$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: MxC9/+bVrbcGn/gkwiaEp0VAE7EQaPVa6ngLPRYTxK8= Subject key identifier: CA:21:C7:92:A2:CC:72:C2:26:DA:3F:BB:FC:3C:0B:FA:5C:5F:49:18 Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 0C863186AC15FDA20B7182C82264017A5145260D Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa Signing time: Sun 22 Oct 2023 09:06:27 +0000 ROA not before: Sun 22 Oct 2023 09:01:27 +0000 ROA not after: Sun 20 Oct 2024 09:06:27 +0000 asID: 142373 IP address blocks: 103.171.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:86:31:86:ac:15:fd:a2:0b:71:82:c8:22:64:01:7a:51:45:26:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Oct 22 09:01:27 2023 GMT Not After : Oct 20 09:06:27 2024 GMT Subject: CN=CA21C792A2CC72C226DA3FBBFC3C0BFA5C5F4918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:31:03:e4:6b:74:2c:31:3a:31:78:c3:1d:04: 55:fc:1c:80:08:99:bc:10:f9:5a:28:5e:93:29:a4: 47:ae:b1:c3:e6:dd:20:a4:31:08:39:9f:49:ee:a4: ec:eb:b7:53:c7:05:6e:b8:cf:b0:ba:ac:2e:42:47: e6:60:db:d4:18:0e:e3:16:5e:ea:3d:01:3c:59:a5: 29:a9:2c:bc:59:09:0f:21:1e:c4:76:7e:cb:83:af: 56:21:1f:fc:d4:e0:54:f9:e8:e5:dc:42:9c:3a:ff: b2:fc:3c:e9:02:d4:c7:03:78:2b:11:77:cf:5d:d1: 33:66:d9:fa:51:67:70:45:50:de:c3:9e:95:49:8a: c6:51:5a:70:5e:81:d7:96:d8:81:a8:48:9c:cc:48: 38:a2:6b:ba:ab:f8:27:c4:2d:ae:24:87:0c:29:e7: c2:73:0e:60:cc:53:ed:73:4c:d8:26:42:03:8b:55: bd:94:e2:91:6d:e1:09:6b:47:1c:e6:99:f3:6a:34: 62:03:88:44:69:48:47:84:4b:e5:23:20:69:5d:21: 5a:35:f0:b2:a0:3d:14:82:ce:d4:04:f3:7b:09:9f: 68:1a:3c:68:52:8c:ba:03:86:54:f1:f3:5c:a0:0b: 8e:6f:38:2c:58:3d:5f:8e:74:8c:ae:f0:7e:7e:c6: 29:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:21:C7:92:A2:CC:72:C2:26:DA:3F:BB:FC:3C:0B:FA:5C:5F:49:18 X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.83.0/24 Signature Algorithm: sha256WithRSAEncryption be:ab:6d:25:0d:a9:8e:72:0b:d9:08:a4:28:20:9d:8a:2c:8b: c2:32:a0:c1:6b:56:0e:19:a6:5b:e8:a2:e6:f0:9c:17:06:e6: a6:31:1c:e1:86:ee:15:8e:d8:f1:99:18:5b:03:d8:20:af:bc: 3d:bc:b7:73:9d:72:a8:12:cd:a8:b8:88:d1:58:6d:f6:ad:f1: df:b4:86:17:24:78:cc:a6:be:0a:5e:50:2c:25:a8:d3:b1:00: c2:95:40:f2:e9:f9:4a:c6:e7:2f:1d:a6:63:f8:ee:2a:52:4d: 62:bf:59:f8:8c:e1:ca:81:c0:4f:27:4a:85:09:ec:f0:47:df: 88:88:10:30:fa:b1:24:26:60:12:ae:9c:c0:e7:13:70:61:20: da:53:dc:4d:c9:06:d6:4e:ca:bb:f3:d1:df:fd:2f:3c:93:d2: d0:cd:d8:48:66:f1:25:bf:c6:ba:50:a2:c8:81:c1:93:ed:cd: b7:39:a7:c2:3f:84:cd:ac:bc:c0:37:80:fb:90:31:e7:37:80: b1:1b:28:f6:9e:73:b9:f7:4d:79:bc:e1:f5:8a:54:9a:62:2a: 3b:8c:fa:f9:be:08:c5:b1:41:97:8d:d3:ec:64:0a:80:c7:86: 40:95:6d:a5:4b:c2:f4:33:fb:31:48:f9:b9:74:3b:e4:50:09: 4a:54:de:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDIYxhqwV/aILcYLIImQBelFFJg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yMzEwMjIwOTAxMjdaFw0yNDEwMjAwOTA2MjdaMDMxMTAvBgNV BAMTKENBMjFDNzkyQTJDQzcyQzIyNkRBM0ZCQkZDM0MwQkZBNUM1RjQ5MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfMQPka3QsMToxeMMdBFX8HIAI mbwQ+VooXpMppEeuscPm3SCkMQg5n0nupOzrt1PHBW64z7C6rC5CR+Zg29QYDuMW Xuo9ATxZpSmpLLxZCQ8hHsR2fsuDr1YhH/zU4FT56OXcQpw6/7L8POkC1McDeCsR d89d0TNm2fpRZ3BFUN7DnpVJisZRWnBegdeW2IGoSJzMSDiia7qr+CfELa4khwwp 58JzDmDMU+1zTNgmQgOLVb2U4pFt4QlrRxzmmfNqNGIDiERpSEeES+UjIGldIVo1 8LKgPRSCztQE83sJn2gaPGhSjLoDhlTx81ygC45vOCxYPV+OdIyu8H5+xinXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyiHHkqLMcsIm2j+7/DwL+lxfSRgwHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tTMA0GCSqG SIb3DQEBCwUAA4IBAQC+q20lDamOcgvZCKQoIJ2KLIvCMqDBa1YOGaZb6KLm8JwX BuamMRzhhu4VjtjxmRhbA9ggr7w9vLdznXKoEs2ouIjRWG32rfHftIYXJHjMpr4K XlAsJajTsQDClUDy6flKxucvHaZj+O4qUk1iv1n4jOHKgcBPJ0qFCezwR9+IiBAw +rEkJmASrpzA5xNwYSDaU9xNyQbWTsq789Hf/S88k9LQzdhIZvElv8a6UKLIgcGT 7c23OafCP4TNrLzAN4D7kDHnN4CxGyj2nnO59015vOH1ilSaYio7jPr5vgjFsUGX jdPsZAqAx4ZAlW2lS8L0M/sxSPm5dDvkUAlKVN4o -----END CERTIFICATE-----Generated at Sat May 4 03:05:12 2024 by rpki-client on console-ams.rpki-client.org