 07:00:02 +0000 ROA not before: Fri 05 Apr 2024 06:55:02 +0000 ROA not after: Fri 04 Apr 2025 07:00:02 +0000 asID: 131111 IP address blocks: 103.83.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:81:a3:9d:75:97:c3:be:5c:28:96:b3:4f:e5:99:0f:d4:e8:33:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70 Validity Not Before: Apr 5 06:55:02 2024 GMT Not After : Apr 4 07:00:02 2025 GMT Subject: CN=5109242B588880B91F0F5965BAEA4513BA63A69F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:03:74:70:c1:4d:11:b0:47:93:09:d2:d3:82: 1c:d5:c0:98:22:93:26:0c:91:1a:4d:fd:25:89:e8: a4:85:a8:ca:c3:8c:d4:25:06:6b:e5:e0:2e:d9:b7: c7:18:4c:ce:ce:83:18:ee:32:77:7c:d9:f6:fe:52: 9d:1e:ba:1a:08:5b:29:07:96:95:fc:53:80:a3:c8: fb:2d:d1:79:44:3c:be:2b:d7:bd:ec:3b:71:94:77: fb:e2:02:ef:4b:a0:31:e7:e0:29:67:0f:13:f9:0a: 0a:f7:bf:01:4d:78:74:eb:d8:29:23:89:73:01:a2: 9e:c6:dc:7c:6f:b7:48:43:40:42:fe:a4:03:ec:b4: 92:64:37:82:89:8d:8d:1d:85:e8:2e:91:8c:41:bf: f5:e5:8e:23:f8:2e:98:36:45:ca:79:1e:73:33:b8: 78:5d:3e:8f:f9:d5:a1:51:35:29:68:c1:a7:b9:4d: 13:a5:04:ab:4d:f4:11:3f:90:b8:39:ee:1c:d0:63: ca:77:ec:14:06:ba:ad:53:40:40:f7:24:5a:c1:fe: fc:41:c3:34:2c:a4:2b:48:2d:62:53:64:98:02:92: 92:c2:d6:0a:bc:ed:ed:bd:d6:8e:38:34:4f:22:63: 22:5b:23:5f:6f:70:9d:9f:fe:b8:4c:78:a0:ec:76: 8b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:09:24:2B:58:88:80:B9:1F:0F:59:65:BA:EA:45:13:BA:63:A6:9F X509v3 Authority Key Identifier: keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.92.0/22 Signature Algorithm: sha256WithRSAEncryption 21:8a:bf:ee:dd:f0:ea:e0:e2:c1:a9:30:79:22:6a:cd:9e:20: 76:6e:dc:58:64:0c:5f:21:5b:33:dd:08:4e:fe:55:af:cd:f5: e8:63:15:9a:ad:1a:5f:4e:b4:c9:d9:c5:67:d1:61:73:13:8b: 92:14:40:50:36:7e:cc:c8:5e:a3:c3:fd:05:28:c0:16:be:8f: e6:16:27:7d:48:42:18:04:c0:d8:26:69:d4:69:eb:1d:3a:9d: 85:cb:c0:e6:7a:2e:88:33:57:9a:30:2a:09:2e:df:9b:6b:d3: cb:45:50:4b:6c:9e:6f:26:c9:54:0e:9c:ec:2e:28:56:bd:d2: ff:f2:3a:89:23:ed:8b:c4:a4:f8:fb:dc:f6:a2:7a:51:1e:3c: 2c:eb:c6:98:87:0a:14:c7:31:f8:28:c5:8c:35:c5:d7:dd:0f: 0b:bd:91:05:e5:07:9a:5f:a5:d2:50:5b:d7:18:c0:bb:69:9c: 7a:9f:90:c7:74:3b:ac:a6:d1:f6:06:38:63:c7:22:1c:6b:32: a6:65:cf:8d:9e:a7:25:b3:8c:87:92:b8:09:c5:1b:44:a9:b5: 24:f8:3e:bf:7b:9f:21:c7:54:29:8e:92:a6:19:db:c7:ff:d9: 61:c2:d6:b1:cc:7f:aa:19:31:7a:c6:7d:a1:e6:23:4b:bd:48: db:da:73:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEIGjnXWXw75cKJazT+WZD9ToMzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NC MjM5QkU3MDAeFw0yNDA0MDUwNjU1MDJaFw0yNTA0MDQwNzAwMDJaMDMxMTAvBgNV BAMTKDUxMDkyNDJCNTg4ODgwQjkxRjBGNTk2NUJBRUE0NTEzQkE2M0E2OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpA3RwwU0RsEeTCdLTghzVwJgi kyYMkRpN/SWJ6KSFqMrDjNQlBmvl4C7Zt8cYTM7OgxjuMnd82fb+Up0euhoIWykH lpX8U4CjyPst0XlEPL4r173sO3GUd/viAu9LoDHn4ClnDxP5Cgr3vwFNeHTr2Ckj iXMBop7G3Hxvt0hDQEL+pAPstJJkN4KJjY0dhegukYxBv/XljiP4Lpg2Rcp5HnMz uHhdPo/51aFRNSlowae5TROlBKtN9BE/kLg57hzQY8p37BQGuq1TQED3JFrB/vxB wzQspCtILWJTZJgCkpLC1gq87e291o44NE8iYyJbI19vcJ2f/rhMeKDsdoudAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUQkkK1iIgLkfD1lluupFE7pjpp8wHwYDVR0j BBgwFoAUPKgl6T/ogwN27zhnhr+EfLI5vnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OGI4YzFiNS0zYmU4LTRhYTctYTRjNi0yMWJjYzhmM2ZhNDAvMC8zQ0E4MjVFOTNG RTg4MzAzNzZFRjM4Njc4NkJGODQ3Q0IyMzlCRTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NCMjM5 QkU3MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA4YjhjMWI1LTNiZTgtNGFhNy1h NGM2LTIxYmNjOGYzZmE0MC8wLzMxMzAzMzJlMzgzMzJlMzkzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMTMxMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdTXDANBgkqhkiG 9w0BAQsFAAOCAQEAIYq/7t3w6uDiwakweSJqzZ4gdm7cWGQMXyFbM90ITv5Vr831 6GMVmq0aX060ydnFZ9FhcxOLkhRAUDZ+zMheo8P9BSjAFr6P5hYnfUhCGATA2CZp 1GnrHTqdhcvA5nouiDNXmjAqCS7fm2vTy0VQS2yebybJVA6c7C4oVr3S//I6iSPt i8Sk+Pvc9qJ6UR48LOvGmIcKFMcx+CjFjDXF190PC72RBeUHml+l0lBb1xjAu2mc ep+Qx3Q7rKbR9gY4Y8ciHGsypmXPjZ6nJbOMh5K4CcUbRKm1JPg+v3ufIcdUKY6S phnbx//ZYcLWscx/qhkxesZ9oeYjS71I29pzbw== -----END CERTIFICATE-----Generated at Thu Apr 25 02:04:43 2024 by rpki-client on console-fra.rpki-client.org