$ rpki-client -vvf repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa File: 3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa (raw, json) Hash identifier: I8C1s7AwytoZeFwVAIfV9U4FINxgteczcHOALBPtd1Y= Subject key identifier: D6:58:A2:01:48:CA:EC:47:F8:2A:59:F1:53:55:E0:0E:3A:67:C3:8E Certificate issuer: /CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Certificate serial: 16488B8C1BAD7DE6862BA20DCC0BFE3CCB8A3C82 Authority key identifier: 06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject info access: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa Signing time: Fri 19 Apr 2024 08:00:00 +0000 ROA not before: Fri 19 Apr 2024 07:55:00 +0000 ROA not after: Fri 18 Apr 2025 08:00:00 +0000 asID: 139423 IP address blocks: 103.144.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:48:8b:8c:1b:ad:7d:e6:86:2b:a2:0d:cc:0b:fe:3c:cb:8a:3c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=064A8F9FBD487AB04370A31B7D603B27E6674937 Validity Not Before: Apr 19 07:55:00 2024 GMT Not After : Apr 18 08:00:00 2025 GMT Subject: CN=D658A20148CAEC47F82A59F15355E00E3A67C38E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bf:97:d0:c3:47:09:c4:59:75:26:24:e5:85: 13:7d:a2:7c:bd:5e:d2:30:8e:82:b7:a9:a0:fc:1e: f4:1d:f3:88:63:d2:89:67:73:ae:02:1d:0d:30:f1: 14:91:9f:2a:7d:1f:b2:6c:96:1f:77:c8:8b:58:88: 6b:1b:14:1e:e3:a8:22:15:2e:78:db:ee:60:2f:3c: 30:46:3b:71:33:8d:55:07:5c:3a:19:7c:0d:93:bc: 17:78:64:25:a8:55:30:5a:69:c4:84:f7:35:01:48: 5a:8c:8c:d6:94:10:af:ed:14:f4:31:da:a0:26:c4: 41:74:7d:ef:25:eb:ad:3d:2a:a2:d6:af:bf:6d:d2: 0b:32:7c:e0:bd:a4:78:36:95:41:76:36:a4:67:6d: 5b:01:5b:28:07:38:9f:cd:43:2c:f5:51:2c:94:2d: 61:a6:da:82:42:09:0e:aa:da:ae:7e:df:61:99:d4: 07:59:58:2f:6e:1b:66:8e:ff:30:ab:fd:48:70:3a: f9:a9:01:78:ef:ed:2b:f0:02:fa:d4:2f:3d:d4:ef: a6:dd:66:aa:68:47:c2:81:99:be:f9:2c:35:f0:04: f2:66:dc:39:23:7a:d6:48:57:57:cd:09:da:2b:47: 76:a0:2c:ed:ea:6b:96:80:46:9a:6c:51:4b:3e:85: 23:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:58:A2:01:48:CA:EC:47:F8:2A:59:F1:53:55:E0:0E:3A:67:C3:8E X509v3 Authority Key Identifier: keyid:06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.20.0/23 Signature Algorithm: sha256WithRSAEncryption c8:c8:11:d2:1d:58:06:2a:36:da:01:7f:6a:58:71:92:63:48: 43:1d:db:5a:d5:5a:eb:b1:bf:63:c8:ec:1f:51:5e:fb:be:d0: 68:f9:8e:45:cf:a1:bb:2f:72:37:db:e5:38:40:a1:7e:81:e9: f3:16:5a:eb:16:11:3d:9e:70:d2:f0:d5:e7:2a:bc:e8:99:47: 55:de:8e:97:a3:a3:84:87:64:ae:15:f9:e8:89:9f:6f:31:4f: 50:ac:c3:28:c3:c4:d3:05:77:8f:36:94:0b:4e:90:0b:18:0f: 8b:4d:84:37:bf:eb:5d:d1:a9:62:bf:dd:08:36:cb:2e:20:dd: a7:a8:61:0d:f3:34:e8:6a:13:8d:c3:f2:08:b7:4c:99:db:42: 50:2e:fc:a6:3d:34:98:49:93:10:f3:04:39:2e:6d:c8:c7:3d: bd:aa:12:90:6b:d6:af:b8:a5:42:18:25:7d:4a:10:cb:84:64: d5:98:fa:29:ae:54:86:5e:bf:5a:90:f0:16:d9:9f:60:51:34: 53:91:04:73:14:94:0d:79:8f:f1:e1:7b:4d:b0:e0:c9:09:37: f2:60:55:2c:ff:50:6f:dc:62:37:13:fa:10:7a:e5:b8:1e:85: 7a:8e:7c:c4:d3:7a:d3:d9:4a:cf:6e:64:05:b2:e5:17:c2:1d: 87:5a:3b:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFkiLjButfeaGK6INzAv+PMuKPIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdF NjY3NDkzNzAeFw0yNDA0MTkwNzU1MDBaFw0yNTA0MTgwODAwMDBaMDMxMTAvBgNV BAMTKEQ2NThBMjAxNDhDQUVDNDdGODJBNTlGMTUzNTVFMDBFM0E2N0MzOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTv5fQw0cJxFl1JiTlhRN9ony9 XtIwjoK3qaD8HvQd84hj0olnc64CHQ0w8RSRnyp9H7Jslh93yItYiGsbFB7jqCIV Lnjb7mAvPDBGO3EzjVUHXDoZfA2TvBd4ZCWoVTBaacSE9zUBSFqMjNaUEK/tFPQx 2qAmxEF0fe8l6609KqLWr79t0gsyfOC9pHg2lUF2NqRnbVsBWygHOJ/NQyz1USyU LWGm2oJCCQ6q2q5+32GZ1AdZWC9uG2aO/zCr/UhwOvmpAXjv7SvwAvrULz3U76bd ZqpoR8KBmb75LDXwBPJm3DkjetZIV1fNCdorR3agLO3qa5aARppsUUs+hSMjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1liiAUjK7Ef4KlnxU1XgDjpnw44wHwYDVR0j BBgwFoAUBkqPn71IerBDcKMbfWA7J+ZnSTcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDFmZjNlMi03NmI2LTQ4MzMtODZiNS04MmYzZmE0ZWJjYjcvMC8wNjRBOEY5RkJE NDg3QUIwNDM3MEEzMUI3RDYwM0IyN0U2Njc0OTM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDY0QThGOUZCRDQ4N0FCMDQzNzBBMzFCN0Q2MDNCMjdFNjY3 NDkzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0MWZmM2UyLTc2YjYtNDgzMy04 NmI1LTgyZjNmYTRlYmNiNy8wLzMxMzAzMzJlMzEzNDM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5AUMA0GCSqG SIb3DQEBCwUAA4IBAQDIyBHSHVgGKjbaAX9qWHGSY0hDHdta1Vrrsb9jyOwfUV77 vtBo+Y5Fz6G7L3I32+U4QKF+genzFlrrFhE9nnDS8NXnKrzomUdV3o6Xo6OEh2Su FfnoiZ9vMU9QrMMow8TTBXePNpQLTpALGA+LTYQ3v+td0aliv90INssuIN2nqGEN 8zToahONw/IIt0yZ20JQLvymPTSYSZMQ8wQ5Lm3Ixz29qhKQa9avuKVCGCV9ShDL hGTVmPoprlSGXr9akPAW2Z9gUTRTkQRzFJQNeY/x4XtNsODJCTfyYFUs/1Bv3GI3 E/oQeuW4HoV6jnzE03rT2UrPbmQFsuUXwh2HWjuE -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:09 2024 by rpki-client on console-fra.rpki-client.org