$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa File: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (raw, json) Hash identifier: ff8Ni5SxOrZ4/wG1CzwykgK0m08tV+LMZ7XDB4fPtpM= Subject key identifier: FC:E8:F8:98:A2:1F:8E:15:D4:2C:47:74:13:0D:71:78:DC:60:63:44 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 61EB7F58DF63D0563533F5B04BF061E0B184EDB0 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa Signing time: Wed 10 Apr 2024 04:01:40 +0000 ROA not before: Wed 10 Apr 2024 03:56:40 +0000 ROA not after: Wed 09 Apr 2025 04:01:40 +0000 asID: 140023 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:eb:7f:58:df:63:d0:56:35:33:f5:b0:4b:f0:61:e0:b1:84:ed:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Apr 10 03:56:40 2024 GMT Not After : Apr 9 04:01:40 2025 GMT Subject: CN=FCE8F898A21F8E15D42C4774130D7178DC606344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f4:c0:bd:05:7d:41:fc:3c:1b:a6:98:c0:44: 67:ff:7e:c1:40:5a:34:8c:06:07:1d:14:85:ff:73: 34:74:15:31:56:76:7f:50:6f:49:79:b6:78:d1:fd: f2:96:b6:73:07:46:ef:d2:63:2d:d6:6f:df:d6:3b: 53:05:70:9d:4e:18:5c:d8:24:64:de:3a:f2:22:3b: 19:a8:f2:3b:aa:c8:33:a3:9e:26:26:eb:1e:66:9c: e1:13:bd:53:b6:28:57:99:81:2e:ff:61:13:af:63: c8:e0:5f:77:8a:c8:40:26:c7:ce:5a:06:cc:4e:7b: 4d:0e:fc:58:07:70:48:33:be:cd:ed:30:2f:07:7e: 27:b0:27:ee:9d:de:b2:1a:fa:5c:01:6a:72:1a:a7: 14:8a:cc:94:6f:ce:43:d0:c1:f8:27:05:eb:6c:e3: 1b:34:e4:94:a9:14:5f:ab:0c:55:7e:2c:4e:05:b1: e1:fe:4e:33:e3:e5:06:ad:0a:0a:e9:9a:cc:a6:16: 94:64:aa:75:64:ee:36:88:67:ab:b8:f6:14:70:2a: 85:5b:63:21:a4:61:67:a0:08:2a:9e:36:a4:33:d7: 89:af:12:85:28:31:c3:b1:1f:5b:34:c2:7f:65:a8: d4:e8:68:24:fc:27:30:67:52:b6:8d:59:99:ef:a4: bc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E8:F8:98:A2:1F:8E:15:D4:2C:47:74:13:0D:71:78:DC:60:63:44 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 87:0e:95:4b:fc:fd:8c:ca:44:8d:36:54:0d:f1:8d:2d:af:31: c1:70:ae:5a:e2:49:0b:92:2a:67:67:fd:c2:08:29:05:b0:3c: f0:f8:8c:4a:af:4d:ce:13:88:a9:c8:0a:d3:fe:6b:4e:59:cf: 00:2d:65:57:47:f3:3b:28:ae:88:70:ba:a7:61:96:3b:69:64: 25:68:df:ad:03:3c:bb:f5:5d:c0:28:37:03:83:5f:ef:d7:3b: d0:ad:8d:3b:ad:ec:20:9b:16:ce:6d:97:ef:48:9c:a5:85:d8: 3a:5e:4f:c7:08:28:28:d7:46:e7:a4:79:38:e8:e1:4f:e4:65: c4:85:b2:47:22:43:88:1a:09:da:ab:70:20:f0:a7:7a:c2:ef: 8e:84:93:91:00:98:1e:72:ff:db:b6:00:3c:88:0f:c2:c3:cb: 44:22:bb:04:99:24:1b:cb:36:18:16:34:4f:f1:b3:20:f1:68: 13:7d:72:a0:56:00:42:e5:83:e8:c8:04:02:12:f7:a9:6e:85: 25:3f:82:97:39:62:e2:65:27:ba:11:c7:6f:80:a8:b4:f3:cc: c8:dc:96:45:75:5f:2a:a8:16:30:8d:16:2b:90:8c:c0:05:cf: 3a:98:3d:2d:d1:67:d6:7e:db:14:14:58:6a:43:7a:df:06:5d: db:91:13:bc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYet/WN9j0FY1M/WwS/Bh4LGE7bAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDA0MTAwMzU2NDBaFw0yNTA0MDkwNDAxNDBaMDMxMTAvBgNV BAMTKEZDRThGODk4QTIxRjhFMTVENDJDNDc3NDEzMEQ3MTc4REM2MDYzNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU9MC9BX1B/DwbppjARGf/fsFA WjSMBgcdFIX/czR0FTFWdn9Qb0l5tnjR/fKWtnMHRu/SYy3Wb9/WO1MFcJ1OGFzY JGTeOvIiOxmo8juqyDOjniYm6x5mnOETvVO2KFeZgS7/YROvY8jgX3eKyEAmx85a BsxOe00O/FgHcEgzvs3tMC8HfiewJ+6d3rIa+lwBanIapxSKzJRvzkPQwfgnBets 4xs05JSpFF+rDFV+LE4FseH+TjPj5QatCgrpmsymFpRkqnVk7jaIZ6u49hRwKoVb YyGkYWegCCqeNqQz14mvEoUoMcOxH1s0wn9lqNToaCT8JzBnUraNWZnvpLx/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/Oj4mKIfjhXULEd0Ew1xeNxgY0QwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBAIcOlUv8/YzKRI02VA3xjS2vMcFwrlriSQuSKmdn/cII KQWwPPD4jEqvTc4TiKnICtP+a05ZzwAtZVdH8zsorohwuqdhljtpZCVo360DPLv1 XcAoNwODX+/XO9CtjTut7CCbFs5tl+9InKWF2DpeT8cIKCjXRuekeTjo4U/kZcSF skciQ4gaCdqrcCDwp3rC746Ek5EAmB5y/9u2ADyID8LDy0QiuwSZJBvLNhgWNE/x syDxaBN9cqBWAELlg+jIBAIS96luhSU/gpc5YuJlJ7oRx2+AqLTzzMjclkV1Xyqo FjCNFiuQjMAFzzqYPS3RZ9Z+2xQUWGpDet8GXduRE7w= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org