$ rpki-client -vvf repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa File: 3130332e38382e39302e302f32342d3234203d3e20313530323232.roa (raw, json) Hash identifier: gwJS5eJa4NDCqVWSXSR+herfF4mL2qR1smHVTmiPzQ0= Subject key identifier: 27:DF:9E:CC:2C:B3:EB:03:7D:D4:56:C0:0D:05:05:07:C8:4B:EC:07 Certificate issuer: /CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Certificate serial: 2B15F080113D274A5A33B70A23EC99D8AD239086 Authority key identifier: 04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa Signing time: Mon 11 Sep 2023 15:00:01 +0000 ROA not before: Mon 11 Sep 2023 14:55:01 +0000 ROA not after: Mon 09 Sep 2024 15:00:01 +0000 asID: 150222 IP address blocks: 103.88.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:15:f0:80:11:3d:27:4a:5a:33:b7:0a:23:ec:99:d8:ad:23:90:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Validity Not Before: Sep 11 14:55:01 2023 GMT Not After : Sep 9 15:00:01 2024 GMT Subject: CN=27DF9ECC2CB3EB037DD456C00D050507C84BEC07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8f:23:0a:ef:82:b7:f6:6c:b9:a4:a7:36:8d: 5f:d6:67:8c:1e:ab:34:04:f9:d0:2b:d2:33:e7:8a: 89:92:01:09:a1:ef:21:e6:a6:2f:e9:4b:da:31:05: 57:11:77:3e:ea:f4:76:a4:5e:04:18:8f:da:cf:88: b8:38:85:bf:19:23:78:e6:9e:08:34:af:7e:6f:f7: 67:df:0f:8f:4b:ec:7c:c3:1d:6c:5f:04:4b:16:20: 14:da:d9:31:15:04:6a:5a:50:b9:2d:c1:f1:e7:5e: 5b:bc:6c:d3:28:2d:5b:87:39:b8:07:3d:e0:e9:2f: e6:0e:b5:00:e8:f8:5a:f6:f5:73:1c:ab:61:8d:a4: c8:50:58:d1:8f:dc:c5:d9:60:24:e7:8b:02:48:0c: e2:f0:15:59:cc:2f:4f:21:92:72:5d:e3:f9:0f:38: 6b:37:3e:a2:bc:21:05:0a:2f:81:d2:4e:e6:29:f5: dc:3a:1b:f8:73:23:e3:2b:57:38:da:50:d9:9a:90: 1e:be:18:f8:d3:4b:e5:6a:b3:ec:f9:dd:c5:ea:0e: e3:83:0b:41:21:29:ad:36:bf:8c:76:da:78:70:20: 3c:02:a9:69:78:99:f4:ce:5c:54:be:b5:37:e3:a3: 42:8f:7e:40:77:fe:0f:6d:f8:cd:fe:9f:a7:d4:fd: 36:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:DF:9E:CC:2C:B3:EB:03:7D:D4:56:C0:0D:05:05:07:C8:4B:EC:07 X509v3 Authority Key Identifier: keyid:04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.90.0/24 Signature Algorithm: sha256WithRSAEncryption a9:7c:9c:b1:2d:be:d3:57:db:ed:21:d4:20:02:c1:69:b5:89: ca:fb:48:1e:fd:3b:db:3c:11:2d:4a:a2:79:13:ac:b5:ba:c4: b3:42:55:8a:1a:56:b3:5f:68:0b:da:59:9e:46:cd:93:64:19: 5c:72:7b:a8:3f:bc:75:ca:79:a3:e4:b8:d8:4f:35:b4:4d:bd: 82:be:51:22:61:17:41:42:82:cf:b5:5d:bf:f0:7c:50:54:d2: 2b:9f:84:58:9c:92:b9:7c:54:2d:36:57:44:e8:92:5c:73:c3: 98:4a:0b:33:29:ea:23:92:3c:1b:e8:4f:e5:be:79:27:7f:c4: 4d:17:4b:cb:ae:24:79:60:ec:55:2b:01:da:53:54:b1:53:24: 8f:90:78:6a:bd:4c:ea:5a:ab:19:4e:90:a3:73:77:da:9f:55: f6:72:4c:56:38:39:ea:14:6a:d1:05:ee:b4:04:85:e8:f2:73: 5f:f1:87:a8:96:eb:b1:c4:ea:2d:cb:a6:ab:27:9a:89:46:43: 28:8a:0e:6f:4f:65:3e:a0:58:69:22:2b:f4:02:a2:e6:d3:16: 95:0e:fc:ef:9b:44:c4:9d:1a:72:74:3a:d1:df:dc:eb:4c:34: a3:da:42:36:22:be:9b:4e:ef:a5:b7:fd:a5:5a:51:af:70:17: 16:4c:12:73 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKxXwgBE9J0paM7cKI+yZ2K0jkIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYx MUNDRjBEQjAeFw0yMzA5MTExNDU1MDFaFw0yNDA5MDkxNTAwMDFaMDMxMTAvBgNV BAMTKDI3REY5RUNDMkNCM0VCMDM3REQ0NTZDMDBEMDUwNTA3Qzg0QkVDMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgjyMK74K39my5pKc2jV/WZ4we qzQE+dAr0jPniomSAQmh7yHmpi/pS9oxBVcRdz7q9HakXgQYj9rPiLg4hb8ZI3jm ngg0r35v92ffD49L7HzDHWxfBEsWIBTa2TEVBGpaULktwfHnXlu8bNMoLVuHObgH PeDpL+YOtQDo+Fr29XMcq2GNpMhQWNGP3MXZYCTniwJIDOLwFVnML08hknJd4/kP OGs3PqK8IQUKL4HSTuYp9dw6G/hzI+MrVzjaUNmakB6+GPjTS+Vqs+z53cXqDuOD C0EhKa02v4x22nhwIDwCqWl4mfTOXFS+tTfjo0KPfkB3/g9t+M3+n6fU/TabAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ9+ezCyz6wN91FbADQUFB8hL7AcwHwYDVR0j BBgwFoAUBO47w2kXMuBp3w2dKd42BhHM8NswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTkxODA5ZS1kZDQ5LTRjNTItYjExZi0yYTUxOGMzYWE4NTYvMC8wNEVFM0JDMzY5 MTczMkUwNjlERjBEOUQyOURFMzYwNjExQ0NGMERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYxMUND RjBEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOTE4MDllLWRkNDktNGM1Mi1i MTFmLTJhNTE4YzNhYTg1Ni8wLzMxMzAzMzJlMzgzODJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdYWjANBgkqhkiG 9w0BAQsFAAOCAQEAqXycsS2+01fb7SHUIALBabWJyvtIHv072zwRLUqieROstbrE s0JVihpWs19oC9pZnkbNk2QZXHJ7qD+8dcp5o+S42E81tE29gr5RImEXQUKCz7Vd v/B8UFTSK5+EWJySuXxULTZXROiSXHPDmEoLMynqI5I8G+hP5b55J3/ETRdLy64k eWDsVSsB2lNUsVMkj5B4ar1M6lqrGU6Qo3N32p9V9nJMVjg56hRq0QXutASF6PJz X/GHqJbrscTqLcumqyeaiUZDKIoOb09lPqBYaSIr9AKi5tMWlQ7875tExJ0acnQ6 0d/c60w0o9pCNiK+m07vpbf9pVpRr3AXFkwScw== -----END CERTIFICATE-----Generated at Sat Jun 1 04:06:51 2024 by rpki-client on console-ams.rpki-client.org