$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa File: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: tAlwrN0RRkATREGU1StDALH0hm3nP8KmjbnqdKRhKXY= Subject key identifier: 5A:55:39:5A:33:86:68:45:F4:67:CE:C1:48:B5:84:BD:5D:FA:E8:90 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 4CD8AA7342BD82179A69FB48FA40471AB0B3497C Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa Signing time: Mon 04 Mar 2024 09:00:00 +0000 ROA not before: Mon 04 Mar 2024 08:55:00 +0000 ROA not after: Mon 03 Mar 2025 09:00:00 +0000 asID: 131769 IP address blocks: 103.177.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d8:aa:73:42:bd:82:17:9a:69:fb:48:fa:40:47:1a:b0:b3:49:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Mar 4 08:55:00 2024 GMT Not After : Mar 3 09:00:00 2025 GMT Subject: CN=5A55395A33866845F467CEC148B584BD5DFAE890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:27:79:84:4f:50:80:9a:54:c9:d5:e4:93: 99:d4:95:c5:2d:d0:9e:63:78:b4:f6:7d:b8:70:6c: b0:a9:4d:52:d4:10:a6:ed:d6:01:d6:c2:fc:ab:49: 94:11:23:96:d1:2d:d1:07:49:e8:19:28:49:8c:3a: 3a:1c:02:da:e5:08:6b:a1:b0:25:84:27:b8:75:8d: 2d:68:87:81:7c:ab:ee:72:ac:e8:a2:42:db:c0:1b: 7c:2c:e8:a6:d7:23:66:8e:80:d8:70:66:e9:45:7b: 03:96:ed:db:80:bd:e7:f0:89:ac:e1:cd:aa:54:da: 45:bc:ac:70:bb:b5:bd:c9:7c:80:5a:bf:e7:cd:65: a5:50:ef:43:20:26:df:29:3a:76:19:63:c6:ad:8a: 71:01:cc:c0:40:44:84:bf:9f:fd:a7:c8:9b:f5:1f: 83:13:33:0a:76:c1:31:cf:f5:99:8e:43:3e:a9:a7: 9c:51:d7:bb:ea:d9:7d:1e:d0:8d:64:c4:b9:f4:ca: ca:72:ac:ea:24:46:61:cd:cd:24:ed:74:19:83:4b: f2:42:0f:23:c6:83:92:fe:85:85:0b:f5:0f:3c:6b: 28:41:06:8a:a3:a0:da:52:eb:ca:59:05:b1:fd:2d: 2b:5c:db:f3:09:1a:a2:f9:30:ea:c9:77:62:1d:25: 1b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:55:39:5A:33:86:68:45:F4:67:CE:C1:48:B5:84:BD:5D:FA:E8:90 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.218.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ca:a2:cf:b5:cd:8a:4c:30:8e:ac:ea:96:f7:d5:cd:6a:05: 43:e9:7c:bd:ce:c0:79:e0:00:c3:d2:70:cf:f9:0f:1c:b3:30: a4:71:c0:4f:c8:9e:f3:d0:35:52:3c:eb:50:ed:1d:64:48:e1: 42:21:51:68:15:df:4e:aa:f2:e2:2a:4a:5c:c8:5f:22:a0:40: 02:fa:f7:81:77:cc:8a:71:aa:44:f9:ec:ac:77:c9:ef:c5:0c: 2b:bb:5b:a6:32:ea:57:ef:47:d0:65:de:ba:b6:3f:a6:dd:5c: a1:4f:29:28:70:30:6a:10:13:0b:4c:cf:b9:21:8b:53:f7:d2: 8f:c9:5b:5e:fc:21:e3:7c:cc:4d:28:17:a5:d7:24:d7:dd:9c: 14:24:99:66:5e:4b:9c:96:1c:0f:85:4a:fa:4e:9c:db:12:94: 56:22:c8:73:0e:09:77:67:39:cc:e6:51:7e:e2:3d:d3:13:0f: f4:f0:c1:79:59:f0:e7:7d:00:12:80:14:55:50:bc:ca:6c:d6: 96:cd:f4:4b:a7:55:47:70:0e:3a:ac:0a:0e:0b:0c:0c:f6:22: 3f:0b:59:48:c4:b8:a9:f4:da:97:96:aa:db:e7:ed:28:a8:9a: a9:4c:be:c6:7a:ff:c2:dc:c1:d0:bd:f6:07:b7:9d:21:7b:d0: 64:68:8c:40 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTNiqc0K9gheaaftI+kBHGrCzSXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNDAzMDQwODU1MDBaFw0yNTAzMDMwOTAwMDBaMDMxMTAvBgNV BAMTKDVBNTUzOTVBMzM4NjY4NDVGNDY3Q0VDMTQ4QjU4NEJENURGQUU4OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVCd5hE9QgJpUydXkk5nUlcUt 0J5jeLT2fbhwbLCpTVLUEKbt1gHWwvyrSZQRI5bRLdEHSegZKEmMOjocAtrlCGuh sCWEJ7h1jS1oh4F8q+5yrOiiQtvAG3ws6KbXI2aOgNhwZulFewOW7duAvefwiazh zapU2kW8rHC7tb3JfIBav+fNZaVQ70MgJt8pOnYZY8atinEBzMBARIS/n/2nyJv1 H4MTMwp2wTHP9ZmOQz6pp5xR17vq2X0e0I1kxLn0yspyrOokRmHNzSTtdBmDS/JC DyPGg5L+hYUL9Q88ayhBBoqjoNpS68pZBbH9LStc2/MJGqL5MOrJd2IdJRshAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWlU5WjOGaEX0Z87BSLWEvV366JAwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhYjhlNjBmLWY5OTMtNDUzNC05 ZGEwLWYyODVhODYwM2Y2OS8wLzMxMzAzMzJlMzEzNzM3MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsdowDQYJ KoZIhvcNAQELBQADggEBAA3Kos+1zYpMMI6s6pb31c1qBUPpfL3OwHngAMPScM/5 DxyzMKRxwE/InvPQNVI861DtHWRI4UIhUWgV306q8uIqSlzIXyKgQAL694F3zIpx qkT57Kx3ye/FDCu7W6Yy6lfvR9Bl3rq2P6bdXKFPKShwMGoQEwtMz7khi1P30o/J W178IeN8zE0oF6XXJNfdnBQkmWZeS5yWHA+FSvpOnNsSlFYiyHMOCXdnOczmUX7i PdMTD/TwwXlZ8Od9ABKAFFVQvMps1pbN9EunVUdwDjqsCg4LDAz2Ij8LWUjEuKn0 2peWqtvn7SiomqlMvsZ6/8LcwdC99ge3nSF70GRojEA= -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:32 2024 by rpki-client on console-ams.rpki-client.org