$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa File: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: rnYczgK048JTwJb3PR1P+SoB4ImO3Se1+0bmbOU7hi4= Subject key identifier: 94:BA:F2:D6:AC:11:02:0B:7E:AE:C2:3C:13:02:1B:98:8A:08:3E:A1 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 5C1AB4BA4E95C3F51B18563D97097ABBAC758566 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa Signing time: Thu 11 Jan 2024 08:14:56 +0000 ROA not before: Thu 11 Jan 2024 08:09:56 +0000 ROA not after: Thu 09 Jan 2025 08:14:56 +0000 asID: 139952 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:1a:b4:ba:4e:95:c3:f5:1b:18:56:3d:97:09:7a:bb:ac:75:85:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 11 08:09:56 2024 GMT Not After : Jan 9 08:14:56 2025 GMT Subject: CN=94BAF2D6AC11020B7EAEC23C13021B988A083EA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cd:37:81:11:c0:f4:9c:2c:21:bd:7f:23:79: 93:ce:9a:cf:25:eb:96:5a:7f:fd:5b:65:a9:33:12: 56:e1:3e:da:a7:81:9b:e2:ad:d5:38:49:61:4a:b2: 5e:d4:47:28:ab:52:f7:f5:a0:03:e7:ff:65:24:af: fb:74:fe:2a:15:9e:27:c5:40:40:77:19:4c:72:61: f0:5f:ca:2f:ea:f7:87:ef:c8:2a:e2:2c:98:f2:40: 73:63:96:a8:26:7b:75:72:7d:e8:cf:56:38:e7:38: e8:24:30:55:91:d6:c1:b4:7a:c2:f3:4c:e1:88:fa: 6f:af:2d:f9:ec:c5:47:f1:dd:9a:44:30:02:fe:2c: 65:7e:a5:5f:91:a0:b7:6d:18:66:68:c6:1c:9d:0a: f3:df:a1:0b:55:15:21:cf:f6:db:ed:ed:af:98:09: 50:b3:e2:15:78:d1:78:03:91:34:5c:78:2c:67:d7: 65:77:96:76:27:eb:40:6d:53:8e:5f:c5:83:9e:54: aa:08:4c:c0:cd:8a:7e:75:cf:75:5e:01:a6:d5:cc: 18:12:be:1a:df:3b:17:68:61:9d:7a:37:60:9a:34: 79:3b:de:06:20:d1:d8:3a:31:64:a9:59:5f:64:91: 78:24:1d:fa:73:be:f9:81:67:dc:19:49:5a:11:f1: 3b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BA:F2:D6:AC:11:02:0B:7E:AE:C2:3C:13:02:1B:98:8A:08:3E:A1 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:d0:f6:86:01:6f:10:3f:c8:e5:fd:8e:43:6e:45:70:e8:8c: f0:a0:2a:b5:f1:64:41:86:d2:ac:bb:3a:f2:04:18:24:b2:a9: 0b:31:09:72:1c:04:0b:a0:0e:83:63:3c:03:a4:e1:83:1c:e1: 70:84:9f:85:95:53:fd:36:f0:16:88:65:68:e9:ba:f7:63:89: 56:2d:7b:04:2a:8e:33:4c:dc:1f:a2:0a:12:68:e2:ca:30:b4: 92:63:da:0a:43:c7:32:4d:aa:ff:da:67:6f:d4:3d:89:10:25: 80:60:00:ec:a8:49:0b:9e:2f:f4:1a:c9:c0:e0:a2:d5:d2:d1: 99:f3:7d:9b:08:47:06:20:72:31:8d:33:63:ca:45:cc:46:5b: 6a:ae:5f:2b:48:ae:0e:aa:db:55:ed:50:0b:43:54:2e:9d:64: 9d:f4:34:c5:ae:29:ca:ed:e3:52:61:34:8a:75:e2:0f:1e:13: 29:cb:ba:4e:a2:d5:ad:dc:22:55:b0:e9:8e:db:98:a3:d3:9b: 9f:6d:30:d7:c7:bf:f0:cd:18:44:36:ab:b0:a7:8a:18:9d:54: 47:bc:62:7f:af:b8:c4:fb:d8:65:2d:fb:14:b9:c4:b9:87:c6: 87:84:3a:5e:c7:53:98:95:80:6c:92:c4:aa:4c:bf:cb:29:e1: 10:ab:c2:1d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXBq0uk6Vw/UbGFY9lwl6u6x1hWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDAxMTEwODA5NTZaFw0yNTAxMDkwODE0NTZaMDMxMTAvBgNV BAMTKDk0QkFGMkQ2QUMxMTAyMEI3RUFFQzIzQzEzMDIxQjk4OEEwODNFQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfzTeBEcD0nCwhvX8jeZPOms8l 65Zaf/1bZakzElbhPtqngZvirdU4SWFKsl7URyirUvf1oAPn/2Ukr/t0/ioVnifF QEB3GUxyYfBfyi/q94fvyCriLJjyQHNjlqgme3VyfejPVjjnOOgkMFWR1sG0esLz TOGI+m+vLfnsxUfx3ZpEMAL+LGV+pV+RoLdtGGZoxhydCvPfoQtVFSHP9tvt7a+Y CVCz4hV40XgDkTRceCxn12V3lnYn60BtU45fxYOeVKoITMDNin51z3VeAabVzBgS vhrfOxdoYZ16N2CaNHk73gYg0dg6MWSpWV9kkXgkHfpzvvmBZ9wZSVoR8TunAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlLry1qwRAgt+rsI8EwIbmIoIPqEwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBADvQ9oYBbxA/yOX9jkNuRXDojPCgKrXxZEGG0qy7OvIE GCSyqQsxCXIcBAugDoNjPAOk4YMc4XCEn4WVU/028BaIZWjpuvdjiVYtewQqjjNM 3B+iChJo4sowtJJj2gpDxzJNqv/aZ2/UPYkQJYBgAOyoSQueL/QaycDgotXS0Znz fZsIRwYgcjGNM2PKRcxGW2quXytIrg6q21XtUAtDVC6dZJ30NMWuKcrt41JhNIp1 4g8eEynLuk6i1a3cIlWw6Y7bmKPTm59tMNfHv/DNGEQ2q7CnihidVEe8Yn+vuMT7 2GUt+xS5xLmHxoeEOl7HU5iVgGySxKpMv8sp4RCrwh0= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org