$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa File: 3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa (raw, json) Hash identifier: 78GGPuf+S6gFyKgc6GuKnv2CCXTgzUK461Yw3NQvWHY= Subject key identifier: 3C:3F:5B:E6:A5:E9:EB:E1:83:1B:0E:60:86:71:BF:2B:AB:DA:7B:66 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 30FB8C9C691612DE2929497A7F852AB6E2D7487E Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa Signing time: Sat 10 Feb 2024 07:00:00 +0000 ROA not before: Sat 10 Feb 2024 06:55:00 +0000 ROA not after: Sat 08 Feb 2025 07:00:00 +0000 asID: 56242 IP address blocks: 103.228.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fb:8c:9c:69:16:12:de:29:29:49:7a:7f:85:2a:b6:e2:d7:48:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 06:55:00 2024 GMT Not After : Feb 8 07:00:00 2025 GMT Subject: CN=3C3F5BE6A5E9EBE1831B0E608671BF2BABDA7B66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:25:51:13:bf:3c:98:9a:9f:73:0d:bc:0a:ce: bc:9b:12:ec:8a:41:56:c4:c4:f3:00:44:8f:47:a5: 53:ae:1e:1f:df:b9:28:6a:23:fc:37:e1:63:86:10: b1:1a:ee:73:a5:b9:94:16:95:a7:86:a1:f1:47:40: e1:59:57:75:88:82:5c:d0:f8:61:a2:14:4b:6d:cb: 05:6d:a1:b2:95:43:24:24:ca:8e:e5:19:13:45:04: f2:1a:73:b1:e1:1c:4c:7e:2a:c6:a3:45:ce:48:d8: 55:99:ee:e5:8b:6c:a1:1e:1c:b1:3a:9b:c5:ef:65: dd:df:0e:d1:5d:6b:e4:41:f4:8c:77:60:5a:c4:46: e1:dd:09:fd:5a:5e:c3:28:5d:de:6a:89:ba:56:23: d3:70:ab:68:e0:3c:38:0c:82:dc:09:31:79:fb:4b: c7:aa:bc:3a:0b:4b:bc:ec:00:35:25:53:23:76:e7: 7f:02:e5:9f:91:57:2b:df:02:49:ed:ef:74:5a:fd: bc:7b:43:eb:d1:bd:6c:be:6b:46:e8:66:89:55:53: 34:9a:72:36:6f:77:65:23:be:b8:01:8e:56:44:58: ff:af:c4:3f:4c:e9:d3:7b:11:82:6b:86:9c:53:65: 90:54:f3:b8:80:15:4e:a3:c6:0c:0d:f5:1e:2c:a4: 43:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3F:5B:E6:A5:E9:EB:E1:83:1B:0E:60:86:71:BF:2B:AB:DA:7B:66 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/23 Signature Algorithm: sha256WithRSAEncryption a6:ff:95:8c:0a:b4:d3:03:e6:38:68:7e:d1:31:83:6b:f3:ad: 3d:06:a8:6b:bc:9d:0d:54:9c:6a:10:51:35:3a:90:63:0a:2d: a9:f9:1a:eb:24:92:15:0f:4f:04:a1:04:4f:f0:06:aa:a1:8d: fb:c2:e0:42:29:2f:1a:8c:71:39:9f:b2:bf:8d:8d:20:ea:4a: a4:a6:4c:f5:99:65:f0:98:6c:65:06:c4:f6:76:b7:ec:c7:77: 37:65:94:e5:70:03:d8:7a:f6:e3:57:29:72:f7:eb:7c:21:bc: 38:b4:54:d0:de:c0:f5:ab:31:06:f6:a4:07:53:95:ea:4e:b9: 0d:63:e9:66:9d:ac:92:67:e8:90:2f:f9:c9:40:b4:c4:09:3e: 96:d7:d1:7c:11:c6:cd:bc:a8:da:d7:2c:9a:d3:73:84:b0:7e: 89:8d:79:ba:9a:f6:9c:84:db:57:b3:75:4d:68:ff:de:06:3e: ae:67:29:3a:28:6a:5b:ea:34:b6:ba:92:c4:4c:89:e2:67:a4: c5:10:20:ad:00:6b:af:1e:d7:d1:2b:d2:7c:e6:b4:33:d8:e9: 00:78:1d:10:64:12:71:18:d2:5a:22:7e:79:56:18:35:42:58: 65:53:d2:f4:8b:ff:99:b0:9a:92:cb:23:67:48:eb:25:ca:0c: ad:5a:56:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMPuMnGkWEt4pKUl6f4UqtuLXSH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNjU1MDBaFw0yNTAyMDgwNzAwMDBaMDMxMTAvBgNV BAMTKDNDM0Y1QkU2QTVFOUVCRTE4MzFCMEU2MDg2NzFCRjJCQUJEQTdCNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXJVETvzyYmp9zDbwKzrybEuyK QVbExPMARI9HpVOuHh/fuShqI/w34WOGELEa7nOluZQWlaeGofFHQOFZV3WIglzQ +GGiFEttywVtobKVQyQkyo7lGRNFBPIac7HhHEx+KsajRc5I2FWZ7uWLbKEeHLE6 m8XvZd3fDtFda+RB9Ix3YFrERuHdCf1aXsMoXd5qibpWI9Nwq2jgPDgMgtwJMXn7 S8eqvDoLS7zsADUlUyN2538C5Z+RVyvfAknt73Ra/bx7Q+vRvWy+a0boZolVUzSa cjZvd2UjvrgBjlZEWP+vxD9M6dN7EYJrhpxTZZBU87iAFU6jxgwN9R4spEP/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPD9b5qXp6+GDGw5ghnG/K6vae2YwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQCm/5WMCrTTA+Y4aH7RMYNr8609BqhrvJ0NVJxqEFE1OpBj Ci2p+RrrJJIVD08EoQRP8AaqoY37wuBCKS8ajHE5n7K/jY0g6kqkpkz1mWXwmGxl BsT2drfsx3c3ZZTlcAPYevbjVyly9+t8Ibw4tFTQ3sD1qzEG9qQHU5XqTrkNY+lm naySZ+iQL/nJQLTECT6W19F8EcbNvKja1yya03OEsH6JjXm6mvachNtXs3VNaP/e Bj6uZyk6KGpb6jS2upLETIniZ6TFECCtAGuvHtfRK9J85rQz2OkAeB0QZBJxGNJa In55Vhg1QlhlU9L0i/+ZsJqSyyNnSOslygytWlZK -----END CERTIFICATE-----Generated at Wed May 1 01:36:44 2024 by rpki-client on console-ams.rpki-client.org