$ rpki-client -vvf repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa File: 3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa (raw, json) Hash identifier: 2Gq7YhMUywSmMYI7KU3ueuUQCsdMTL6YV6/kkusBwNg= Subject key identifier: 7D:81:EC:9E:C9:B8:A6:BC:77:5F:D8:CC:98:43:6A:8C:B3:F5:F1:0E Certificate issuer: /CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Certificate serial: 15F851D5259654B526828A2B48BF3D6B1065E9DC Authority key identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa Signing time: Wed 13 Mar 2024 10:00:07 +0000 ROA not before: Wed 13 Mar 2024 09:55:07 +0000 ROA not after: Wed 12 Mar 2025 10:00:07 +0000 asID: 134640 IP address blocks: 103.22.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.crl rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 09:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:f8:51:d5:25:96:54:b5:26:82:8a:2b:48:bf:3d:6b:10:65:e9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Validity Not Before: Mar 13 09:55:07 2024 GMT Not After : Mar 12 10:00:07 2025 GMT Subject: CN=7D81EC9EC9B8A6BC775FD8CC98436A8CB3F5F10E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ec:a1:48:29:3c:ea:7d:0a:35:39:9d:93:86: b3:c5:46:9d:d7:11:7d:37:2f:da:9f:d4:91:c7:51: 63:97:29:af:37:0a:11:9c:c8:fd:8e:f2:4e:3b:8e: ac:16:44:26:08:1f:3f:12:bc:b5:ec:0d:6d:3c:ee: 8e:b1:24:73:52:c1:52:0c:7d:38:0a:bb:dc:28:39: 7a:26:4f:d3:d6:2a:4a:97:02:fc:6f:a0:70:d5:4f: e6:97:1c:49:3f:9e:74:76:88:cd:cb:4e:dd:fc:31: 7f:44:d2:bf:12:06:88:33:76:74:ae:cf:84:ba:06: e7:99:bc:ef:51:82:58:ff:0c:55:25:d0:31:e8:c3: 85:44:21:d7:cb:65:4a:0c:9a:87:43:b9:18:ca:7b: 5a:e4:c1:a0:46:06:1f:a5:a6:37:d2:95:bc:80:ac: 59:05:5c:f0:09:a8:f9:6d:57:00:14:51:51:45:cc: 4f:83:4a:aa:1d:3e:c5:60:f1:78:05:4f:89:85:21: af:bd:54:ee:0d:39:8c:a6:cd:9a:f6:11:6e:c1:f0: 0f:b0:98:cb:5a:1b:de:90:54:3b:26:21:dc:8b:ef: 22:9f:03:4d:15:b3:5d:cc:a6:16:b7:a7:87:21:c6: 1a:58:8c:79:27:1c:af:99:ec:67:da:50:f0:f1:f3: 00:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:81:EC:9E:C9:B8:A6:BC:77:5F:D8:CC:98:43:6A:8C:B3:F5:F1:0E X509v3 Authority Key Identifier: keyid:A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/3130332e32322e3230342e302f32322d3234203d3e20313334363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.204.0/22 Signature Algorithm: sha256WithRSAEncryption 47:1f:e7:ae:94:38:b2:a6:ef:ff:a8:87:0c:fe:90:0d:b6:ba: e3:5f:ef:74:a5:21:48:e0:9a:cd:92:a0:65:b5:ed:88:a3:24: fb:23:a2:3d:b0:39:4e:ae:55:df:09:d4:2d:b5:77:15:50:73: c9:97:29:8a:88:bb:5a:b0:74:40:4a:36:ee:7d:d5:e1:b1:5c: 0c:e5:95:8c:89:86:b0:aa:aa:9d:93:e4:c1:ac:90:ea:5f:2d: 0b:0a:88:55:75:ba:1f:38:56:80:f2:1d:9d:a0:d2:67:17:e2: 56:f3:cf:6e:65:fa:86:ed:12:b7:ae:fa:39:c5:44:0b:47:cd: 06:0c:f8:19:bf:61:7a:8f:2a:fa:9b:b6:79:df:09:e9:e6:35: d3:c9:55:ec:fb:e5:13:d2:08:96:3d:42:ee:ef:a2:fa:01:82: 69:52:49:65:3e:a8:65:58:31:82:6a:32:ef:1a:63:4e:e5:29: 95:e2:3a:98:82:c0:73:41:85:fa:16:db:dc:ca:08:6c:de:eb: 65:57:ac:94:19:2c:3d:e7:cd:6b:60:0c:9b:11:8d:0a:f1:cd: eb:6d:03:88:c8:a5:a0:40:66:fb:0e:b7:87:81:1b:4f:4e:b4: 96:e7:c6:0b:f6:21:0f:e5:42:99:c3:0c:ba:2e:b8:97:67:16: f3:fd:38:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFfhR1SWWVLUmgoorSL89axBl6dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA3NUVGRTY1QzU5NjQzODQyN0M2QTIyRTYwRUIwQTAx QURFREE4QTAeFw0yNDAzMTMwOTU1MDdaFw0yNTAzMTIxMDAwMDdaMDMxMTAvBgNV BAMTKDdEODFFQzlFQzlCOEE2QkM3NzVGRDhDQzk4NDM2QThDQjNGNUYxMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM7KFIKTzqfQo1OZ2ThrPFRp3X EX03L9qf1JHHUWOXKa83ChGcyP2O8k47jqwWRCYIHz8SvLXsDW087o6xJHNSwVIM fTgKu9woOXomT9PWKkqXAvxvoHDVT+aXHEk/nnR2iM3LTt38MX9E0r8SBogzdnSu z4S6BueZvO9Rglj/DFUl0DHow4VEIdfLZUoMmodDuRjKe1rkwaBGBh+lpjfSlbyA rFkFXPAJqPltVwAUUVFFzE+DSqodPsVg8XgFT4mFIa+9VO4NOYymzZr2EW7B8A+w mMtaG96QVDsmIdyL7yKfA00Vs13Mpha3p4chxhpYjHknHK+Z7GfaUPDx8wBvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfYHsnsm4prx3X9jMmENqjLP18Q4wHwYDVR0j BBgwFoAUoHXv5lxZZDhCfGoi5g6woBre2oowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDRkMDM5Ny1mZmEwLTQ5MDMtODA1Zi0wODQ1MjdiYzQzMGMvMC9BMDc1RUZFNjVD NTk2NDM4NDI3QzZBMjJFNjBFQjBBMDFBREVEQThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA3NUVGRTY1QzU5NjQzODQyN0M2QTIyRTYwRUIwQTAxQURF REE4QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3LWZmYTAtNDkwMy04 MDVmLTA4NDUyN2JjNDMwYy8wLzMxMzAzMzJlMzIzMjJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxbMMA0GCSqG SIb3DQEBCwUAA4IBAQBHH+eulDiypu//qIcM/pANtrrjX+90pSFI4JrNkqBlte2I oyT7I6I9sDlOrlXfCdQttXcVUHPJlymKiLtasHRASjbufdXhsVwM5ZWMiYawqqqd k+TBrJDqXy0LCohVdbofOFaA8h2doNJnF+JW889uZfqG7RK3rvo5xUQLR80GDPgZ v2F6jyr6m7Z53wnp5jXTyVXs++UT0giWPULu76L6AYJpUkllPqhlWDGCajLvGmNO 5SmV4jqYgsBzQYX6Ftvcyghs3utlV6yUGSw9581rYAybEY0K8c3rbQOIyKWgQGb7 DreHgRtPTrSW58YL9iEP5UKZwwy6LriXZxbz/ThE -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:43 2024 by rpki-client on console-fra.rpki-client.org