$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa File: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (raw, json) Hash identifier: 364DCypCEYdKqCpyIMrYrwGZTcF7KG8HCkuLG3/yju4= Subject key identifier: 2B:90:FE:2B:0D:B9:F9:FC:E5:9C:9F:34:CF:63:D4:67:5E:95:DF:B9 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 03285E926230FFD7F731AC36A06465A974D0F9D1 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa Signing time: Thu 11 Jan 2024 07:44:25 +0000 ROA not before: Thu 11 Jan 2024 07:39:25 +0000 ROA not after: Thu 09 Jan 2025 07:44:25 +0000 asID: 7713 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:28:5e:92:62:30:ff:d7:f7:31:ac:36:a0:64:65:a9:74:d0:f9:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 11 07:39:25 2024 GMT Not After : Jan 9 07:44:25 2025 GMT Subject: CN=2B90FE2B0DB9F9FCE59C9F34CF63D4675E95DFB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3d:30:80:6b:9a:ae:d1:4e:06:07:4f:2d:57: 11:6e:be:df:3d:4b:b3:6f:ca:69:26:68:0f:42:e9: 80:97:25:20:c5:68:d4:50:95:15:90:64:0e:8c:9c: 3b:38:24:d8:ee:b2:41:6a:e5:76:13:da:40:b5:2f: 7d:58:f8:8b:10:dd:48:1d:8e:b8:6c:bb:6a:1c:54: bd:c6:a8:16:e2:94:87:03:cf:a5:8f:76:79:c2:6d: 45:6a:58:2e:86:6e:24:55:a4:28:99:f3:50:a2:b9: 20:7f:8b:e1:e7:16:18:65:e3:18:1e:d6:ca:ae:58: 6e:41:f9:e4:f4:d9:ee:b9:d8:38:59:5e:e9:8d:78: 41:a3:cd:00:78:8d:cd:63:57:9c:51:86:e9:8f:bc: 91:96:d6:d4:2b:4a:93:91:38:aa:c4:b6:60:f3:f3: d7:f7:de:3f:e5:a4:36:ac:60:12:1c:e5:36:d1:f2: 8c:64:da:cd:93:ed:4d:0f:18:ed:94:df:e5:37:7f: 44:63:4b:2c:a4:d2:75:72:92:7d:6b:6f:46:5a:bd: 92:a3:ce:88:54:1c:8e:f6:6e:a1:38:7d:ff:04:58: 10:ec:e5:0c:b2:d3:34:5d:1c:64:fa:39:99:26:05: 97:ee:e9:40:07:6b:73:1b:8b:16:ed:e0:e2:c8:d7: 58:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:90:FE:2B:0D:B9:F9:FC:E5:9C:9F:34:CF:63:D4:67:5E:95:DF:B9 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption d4:1d:4c:69:c1:3c:0f:ac:48:e1:38:b7:c2:f3:b8:06:e0:da: 2c:21:73:9b:57:38:f2:86:7a:96:e9:16:e2:4f:60:3a:c9:b2: 01:85:b6:34:8f:c4:bb:37:ab:46:41:cb:fa:36:83:6b:39:92: 5c:e9:2d:ce:f1:80:40:a9:1a:02:74:64:89:30:50:16:f2:9d: 5f:a8:8c:0b:02:64:67:e9:c7:9e:27:bf:5e:19:5b:d6:d1:b1: 96:9e:7c:db:08:a0:49:9e:c2:69:0a:0b:6b:6d:8e:48:15:cd: b6:31:26:91:a6:3a:b6:d0:ea:64:09:b1:2e:95:db:2c:b7:b5: 27:f7:d2:4d:59:a5:80:2f:a2:2e:a0:ba:9b:9c:be:97:16:39: c5:15:3e:ee:9f:b6:ad:c3:bb:70:6d:46:be:b5:af:c0:e1:01: 13:b8:39:ac:00:72:96:6f:80:a7:5b:5f:ec:b6:3a:00:03:c1: 39:22:b3:0a:9b:33:2a:b6:63:ea:f4:83:e0:41:99:0e:e9:e4: 04:af:af:a7:98:1e:ad:07:0d:ce:43:cf:4a:21:d0:60:c3:7b: 7f:40:c6:e9:d1:e8:23:94:48:e5:37:04:a2:77:c5:39:58:cb: bf:d7:a5:87:c4:eb:47:4c:87:14:0e:93:96:9e:2f:24:17:c2: 5b:a8:be:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAyhekmIw/9f3Maw2oGRlqXTQ+dEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDAxMTEwNzM5MjVaFw0yNTAxMDkwNzQ0MjVaMDMxMTAvBgNV BAMTKDJCOTBGRTJCMERCOUY5RkNFNTlDOUYzNENGNjNENDY3NUU5NURGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnPTCAa5qu0U4GB08tVxFuvt89 S7NvymkmaA9C6YCXJSDFaNRQlRWQZA6MnDs4JNjuskFq5XYT2kC1L31Y+IsQ3Ugd jrhsu2ocVL3GqBbilIcDz6WPdnnCbUVqWC6GbiRVpCiZ81CiuSB/i+HnFhhl4xge 1squWG5B+eT02e652DhZXumNeEGjzQB4jc1jV5xRhumPvJGW1tQrSpOROKrEtmDz 89f33j/lpDasYBIc5TbR8oxk2s2T7U0PGO2U3+U3f0RjSyyk0nVykn1rb0ZavZKj zohUHI72bqE4ff8EWBDs5Qyy0zRdHGT6OZkmBZfu6UAHa3Mbixbt4OLI11gXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK5D+Kw25+fzlnJ80z2PUZ16V37kwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeVeDANBgkqhkiG 9w0BAQsFAAOCAQEA1B1MacE8D6xI4Ti3wvO4BuDaLCFzm1c48oZ6lukW4k9gOsmy AYW2NI/EuzerRkHL+jaDazmSXOktzvGAQKkaAnRkiTBQFvKdX6iMCwJkZ+nHnie/ Xhlb1tGxlp582wigSZ7CaQoLa22OSBXNtjEmkaY6ttDqZAmxLpXbLLe1J/fSTVml gC+iLqC6m5y+lxY5xRU+7p+2rcO7cG1GvrWvwOEBE7g5rABylm+Ap1tf7LY6AAPB OSKzCpszKrZj6vSD4EGZDunkBK+vp5gerQcNzkPPSiHQYMN7f0DG6dHoI5RI5TcE onfFOVjLv9elh8TrR0yHFA6Tlp4vJBfCW6i+cA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org