$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa File: 3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa (raw, json) Hash identifier: 5cYm0PP3mzEYx1CfNTKQtPrqsRfYJCAa52EUZfYGoXE= Subject key identifier: 0B:6F:D1:80:C5:B9:C4:15:A5:36:8B:E3:FC:33:73:6C:E4:1B:D8:A7 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 569BB4A2F86DD3E818F225C20D41D15355E51DDA Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa Signing time: Sat 10 Feb 2024 08:00:00 +0000 ROA not before: Sat 10 Feb 2024 07:55:00 +0000 ROA not after: Sat 08 Feb 2025 08:00:00 +0000 asID: 56242 IP address blocks: 103.228.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9b:b4:a2:f8:6d:d3:e8:18:f2:25:c2:0d:41:d1:53:55:e5:1d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 07:55:00 2024 GMT Not After : Feb 8 08:00:00 2025 GMT Subject: CN=0B6FD180C5B9C415A5368BE3FC33736CE41BD8A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:72:89:f7:47:1a:7e:7f:1d:0b:8f:09:c8:6a: 94:0f:77:14:05:90:d3:9a:82:41:8e:79:44:55:9a: 4c:a2:44:ec:6e:fc:a0:6e:64:70:2e:ee:d9:f8:a5: ce:6d:53:aa:e9:78:d0:69:94:15:ab:06:56:19:ae: a3:32:bf:3e:1c:dc:7f:38:b6:a3:3d:b8:6d:b1:ee: 1a:03:df:2c:1a:ec:3d:ee:f7:ce:a4:51:78:dd:c9: d7:d8:f1:43:70:c8:c0:c7:44:3f:c8:75:b3:a1:2b: 3c:db:db:a3:80:a1:f1:ad:05:6c:1e:bd:4b:74:09: 05:28:8e:36:40:82:14:46:bd:39:d3:5c:75:db:a3: 55:80:f0:f5:6c:f7:29:ce:f4:40:12:61:25:4f:44: 49:56:f6:1a:88:99:00:fb:fb:fb:54:42:01:7c:11: 48:50:22:fb:24:46:18:d5:f4:74:f9:fb:52:3c:4d: c4:af:1c:fa:52:34:81:72:81:9b:b5:50:20:65:07: ab:d2:6f:6d:59:b2:33:3c:2e:b8:39:71:23:7d:a0: 1a:8e:0a:c4:5b:31:0d:7e:6d:9a:16:4e:08:6e:22: db:2b:b1:9e:28:e5:6d:64:40:ff:42:a5:4e:a9:d5: 28:89:dd:d0:a1:38:60:c4:cd:87:1d:ef:f6:4d:36: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6F:D1:80:C5:B9:C4:15:A5:36:8B:E3:FC:33:73:6C:E4:1B:D8:A7 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.118.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:81:d1:4b:62:be:a3:93:98:74:f0:4c:61:6f:90:8c:64:31: ec:b4:b4:c6:3c:29:c9:ef:33:1a:d6:27:16:73:5d:21:83:f5: ca:79:63:e3:65:cb:db:26:0f:92:6d:c6:92:64:32:37:56:f2: 98:8b:70:d0:3b:bb:96:cc:6d:3c:4f:81:c9:61:b0:95:44:ff: 19:42:ef:58:99:9e:63:99:f3:d0:cc:96:e5:df:07:20:31:40: a7:78:d2:21:c2:43:51:25:69:aa:bf:a8:48:13:3b:6f:0d:71: d7:ce:91:97:93:63:af:bf:b2:c6:9d:81:a2:3f:04:7f:bf:ab: 75:90:47:34:01:f8:49:a4:59:43:bc:cd:7a:cc:82:65:8f:67: 1e:4f:4a:1d:a1:ec:80:95:87:b2:cb:3b:85:65:5b:ec:3b:85: 50:27:e6:23:c6:4a:c2:a5:95:f1:e5:52:fa:2f:ca:8c:48:7f: 94:f8:05:e2:b7:50:0c:ab:a9:44:65:07:f4:aa:01:43:6b:28: 31:97:df:7d:06:e0:01:d9:d3:4c:b6:02:09:29:03:92:aa:c9: 4e:ab:ec:e9:ef:a8:e1:0e:8f:55:ec:45:55:9d:f6:a7:95:4a: 80:58:88:fa:01:fc:32:4e:b6:68:d3:5c:c8:e9:8f:f0:ac:56: ac:73:61:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVpu0ovht0+gY8iXCDUHRU1XlHdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNzU1MDBaFw0yNTAyMDgwODAwMDBaMDMxMTAvBgNV BAMTKDBCNkZEMTgwQzVCOUM0MTVBNTM2OEJFM0ZDMzM3MzZDRTQxQkQ4QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDscon3Rxp+fx0LjwnIapQPdxQF kNOagkGOeURVmkyiROxu/KBuZHAu7tn4pc5tU6rpeNBplBWrBlYZrqMyvz4c3H84 tqM9uG2x7hoD3ywa7D3u986kUXjdydfY8UNwyMDHRD/IdbOhKzzb26OAofGtBWwe vUt0CQUojjZAghRGvTnTXHXbo1WA8PVs9ynO9EASYSVPRElW9hqImQD7+/tUQgF8 EUhQIvskRhjV9HT5+1I8TcSvHPpSNIFygZu1UCBlB6vSb21ZsjM8Lrg5cSN9oBqO CsRbMQ1+bZoWTghuItsrsZ4o5W1kQP9CpU6p1SiJ3dChOGDEzYcd7/ZNNuVzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC2/RgMW5xBWlNovj/DNzbOQb2KcwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+R2MA0GCSqG SIb3DQEBCwUAA4IBAQCfgdFLYr6jk5h08Exhb5CMZDHstLTGPCnJ7zMa1icWc10h g/XKeWPjZcvbJg+SbcaSZDI3VvKYi3DQO7uWzG08T4HJYbCVRP8ZQu9YmZ5jmfPQ zJbl3wcgMUCneNIhwkNRJWmqv6hIEztvDXHXzpGXk2Ovv7LGnYGiPwR/v6t1kEc0 AfhJpFlDvM16zIJlj2ceT0odoeyAlYeyyzuFZVvsO4VQJ+YjxkrCpZXx5VL6L8qM SH+U+AXit1AMq6lEZQf0qgFDaygxl999BuAB2dNMtgIJKQOSqslOq+zp76jhDo9V 7EVVnfanlUqAWIj6AfwyTrZo01zI6Y/wrFasc2H2 -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org