$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa File: 3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa (raw, json) Hash identifier: MPL5mTV/vycDHHdJC26psYOWAyRczW06acEL3qOm3JQ= Subject key identifier: 8D:BB:DC:47:FE:3B:F7:0C:65:5C:89:8D:80:98:E5:9F:57:4E:29:2C Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 0EF6F039E7ECB109B55CDCA1904728015EE5C3E6 Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa Signing time: Mon 29 Jan 2024 14:12:31 +0000 ROA not before: Mon 29 Jan 2024 14:07:31 +0000 ROA not after: Mon 27 Jan 2025 14:12:31 +0000 asID: 151003 IP address blocks: 103.213.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f6:f0:39:e7:ec:b1:09:b5:5c:dc:a1:90:47:28:01:5e:e5:c3:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Jan 29 14:07:31 2024 GMT Not After : Jan 27 14:12:31 2025 GMT Subject: CN=8DBBDC47FE3BF70C655C898D8098E59F574E292C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:00:99:75:50:1c:7c:a1:27:5f:5d:ec:77: 80:db:3e:09:03:df:ab:c3:73:30:23:a8:97:24:55: 1e:68:1b:37:71:78:0c:6c:01:5e:7a:b2:0a:3d:ff: c8:31:6d:6c:0b:11:9b:62:59:6e:04:95:e1:e3:4b: f0:d2:b3:72:62:eb:7d:7d:b9:84:84:33:ff:e6:b6: 6a:96:ad:29:d2:3f:ea:4c:d3:2b:a6:da:45:9d:85: 08:28:57:18:10:22:e1:1d:d8:63:fb:f3:7e:36:95: 32:49:52:c4:78:93:57:e4:95:4e:3f:72:ea:db:5c: 89:b3:f0:c2:d3:f7:f8:8a:81:97:ab:6b:08:44:97: 5d:9c:70:10:b6:93:25:e7:cc:d1:01:76:a5:21:a3: 9f:35:0e:38:13:67:a6:26:54:be:ad:71:e5:6f:5d: cd:e0:a1:03:50:54:2b:fd:71:ff:d0:bd:31:e3:4a: bc:87:10:85:dc:30:72:c8:9d:ed:35:62:6c:7b:cb: 28:76:4c:49:47:7c:29:76:a6:7d:3b:58:86:e8:27: 6e:73:49:8c:57:d4:69:61:61:3e:ab:4a:d5:6e:17: 72:19:14:29:57:1d:73:ae:cb:41:1b:f3:b8:24:5a: 99:eb:43:e0:11:9c:65:63:f5:7a:17:38:41:41:68: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BB:DC:47:FE:3B:F7:0C:65:5C:89:8D:80:98:E5:9F:57:4E:29:2C X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.234.0/23 Signature Algorithm: sha256WithRSAEncryption 10:be:ab:9e:b2:aa:c7:01:20:1c:57:0d:bf:62:76:36:18:12: 03:5d:e8:bc:c6:3d:45:c6:bc:96:cc:6c:01:9d:de:7f:7a:d4: a9:dd:ee:b1:7e:e1:46:e9:9b:1d:66:b1:cd:8a:b1:64:9d:47: 22:33:d2:52:9a:60:80:40:91:8f:34:db:e1:71:5f:5f:15:7f: b5:1b:52:36:c0:e8:90:14:d7:fc:ce:39:ac:78:ca:8a:7e:8e: 9f:fc:52:7b:f6:7d:0a:51:23:78:6a:70:dc:19:39:d0:4c:2a: f9:96:32:fa:0c:49:04:2c:75:76:ee:95:cc:18:61:f6:01:1d: 7c:bb:15:d7:d6:91:9a:8d:5e:79:ce:73:ac:62:12:bc:cf:2f: cd:9a:e0:33:0b:5c:b0:55:6b:5a:dd:35:c3:c4:96:39:f6:75: b0:ae:20:19:65:4e:8e:cd:07:7c:f4:db:73:23:09:87:f5:51: 2e:e9:8e:7b:6c:44:98:42:d7:60:5d:dc:c5:52:50:bd:cd:83: 41:23:38:cc:5d:c8:dd:62:29:6f:3e:ba:97:43:2c:f9:f5:e3: 6e:6c:b5:d5:1e:79:10:a1:9b:81:c2:d4:6d:f6:6b:17:20:c0: 3d:d5:a4:06:26:af:f6:f8:ff:45:0c:50:2e:99:56:d4:79:d5: 84:56:73:50 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDvbwOefssQm1XNyhkEcoAV7lw+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNDAxMjkxNDA3MzFaFw0yNTAxMjcxNDEyMzFaMDMxMTAvBgNV BAMTKDhEQkJEQzQ3RkUzQkY3MEM2NTVDODk4RDgwOThFNTlGNTc0RTI5MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx8ACZdVAcfKEnX13sd4DbPgkD 36vDczAjqJckVR5oGzdxeAxsAV56sgo9/8gxbWwLEZtiWW4EleHjS/DSs3Ji6319 uYSEM//mtmqWrSnSP+pM0yum2kWdhQgoVxgQIuEd2GP78342lTJJUsR4k1fklU4/ curbXImz8MLT9/iKgZerawhEl12ccBC2kyXnzNEBdqUho581DjgTZ6YmVL6tceVv Xc3goQNQVCv9cf/QvTHjSryHEIXcMHLIne01Ymx7yyh2TElHfCl2pn07WIboJ25z SYxX1GlhYT6rStVuF3IZFClXHXOuy0Eb87gkWpnrQ+ARnGVj9XoXOEFBaIStAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjbvcR/479wxlXImNgJjln1dOKSwwHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn1eowDQYJ KoZIhvcNAQELBQADggEBABC+q56yqscBIBxXDb9idjYYEgNd6LzGPUXGvJbMbAGd 3n961Knd7rF+4Ubpmx1msc2KsWSdRyIz0lKaYIBAkY802+FxX18Vf7UbUjbA6JAU 1/zOOax4yop+jp/8Unv2fQpRI3hqcNwZOdBMKvmWMvoMSQQsdXbulcwYYfYBHXy7 FdfWkZqNXnnOc6xiErzPL82a4DMLXLBVa1rdNcPEljn2dbCuIBllTo7NB3z023Mj CYf1US7pjntsRJhC12Bd3MVSUL3Ng0EjOMxdyN1iKW8+updDLPn1425stdUeeRCh m4HC1G32axcgwD3VpAYmr/b4/0UMUC6ZVtR51YRWc1A= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org