$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: 3Ls2p0rKHrPNxIiadvIk+pUyp1gPzCOPFPqoplRe3SY= Subject key identifier: F2:0F:06:42:D6:B0:73:93:B3:58:6B:27:53:A2:EE:F0:43:EE:49:9D Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 66C29297AEDE163F0C10050363D2421E1ADCC0C2 Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa Signing time: Mon 02 Oct 2023 12:34:06 +0000 ROA not before: Mon 02 Oct 2023 12:29:06 +0000 ROA not after: Mon 30 Sep 2024 12:34:06 +0000 asID: 139421 IP address blocks: 103.144.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 01:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c2:92:97:ae:de:16:3f:0c:10:05:03:63:d2:42:1e:1a:dc:c0:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Oct 2 12:29:06 2023 GMT Not After : Sep 30 12:34:06 2024 GMT Subject: CN=F20F0642D6B07393B3586B2753A2EEF043EE499D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c2:64:c1:d9:66:22:a1:e9:f2:af:a0:2d:6e: 8a:6f:ad:57:b1:82:8a:6b:54:d2:2f:cb:b8:d7:21: cb:59:42:ce:b1:26:72:8b:5d:19:a3:11:bc:75:ad: 97:8c:e2:84:43:1c:dc:28:2a:3b:87:04:7b:50:e4: 87:cb:66:0a:a7:0e:92:4a:0f:87:56:ae:cf:ed:e0: 01:2a:64:ca:67:05:2d:ef:56:aa:23:48:3a:a7:4f: 27:b2:13:64:5b:6a:8a:2c:00:e9:41:6e:7e:b5:09: b8:bf:ff:ae:b8:05:10:d5:e5:b6:e9:a6:a5:6a:86: 42:55:6b:3b:61:c7:39:f3:31:cb:c0:35:53:92:84: bc:a7:9d:bc:c8:84:6c:2b:38:bd:f9:45:eb:1c:7d: 48:ae:14:74:fe:02:83:ab:80:67:b7:f9:dc:29:32: 2f:24:e7:b0:33:41:9e:53:83:32:04:fb:9d:af:9f: c5:6a:ac:2e:ad:b2:18:4f:ec:6f:d6:b8:55:07:9d: d0:d9:0c:23:ed:2b:df:e1:1d:de:0a:67:19:19:c4: d7:75:be:dc:ea:aa:6c:8c:89:43:f4:56:4a:8d:af: 35:d6:2a:41:e7:0c:e1:3b:82:1d:be:1a:1c:73:f8: ca:2a:09:c3:a5:57:49:8b:73:0d:be:7d:38:31:42: 17:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0F:06:42:D6:B0:73:93:B3:58:6B:27:53:A2:EE:F0:43:EE:49:9D X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:82:5b:e0:58:16:4d:a1:19:ec:a0:a7:62:f5:55:12:96:4c: c1:ec:0e:8e:f6:1a:06:ba:62:fe:65:64:24:bf:ea:fe:f2:d3: 86:34:9c:6b:36:22:16:72:eb:7c:6b:3c:a8:30:18:96:41:53: b1:97:02:e4:bd:3e:96:44:fa:10:b8:0f:25:8a:e6:3c:91:92: d8:5a:a3:d1:e4:07:69:9b:b0:22:86:cc:5a:f4:56:f3:76:b0: e9:32:e2:4b:68:19:b1:39:3f:6a:03:0a:14:57:ff:f5:80:4e: 37:44:9d:50:b3:ae:0e:40:7f:12:23:e1:6b:29:ed:b7:61:d5: 8c:20:20:d6:b7:71:76:de:d6:a9:58:c1:01:66:13:7e:bc:a7: 72:6f:1a:70:8e:ac:e3:8c:90:f7:d7:23:53:c7:de:f3:1b:b0: 7f:7c:fe:95:c0:12:c9:be:bb:14:cc:31:bb:1e:fa:03:e9:f8: 54:ed:bc:aa:ff:8e:76:33:fd:39:74:95:14:e8:25:70:45:59: 7c:06:1f:6e:20:7a:1b:81:bd:65:90:3c:77:87:e1:ba:f7:78: ca:08:98:79:ac:76:2f:85:ef:e2:75:85:90:82:c0:65:f8:f6: 68:ce:af:a7:40:99:83:5e:80:6c:4a:ec:8b:0b:d8:c2:57:14: 3f:b1:44:d0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZsKSl67eFj8MEAUDY9JCHhrcwMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yMzEwMDIxMjI5MDZaFw0yNDA5MzAxMjM0MDZaMDMxMTAvBgNV BAMTKEYyMEYwNjQyRDZCMDczOTNCMzU4NkIyNzUzQTJFRUYwNDNFRTQ5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQwmTB2WYioenyr6AtbopvrVex goprVNIvy7jXIctZQs6xJnKLXRmjEbx1rZeM4oRDHNwoKjuHBHtQ5IfLZgqnDpJK D4dWrs/t4AEqZMpnBS3vVqojSDqnTyeyE2RbaoosAOlBbn61Cbi//664BRDV5bbp pqVqhkJVazthxznzMcvANVOShLynnbzIhGwrOL35RescfUiuFHT+AoOrgGe3+dwp Mi8k57AzQZ5TgzIE+52vn8VqrC6tshhP7G/WuFUHndDZDCPtK9/hHd4KZxkZxNd1 vtzqqmyMiUP0VkqNrzXWKkHnDOE7gh2+Ghxz+MoqCcOlV0mLcw2+fTgxQhcZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8g8GQtawc5OzWGsnU6Lu8EPuSZ0wHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGYwDQYJ KoZIhvcNAQELBQADggEBAEyCW+BYFk2hGeygp2L1VRKWTMHsDo72Gga6Yv5lZCS/ 6v7y04Y0nGs2IhZy63xrPKgwGJZBU7GXAuS9PpZE+hC4DyWK5jyRkthao9HkB2mb sCKGzFr0VvN2sOky4ktoGbE5P2oDChRX//WATjdEnVCzrg5AfxIj4Wsp7bdh1Ywg INa3cXbe1qlYwQFmE368p3JvGnCOrOOMkPfXI1PH3vMbsH98/pXAEsm+uxTMMbse +gPp+FTtvKr/jnYz/Tl0lRToJXBFWXwGH24gehuBvWWQPHeH4br3eMoImHmsdi+F 7+J1hZCCwGX49mjOr6dAmYNegGxK7IsL2MJXFD+xRNA= -----END CERTIFICATE-----Generated at Thu May 2 20:47:15 2024 by rpki-client on console-fra.rpki-client.org