$ rpki-client -vvf repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa File: 3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: qN7vV3gf9Qe9/PJ9kUIe8/LfwTJoSqqVaheQyXiy9KA= Subject key identifier: 04:F9:86:E5:1A:47:17:D5:99:7F:E0:29:77:92:D8:3C:2C:33:01:6A Certificate issuer: /CN=F9B3A4FD209FB6DF8BDC168B15C872083A3495A2 Certificate serial: 6295E5D49CF4B0B9117EAD55BB0A3A391D7F867B Authority key identifier: F9:B3:A4:FD:20:9F:B6:DF:8B:DC:16:8B:15:C8:72:08:3A:34:95:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa Signing time: Sun 04 Feb 2024 06:00:00 +0000 ROA not before: Sun 04 Feb 2024 05:55:00 +0000 ROA not after: Sun 02 Feb 2025 06:00:00 +0000 asID: 58369 IP address blocks: 103.106.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.crl rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:95:e5:d4:9c:f4:b0:b9:11:7e:ad:55:bb:0a:3a:39:1d:7f:86:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9B3A4FD209FB6DF8BDC168B15C872083A3495A2 Validity Not Before: Feb 4 05:55:00 2024 GMT Not After : Feb 2 06:00:00 2025 GMT Subject: CN=04F986E51A4717D5997FE0297792D83C2C33016A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:0d:c6:35:b6:c4:a9:9b:9c:92:6c:37:15: 2a:84:98:38:92:37:9e:4c:5b:dd:1a:f4:d0:40:fb: 2c:7d:7b:55:db:bf:ee:83:6f:46:1f:60:4e:f0:52: 1b:f6:4e:01:0a:7a:6a:0c:15:d0:f8:4f:c6:59:d2: c1:1c:25:f0:c9:0f:74:e6:52:27:21:cf:96:cc:cf: 7d:72:b6:b3:25:1c:9a:ce:f0:e8:7d:ea:ec:e7:05: e8:1e:26:80:c9:fa:b4:bc:99:6b:da:82:d5:14:d1: f2:ce:75:ca:92:62:b6:b2:29:ce:83:bb:a7:bd:33: f7:c3:b3:01:8f:43:98:9b:3f:a9:95:53:d1:a3:ef: 26:2e:19:d3:24:5a:b3:99:cc:79:36:8a:69:a1:d0: bc:7d:5f:31:aa:d4:d2:b7:02:9d:5a:0a:e9:ef:e6: b4:09:48:cd:98:01:8d:07:4e:6e:53:be:74:f1:13: fc:42:f8:bc:0e:d7:9a:8e:5d:98:6d:44:2c:5a:84: 3f:d8:86:f2:a9:06:cc:1b:cc:ff:7b:d8:f4:6d:ff: ec:4f:4d:77:76:b0:19:88:59:ac:1b:28:c8:5a:5e: 4f:f0:c1:54:91:7c:22:46:b7:c0:bc:8e:07:05:71: 91:d0:79:34:27:48:6a:24:e9:5c:b1:f3:6a:3c:17: b4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:F9:86:E5:1A:47:17:D5:99:7F:E0:29:77:92:D8:3C:2C:33:01:6A X509v3 Authority Key Identifier: keyid:F9:B3:A4:FD:20:9F:B6:DF:8B:DC:16:8B:15:C8:72:08:3A:34:95:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.145.0/24 Signature Algorithm: sha256WithRSAEncryption 74:ce:58:31:ae:32:ec:02:15:14:e0:25:16:23:44:a9:b3:a4: cf:a6:13:60:d8:19:23:b7:4c:36:ef:6e:06:d6:d5:87:88:fd: b6:9c:15:d7:ee:17:73:87:90:03:03:7b:df:e0:42:ba:03:f4: f5:50:5f:d0:7d:6e:8b:2c:33:0a:30:52:2e:85:42:22:1f:ee: 3f:a0:ba:18:25:e7:73:d6:f1:0d:46:7b:26:38:af:b1:13:e0: ec:2d:d6:4a:69:38:2a:78:21:54:fb:b9:ed:06:03:e0:23:9c: 73:05:c8:06:3a:c3:cd:23:13:17:95:cf:95:6a:5d:0c:d1:ea: b8:2d:3a:17:f6:28:f4:af:96:a0:a3:dc:c3:9e:a9:c1:3b:34: b2:07:32:86:4e:33:9a:c4:45:5e:bd:4b:e8:6d:43:21:db:b3: 59:b6:ed:f6:b3:7d:3e:b8:9a:86:a8:fb:bc:0a:8a:0e:ea:77: 1e:b6:b0:ca:4f:8c:3e:75:2a:cf:8a:95:b9:93:8c:a0:b4:03: 47:12:fb:fd:5b:83:b7:c1:74:fd:a0:34:06:bb:e9:9a:78:88: 2c:bc:99:cc:21:5b:cb:5c:3c:9b:c3:d1:eb:5f:b4:a4:8e:aa: 0e:51:ac:fa:bf:3f:a3:fd:d1:8d:cc:2e:4a:06:de:c4:49:eb: 9e:27:14:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYpXl1Jz0sLkRfq1Vuwo6OR1/hnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlCM0E0RkQyMDlGQjZERjhCREMxNjhCMTVDODcyMDgz QTM0OTVBMjAeFw0yNDAyMDQwNTU1MDBaFw0yNTAyMDIwNjAwMDBaMDMxMTAvBgNV BAMTKDA0Rjk4NkU1MUE0NzE3RDU5OTdGRTAyOTc3OTJEODNDMkMzMzAxNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzIw3GNbbEqZuckmw3FSqEmDiS N55MW90a9NBA+yx9e1Xbv+6Db0YfYE7wUhv2TgEKemoMFdD4T8ZZ0sEcJfDJD3Tm Uichz5bMz31ytrMlHJrO8Oh96uznBegeJoDJ+rS8mWvagtUU0fLOdcqSYrayKc6D u6e9M/fDswGPQ5ibP6mVU9Gj7yYuGdMkWrOZzHk2immh0Lx9XzGq1NK3Ap1aCunv 5rQJSM2YAY0HTm5TvnTxE/xC+LwO15qOXZhtRCxahD/YhvKpBswbzP972PRt/+xP TXd2sBmIWawbKMhaXk/wwVSRfCJGt8C8jgcFcZHQeTQnSGok6Vyx82o8F7QLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBPmG5RpHF9WZf+Apd5LYPCwzAWowHwYDVR0j BBgwFoAU+bOk/SCftt+L3BaLFchyCDo0laIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTc5MWI3My1iYjA4LTRhODMtYTE5Ny1iNjM2MGYxZDQ3ZGUvMC9GOUIzQTRGRDIw OUZCNkRGOEJEQzE2OEIxNUM4NzIwODNBMzQ5NUEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjlCM0E0RkQyMDlGQjZERjhCREMxNjhCMTVDODcyMDgzQTM0 OTVBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExNzkxYjczLWJiMDgtNGE4My1h MTk3LWI2MzYwZjFkNDdkZS8wLzMxMzAzMzJlMzEzMDM2MmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2qRMA0GCSqG SIb3DQEBCwUAA4IBAQB0zlgxrjLsAhUU4CUWI0Sps6TPphNg2Bkjt0w2724G1tWH iP22nBXX7hdzh5ADA3vf4EK6A/T1UF/QfW6LLDMKMFIuhUIiH+4/oLoYJedz1vEN RnsmOK+xE+DsLdZKaTgqeCFU+7ntBgPgI5xzBcgGOsPNIxMXlc+Val0M0eq4LToX 9ij0r5ago9zDnqnBOzSyBzKGTjOaxEVevUvobUMh27NZtu32s30+uJqGqPu8CooO 6ncetrDKT4w+dSrPipW5k4ygtANHEvv9W4O3wXT9oDQGu+maeIgsvJnMIVvLXDyb w9HrX7SkjqoOUaz6vz+j/dGNzC5KBt7ESeueJxRg -----END CERTIFICATE-----Generated at Wed May 1 07:05:33 2024 by rpki-client on console-fra.rpki-client.org