$ rpki-client -vvf repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa File: 3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa (raw, json) Hash identifier: pzN8C6kgK6IwQNAQGcthi+/KeoIdNKwokQYSl7Be1D8= Subject key identifier: ED:FE:44:AC:B8:5F:76:23:0C:50:42:68:74:48:9A:7D:44:4C:28:52 Certificate issuer: /CN=30FC12E903AE0EE87BD1A1E58A062C8026A0CE51 Certificate serial: 0588C8201C882068A051E7888B10C9B185688F78 Authority key identifier: 30:FC:12:E9:03:AE:0E:E8:7B:D1:A1:E5:8A:06:2C:80:26:A0:CE:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa Signing time: Wed 21 Feb 2024 06:00:01 +0000 ROA not before: Wed 21 Feb 2024 05:55:01 +0000 ROA not after: Wed 19 Feb 2025 06:00:01 +0000 asID: 137288 IP address blocks: 103.107.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.crl rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:88:c8:20:1c:88:20:68:a0:51:e7:88:8b:10:c9:b1:85:68:8f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30FC12E903AE0EE87BD1A1E58A062C8026A0CE51 Validity Not Before: Feb 21 05:55:01 2024 GMT Not After : Feb 19 06:00:01 2025 GMT Subject: CN=EDFE44ACB85F76230C50426874489A7D444C2852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:93:39:35:c0:9e:e2:91:9b:c3:08:b5:c2: e9:48:2e:84:10:2f:b7:3d:f7:07:12:7c:52:90:4d: fe:c8:d9:f9:b4:04:1f:78:9f:38:ce:f0:c1:6d:57: 61:ce:a1:ce:80:9c:14:4e:86:89:13:78:bc:c2:2e: b0:fb:39:3d:b7:56:02:83:03:c7:44:c1:d4:28:f0: 66:d1:b0:06:a1:cb:85:6c:e3:12:2c:3b:1f:0f:24: fc:96:e6:4f:8d:58:79:72:17:0c:5c:3a:c3:0a:32: 5b:94:c5:22:50:b6:ee:44:55:8b:67:a5:a9:98:45: 70:d1:6b:3a:87:bb:c9:b9:72:96:05:d8:38:5b:21: f2:eb:9f:9e:43:4b:ee:88:f4:2b:93:e2:b2:9b:99: 19:4b:05:89:10:ec:87:57:93:50:73:4b:bc:2b:02: 4f:dc:de:87:10:ea:76:c2:6b:da:42:c8:c5:2c:f4: 14:c4:d5:91:af:d4:53:04:0c:0e:87:71:6e:32:ea: 14:62:12:fb:e2:6b:5c:ef:b6:2b:3e:81:c6:45:1c: 0e:47:b4:f4:b2:ea:5c:6f:18:90:13:a8:5b:24:c0: b4:cd:01:b4:e0:76:e9:80:68:c0:4e:c1:b0:f3:14: 4e:e8:77:08:c3:45:38:fb:4f:cc:51:c9:3d:56:00: 6a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:FE:44:AC:B8:5F:76:23:0C:50:42:68:74:48:9A:7D:44:4C:28:52 X509v3 Authority Key Identifier: keyid:30:FC:12:E9:03:AE:0E:E8:7B:D1:A1:E5:8A:06:2C:80:26:A0:CE:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.18.0/24 Signature Algorithm: sha256WithRSAEncryption 09:71:0b:8c:be:70:49:26:69:84:50:50:ca:cd:01:30:29:06: ef:ec:77:36:ae:39:d2:32:d6:bd:bd:28:4e:61:8a:ed:ae:c5: 64:7f:5e:1c:c0:18:fc:0c:ef:cc:0d:e2:1e:a6:4f:c6:47:a1: e8:5b:40:0d:9d:50:b4:83:1c:03:29:0b:8a:d3:c6:46:98:9a: 54:50:61:a3:a8:b2:65:bb:85:70:8a:2b:36:14:3d:01:4e:47: c8:fe:a9:cc:95:64:68:9c:95:61:b1:31:a1:5b:31:2e:1c:31: 8d:0d:18:68:52:b8:91:d6:1b:a9:e2:c5:91:e4:24:82:5a:10: 74:55:dc:31:42:0b:74:12:3d:86:10:aa:a3:96:c6:82:18:f8: 19:13:cd:88:5c:91:9b:bf:d6:83:7a:72:a7:5e:c3:42:25:15: c9:1e:d7:4e:57:d9:b7:fa:34:4d:74:a3:5c:bd:f8:96:f3:03: 55:b5:1b:8d:ce:7a:e0:7b:48:76:96:33:fb:1b:b6:82:e9:d3: 71:61:79:3a:a2:32:40:33:67:78:0c:40:6d:5c:f8:f4:0f:2a: 48:bf:48:86:cf:62:c6:b6:0a:ae:75:86:07:56:18:df:99:a4: 8a:d6:22:ab:c0:34:3b:e3:0b:06:01:18:cf:1d:18:f9:f3:8c: 38:9e:2f:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBYjIIByIIGigUeeIixDJsYVoj3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBGQzEyRTkwM0FFMEVFODdCRDFBMUU1OEEwNjJDODAy NkEwQ0U1MTAeFw0yNDAyMjEwNTU1MDFaFw0yNTAyMTkwNjAwMDFaMDMxMTAvBgNV BAMTKEVERkU0NEFDQjg1Rjc2MjMwQzUwNDI2ODc0NDg5QTdENDQ0QzI4NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxApM5NcCe4pGbwwi1wulILoQQ L7c99wcSfFKQTf7I2fm0BB94nzjO8MFtV2HOoc6AnBROhokTeLzCLrD7OT23VgKD A8dEwdQo8GbRsAahy4Vs4xIsOx8PJPyW5k+NWHlyFwxcOsMKMluUxSJQtu5EVYtn pamYRXDRazqHu8m5cpYF2DhbIfLrn55DS+6I9CuT4rKbmRlLBYkQ7IdXk1BzS7wr Ak/c3ocQ6nbCa9pCyMUs9BTE1ZGv1FMEDA6HcW4y6hRiEvvia1zvtis+gcZFHA5H tPSy6lxvGJATqFskwLTNAbTgdumAaMBOwbDzFE7odwjDRTj7T8xRyT1WAGr/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7f5ErLhfdiMMUEJodEiafURMKFIwHwYDVR0j BBgwFoAUMPwS6QOuDuh70aHligYsgCagzlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzExYzExMC03YWIxLTRhMzktYjljYS0zYTliMGU4MWJjZjUvMC8zMEZDMTJFOTAz QUUwRUU4N0JEMUExRTU4QTA2MkM4MDI2QTBDRTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBGQzEyRTkwM0FFMEVFODdCRDFBMUU1OEEwNjJDODAyNkEw Q0U1MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3MTFjMTEwLTdhYjEtNGEzOS1i OWNhLTNhOWIwZTgxYmNmNS8wLzMxMzAzMzJlMzEzMDM3MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzIzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2sSMA0GCSqG SIb3DQEBCwUAA4IBAQAJcQuMvnBJJmmEUFDKzQEwKQbv7Hc2rjnSMta9vShOYYrt rsVkf14cwBj8DO/MDeIepk/GR6HoW0ANnVC0gxwDKQuK08ZGmJpUUGGjqLJlu4Vw iis2FD0BTkfI/qnMlWRonJVhsTGhWzEuHDGNDRhoUriR1hup4sWR5CSCWhB0Vdwx Qgt0Ej2GEKqjlsaCGPgZE82IXJGbv9aDenKnXsNCJRXJHtdOV9m3+jRNdKNcvfiW 8wNVtRuNznrge0h2ljP7G7aC6dNxYXk6ojJAM2d4DEBtXPj0DypIv0iGz2LGtgqu dYYHVhjfmaSK1iKrwDQ74wsGARjPHRj584w4ni8y -----END CERTIFICATE-----Generated at Sat May 4 15:44:52 2024 by rpki-client on console-fra.rpki-client.org