$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa File: 3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa (raw, json) Hash identifier: Gn/iSrl537wbyAe5irVa7pJk2Exp8SSp3ApC2XmV3JQ= Subject key identifier: 07:B3:C8:A8:2B:86:8F:F3:77:4D:FD:AF:A3:73:71:57:2B:83:EA:46 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 7FDE919730255ADD12D712020319AD2684F5B0A9 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa Signing time: Mon 19 Jun 2023 16:40:35 +0000 ROA not before: Mon 19 Jun 2023 16:35:35 +0000 ROA not after: Mon 17 Jun 2024 16:40:35 +0000 asID: 140423 IP address blocks: 103.20.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:de:91:97:30:25:5a:dd:12:d7:12:02:03:19:ad:26:84:f5:b0:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Jun 19 16:35:35 2023 GMT Not After : Jun 17 16:40:35 2024 GMT Subject: CN=07B3C8A82B868FF3774DFDAFA37371572B83EA46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:b0:8c:47:2f:b7:0a:70:92:3e:68:1d:1f: 0d:1f:32:ab:6b:32:ad:e3:f4:f5:c5:f0:23:8f:05: b6:8f:ba:0a:2b:f0:73:95:a9:e2:10:0e:61:0f:2b: aa:50:53:11:af:ab:61:67:1a:f4:57:38:e2:b0:68: 68:da:16:6d:85:eb:99:41:26:70:3a:d6:13:b9:4d: e9:c2:76:97:83:67:2a:83:df:9c:9e:d9:27:99:b8: 4b:0d:78:df:21:c7:db:41:e5:94:1c:90:de:60:cb: 4b:75:30:7a:6d:69:69:82:78:bb:fa:6f:58:b2:15: 35:b0:a8:69:9a:5a:ef:9f:6b:7c:02:62:58:3d:50: 87:9b:87:eb:de:12:ea:a7:a1:e2:66:08:f1:5e:76: ba:87:01:8e:cb:60:5d:ed:f1:d1:36:db:cf:d5:82: f8:a2:58:7e:f7:27:ee:ab:c5:22:4d:83:c9:a6:47: c5:4d:14:40:45:f8:d3:40:10:ee:49:8c:41:c1:ee: b7:7f:3d:f6:fd:b0:41:b5:32:29:b3:68:08:d2:d6: 46:60:40:d5:6e:0e:c2:58:9f:97:b0:5e:57:ff:c5: b4:41:a9:06:8b:5d:53:41:95:a6:20:f9:1e:cd:c6: d5:ab:d3:cc:b5:ac:42:11:17:af:cf:2f:3f:ab:e7: 18:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B3:C8:A8:2B:86:8F:F3:77:4D:FD:AF:A3:73:71:57:2B:83:EA:46 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.109.0/24 Signature Algorithm: sha256WithRSAEncryption 43:9c:bc:d3:2b:b2:2c:5a:8c:4f:46:6e:3b:f6:44:4e:c0:79: db:ad:a8:ee:af:2b:27:d7:d8:fe:7b:0c:b7:c4:4b:0c:14:99: 1b:45:24:73:9b:c4:7d:fb:d1:bd:b4:36:f6:d5:04:dc:d4:4a: bf:10:c3:8e:87:45:69:b5:87:83:f8:eb:e4:1d:4f:54:f8:2f: 67:d3:eb:d8:f6:fc:8c:87:83:c7:f1:d6:1c:1e:0b:5d:b5:67: b6:c1:d8:2d:3d:e6:87:20:cb:ab:11:62:9f:27:96:26:13:13: 86:a0:06:c2:19:3b:08:98:7f:2e:3f:81:f6:f0:9f:dc:f9:19: 53:4d:74:41:56:4c:da:4d:6d:cb:fb:df:26:4f:54:81:1d:01: 2f:7e:b6:fa:48:82:76:52:12:5f:60:91:b0:1b:a7:94:5f:32: b2:e4:98:68:01:c4:08:da:b6:fa:41:c5:0b:aa:2d:fc:60:f1: 51:a1:5a:26:d6:98:e2:81:23:99:5a:d5:09:06:94:18:67:51: 41:59:d0:26:69:dd:9b:92:d1:f3:51:77:33:c0:08:ef:89:a5: 74:b1:ca:59:4d:39:14:37:85:03:5b:8f:bd:b5:ef:53:ab:2f: 8f:c3:c2:4e:7f:9b:b3:49:03:36:51:4d:d7:7c:33:80:55:3e: 36:83:76:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf96RlzAlWt0S1xICAxmtJoT1sKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yMzA2MTkxNjM1MzVaFw0yNDA2MTcxNjQwMzVaMDMxMTAvBgNV BAMTKDA3QjNDOEE4MkI4NjhGRjM3NzRERkRBRkEzNzM3MTU3MkI4M0VBNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIGbCMRy+3CnCSPmgdHw0fMqtr Mq3j9PXF8COPBbaPugor8HOVqeIQDmEPK6pQUxGvq2FnGvRXOOKwaGjaFm2F65lB JnA61hO5TenCdpeDZyqD35ye2SeZuEsNeN8hx9tB5ZQckN5gy0t1MHptaWmCeLv6 b1iyFTWwqGmaWu+fa3wCYlg9UIebh+veEuqnoeJmCPFedrqHAY7LYF3t8dE228/V gviiWH73J+6rxSJNg8mmR8VNFEBF+NNAEO5JjEHB7rd/Pfb9sEG1MimzaAjS1kZg QNVuDsJYn5ewXlf/xbRBqQaLXVNBlaYg+R7NxtWr08y1rEIRF6/PLz+r5xixAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB7PIqCuGj/N3Tf2vo3NxVyuD6kYwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRtMA0GCSqG SIb3DQEBCwUAA4IBAQBDnLzTK7IsWoxPRm479kROwHnbrajurysn19j+ewy3xEsM FJkbRSRzm8R9+9G9tDb21QTc1Eq/EMOOh0VptYeD+OvkHU9U+C9n0+vY9vyMh4PH 8dYcHgtdtWe2wdgtPeaHIMurEWKfJ5YmExOGoAbCGTsImH8uP4H28J/c+RlTTXRB VkzaTW3L+98mT1SBHQEvfrb6SIJ2UhJfYJGwG6eUXzKy5JhoAcQI2rb6QcULqi38 YPFRoVom1pjigSOZWtUJBpQYZ1FBWdAmad2bktHzUXczwAjviaV0scpZTTkUN4UD W4+9te9Tqy+Pw8JOf5uzSQM2UU3XfDOAVT42g3bc -----END CERTIFICATE-----Generated at Fri May 3 06:17:39 2024 by rpki-client on console-ams.rpki-client.org