$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32342d3234203d3e203536323432.roa File: 3130332e3232382e3131382e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: rRgZv9viZFAtHyxNFdOkVc6HIZbYijSqZhrfBafa0u4= Subject key identifier: 9C:91:B6:61:6B:FB:87:03:C9:98:2F:00:15:20:4C:BA:8A:21:A4:27 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 3D6119666A9514FD896A00F1C517E41AFF8C05C8 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32342d3234203d3e203536323432.roa Signing time: Sat 10 Feb 2024 07:00:00 +0000 ROA not before: Sat 10 Feb 2024 06:55:00 +0000 ROA not after: Sat 08 Feb 2025 07:00:00 +0000 asID: 56242 IP address blocks: 103.228.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:61:19:66:6a:95:14:fd:89:6a:00:f1:c5:17:e4:1a:ff:8c:05:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Feb 10 06:55:00 2024 GMT Not After : Feb 8 07:00:00 2025 GMT Subject: CN=9C91B6616BFB8703C9982F0015204CBA8A21A427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:23:27:7d:45:74:a0:cf:cc:b1:f3:65:f3: cf:24:fb:4a:7d:2a:8b:7d:d4:3d:bd:26:97:e4:b5: e9:28:f7:d4:c4:82:7f:70:86:87:57:a8:ea:e2:48: f4:59:7e:49:d0:bb:c1:aa:04:96:1f:5a:e9:c5:c9: 8f:02:7d:b2:dc:2d:f1:3d:6e:f9:7d:76:61:d7:fb: 89:54:41:ce:f5:d6:bd:dd:11:4c:6c:96:db:75:f8: 67:e0:14:66:82:e5:ca:2f:25:58:04:12:73:64:c0: 3a:7b:6b:6f:07:d1:57:17:1a:6f:3b:20:e2:93:30: 6b:d2:9b:71:e7:82:b7:3b:48:3e:d4:e0:1d:14:ad: 50:98:3e:1a:16:6f:14:55:c2:54:bd:3f:cd:5c:61: 0f:41:30:90:e0:80:ca:6d:31:4c:4a:ec:4a:55:a8: d0:2a:81:96:65:05:73:c1:a2:ed:4b:7f:c6:af:fa: 79:d8:d7:3e:a3:12:13:e9:06:61:d5:35:0d:4a:6f: f3:2b:4a:b2:5f:cd:fc:1d:b3:86:41:14:e7:86:f6: ff:c9:4f:1e:7d:7d:0a:ac:bb:a1:8a:82:5e:84:4d: 5b:47:d4:d9:e6:4b:0c:07:76:8e:14:24:7b:1b:96: 77:a5:37:80:c9:90:0f:90:ba:70:70:08:d2:92:6d: a2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:B6:61:6B:FB:87:03:C9:98:2F:00:15:20:4C:BA:8A:21:A4:27 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.118.0/24 Signature Algorithm: sha256WithRSAEncryption 95:8f:90:a2:8a:93:05:38:87:b7:2c:c9:7e:ec:49:24:88:c6: 48:48:6f:bf:e8:92:c3:4e:43:35:5b:dc:c5:59:91:e3:08:83: 23:d4:ac:81:27:0c:d8:1d:4d:21:c0:47:f1:2c:4e:2d:d7:ae: 9d:ef:85:9a:64:96:d4:6a:89:07:7a:99:13:21:44:cb:26:2d: e7:42:fe:fb:db:f2:9d:54:5e:90:f1:c4:32:bb:39:35:ca:0c: 73:b2:28:19:77:4a:b4:87:f5:12:8f:e9:a5:06:aa:0f:fc:fb: 05:6d:7a:32:77:91:2d:a5:22:2b:ff:be:74:18:32:13:63:e6: 73:6b:41:df:4d:4a:39:1e:a7:cc:20:f3:02:67:29:84:94:02: f7:69:36:bd:b6:5c:ee:fd:2b:84:59:e6:d7:e1:57:75:69:88: ad:5c:d0:68:aa:48:7c:d1:d5:65:34:9c:78:b9:de:c4:41:91: 9f:d5:44:f1:bb:a3:58:fc:f3:e2:93:64:54:f8:74:5b:93:42: 8e:ce:1e:ec:1e:10:ad:48:fe:22:b8:23:2a:d5:f2:72:76:7a: 4c:cf:9d:3a:94:76:ea:2d:72:41:00:05:4c:65:a3:44:b9:42: b8:56:fd:c6:e1:8c:f7:a9:8c:38:e8:20:53:3d:98:cf:c0:1a: d3:66:d4:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPWEZZmqVFP2JagDxxRfkGv+MBcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDAyMTAwNjU1MDBaFw0yNTAyMDgwNzAwMDBaMDMxMTAvBgNV BAMTKDlDOTFCNjYxNkJGQjg3MDNDOTk4MkYwMDE1MjA0Q0JBOEEyMUE0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fSMnfUV0oM/MsfNl888k+0p9 Kot91D29Jpfkteko99TEgn9whodXqOriSPRZfknQu8GqBJYfWunFyY8CfbLcLfE9 bvl9dmHX+4lUQc711r3dEUxsltt1+GfgFGaC5covJVgEEnNkwDp7a28H0VcXGm87 IOKTMGvSm3Hngrc7SD7U4B0UrVCYPhoWbxRVwlS9P81cYQ9BMJDggMptMUxK7EpV qNAqgZZlBXPBou1Lf8av+nnY1z6jEhPpBmHVNQ1Kb/MrSrJfzfwds4ZBFOeG9v/J Tx59fQqsu6GKgl6ETVtH1NnmSwwHdo4UJHsblnelN4DJkA+QunBwCNKSbaKZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnJG2YWv7hwPJmC8AFSBMuoohpCcwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+R2MA0GCSqG SIb3DQEBCwUAA4IBAQCVj5CiipMFOIe3LMl+7EkkiMZISG+/6JLDTkM1W9zFWZHj CIMj1KyBJwzYHU0hwEfxLE4t166d74WaZJbUaokHepkTIUTLJi3nQv772/KdVF6Q 8cQyuzk1ygxzsigZd0q0h/USj+mlBqoP/PsFbXoyd5EtpSIr/750GDITY+Zza0Hf TUo5HqfMIPMCZymElAL3aTa9tlzu/SuEWebX4Vd1aYitXNBoqkh80dVlNJx4ud7E QZGf1UTxu6NY/PPik2RU+HRbk0KOzh7sHhCtSP4iuCMq1fJydnpMz506lHbqLXJB AAVMZaNEuUK4Vv3G4Yz3qYw46CBTPZjPwBrTZtQG -----END CERTIFICATE-----Generated at Wed May 1 02:06:09 2024 by rpki-client on console-fra.rpki-client.org