$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa File: 3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa (raw, json) Hash identifier: 9AgM/Fc/trfBx80xVB31YmDWKQHoLWDjrj5feQPz0y4= Subject key identifier: 77:2F:2B:27:FE:37:58:CE:C8:60:B2:D5:48:E2:59:72:A9:E8:0E:E8 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 503F5DAF1EA519FE62FD9C2E6AAB9A833DDAA46A Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa Signing time: Sun 02 Jun 2024 03:00:02 +0000 ROA not before: Sun 02 Jun 2024 02:55:02 +0000 ROA not after: Sun 01 Jun 2025 03:00:02 +0000 asID: 18004 IP address blocks: 103.234.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3f:5d:af:1e:a5:19:fe:62:fd:9c:2e:6a:ab:9a:83:3d:da:a4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Jun 2 02:55:02 2024 GMT Not After : Jun 1 03:00:02 2025 GMT Subject: CN=772F2B27FE3758CEC860B2D548E25972A9E80EE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:46:01:8b:fe:a5:50:1b:c0:a1:28:c4:ae: ee:70:24:8d:52:d9:f7:90:47:84:63:19:40:5c:6b: ee:78:d6:00:ca:d0:18:b4:1f:ff:38:0e:60:be:1c: ce:01:33:06:ab:a7:63:17:5a:39:ec:1f:97:57:d5: 6b:b6:54:75:23:70:41:28:54:fc:89:ca:31:e7:e9: 40:14:cc:50:e6:8c:bd:72:d0:cd:5c:09:dd:d4:1d: d7:f7:d2:cd:18:70:84:4b:c6:df:12:60:58:cf:ce: d4:1d:69:a1:29:ac:ae:49:d3:9a:5c:70:eb:e9:a6: 6a:03:5f:3a:25:61:f3:44:35:94:02:1f:86:a7:56: 11:ee:2f:2a:e5:15:cc:44:01:13:6a:21:48:3b:67: 0b:d1:6c:89:c4:e4:07:86:0e:a0:48:fd:7f:c5:dd: 66:f6:2a:1b:db:13:dc:19:6a:a1:d4:d5:da:1c:e9: 78:f7:9b:08:1d:cd:a2:52:da:76:c0:79:0d:52:5f: df:85:d0:a5:44:c5:ba:e9:81:a3:44:32:e4:d7:d8: 99:09:b1:63:0a:3e:84:c8:38:45:f4:7e:dd:09:58: af:20:9f:0e:38:8f:d9:42:85:b7:4e:15:50:88:f4: d3:cf:67:77:56:d7:b9:91:ed:a1:e1:e3:af:b7:17: 66:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2F:2B:27:FE:37:58:CE:C8:60:B2:D5:48:E2:59:72:A9:E8:0E:E8 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3130332e3233342e3132302e302f32322d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.120.0/22 Signature Algorithm: sha256WithRSAEncryption a8:62:57:55:37:b1:aa:d7:8e:49:c3:f8:01:4a:21:8a:cd:a9: 04:53:ce:f0:11:73:93:8d:59:82:cf:24:a4:72:9a:a1:03:6a: 23:5e:78:0f:d1:34:8d:7b:53:35:a0:e9:f9:9c:48:b8:86:9f: e5:7b:b4:4d:a7:cd:19:18:32:25:e2:3b:02:86:93:9c:f2:f5: db:0d:df:93:42:a3:e6:6e:46:d2:6f:e4:06:4b:8d:a8:78:c1: f8:b2:49:fe:20:ae:f7:77:9b:b2:56:d9:1e:e8:b5:56:ff:95: 00:d8:05:d8:78:e2:e5:cc:0a:a5:5c:39:a8:d7:c6:e4:ee:e1: f6:74:fc:c7:44:a5:7e:1a:ec:4f:9b:e0:02:0f:3f:14:54:22: ab:db:8d:94:a6:ec:1b:39:62:db:80:51:80:7e:b2:c4:a5:5a: f8:3d:15:0d:9e:04:15:46:f7:16:34:ee:23:b3:66:ca:a3:6d: ea:ed:c7:2c:30:84:b5:bb:f0:7f:ce:a7:41:c9:f1:c9:9c:dd: cc:65:97:b5:6f:9f:2e:33:58:21:ec:61:4d:f5:ea:db:a1:90: c8:00:f1:dd:d4:93:39:2e:4f:36:44:aa:d2:8e:cc:22:de:a5: 21:f7:b7:f1:59:0d:b8:5b:03:67:29:91:29:54:2d:f9:c3:93: e4:27:26:e9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUD9drx6lGf5i/Zwuaquagz3apGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNDA2MDIwMjU1MDJaFw0yNTA2MDEwMzAwMDJaMDMxMTAvBgNV BAMTKDc3MkYyQjI3RkUzNzU4Q0VDODYwQjJENTQ4RTI1OTcyQTlFODBFRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp6EYBi/6lUBvAoSjEru5wJI1S 2feQR4RjGUBca+541gDK0Bi0H/84DmC+HM4BMwarp2MXWjnsH5dX1Wu2VHUjcEEo VPyJyjHn6UAUzFDmjL1y0M1cCd3UHdf30s0YcIRLxt8SYFjPztQdaaEprK5J05pc cOvppmoDXzolYfNENZQCH4anVhHuLyrlFcxEARNqIUg7ZwvRbInE5AeGDqBI/X/F 3Wb2KhvbE9wZaqHU1doc6Xj3mwgdzaJS2nbAeQ1SX9+F0KVExbrpgaNEMuTX2JkJ sWMKPoTIOEX0ft0JWK8gnw44j9lChbdOFVCI9NPPZ3dW17mR7aHh46+3F2ajAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdy8rJ/43WM7IYLLVSOJZcqnoDugwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzAzMzJlMzIzMzM0MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+p4MA0GCSqG SIb3DQEBCwUAA4IBAQCoYldVN7Gq145Jw/gBSiGKzakEU87wEXOTjVmCzySkcpqh A2ojXngP0TSNe1M1oOn5nEi4hp/le7RNp80ZGDIl4jsChpOc8vXbDd+TQqPmbkbS b+QGS42oeMH4skn+IK73d5uyVtke6LVW/5UA2AXYeOLlzAqlXDmo18bk7uH2dPzH RKV+GuxPm+ACDz8UVCKr242UpuwbOWLbgFGAfrLEpVr4PRUNngQVRvcWNO4js2bK o23q7ccsMIS1u/B/zqdByfHJnN3MZZe1b58uM1gh7GFN9erboZDIAPHd1JM5Lk82 RKrSjswi3qUh97fxWQ24WwNnKZEpVC35w5PkJybp -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org