$ rpki-client -vvf repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa File: 3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa (raw, json) Hash identifier: XyA+n/p4csgsSTHb7sWv8F6+YZDe23ZvExtJYjNdYx4= Subject key identifier: 47:1F:63:09:49:58:07:AC:44:0B:08:A5:21:A9:EB:20:AB:30:EB:D9 Certificate issuer: /CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Certificate serial: 1EEC3F03C472CE5C4662E2B1E2DCC4F604EC45D4 Authority key identifier: E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa Signing time: Tue 12 Sep 2023 14:00:01 +0000 ROA not before: Tue 12 Sep 2023 13:55:01 +0000 ROA not after: Tue 10 Sep 2024 14:00:01 +0000 asID: 139367 IP address blocks: 103.141.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 12:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ec:3f:03:c4:72:ce:5c:46:62:e2:b1:e2:dc:c4:f6:04:ec:45:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Validity Not Before: Sep 12 13:55:01 2023 GMT Not After : Sep 10 14:00:01 2024 GMT Subject: CN=471F6309495807AC440B08A521A9EB20AB30EBD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f3:80:7b:27:bd:39:09:b7:3f:1e:49:53:b8: 0e:a6:81:b0:0e:ac:d2:ca:c2:60:36:f9:dd:2c:fb: 3e:f6:96:58:1d:3a:7e:ee:d1:86:6a:62:bc:cc:29: a3:1d:ee:5b:4c:4c:b3:8f:c4:be:92:89:2f:27:13: 13:26:ee:56:ca:8b:e6:16:f0:de:1f:a5:14:66:aa: 42:85:dd:d0:0f:a6:94:29:f1:05:fe:49:b9:56:39: ec:e2:8f:68:a7:50:e8:20:90:e9:04:a2:14:c1:5e: 9c:fd:26:23:88:fd:3d:52:df:6c:26:96:be:5a:01: 7f:43:ad:4a:91:32:fa:ff:40:5e:37:5f:6d:48:1b: ee:be:ad:e2:d0:a6:b9:fc:55:b7:7b:a3:1f:58:87: 15:46:78:88:81:3f:c8:f8:9e:5c:34:6f:cf:e2:6a: 67:41:85:6b:f4:16:be:ea:0d:48:b2:6c:29:32:ea: 61:c7:a7:5b:7c:17:fc:2f:63:16:94:81:7b:8d:6b: 11:be:9c:c2:04:76:33:29:22:7d:65:29:73:99:25: 1d:ec:d1:97:02:1c:d3:18:3d:9a:f9:66:cf:94:16: 57:a8:3a:a4:00:4d:f9:d4:4e:a1:21:97:48:6b:69: e9:6e:98:4d:48:98:60:52:a4:63:af:ff:d7:a0:c1: 79:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:1F:63:09:49:58:07:AC:44:0B:08:A5:21:A9:EB:20:AB:30:EB:D9 X509v3 Authority Key Identifier: keyid:E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.238.0/23 Signature Algorithm: sha256WithRSAEncryption a9:67:26:a7:bd:b5:42:a1:81:f3:d8:5e:36:aa:81:4f:7d:28: f9:6a:62:b3:b7:ef:fa:2a:82:c9:8b:c9:fd:c5:82:cd:77:07: e4:7f:3e:c8:7c:9a:48:88:6b:f5:21:9d:5a:76:bc:78:3a:2d: 4c:9b:1b:94:fd:2a:ac:bf:ed:91:d0:7c:93:bf:58:56:1b:dd: c2:bc:26:79:42:f1:88:5d:ec:d2:bc:8c:9a:1f:97:4c:47:9e: f7:e5:b0:19:a6:5f:11:a9:e3:f7:d2:dd:5b:2a:16:03:1b:8b: 49:63:a7:35:0f:e9:bb:fd:0e:2b:e9:59:f0:48:bf:9b:0c:64: 5b:f0:90:ab:36:41:12:7e:a3:1d:17:19:e7:20:47:00:ac:39: 6f:74:37:2b:1d:dc:4e:c9:22:1e:f2:e4:93:d2:09:c7:2d:d2: 34:78:cb:18:af:a6:60:f7:0d:fe:09:9e:74:02:5c:d8:10:f3: bf:0e:24:74:a2:28:d1:ac:25:a4:6b:74:9e:1f:6f:53:36:fe: bd:f0:2c:8c:6e:d6:62:5e:37:a7:7b:b3:63:a3:86:2b:61:c6: 60:15:d8:6e:db:bf:c5:74:10:d7:2c:ca:ae:6e:bf:e9:ba:7e: 33:04:c6:85:ed:41:13:ed:d3:81:5f:8c:df:e6:66:62:6a:79: 1b:ea:84:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHuw/A8RyzlxGYuKx4tzE9gTsRdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3 OEE1Qzk1MTAeFw0yMzA5MTIxMzU1MDFaFw0yNDA5MTAxNDAwMDFaMDMxMTAvBgNV BAMTKDQ3MUY2MzA5NDk1ODA3QUM0NDBCMDhBNTIxQTlFQjIwQUIzMEVCRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv84B7J705Cbc/HklTuA6mgbAO rNLKwmA2+d0s+z72llgdOn7u0YZqYrzMKaMd7ltMTLOPxL6SiS8nExMm7lbKi+YW 8N4fpRRmqkKF3dAPppQp8QX+SblWOezij2inUOggkOkEohTBXpz9JiOI/T1S32wm lr5aAX9DrUqRMvr/QF43X21IG+6+reLQprn8Vbd7ox9YhxVGeIiBP8j4nlw0b8/i amdBhWv0Fr7qDUiybCky6mHHp1t8F/wvYxaUgXuNaxG+nMIEdjMpIn1lKXOZJR3s 0ZcCHNMYPZr5Zs+UFleoOqQATfnUTqEhl0hraelumE1ImGBSpGOv/9egwXl3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURx9jCUlYB6xECwilIanrIKsw69kwHwYDVR0j BBgwFoAU59kee4QdsnTnfoIwhDEvi3ilyVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTcwODNhYi0yNzBhLTRiMGEtOGU1NS1hNDVlMWNmMWFmZDUvMC9FN0Q5MUU3Qjg0 MURCMjc0RTc3RTgyMzA4NDMxMkY4Qjc4QTVDOTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3OEE1 Qzk1MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMxMzAzMzJlMzEzNDMxMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnje4wDQYJ KoZIhvcNAQELBQADggEBAKlnJqe9tUKhgfPYXjaqgU99KPlqYrO37/oqgsmLyf3F gs13B+R/Psh8mkiIa/UhnVp2vHg6LUybG5T9Kqy/7ZHQfJO/WFYb3cK8JnlC8Yhd 7NK8jJofl0xHnvflsBmmXxGp4/fS3VsqFgMbi0ljpzUP6bv9DivpWfBIv5sMZFvw kKs2QRJ+ox0XGecgRwCsOW90Nysd3E7JIh7y5JPSCcct0jR4yxivpmD3Df4JnnQC XNgQ878OJHSiKNGsJaRrdJ4fb1M2/r3wLIxu1mJeN6d7s2OjhithxmAV2G7bv8V0 ENcsyq5uv+m6fjMExoXtQRPt04FfjN/mZmJqeRvqhKk= -----END CERTIFICATE-----Generated at Thu May 2 11:32:08 2024 by rpki-client on console-fra.rpki-client.org