$ rpki-client -vvf repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa File: 3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa (raw, json) Hash identifier: sprm3SkuUjx8GO16otbVR6Fs16cE4VStHw110jcReM4= Subject key identifier: 48:AD:19:A6:07:69:B2:8F:64:04:23:EF:50:21:50:72:2F:8F:1F:43 Certificate issuer: /CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Certificate serial: 027CD04304AB1EBF57D6111C732BE5DFAFE46A36 Authority key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa Signing time: Sat 16 Sep 2023 14:00:01 +0000 ROA not before: Sat 16 Sep 2023 13:55:01 +0000 ROA not after: Sat 14 Sep 2024 14:00:01 +0000 asID: 141985 IP address blocks: 103.167.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 17:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:7c:d0:43:04:ab:1e:bf:57:d6:11:1c:73:2b:e5:df:af:e4:6a:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Validity Not Before: Sep 16 13:55:01 2023 GMT Not After : Sep 14 14:00:01 2024 GMT Subject: CN=48AD19A60769B28F640423EF502150722F8F1F43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:48:69:09:16:06:bd:d3:b5:5f:7c:df:20: d3:ee:aa:f0:19:76:c3:46:62:2c:fb:1d:87:6b:fb: 84:f4:cd:a5:d2:21:34:64:94:bb:5e:13:b5:10:6a: 0c:5c:4c:73:c4:88:24:f1:75:7e:0d:0d:58:24:28: d2:5e:d2:9f:06:2a:b7:30:0c:6e:f9:71:6c:d0:e9: d0:b9:c3:70:7a:a6:2b:54:13:ee:a4:4b:78:21:2f: 95:e0:6c:09:02:19:33:e8:a7:92:c4:b2:c6:ae:29: 8d:b7:8e:37:40:8e:d7:2e:e6:41:e8:c7:b2:44:16: db:c6:15:b6:63:42:85:a8:95:40:3a:24:51:37:68: 10:b7:fe:3c:26:24:d5:0b:dd:1b:87:44:9d:48:bd: 02:66:ae:7a:74:94:de:9b:e3:45:cb:3e:fa:e0:28: 6f:7c:d7:ac:79:3f:91:f2:93:71:bb:1c:61:03:13: 57:08:71:1c:e2:b6:21:10:b3:8e:7a:28:ff:c6:64: 4e:92:b3:dd:f9:46:9e:2e:35:d1:27:84:6d:70:cc: 27:2e:9e:fb:84:1e:18:59:fc:ac:9c:02:13:dc:c3: e5:d0:f9:c1:6d:94:48:2d:27:fb:27:ae:a6:98:0a: 9c:66:0a:e6:3b:b2:81:de:ed:31:2f:c7:65:82:dd: 26:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AD:19:A6:07:69:B2:8F:64:04:23:EF:50:21:50:72:2F:8F:1F:43 X509v3 Authority Key Identifier: keyid:35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.169.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:fd:a3:85:9d:1d:f9:29:db:5e:2e:03:74:12:a1:70:8d:e3: ab:42:bd:1a:26:7d:b3:f1:cc:f1:62:d6:b8:d3:12:40:57:5b: a5:80:57:2b:f0:6a:19:85:a1:ba:2a:60:bd:14:3c:0c:eb:bc: ec:60:5f:82:56:91:d9:30:0a:a2:fb:e0:af:0a:93:7c:0d:2d: 2f:6e:ca:63:6d:f0:5f:1d:19:b4:95:c9:6b:5d:c7:31:85:58: 34:d9:90:b9:d3:b2:5b:6c:e4:01:16:25:02:0f:99:24:66:c0: 0f:25:c6:1a:55:15:0a:be:48:13:a0:0c:76:b9:85:54:c9:08: ca:52:d1:d9:dc:a3:1a:6d:e4:79:fd:d0:f3:85:d3:d3:94:de: 79:90:e5:53:79:d1:ca:9a:6c:cc:22:96:c0:67:18:32:4b:7b: fc:f2:9b:f9:8a:26:fc:b8:ba:88:52:e7:9a:28:f8:f7:0e:65: f7:cc:e4:f4:09:c8:40:95:d5:5b:a2:2d:9c:ac:6c:cb:b0:f3: 70:f9:82:39:76:3d:3d:da:3e:9c:ad:a9:ad:e3:55:84:6a:56: 4d:30:d9:6e:4f:a0:88:8d:8a:c7:98:89:b4:bb:a4:02:94:1d: 49:a3:f2:e2:0e:af:59:77:28:54:02:a1:6f:e5:93:23:82:72: b8:83:bc:98 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAnzQQwSrHr9X1hEccyvl36/kajYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1 RUE0M0UyQjAeFw0yMzA5MTYxMzU1MDFaFw0yNDA5MTQxNDAwMDFaMDMxMTAvBgNV BAMTKDQ4QUQxOUE2MDc2OUIyOEY2NDA0MjNFRjUwMjE1MDcyMkY4RjFGNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC300hpCRYGvdO1X3zfINPuqvAZ dsNGYiz7HYdr+4T0zaXSITRklLteE7UQagxcTHPEiCTxdX4NDVgkKNJe0p8GKrcw DG75cWzQ6dC5w3B6pitUE+6kS3ghL5XgbAkCGTPop5LEssauKY23jjdAjtcu5kHo x7JEFtvGFbZjQoWolUA6JFE3aBC3/jwmJNUL3RuHRJ1IvQJmrnp0lN6b40XLPvrg KG9816x5P5Hyk3G7HGEDE1cIcRzitiEQs456KP/GZE6Ss935Rp4uNdEnhG1wzCcu nvuEHhhZ/KycAhPcw+XQ+cFtlEgtJ/snrqaYCpxmCuY7soHe7TEvx2WC3Sb1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSK0Zpgdpso9kBCPvUCFQci+PH0MwHwYDVR0j BBgwFoAUNX3qxebBGzw+FS1aJPjYMV6kPiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMC8zNTdERUFDNUU2 QzExQjNDM0UxNTJENUEyNEY4RDgzMTVFQTQzRTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1RUE0 M0UyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJmLWY5MjQtNGVjMi1i MWYxLWExMzA1ZDIzZDUzYS8wLzMxMzAzMzJlMzEzNjM3MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6kwDQYJ KoZIhvcNAQELBQADggEBAE/9o4WdHfkp214uA3QSoXCN46tCvRomfbPxzPFi1rjT EkBXW6WAVyvwahmFoboqYL0UPAzrvOxgX4JWkdkwCqL74K8Kk3wNLS9uymNt8F8d GbSVyWtdxzGFWDTZkLnTslts5AEWJQIPmSRmwA8lxhpVFQq+SBOgDHa5hVTJCMpS 0dncoxpt5Hn90POF09OU3nmQ5VN50cqabMwilsBnGDJLe/zym/mKJvy4uohS55oo +PcOZffM5PQJyECV1VuiLZysbMuw83D5gjl2PT3aPpytqa3jVYRqVk0w2W5PoIiN iseYibS7pAKUHUmj8uIOr1l3KFQCoW/lkyOCcriDvJg= -----END CERTIFICATE-----Generated at Fri May 31 17:42:49 2024 by rpki-client on console-fra.rpki-client.org