$ rpki-client -vvf repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa File: 3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa (raw, json) Hash identifier: i/ie7OhnJbGK7CYcS1Vf86pvok7cIIxn1JuOFcEq4zY= Subject key identifier: 9A:75:E7:1C:37:39:A4:3F:68:10:84:FD:4C:0C:71:71:0E:91:1F:5D Certificate issuer: /CN=45422D0C59556C680872F58CC42068EF3ED1BA2E Certificate serial: 1F2225BBBCCF59FA00C778632E814544EC0CEE69 Authority key identifier: 45:42:2D:0C:59:55:6C:68:08:72:F5:8C:C4:20:68:EF:3E:D1:BA:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa Signing time: Tue 13 Feb 2024 06:00:01 +0000 ROA not before: Tue 13 Feb 2024 05:55:01 +0000 ROA not after: Tue 11 Feb 2025 06:00:01 +0000 asID: 142398 IP address blocks: 103.172.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.crl rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:22:25:bb:bc:cf:59:fa:00:c7:78:63:2e:81:45:44:ec:0c:ee:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45422D0C59556C680872F58CC42068EF3ED1BA2E Validity Not Before: Feb 13 05:55:01 2024 GMT Not After : Feb 11 06:00:01 2025 GMT Subject: CN=9A75E71C3739A43F681084FD4C0C71710E911F5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:08:52:1b:ce:11:79:bb:5b:cc:1f:90:a6:f0: b4:74:bb:25:44:d5:04:50:eb:85:08:a7:84:4e:e9: bc:da:3a:36:c3:03:1c:4f:2f:d4:0e:c1:97:ad:ae: f9:b5:d1:01:51:6e:39:40:ba:5e:5e:3d:97:80:ed: 71:43:28:19:78:8c:b2:77:08:5e:c8:a7:37:f4:b6: f5:db:23:f6:0a:dc:5f:c0:d3:c5:cb:3a:f6:dc:51: 26:68:44:58:da:2c:2f:20:b3:f4:62:cb:47:64:b0: 92:23:b1:f1:98:b6:65:ee:91:aa:0a:96:84:5f:ea: 86:77:f4:a4:03:7d:62:28:8d:84:ad:02:43:82:f3: bf:f2:29:7f:8f:20:c7:cb:58:87:55:27:55:5b:53: 21:c7:36:18:dd:15:2d:c9:a0:d4:5b:a0:52:ca:f1: 61:09:df:c6:1c:84:2b:2c:0f:43:43:0d:4d:ea:cb: d1:ec:54:8e:01:23:ae:7f:0a:19:7a:b2:d7:6d:a1: 9a:d6:66:a4:3b:99:e1:ec:86:95:b5:53:c7:40:21: 3a:90:9f:3d:31:0b:fe:8e:e0:9e:28:fc:fa:b5:98: 04:a9:7b:f0:ba:0e:3e:a9:32:87:78:b3:fa:77:9b: 9c:16:8d:65:bc:b1:69:92:b8:8e:7b:c8:ca:52:d3: 19:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:75:E7:1C:37:39:A4:3F:68:10:84:FD:4C:0C:71:71:0E:91:1F:5D X509v3 Authority Key Identifier: keyid:45:42:2D:0C:59:55:6C:68:08:72:F5:8C:C4:20:68:EF:3E:D1:BA:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.120.0/23 Signature Algorithm: sha256WithRSAEncryption 85:e7:8a:b4:8e:66:4f:b1:16:4f:c4:ec:34:dc:30:b1:a8:17: c3:e9:85:79:84:f5:56:27:dd:b7:b9:29:90:fc:e8:79:bc:63: 87:22:45:73:c7:61:53:69:54:99:49:de:69:d5:63:c9:0a:c0: 8e:06:82:9b:94:0b:9e:42:89:eb:7a:19:bd:51:96:c0:ea:7e: d5:5d:2b:76:56:b4:6e:f5:28:6e:c8:2d:97:fc:db:f3:c2:01: 41:f5:37:c5:8a:21:cb:47:06:71:57:0c:8a:ef:7f:13:b7:3d: 1f:d6:a5:95:2a:5c:b0:7d:59:bd:8b:c3:31:c6:00:96:38:c1: 44:5e:6a:46:1b:e6:99:c7:10:41:f4:49:6b:15:c5:24:da:7f: d8:4b:85:22:15:ac:47:1b:d2:6f:7a:69:63:4f:64:90:e8:67: af:c2:3c:5d:26:60:a0:db:e4:36:d9:0d:f1:e5:4a:2b:38:ab: 34:c8:1e:72:7c:6e:8b:a6:98:8d:0c:07:a8:52:84:b8:37:2d: 0f:07:48:f6:bf:cd:b3:9e:c5:08:54:f2:af:7b:73:70:c2:40: 56:fb:54:04:ad:d6:4d:f9:c8:ef:0e:53:dc:9e:46:37:ec:0d: 88:5a:25:3f:55:e4:85:8e:be:2b:43:81:a4:93:76:0b:a9:24: 91:08:3a:c2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHyIlu7zPWfoAx3hjLoFFROwM7mkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU0MjJEMEM1OTU1NkM2ODA4NzJGNThDQzQyMDY4RUYz RUQxQkEyRTAeFw0yNDAyMTMwNTU1MDFaFw0yNTAyMTEwNjAwMDFaMDMxMTAvBgNV BAMTKDlBNzVFNzFDMzczOUE0M0Y2ODEwODRGRDRDMEM3MTcxMEU5MTFGNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuCFIbzhF5u1vMH5Cm8LR0uyVE 1QRQ64UIp4RO6bzaOjbDAxxPL9QOwZetrvm10QFRbjlAul5ePZeA7XFDKBl4jLJ3 CF7Ipzf0tvXbI/YK3F/A08XLOvbcUSZoRFjaLC8gs/Riy0dksJIjsfGYtmXukaoK loRf6oZ39KQDfWIojYStAkOC87/yKX+PIMfLWIdVJ1VbUyHHNhjdFS3JoNRboFLK 8WEJ38YchCssD0NDDU3qy9HsVI4BI65/Chl6stdtoZrWZqQ7meHshpW1U8dAITqQ nz0xC/6O4J4o/Pq1mASpe/C6Dj6pMod4s/p3m5wWjWW8sWmSuI57yMpS0xmTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmnXnHDc5pD9oEIT9TAxxcQ6RH10wHwYDVR0j BBgwFoAURUItDFlVbGgIcvWMxCBo7z7Rui4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGQ3NzRmNC0yMzAwLTRlNjktYTZjYS03Y2Y0ODAwMmUyZmIvMC80NTQyMkQwQzU5 NTU2QzY4MDg3MkY1OENDNDIwNjhFRjNFRDFCQTJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU0MjJEMEM1OTU1NkM2ODA4NzJGNThDQzQyMDY4RUYzRUQx QkEyRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZDc3NGY0LTIzMDAtNGU2OS1h NmNhLTdjZjQ4MDAyZTJmYi8wLzMxMzAzMzJlMzEzNzMyMmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrHgwDQYJ KoZIhvcNAQELBQADggEBAIXnirSOZk+xFk/E7DTcMLGoF8PphXmE9VYn3be5KZD8 6Hm8Y4ciRXPHYVNpVJlJ3mnVY8kKwI4GgpuUC55Ciet6Gb1RlsDqftVdK3ZWtG71 KG7ILZf82/PCAUH1N8WKIctHBnFXDIrvfxO3PR/WpZUqXLB9Wb2LwzHGAJY4wURe akYb5pnHEEH0SWsVxSTaf9hLhSIVrEcb0m96aWNPZJDoZ6/CPF0mYKDb5DbZDfHl Sis4qzTIHnJ8boummI0MB6hShLg3LQ8HSPa/zbOexQhU8q97c3DCQFb7VASt1k35 yO8OU9yeRjfsDYhaJT9V5IWOvitDgaSTdgupJJEIOsI= -----END CERTIFICATE-----Generated at Sat Jun 22 13:19:02 2024 by rpki-client on console-fra.rpki-client.org