$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa File: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: 30qxcBNGXbPKjPzSGFvg4MhstUTk+wFXbUeAZJ6OvH8= Subject key identifier: CD:AE:FB:00:EA:81:AD:2D:C1:6B:AD:79:03:0B:A0:CC:7F:9F:A4:EE Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 2B95417EEF6E1A90635CEF940AB3ADCFB6FCC97C Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa Signing time: Wed 13 Mar 2024 12:00:00 +0000 ROA not before: Wed 13 Mar 2024 11:55:00 +0000 ROA not after: Wed 12 Mar 2025 12:00:00 +0000 asID: 135360 IP address blocks: 103.235.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:95:41:7e:ef:6e:1a:90:63:5c:ef:94:0a:b3:ad:cf:b6:fc:c9:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Mar 13 11:55:00 2024 GMT Not After : Mar 12 12:00:00 2025 GMT Subject: CN=CDAEFB00EA81AD2DC16BAD79030BA0CC7F9FA4EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cf:4e:9c:7b:a6:e0:6e:86:e6:ba:cb:93:0e: ca:92:a4:35:4e:7e:0c:86:45:8f:d0:5b:74:e8:17: fb:95:37:fe:ae:a1:eb:47:82:70:c6:d5:fe:fd:6d: 69:a6:f5:97:e7:b5:51:8a:bc:48:1d:fa:3d:d0:da: 4e:aa:e8:37:81:61:3b:40:e3:40:10:36:ce:18:c1: bd:99:b1:20:9e:9f:dd:88:6c:ce:72:73:ef:91:97: 68:14:b8:17:86:cf:ef:7c:e6:12:8c:3f:2a:e5:63: f0:2f:b1:8b:2d:7e:6d:53:18:70:1b:d4:6d:59:48: ef:df:1b:55:71:a7:19:7d:7d:fd:29:d9:42:fe:f5: 9c:64:13:4c:7d:9f:b1:70:34:55:60:05:ad:95:64: 20:8f:2e:5f:c7:44:ad:09:52:bf:2c:07:27:cb:28: 53:4e:ef:c4:50:f2:28:19:db:78:56:af:f3:a2:df: 17:a8:84:78:2c:7c:d5:f0:b8:c9:39:33:0d:9c:db: e7:96:73:72:15:78:d1:3d:0a:99:8c:75:94:a7:9d: db:44:79:ec:b7:73:fd:f5:43:78:55:08:ab:bd:50: 8f:b0:aa:18:db:1e:b2:e3:1d:46:7b:70:e3:89:d5: d2:4c:dc:1f:99:01:e7:df:ac:29:ea:5b:e3:03:62: fa:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AE:FB:00:EA:81:AD:2D:C1:6B:AD:79:03:0B:A0:CC:7F:9F:A4:EE X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.73.0/24 Signature Algorithm: sha256WithRSAEncryption 59:e8:76:48:4a:f3:dd:f5:0c:d5:06:fc:05:03:05:48:ed:44: 1f:16:02:37:69:da:55:46:75:c2:2f:c0:5b:c7:ef:70:aa:08: 3d:7a:fd:27:3a:c8:b5:c1:72:0e:88:72:47:9e:3d:ab:84:b7: b0:8e:19:43:da:9f:2b:e9:77:14:e2:20:03:2b:c3:f6:a8:6e: 79:9c:a1:ae:24:3a:14:7b:7d:7c:f7:11:20:3f:46:ad:55:24: d5:91:b8:f9:97:4b:fd:c7:60:58:56:8a:16:fa:f9:2e:0c:d3: 15:9d:d9:33:ab:6c:03:88:48:06:e9:ac:87:31:ed:cc:78:42: c2:bd:2a:4e:a9:aa:80:c5:c0:cf:27:d1:34:da:1a:71:9b:17: a1:7d:db:95:c1:49:32:f9:5c:0a:5d:d1:24:01:23:0d:8e:55: a9:a4:68:53:21:51:9f:b4:29:67:59:0c:dd:57:aa:8e:f5:3a: ae:b4:1a:a6:c2:ec:a1:c8:4a:8f:1b:10:0c:ad:0c:dc:fd:92: a0:01:c9:28:7a:79:46:37:4d:97:02:bf:59:61:31:be:c2:3b: 46:a4:db:c9:57:9a:dc:3c:26:f8:15:88:bc:fe:72:47:c9:5e: 4f:1e:a4:fb:f3:e3:e7:cd:fb:2d:33:ff:8d:5f:20:24:16:0e: 13:b4:f2:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK5VBfu9uGpBjXO+UCrOtz7b8yXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNDAzMTMxMTU1MDBaFw0yNTAzMTIxMjAwMDBaMDMxMTAvBgNV BAMTKENEQUVGQjAwRUE4MUFEMkRDMTZCQUQ3OTAzMEJBMENDN0Y5RkE0RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdz06ce6bgbobmusuTDsqSpDVO fgyGRY/QW3ToF/uVN/6uoetHgnDG1f79bWmm9ZfntVGKvEgd+j3Q2k6q6DeBYTtA 40AQNs4Ywb2ZsSCen92IbM5yc++Rl2gUuBeGz+985hKMPyrlY/AvsYstfm1TGHAb 1G1ZSO/fG1Vxpxl9ff0p2UL+9ZxkE0x9n7FwNFVgBa2VZCCPLl/HRK0JUr8sByfL KFNO78RQ8igZ23hWr/Oi3xeohHgsfNXwuMk5Mw2c2+eWc3IVeNE9CpmMdZSnndtE eey3c/31Q3hVCKu9UI+wqhjbHrLjHUZ7cOOJ1dJM3B+ZAeffrCnqW+MDYvpdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUza77AOqBrS3Ba615AwugzH+fpO4wHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tJMA0GCSqG SIb3DQEBCwUAA4IBAQBZ6HZISvPd9QzVBvwFAwVI7UQfFgI3adpVRnXCL8Bbx+9w qgg9ev0nOsi1wXIOiHJHnj2rhLewjhlD2p8r6XcU4iADK8P2qG55nKGuJDoUe318 9xEgP0atVSTVkbj5l0v9x2BYVooW+vkuDNMVndkzq2wDiEgG6ayHMe3MeELCvSpO qaqAxcDPJ9E02hpxmxehfduVwUky+VwKXdEkASMNjlWppGhTIVGftClnWQzdV6qO 9TqutBqmwuyhyEqPGxAMrQzc/ZKgAckoenlGN02XAr9ZYTG+wjtGpNvJV5rcPCb4 FYi8/nJHyV5PHqT78+PnzfstM/+NXyAkFg4TtPLo -----END CERTIFICATE-----Generated at Thu May 2 22:27:28 2024 by rpki-client on console-ams.rpki-client.org