$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa File: 3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa (raw, json) Hash identifier: 7QGd0LpWfu7IMCjcz+f37em40vmw5QYhjA1q2DCXJWY= Subject key identifier: 88:90:1D:20:7E:5D:AC:99:40:31:1C:E8:22:90:9E:5E:44:5C:C0:5C Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 2D2ED03F842A665854F738DBFCCAA7DEFBC2E2E5 Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa Signing time: Mon 29 Jan 2024 14:28:17 +0000 ROA not before: Mon 29 Jan 2024 14:23:17 +0000 ROA not after: Mon 27 Jan 2025 14:28:17 +0000 asID: 151003 IP address blocks: 103.213.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:2e:d0:3f:84:2a:66:58:54:f7:38:db:fc:ca:a7:de:fb:c2:e2:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Jan 29 14:23:17 2024 GMT Not After : Jan 27 14:28:17 2025 GMT Subject: CN=88901D207E5DAC9940311CE822909E5E445CC05C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4d:2a:86:40:79:93:a1:38:7b:a1:70:99:f9: 1c:a4:8d:45:31:f0:c2:41:a3:88:ef:3f:c4:d9:6c: ce:0b:e2:5a:6f:b9:0f:6e:fa:4e:ed:13:6d:25:6c: 4d:ad:57:85:d6:22:a2:8c:74:be:3b:95:d6:b4:b1: 11:ec:f0:4e:b3:55:53:b8:08:12:40:a1:b6:c0:c4: e7:32:01:cf:70:a2:18:4c:ec:e4:64:f6:75:e3:58: e4:df:fc:3c:31:2b:84:e8:78:25:49:00:64:5e:24: 94:65:24:65:66:8e:3a:cf:77:a6:80:de:94:52:7d: 81:6f:d9:d7:54:58:4d:6b:16:9a:bb:76:1c:ba:be: f8:8c:d3:e7:a6:f0:a1:f5:e4:2c:a1:d7:8d:60:ce: 77:b4:22:f9:02:8f:85:1f:87:dd:47:47:ba:0b:39: 70:f8:e4:f1:fd:3c:3a:78:64:bd:bf:cf:a3:27:d0: 4f:63:e8:72:a4:b6:fa:01:48:c6:69:49:1a:2f:88: b5:49:da:b6:16:3d:97:2b:a9:8b:4a:e3:ed:41:7a: 5b:9a:e2:84:6e:62:09:73:fc:96:c7:80:c7:5d:1b: 95:61:84:35:36:99:05:fc:8d:3d:72:6f:64:02:b5: b1:a1:27:1b:3f:71:0f:a9:30:01:7e:a3:f9:a6:37: de:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:90:1D:20:7E:5D:AC:99:40:31:1C:E8:22:90:9E:5E:44:5C:C0:5C X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.234.0/24 Signature Algorithm: sha256WithRSAEncryption 89:7b:4d:78:b3:a1:10:c4:bf:e8:00:0b:65:bc:2a:fb:09:53: a8:ba:55:e9:d5:9f:6c:81:09:d5:5c:92:75:68:10:49:12:9e: ac:18:a7:9e:b2:c6:05:fe:3f:7f:e3:fd:50:fd:4b:3f:ec:24: b2:cf:2b:03:04:78:3f:6b:fd:30:fe:5d:e7:17:88:4f:a0:92: 1b:9e:03:ff:7a:69:f6:c4:d1:6c:e9:f3:c1:d2:d0:6f:f7:df: 03:71:e2:e1:0c:75:65:fd:5a:ea:24:d5:37:dc:53:ac:04:a3: 8a:2f:2e:28:12:8b:95:7b:74:e3:1d:86:84:7b:12:b3:07:1f: 93:0c:b3:b9:56:eb:ba:6d:f9:b6:62:3b:25:36:a3:cb:22:78: 0f:db:70:44:4d:38:3a:16:2c:9a:c8:6d:88:30:83:3d:c3:fa: 84:f6:2f:4d:a1:67:83:d2:6a:cd:6b:91:b3:ca:35:a7:59:b2: 05:5b:3c:63:1e:de:72:84:20:59:33:d5:15:7d:e1:40:66:03: d3:3d:5a:9b:7b:3d:98:55:5f:9f:be:62:62:77:d3:01:ce:37: c8:5e:c7:aa:d1:b7:b8:0f:64:59:f2:cf:99:e5:5a:29:f6:41: 8d:ba:ab:18:04:e3:a5:57:b6:54:95:97:7e:93:a8:24:8b:2e: d4:28:98:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULS7QP4QqZlhU9zjb/Mqn3vvC4uUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNDAxMjkxNDIzMTdaFw0yNTAxMjcxNDI4MTdaMDMxMTAvBgNV BAMTKDg4OTAxRDIwN0U1REFDOTk0MDMxMUNFODIyOTA5RTVFNDQ1Q0MwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeTSqGQHmToTh7oXCZ+RykjUUx 8MJBo4jvP8TZbM4L4lpvuQ9u+k7tE20lbE2tV4XWIqKMdL47lda0sRHs8E6zVVO4 CBJAobbAxOcyAc9wohhM7ORk9nXjWOTf/DwxK4ToeCVJAGReJJRlJGVmjjrPd6aA 3pRSfYFv2ddUWE1rFpq7dhy6vviM0+em8KH15Cyh141gzne0IvkCj4Ufh91HR7oL OXD45PH9PDp4ZL2/z6Mn0E9j6HKktvoBSMZpSRoviLVJ2rYWPZcrqYtK4+1Belua 4oRuYglz/JbHgMddG5VhhDU2mQX8jT1yb2QCtbGhJxs/cQ+pMAF+o/mmN97jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiJAdIH5drJlAMRzoIpCeXkRcwFwwHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eowDQYJ KoZIhvcNAQELBQADggEBAIl7TXizoRDEv+gAC2W8KvsJU6i6VenVn2yBCdVcknVo EEkSnqwYp56yxgX+P3/j/VD9Sz/sJLLPKwMEeD9r/TD+XecXiE+gkhueA/96afbE 0Wzp88HS0G/33wNx4uEMdWX9Wuok1TfcU6wEo4ovLigSi5V7dOMdhoR7ErMHH5MM s7lW67pt+bZiOyU2o8sieA/bcERNODoWLJrIbYgwgz3D+oT2L02hZ4PSas1rkbPK NadZsgVbPGMe3nKEIFkz1RV94UBmA9M9Wpt7PZhVX5++YmJ30wHON8hex6rRt7gP ZFnyz5nlWin2QY26qxgE46VXtlSVl36TqCSLLtQomA8= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org