$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa File: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (raw, json) Hash identifier: a21A7Aw1eA0w27BaRI4anjJydt9OVkV4jK6OQ5ecATg= Subject key identifier: 27:DC:B5:88:E3:E5:8A:24:4A:01:39:89:B7:B4:2A:85:CD:C4:2F:C8 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 0F2AA390DC2B63E7E1903FE1EC04604A6C5272F8 Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa Signing time: Tue 23 Apr 2024 05:02:05 +0000 ROA not before: Tue 23 Apr 2024 04:57:05 +0000 ROA not after: Tue 22 Apr 2025 05:02:05 +0000 asID: 134650 IP address blocks: 103.209.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:2a:a3:90:dc:2b:63:e7:e1:90:3f:e1:ec:04:60:4a:6c:52:72:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Apr 23 04:57:05 2024 GMT Not After : Apr 22 05:02:05 2025 GMT Subject: CN=27DCB588E3E58A244A013989B7B42A85CDC42FC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:5f:f2:d7:ca:95:52:18:30:42:c0:2d:da: 86:4a:bb:92:6f:e3:b8:7f:2c:0d:83:61:ef:9f:96: 45:0f:49:14:47:61:49:bb:e8:ed:3c:02:2b:6d:8a: 19:ca:57:bc:2d:06:32:76:d7:50:56:66:7d:51:6d: 5d:32:df:0d:e8:ca:e2:ae:08:48:14:12:33:41:75: b4:c5:ce:20:8d:51:05:a6:af:9f:40:2f:6f:d8:7f: c6:00:c6:44:e2:0b:cb:55:d3:1e:ba:63:4f:9f:c3: 45:07:07:71:f8:4f:67:91:ac:d6:0c:94:a6:0d:2b: 3e:61:aa:55:78:d5:c0:9d:44:44:d1:f8:3f:8d:cf: 78:bd:80:e1:5d:8b:af:23:94:ae:19:4e:5c:c1:af: 1a:0d:78:41:ac:dc:4b:79:c5:33:0a:91:da:5a:c1: 8f:fc:44:10:c8:fc:f8:76:b7:cc:64:a7:34:93:ca: 4e:8f:41:63:ea:cd:85:59:0b:ab:1a:78:31:1a:39: 0b:a5:b9:e1:11:2f:cb:40:45:92:26:9e:fa:d3:c2: a1:39:4a:80:eb:e9:3a:45:76:a3:af:7a:1a:17:02: a9:97:87:a9:9a:d7:a0:5f:60:af:93:ae:75:36:0f: 13:9e:86:64:c4:51:b3:04:cc:33:ad:90:14:49:a1: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DC:B5:88:E3:E5:8A:24:4A:01:39:89:B7:B4:2A:85:CD:C4:2F:C8 X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.1.0/24 Signature Algorithm: sha256WithRSAEncryption 74:e9:36:f0:4c:75:5b:32:95:2b:45:f7:11:9f:05:8c:89:88: e4:47:b8:d1:28:79:7a:a9:ba:d7:3f:79:38:45:e9:1e:77:51: 4c:95:40:ac:7f:0e:00:c6:c0:f1:de:f7:33:ae:25:6c:85:8b: a3:76:4c:35:da:10:d6:9f:e7:d1:a7:89:16:e3:64:63:f7:9f: 98:9d:91:fe:a3:af:d3:ab:0c:60:3f:a2:89:ba:4b:60:f0:b6: d9:b3:19:fd:15:98:60:81:b5:f2:b1:5f:bc:c4:a5:fa:41:45: b4:a1:ae:88:97:21:f3:65:29:c4:a9:0d:e6:eb:f5:0e:a6:4f: da:9e:75:77:dd:7f:5f:86:9e:67:e3:06:c0:5b:76:13:01:9b: a0:ed:fe:bc:22:41:c1:74:21:08:49:a1:74:97:c9:4d:7a:3c: b3:e5:db:c9:25:34:5b:1b:03:05:9a:58:71:1f:5a:71:2e:3a: 46:23:6f:e0:10:cd:81:7e:1d:4e:e4:9d:6c:e1:48:d5:ba:07: bc:86:f7:5b:66:4c:50:90:97:0d:a5:f1:80:76:97:85:22:20: 30:05:0b:5f:9d:f6:53:94:36:49:48:30:f0:c1:b1:27:41:23: 7b:44:3d:d7:56:92:f6:42:d5:d3:e4:3a:46:89:f2:4e:24:a0: 16:e4:44:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDyqjkNwrY+fhkD/h7ARgSmxScvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNDA0MjMwNDU3MDVaFw0yNTA0MjIwNTAyMDVaMDMxMTAvBgNV BAMTKDI3RENCNTg4RTNFNThBMjQ0QTAxMzk4OUI3QjQyQTg1Q0RDNDJGQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7aV/y18qVUhgwQsAt2oZKu5Jv 47h/LA2DYe+flkUPSRRHYUm76O08AittihnKV7wtBjJ211BWZn1RbV0y3w3oyuKu CEgUEjNBdbTFziCNUQWmr59AL2/Yf8YAxkTiC8tV0x66Y0+fw0UHB3H4T2eRrNYM lKYNKz5hqlV41cCdRETR+D+Nz3i9gOFdi68jlK4ZTlzBrxoNeEGs3Et5xTMKkdpa wY/8RBDI/Ph2t8xkpzSTyk6PQWPqzYVZC6saeDEaOQulueERL8tARZImnvrTwqE5 SoDr6TpFdqOvehoXAqmXh6ma16BfYK+TrnU2DxOehmTEUbMEzDOtkBRJoQlBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ9y1iOPliiRKATmJt7Qqhc3EL8gwHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3ZGIyM2I3LTkxNTktNDZjNy04 ODUzLTA2NjU0YWU0N2FlZC8wLzMxMzAzMzJlMzIzMDM5MmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNDM2MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfRATANBgkqhkiG 9w0BAQsFAAOCAQEAdOk28Ex1WzKVK0X3EZ8FjImI5Ee40Sh5eqm61z95OEXpHndR TJVArH8OAMbA8d73M64lbIWLo3ZMNdoQ1p/n0aeJFuNkY/efmJ2R/qOv06sMYD+i ibpLYPC22bMZ/RWYYIG18rFfvMSl+kFFtKGuiJch82UpxKkN5uv1DqZP2p51d91/ X4aeZ+MGwFt2EwGboO3+vCJBwXQhCEmhdJfJTXo8s+XbySU0WxsDBZpYcR9acS46 RiNv4BDNgX4dTuSdbOFI1boHvIb3W2ZMUJCXDaXxgHaXhSIgMAULX532U5Q2SUgw 8MGxJ0Eje0Q911aS9kLV0+Q6RonyTiSgFuREgg== -----END CERTIFICATE-----Generated at Sat Jun 22 18:39:15 2024 by rpki-client on console-fra.rpki-client.org