$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa File: 3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa (raw, json) Hash identifier: f0ac0M2PbiDKp8geVIwoBY5AfaQ8tzoPZGu7yXlLrZw= Subject key identifier: 73:B0:19:E0:8E:3C:50:C2:B6:DE:35:3B:62:11:59:02:16:B9:3B:0A Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Certificate serial: 350E1381F2A37C1B9113D22031548D51DCAC3048 Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa Signing time: Thu 11 Jan 2024 08:01:02 +0000 ROA not before: Thu 11 Jan 2024 07:56:02 +0000 ROA not after: Thu 09 Jan 2025 08:01:02 +0000 asID: 138876 IP address blocks: 103.140.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0e:13:81:f2:a3:7c:1b:91:13:d2:20:31:54:8d:51:dc:ac:30:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Validity Not Before: Jan 11 07:56:02 2024 GMT Not After : Jan 9 08:01:02 2025 GMT Subject: CN=73B019E08E3C50C2B6DE353B6211590216B93B0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:7e:e5:56:79:08:d8:19:d6:2d:87:c1:11: d9:31:d6:bf:2e:61:8a:37:3b:ff:c7:d5:98:fa:93: 55:49:17:d0:35:db:a4:79:56:03:05:89:d4:f4:75: d7:6f:5d:16:0f:90:fd:f8:10:67:ab:cc:c5:0d:63: bc:07:f0:86:02:ed:43:d6:2d:65:cd:bf:9e:d5:ae: e4:19:4b:e4:e2:1f:a4:19:b5:fd:41:83:63:1a:13: 1c:4f:75:92:1e:db:36:ba:bb:cc:e2:79:0f:a3:97: 5d:d6:29:10:3e:67:35:b4:56:37:30:66:f8:d9:f3: 24:3e:db:c2:81:e4:e5:f8:b8:82:1a:f5:85:0d:04: 49:e0:f6:1a:db:5c:29:ad:88:f0:f0:f8:d3:72:3c: 5e:e6:3f:69:34:d1:cf:ef:45:d3:d7:22:df:40:90: 63:3b:79:81:50:a1:32:5b:62:8a:7e:15:b7:fd:d2: dc:80:d0:72:48:d5:94:9e:cd:c0:fe:9b:76:cb:76: 6c:53:c8:ef:c0:c3:b3:1b:d7:fe:30:91:73:3f:0b: 05:73:55:f5:3f:45:c0:e0:09:e0:ff:fc:be:42:1d: 0c:94:b1:d7:25:ad:40:62:08:f5:e6:ee:5a:fb:83: c0:52:4e:03:b1:f0:c2:92:9a:ef:dd:de:87:c8:ed: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B0:19:E0:8E:3C:50:C2:B6:DE:35:3B:62:11:59:02:16:B9:3B:0A X509v3 Authority Key Identifier: keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.90.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:bb:d7:bc:e8:5d:ad:e2:f8:69:37:81:5f:20:2e:ce:a7:8b: 19:a9:63:5b:4d:6e:bb:ed:af:1d:19:05:11:ae:3b:97:2f:01: 90:cb:ec:43:dc:57:29:69:53:3b:fc:b8:3b:b4:54:8e:31:a0: 58:40:41:22:52:9d:c6:5d:b9:6c:8a:94:25:61:66:42:5f:56: 4a:c1:fa:5d:a4:55:3b:ce:8a:f6:60:9d:ca:32:b1:d2:b4:35: 8d:ea:13:85:15:79:66:ca:bb:d3:e9:77:72:fa:af:4e:4f:1b: 72:5c:0b:3a:28:05:11:6f:2e:96:7d:ec:b0:0f:68:0c:e3:97: 44:27:a3:7c:f0:ab:66:40:cd:18:c8:97:e4:47:34:f2:4d:9e: fb:17:cc:dd:f7:3f:8f:db:40:40:00:e6:a6:7e:1e:58:1b:e5: eb:6f:7f:6a:43:36:d1:ec:1b:65:b4:bd:cd:c1:57:de:4e:82: cf:44:1f:44:f7:8e:65:6a:3a:a8:57:d0:12:0a:69:14:83:c9: 1e:8a:45:cf:8f:0e:e1:4c:fd:10:17:b6:b1:85:9c:2e:86:3b: 21:39:eb:d8:a8:8e:77:99:48:de:d1:43:7b:b1:dd:3b:83:fd: 6d:cf:4d:8c:f3:2f:b0:30:93:78:68:85:23:e1:38:fb:fc:1d: 7e:d6:d7:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNQ4TgfKjfBuRE9IgMVSNUdysMEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NB RDk3MkZDRDAeFw0yNDAxMTEwNzU2MDJaFw0yNTAxMDkwODAxMDJaMDMxMTAvBgNV BAMTKDczQjAxOUUwOEUzQzUwQzJCNkRFMzUzQjYyMTE1OTAyMTZCOTNCMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZfH7lVnkI2BnWLYfBEdkx1r8u YYo3O//H1Zj6k1VJF9A126R5VgMFidT0dddvXRYPkP34EGerzMUNY7wH8IYC7UPW LWXNv57VruQZS+TiH6QZtf1Bg2MaExxPdZIe2za6u8zieQ+jl13WKRA+ZzW0Vjcw ZvjZ8yQ+28KB5OX4uIIa9YUNBEng9hrbXCmtiPDw+NNyPF7mP2k00c/vRdPXIt9A kGM7eYFQoTJbYop+Fbf90tyA0HJI1ZSezcD+m3bLdmxTyO/Aw7Mb1/4wkXM/CwVz VfU/RcDgCeD//L5CHQyUsdclrUBiCPXm7lr7g8BSTgOx8MKSmu/d3ofI7a15AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc7AZ4I48UMK23jU7YhFZAha5OwowHwYDVR0j BBgwFoAURWlXtuMqvRV2E2v0s57EzK2XL80wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmE5ZGRmNy01NzZhLTRhNTgtODliYi03ZTg5Mjg5MDIyNzAvMC80NTY5NTdCNkUz MkFCRDE1NzYxMzZCRjRCMzlFQzRDQ0FEOTcyRkNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NBRDk3 MkZDRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YTlkZGY3LTU3NmEtNGE1OC04 OWJiLTdlODkyODkwMjI3MC8wLzMxMzAzMzJlMzEzNDMwMmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4xaMA0GCSqG SIb3DQEBCwUAA4IBAQAeu9e86F2t4vhpN4FfIC7Op4sZqWNbTW677a8dGQURrjuX LwGQy+xD3FcpaVM7/Lg7tFSOMaBYQEEiUp3GXblsipQlYWZCX1ZKwfpdpFU7zor2 YJ3KMrHStDWN6hOFFXlmyrvT6Xdy+q9OTxtyXAs6KAURby6WfeywD2gM45dEJ6N8 8KtmQM0YyJfkRzTyTZ77F8zd9z+P20BAAOamfh5YG+Xrb39qQzbR7BtltL3NwVfe ToLPRB9E945lajqoV9ASCmkUg8keikXPjw7hTP0QF7axhZwuhjshOevYqI53mUje 0UN7sd07g/1tz02M8y+wMJN4aIUj4Tj7/B1+1teS -----END CERTIFICATE-----Generated at Sun Jun 30 06:39:28 2024 by rpki-client on console-ams.rpki-client.org