$ rpki-client -vvf repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa File: 3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa (raw, json) Hash identifier: Mc1TrU1wxGRy3l5vA1nfz8XxPWnc4o0xCfgEWO4zI1A= Subject key identifier: 47:AD:91:78:FA:FE:B8:D6:8F:0C:59:3F:51:77:0C:FB:05:A9:EE:53 Certificate issuer: /CN=69CE57F4984A7B332974000C0033734628A36A46 Certificate serial: 389C73A6DCE055BAFE08E1DEC19BDA6B258C4F2F Authority key identifier: 69:CE:57:F4:98:4A:7B:33:29:74:00:0C:00:33:73:46:28:A3:6A:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69CE57F4984A7B332974000C0033734628A36A46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa Signing time: Tue 23 Jan 2024 04:40:37 +0000 ROA not before: Tue 23 Jan 2024 04:35:37 +0000 ROA not after: Tue 21 Jan 2025 04:40:37 +0000 asID: 150193 IP address blocks: 103.211.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/69CE57F4984A7B332974000C0033734628A36A46.crl rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/69CE57F4984A7B332974000C0033734628A36A46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69CE57F4984A7B332974000C0033734628A36A46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9c:73:a6:dc:e0:55:ba:fe:08:e1:de:c1:9b:da:6b:25:8c:4f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69CE57F4984A7B332974000C0033734628A36A46 Validity Not Before: Jan 23 04:35:37 2024 GMT Not After : Jan 21 04:40:37 2025 GMT Subject: CN=47AD9178FAFEB8D68F0C593F51770CFB05A9EE53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:ea:d1:b7:38:07:4e:48:21:f6:a8:99:64: 90:07:64:62:f1:51:e5:af:23:cc:87:c6:62:d9:cb: a1:a8:8b:9d:20:3d:a2:cf:65:48:14:8b:b6:e0:b4: f8:fc:7c:d5:dd:40:4d:61:77:48:ca:2e:f0:55:e4: 37:b7:56:7c:e2:75:5f:24:18:92:61:02:15:f4:3f: 9d:3d:d4:4c:b9:6f:bc:bc:54:40:a6:dd:96:77:ba: b5:0e:5a:be:7d:68:bb:b3:d9:01:36:6a:02:49:44: ab:18:7a:14:8c:d3:fb:a5:1c:63:ec:f3:2b:73:5e: 54:21:7a:49:52:d5:42:fa:82:99:28:3b:43:30:e4: 7e:cb:0d:22:47:07:b8:ec:04:67:f2:8d:1e:be:78: 0c:ae:b9:57:ed:6c:3d:5b:2f:10:0e:cd:4a:dc:da: 63:f3:87:b2:2c:6e:fb:99:d2:81:d6:bc:6e:f4:f6: a1:f7:65:9a:f7:36:47:10:2d:3f:74:6c:92:c4:c2: 8a:69:6d:f8:8b:f8:dd:95:68:ac:c5:5e:3e:b4:2b: 95:c5:9f:59:aa:cf:4e:59:d0:83:9b:fa:67:4b:dd: 0d:a9:28:8b:a8:08:0d:19:d1:0e:be:a7:ce:df:c7: 12:e1:22:49:7b:20:4f:2e:74:15:f3:3b:32:fb:d1: 6f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AD:91:78:FA:FE:B8:D6:8F:0C:59:3F:51:77:0C:FB:05:A9:EE:53 X509v3 Authority Key Identifier: keyid:69:CE:57:F4:98:4A:7B:33:29:74:00:0C:00:33:73:46:28:A3:6A:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/69CE57F4984A7B332974000C0033734628A36A46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69CE57F4984A7B332974000C0033734628A36A46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.26.0/23 Signature Algorithm: sha256WithRSAEncryption 24:ee:36:ee:e7:6d:29:ed:42:40:3d:dc:0e:12:2b:2e:c2:00: c4:b2:31:ca:38:77:cf:98:ea:6e:2d:9b:51:48:97:6a:05:59: c3:48:29:09:90:52:13:16:46:85:8c:44:a8:52:d9:83:68:26: 89:cb:01:5c:b9:78:81:aa:7b:87:fe:41:5b:83:08:11:88:29: b1:c8:3f:88:e3:49:c4:cb:52:aa:41:b9:13:a3:90:fb:c2:45: 8d:e6:e8:f3:60:bc:bd:79:21:51:67:ef:3f:b2:3c:24:ef:fe: 2f:9f:04:fe:b9:5e:b6:2f:be:b9:7d:4d:87:1b:28:5e:c1:0a: 3d:28:58:ac:95:40:29:38:ef:21:16:fa:31:86:25:45:90:65: f2:c5:25:0f:bb:4d:0a:63:d3:a6:0f:04:a7:e5:e4:3d:b6:dd: ae:94:dd:a8:9f:f3:ca:32:c6:ca:7c:f5:e0:9a:5c:8c:0d:53: 0b:91:0c:29:93:7b:24:42:fe:b0:5a:85:f9:10:0d:7e:74:37: 58:04:60:14:1a:e9:12:7c:56:41:53:dd:9c:b9:05:e1:75:04: 12:fa:3a:ae:2c:49:4e:90:f5:6c:b6:d5:e3:d6:e2:ca:e8:b5: 85:27:c0:e0:ae:58:7d:2d:99:fd:e0:b3:f9:e6:01:27:a0:b5: 1f:ac:66:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOJxzptzgVbr+COHewZvaayWMTy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlDRTU3RjQ5ODRBN0IzMzI5NzQwMDBDMDAzMzczNDYy OEEzNkE0NjAeFw0yNDAxMjMwNDM1MzdaFw0yNTAxMjEwNDQwMzdaMDMxMTAvBgNV BAMTKDQ3QUQ5MTc4RkFGRUI4RDY4RjBDNTkzRjUxNzcwQ0ZCMDVBOUVFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLurRtzgHTkgh9qiZZJAHZGLx UeWvI8yHxmLZy6Goi50gPaLPZUgUi7bgtPj8fNXdQE1hd0jKLvBV5De3VnzidV8k GJJhAhX0P5091Ey5b7y8VECm3ZZ3urUOWr59aLuz2QE2agJJRKsYehSM0/ulHGPs 8ytzXlQheklS1UL6gpkoO0Mw5H7LDSJHB7jsBGfyjR6+eAyuuVftbD1bLxAOzUrc 2mPzh7IsbvuZ0oHWvG709qH3ZZr3NkcQLT90bJLEwoppbfiL+N2VaKzFXj60K5XF n1mqz05Z0IOb+mdL3Q2pKIuoCA0Z0Q6+p87fxxLhIkl7IE8udBXzOzL70W8bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR62RePr+uNaPDFk/UXcM+wWp7lMwHwYDVR0j BBgwFoAUac5X9JhKezMpdAAMADNzRiijakYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGQ2NmI2OS03MDdhLTQ4MzAtYTJkMy1hZjZjYTBkMTViY2UvMC82OUNFNTdGNDk4 NEE3QjMzMjk3NDAwMEMwMDMzNzM0NjI4QTM2QTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlDRTU3RjQ5ODRBN0IzMzI5NzQwMDBDMDAzMzczNDYyOEEz NkE0Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZDY2YjY5LTcwN2EtNDgzMC1h MmQzLWFmNmNhMGQxNWJjZS8wLzMxMzAzMzJlMzIzMTMxMmUzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzEzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9MaMA0GCSqG SIb3DQEBCwUAA4IBAQAk7jbu520p7UJAPdwOEisuwgDEsjHKOHfPmOpuLZtRSJdq BVnDSCkJkFITFkaFjESoUtmDaCaJywFcuXiBqnuH/kFbgwgRiCmxyD+I40nEy1Kq QbkTo5D7wkWN5ujzYLy9eSFRZ+8/sjwk7/4vnwT+uV62L765fU2HGyhewQo9KFis lUApOO8hFvoxhiVFkGXyxSUPu00KY9OmDwSn5eQ9tt2ulN2on/PKMsbKfPXgmlyM DVMLkQwpk3skQv6wWoX5EA1+dDdYBGAUGukSfFZBU92cuQXhdQQS+jquLElOkPVs ttXj1uLK6LWFJ8Dgrlh9LZn94LP55gEnoLUfrGYT -----END CERTIFICATE-----Generated at Sun Nov 24 14:55:03 2024 by rpki-client on console-fra.rpki-client.org