$ rpki-client -vvf repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/3130332e3232302e3131342e302f32332d3234203d3e20313335343436.roa File: 3130332e3232302e3131342e302f32332d3234203d3e20313335343436.roa (raw, json) Hash identifier: iRqVSl2Np0pRJ2v03VErnX/mKTBd3mcgct+cs6ehkv0= Subject key identifier: 8C:BB:9D:14:1C:A9:20:2C:1A:1C:26:6F:14:47:7F:E6:F4:7B:EE:AA Certificate issuer: /CN=1072AD17A8EDB1513AED95A258088F480ADA492B Certificate serial: 75F7318CC820D25C4E3F9E8D9FEE48B44121A537 Authority key identifier: 10:72:AD:17:A8:ED:B1:51:3A:ED:95:A2:58:08:8F:48:0A:DA:49:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1072AD17A8EDB1513AED95A258088F480ADA492B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/3130332e3232302e3131342e302f32332d3234203d3e20313335343436.roa Signing time: Fri 02 Feb 2024 03:00:00 +0000 ROA not before: Fri 02 Feb 2024 02:55:00 +0000 ROA not after: Fri 31 Jan 2025 03:00:00 +0000 asID: 135446 IP address blocks: 103.220.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/1072AD17A8EDB1513AED95A258088F480ADA492B.crl rsync://repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/1072AD17A8EDB1513AED95A258088F480ADA492B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1072AD17A8EDB1513AED95A258088F480ADA492B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f7:31:8c:c8:20:d2:5c:4e:3f:9e:8d:9f:ee:48:b4:41:21:a5:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1072AD17A8EDB1513AED95A258088F480ADA492B Validity Not Before: Feb 2 02:55:00 2024 GMT Not After : Jan 31 03:00:00 2025 GMT Subject: CN=8CBB9D141CA9202C1A1C266F14477FE6F47BEEAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a0:2c:f8:9f:13:f6:f1:43:59:06:b1:6e:b9: 15:6c:a6:66:0e:78:9b:9f:81:7f:9e:6f:98:ff:a6: 12:22:b9:2c:7d:31:8d:0b:d7:b9:cb:25:46:cd:1b: 2d:ea:47:ce:d3:8d:6c:e6:f7:d1:07:4b:9d:51:04: e9:a9:37:9f:0f:b6:61:19:ca:28:47:b9:8d:83:dc: 58:97:fb:1a:0c:7b:bc:f4:52:01:35:cc:fc:82:53: 50:ca:a2:8b:7e:d7:77:5b:5c:62:b9:c4:fe:51:14: 68:21:eb:9b:ac:96:bd:62:5a:54:59:5c:a2:bd:e9: 4a:9f:a7:a3:70:9a:c4:e1:60:0d:8a:aa:87:99:97: 93:ce:78:21:05:80:e5:ca:41:11:84:5e:fc:59:42: a2:1f:b3:7e:d7:c7:e3:fd:02:9d:bc:c8:6a:61:5f: 99:97:a8:7f:90:e0:3c:95:5a:a2:7a:92:0e:f3:99: 17:09:4a:c1:3a:34:43:7f:a7:3f:a6:3f:b4:6b:5c: b6:bb:77:8e:21:75:7b:65:6e:5b:f0:85:70:07:2c: 09:31:4d:25:bb:aa:b0:f8:f9:7d:9b:bb:e8:f1:4a: 70:65:c7:25:fb:88:84:b2:c1:16:52:eb:89:ae:a4: fc:e2:4f:b8:ce:cc:ff:c5:12:c9:2c:7d:9a:7d:28: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BB:9D:14:1C:A9:20:2C:1A:1C:26:6F:14:47:7F:E6:F4:7B:EE:AA X509v3 Authority Key Identifier: keyid:10:72:AD:17:A8:ED:B1:51:3A:ED:95:A2:58:08:8F:48:0A:DA:49:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/1072AD17A8EDB1513AED95A258088F480ADA492B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1072AD17A8EDB1513AED95A258088F480ADA492B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/154b9d32-3c5a-40e2-b788-069de0c3d2de/0/3130332e3232302e3131342e302f32332d3234203d3e20313335343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.114.0/23 Signature Algorithm: sha256WithRSAEncryption 02:f9:11:8b:71:ff:da:e0:b6:d2:dc:4d:5e:31:67:49:81:1e: f2:69:aa:b8:2a:54:a7:23:bb:fc:8e:5a:b6:f3:cb:4a:5d:73: 2b:8d:1c:3f:ef:8e:7d:f5:ae:66:8c:f7:5e:96:47:88:0e:8e: 3c:3a:d1:e9:3c:eb:d7:cb:78:d0:e5:ab:c0:77:85:b5:70:f9: ee:bc:d5:f4:c6:58:f9:a9:fb:0f:e1:9c:7d:0f:13:13:fe:d6: bd:b1:59:e1:c0:9c:45:6b:1c:72:cc:cf:01:ff:98:58:85:cd: a4:38:9b:29:db:3b:7c:1d:18:14:bf:11:14:20:f1:33:3f:b2: 73:21:27:a5:51:02:58:5d:92:ae:0c:eb:20:d4:7b:97:d1:8d: aa:23:ba:df:a8:97:f8:3f:a3:ed:9a:63:98:ad:06:eb:d4:81: 8c:be:d1:a7:40:ce:c3:f2:d8:d8:e2:b5:c6:c4:0b:61:6e:c9: 51:92:f4:ad:f8:55:3f:9c:00:86:e2:f4:0d:e1:96:59:b4:b6: 80:33:e6:23:93:b3:c6:82:31:38:47:b3:8a:b4:41:a7:bc:b4: 5f:79:29:24:3f:62:0a:dc:65:b4:04:74:ef:94:c0:76:21:f3: 3b:96:48:79:f4:47:18:6f:b3:f6:9e:88:03:3b:f3:2e:00:88: 15:94:e1:26 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdfcxjMgg0lxOP56Nn+5ItEEhpTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA3MkFEMTdBOEVEQjE1MTNBRUQ5NUEyNTgwODhGNDgw QURBNDkyQjAeFw0yNDAyMDIwMjU1MDBaFw0yNTAxMzEwMzAwMDBaMDMxMTAvBgNV BAMTKDhDQkI5RDE0MUNBOTIwMkMxQTFDMjY2RjE0NDc3RkU2RjQ3QkVFQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcoCz4nxP28UNZBrFuuRVspmYO eJufgX+eb5j/phIiuSx9MY0L17nLJUbNGy3qR87TjWzm99EHS51RBOmpN58PtmEZ yihHuY2D3FiX+xoMe7z0UgE1zPyCU1DKoot+13dbXGK5xP5RFGgh65uslr1iWlRZ XKK96Uqfp6NwmsThYA2KqoeZl5POeCEFgOXKQRGEXvxZQqIfs37Xx+P9Ap28yGph X5mXqH+Q4DyVWqJ6kg7zmRcJSsE6NEN/pz+mP7RrXLa7d44hdXtlblvwhXAHLAkx TSW7qrD4+X2bu+jxSnBlxyX7iISywRZS64mupPziT7jOzP/FEsksfZp9KC9hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjLudFBypICwaHCZvFEd/5vR77qowHwYDVR0j BBgwFoAUEHKtF6jtsVE67ZWiWAiPSAraSSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTRiOWQzMi0zYzVhLTQwZTItYjc4OC0wNjlkZTBjM2QyZGUvMC8xMDcyQUQxN0E4 RURCMTUxM0FFRDk1QTI1ODA4OEY0ODBBREE0OTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA3MkFEMTdBOEVEQjE1MTNBRUQ5NUEyNTgwODhGNDgwQURB NDkyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1NGI5ZDMyLTNjNWEtNDBlMi1i Nzg4LTA2OWRlMGMzZDJkZS8wLzMxMzAzMzJlMzIzMjMwMmUzMTMxMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn3HIwDQYJ KoZIhvcNAQELBQADggEBAAL5EYtx/9rgttLcTV4xZ0mBHvJpqrgqVKcju/yOWrbz y0pdcyuNHD/vjn31rmaM916WR4gOjjw60ek869fLeNDlq8B3hbVw+e681fTGWPmp +w/hnH0PExP+1r2xWeHAnEVrHHLMzwH/mFiFzaQ4mynbO3wdGBS/ERQg8TM/snMh J6VRAlhdkq4M6yDUe5fRjaojut+ol/g/o+2aY5itBuvUgYy+0adAzsPy2NjitcbE C2FuyVGS9K34VT+cAIbi9A3hllm0toAz5iOTs8aCMThHs4q0Qae8tF95KSQ/Ygrc ZbQEdO+UwHYh8zuWSHn0Rxhvs/aeiAM78y4AiBWU4SY= -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:25 2024 by rpki-client on console-fra.rpki-client.org