$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa File: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (raw, json) Hash identifier: rPr5z+FLHw5K05AtTYvasv5Kj2s12fni5q+BH3ebdhc= Subject key identifier: D4:CD:D5:6F:40:56:F1:CA:64:D5:62:4A:8D:8C:1D:B7:73:5A:9E:AC Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 3CDB5E3AF22C5C5327C9E6A0DAEC9153807F6267 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa Signing time: Fri 08 Mar 2024 11:24:36 +0000 ROA not before: Fri 08 Mar 2024 11:19:36 +0000 ROA not after: Fri 07 Mar 2025 11:24:36 +0000 asID: 141120 IP address blocks: 103.235.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:db:5e:3a:f2:2c:5c:53:27:c9:e6:a0:da:ec:91:53:80:7f:62:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Mar 8 11:19:36 2024 GMT Not After : Mar 7 11:24:36 2025 GMT Subject: CN=D4CDD56F4056F1CA64D5624A8D8C1DB7735A9EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:91:22:99:58:3d:92:b4:1d:ad:ca:30:69:80: 52:84:4f:44:cc:e0:a7:21:fe:b5:a9:e7:33:ac:26: d5:08:9b:b5:41:55:ad:98:3a:5e:0c:55:9c:73:fa: 83:05:4c:9f:6b:4b:55:15:30:38:ae:46:e0:05:1b: 56:62:37:13:aa:ea:10:ce:dd:f4:25:ab:0c:b6:c2: e0:e4:51:e9:1b:bb:ab:8f:7c:c6:85:e1:f6:f2:e1: 75:e6:c7:96:4f:28:c9:9f:17:48:d7:18:76:4d:d5: 26:fd:4a:7a:5f:73:0e:da:73:79:46:e9:33:27:bd: dc:32:6b:12:a0:c4:22:c4:8d:35:07:26:15:1f:64: a2:9c:50:29:16:78:b8:a3:8d:49:ef:00:91:01:47: af:a2:16:66:36:01:b5:36:4f:e0:b7:19:83:a2:99: 49:1a:1b:bf:2c:d7:88:ca:9d:2b:f9:53:cb:3a:2f: d7:e8:6d:85:23:b9:eb:54:74:99:70:07:82:eb:69: cf:93:10:9b:e7:69:c7:ae:dc:c4:f0:ae:cc:38:76: b4:90:ef:60:85:98:7a:32:f2:68:1f:29:77:d3:2d: 82:32:f7:a0:2b:4c:98:32:98:19:2b:28:89:0f:01: 28:2c:4e:6b:65:56:bb:2c:ed:54:11:c5:37:e8:df: 48:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CD:D5:6F:40:56:F1:CA:64:D5:62:4A:8D:8C:1D:B7:73:5A:9E:AC X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.74.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:94:33:c7:1a:81:cc:df:25:12:03:ed:17:8a:61:64:fd:55: c9:9e:3a:ad:c2:7e:d6:a3:3d:cf:cc:3a:b4:5c:7c:df:a4:ff: e3:7b:23:14:9f:87:1e:b3:40:40:ff:bf:1f:4a:6f:2e:af:f3: ea:59:03:d3:3f:18:83:cf:61:b9:33:9e:53:d0:38:a0:6a:b9: 10:5e:60:f0:c0:41:71:56:39:07:30:18:e7:9a:4b:8a:09:e7: 47:a0:5b:1c:e5:b0:c4:f7:dc:da:31:b4:71:a9:3f:5f:d8:8c: 9e:39:37:67:a3:96:60:1b:f1:f3:0d:3c:15:d3:2b:88:17:7b: ca:19:d7:a1:6f:81:e7:df:92:40:76:7f:77:1b:5f:18:2c:5d: e9:57:14:3e:50:c8:9d:1c:f8:73:17:36:c8:b2:8b:80:97:91: 0d:15:4c:c1:e9:7a:32:11:76:f9:3c:75:dc:a3:3e:83:f6:5a: b3:64:fd:f6:b2:e3:01:da:f7:ed:8a:42:c3:fb:17:e6:6e:56: 87:68:bc:c4:7f:7f:9b:e2:ae:cf:78:f8:79:61:57:02:e7:5b: 31:38:77:fa:39:2d:0c:1e:91:bc:7c:bb:6f:91:8f:22:b5:c9: 87:59:6a:48:0d:b0:92:e2:b1:e3:f3:fd:27:d8:1d:d4:be:e5: a5:8b:95:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPNteOvIsXFMnyeag2uyRU4B/YmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNDAzMDgxMTE5MzZaFw0yNTAzMDcxMTI0MzZaMDMxMTAvBgNV BAMTKEQ0Q0RENTZGNDA1NkYxQ0E2NEQ1NjI0QThEOEMxREI3NzM1QTlFQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkSKZWD2StB2tyjBpgFKET0TM 4Kch/rWp5zOsJtUIm7VBVa2YOl4MVZxz+oMFTJ9rS1UVMDiuRuAFG1ZiNxOq6hDO 3fQlqwy2wuDkUekbu6uPfMaF4fby4XXmx5ZPKMmfF0jXGHZN1Sb9Snpfcw7ac3lG 6TMnvdwyaxKgxCLEjTUHJhUfZKKcUCkWeLijjUnvAJEBR6+iFmY2AbU2T+C3GYOi mUkaG78s14jKnSv5U8s6L9fobYUjuetUdJlwB4Lrac+TEJvnaceu3MTwrsw4drSQ 72CFmHoy8mgfKXfTLYIy96ArTJgymBkrKIkPASgsTmtlVrss7VQRxTfo30hjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1M3Vb0BW8cpk1WJKjYwdt3NanqwwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tKMA0GCSqG SIb3DQEBCwUAA4IBAQBulDPHGoHM3yUSA+0XimFk/VXJnjqtwn7Woz3PzDq0XHzf pP/jeyMUn4ces0BA/78fSm8ur/PqWQPTPxiDz2G5M55T0DigarkQXmDwwEFxVjkH MBjnmkuKCedHoFsc5bDE99zaMbRxqT9f2IyeOTdno5ZgG/HzDTwV0yuIF3vKGdeh b4Hn35JAdn93G18YLF3pVxQ+UMidHPhzFzbIsouAl5ENFUzB6XoyEXb5PHXcoz6D 9lqzZP32suMB2vftikLD+xfmblaHaLzEf3+b4q7PePh5YVcC51sxOHf6OS0MHpG8 fLtvkY8itcmHWWpIDbCS4rHj8/0n2B3UvuWli5WJ -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org