$ rpki-client -vvf repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39312e302f32342d3234203d3e20313530323232.roa File: 3130332e38382e39312e302f32342d3234203d3e20313530323232.roa (raw, json) Hash identifier: rr/FF8TlKCgY7syceND3zUio+J39Ph5cc7IH19bBsdM= Subject key identifier: 45:8B:CC:FB:D8:FF:A7:03:4F:89:DA:65:DF:54:CB:02:89:0D:C9:F0 Certificate issuer: /CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Certificate serial: 52D321FF86BED9A7D747D517FBE418A3E2F324DC Authority key identifier: 04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39312e302f32342d3234203d3e20313530323232.roa Signing time: Mon 11 Sep 2023 15:00:01 +0000 ROA not before: Mon 11 Sep 2023 14:55:01 +0000 ROA not after: Mon 09 Sep 2024 15:00:01 +0000 asID: 150222 IP address blocks: 103.88.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d3:21:ff:86:be:d9:a7:d7:47:d5:17:fb:e4:18:a3:e2:f3:24:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Validity Not Before: Sep 11 14:55:01 2023 GMT Not After : Sep 9 15:00:01 2024 GMT Subject: CN=458BCCFBD8FFA7034F89DA65DF54CB02890DC9F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4e:7e:76:a1:93:5d:47:80:30:6e:c9:64:b4: 08:44:25:76:36:b7:e7:61:80:ae:bb:2a:60:8b:ec: 84:68:61:fa:39:cc:f3:8a:f2:0d:f2:24:ac:b9:57: b3:fc:e8:90:d1:55:6f:d6:e9:41:91:7d:12:2f:96: 59:f7:6b:41:84:0a:c0:f1:6a:2e:57:17:64:8b:a7: c6:9d:64:e1:a3:a9:3f:72:1d:45:88:7c:c7:18:08: 7e:8a:d6:17:50:b8:66:96:3a:e9:6f:68:7d:37:ca: 87:4c:91:f2:1e:95:03:3f:31:7f:94:33:ca:ef:ab: d3:86:1e:36:2c:4d:de:04:af:ad:ac:8d:c2:03:5c: d8:b8:00:06:42:cc:27:e1:d3:ef:47:16:5b:d0:83: 3c:a1:e6:40:17:00:93:de:55:c8:a6:3a:15:1d:47: b9:17:ec:3f:07:de:7e:0a:a5:d1:80:94:e7:35:b3: c8:46:50:b9:be:d6:3d:18:75:3d:6d:cd:bf:f0:34: ec:a5:b0:ed:63:49:74:03:1b:52:33:d1:06:9f:12: b1:f2:88:af:d1:d8:da:4a:15:31:09:2b:25:43:25: c1:5a:50:d9:28:95:95:5a:35:0a:a4:bf:be:95:0a: 29:03:58:e2:b1:af:a6:b0:f7:61:8b:70:3b:6b:40: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8B:CC:FB:D8:FF:A7:03:4F:89:DA:65:DF:54:CB:02:89:0D:C9:F0 X509v3 Authority Key Identifier: keyid:04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39312e302f32342d3234203d3e20313530323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.91.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d4:b6:09:04:0d:9a:02:2a:4c:3c:af:26:06:db:57:60:d2: f5:b8:e2:32:39:36:d0:2a:fa:ea:2e:90:22:5c:dd:ff:fc:78: 9d:f3:02:d9:33:75:ea:fa:36:ca:23:dd:8c:83:16:d1:d7:8a: 2a:f9:ee:53:01:7d:07:a1:9c:a5:98:81:34:a8:ae:8c:c3:54: d0:29:56:94:a4:76:32:8d:52:7f:19:c5:07:09:7c:67:4c:7d: 6e:d4:4b:cb:e1:d4:8f:27:5b:3b:e3:34:e1:d8:a2:ae:b1:d4: 2e:7e:19:f8:6e:15:b7:c6:eb:79:9c:f4:94:6c:75:84:9f:9c: e4:1b:9c:83:56:8e:fd:0f:5e:e2:fa:b4:fb:a7:6f:9b:d0:61: 38:3a:af:46:cc:98:b7:86:f1:19:b4:d8:c3:c4:36:68:3f:c6: 2f:14:0a:ed:6b:91:69:26:00:96:93:ec:dc:0b:56:37:06:10: 1a:e6:3d:ba:34:0e:1c:0e:1b:57:ee:4e:86:a2:85:a2:32:b9: 1f:78:4b:1f:be:27:ae:18:14:bd:c6:16:dd:d6:66:5d:d6:1f: 67:f6:46:c3:29:14:6f:7f:14:21:3a:e6:b8:fc:e8:07:fb:3e: 06:8f:26:71:2b:76:91:32:64:29:ac:b6:91:41:39:77:4d:19: ee:c9:80:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUtMh/4a+2afXR9UX++QYo+LzJNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYx MUNDRjBEQjAeFw0yMzA5MTExNDU1MDFaFw0yNDA5MDkxNTAwMDFaMDMxMTAvBgNV BAMTKDQ1OEJDQ0ZCRDhGRkE3MDM0Rjg5REE2NURGNTRDQjAyODkwREM5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkTn52oZNdR4AwbslktAhEJXY2 t+dhgK67KmCL7IRoYfo5zPOK8g3yJKy5V7P86JDRVW/W6UGRfRIvlln3a0GECsDx ai5XF2SLp8adZOGjqT9yHUWIfMcYCH6K1hdQuGaWOulvaH03yodMkfIelQM/MX+U M8rvq9OGHjYsTd4Er62sjcIDXNi4AAZCzCfh0+9HFlvQgzyh5kAXAJPeVcimOhUd R7kX7D8H3n4KpdGAlOc1s8hGULm+1j0YdT1tzb/wNOylsO1jSXQDG1Iz0QafErHy iK/R2NpKFTEJKyVDJcFaUNkolZVaNQqkv76VCikDWOKxr6aw92GLcDtrQLtFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURYvM+9j/pwNPidpl31TLAokNyfAwHwYDVR0j BBgwFoAUBO47w2kXMuBp3w2dKd42BhHM8NswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTkxODA5ZS1kZDQ5LTRjNTItYjExZi0yYTUxOGMzYWE4NTYvMC8wNEVFM0JDMzY5 MTczMkUwNjlERjBEOUQyOURFMzYwNjExQ0NGMERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYxMUND RjBEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOTE4MDllLWRkNDktNGM1Mi1i MTFmLTJhNTE4YzNhYTg1Ni8wLzMxMzAzMzJlMzgzODJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdYWzANBgkqhkiG 9w0BAQsFAAOCAQEAVdS2CQQNmgIqTDyvJgbbV2DS9bjiMjk20Cr66i6QIlzd//x4 nfMC2TN16vo2yiPdjIMW0deKKvnuUwF9B6GcpZiBNKiujMNU0ClWlKR2Mo1SfxnF Bwl8Z0x9btRLy+HUjydbO+M04diirrHULn4Z+G4Vt8breZz0lGx1hJ+c5Bucg1aO /Q9e4vq0+6dvm9BhODqvRsyYt4bxGbTYw8Q2aD/GLxQK7WuRaSYAlpPs3AtWNwYQ GuY9ujQOHA4bV+5OhqKFojK5H3hLH74nrhgUvcYW3dZmXdYfZ/ZGwykUb38UITrm uPzoB/s+Bo8mcSt2kTJkKay2kUE5d00Z7smAeQ== -----END CERTIFICATE-----Generated at Fri Jun 21 18:47:41 2024 by rpki-client on console-fra.rpki-client.org