$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa File: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (raw, json) Hash identifier: l2N1vMReyDKgx4fLqEtVZ7YiG07eULnr81oZHDOEc1A= Subject key identifier: 2F:AE:5F:E7:1A:4C:64:AC:D6:17:67:A5:2E:0A:63:06:D5:AA:14:3C Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 6D21357104B68DA3F1761AF9FCC42C604ABCDF74 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa Signing time: Fri 10 Nov 2023 15:00:01 +0000 ROA not before: Fri 10 Nov 2023 14:55:01 +0000 ROA not after: Fri 08 Nov 2024 15:00:01 +0000 asID: 140023 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:21:35:71:04:b6:8d:a3:f1:76:1a:f9:fc:c4:2c:60:4a:bc:df:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 10 14:55:01 2023 GMT Not After : Nov 8 15:00:01 2024 GMT Subject: CN=2FAE5FE71A4C64ACD61767A52E0A6306D5AA143C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:49:cb:1c:21:aa:4d:0c:fd:4c:d2:fb:a2:77: da:73:3a:25:45:e3:ea:0a:27:61:9f:2d:60:ad:08: a0:34:20:b8:c4:28:f4:00:92:9d:fc:bc:eb:52:d8: 8f:02:5b:fd:ff:02:25:55:b3:b7:58:42:3b:47:42: d4:53:b1:a4:d0:64:3b:fd:36:8c:76:24:d2:f6:12: bc:ca:30:b7:d2:56:fd:cb:2e:d6:50:6a:69:f7:e5: 73:22:bd:cb:73:d3:65:7b:14:f7:73:2f:42:e3:ee: 58:85:79:21:ea:b0:26:68:a7:d2:b3:63:b6:01:37: 88:34:23:28:de:37:87:80:52:08:16:7c:e4:16:31: e1:5e:79:32:27:01:08:44:9d:f7:e0:08:bc:f9:c9: 24:f8:e2:d0:6b:eb:f7:7d:66:68:89:9d:0f:b9:26: 84:7e:b3:0c:9c:4b:2c:9f:25:da:f3:62:ca:5d:bc: 11:51:04:8b:5d:26:69:89:c4:5e:37:f0:92:a2:5e: c6:0d:9c:72:39:97:92:d8:a6:0c:06:fa:3c:e5:09: 4b:6a:e2:f3:ae:73:a1:13:c7:f8:b3:3c:d9:bd:98: b3:b0:84:5d:31:29:a7:91:0e:8c:2a:ac:3c:de:10: 6f:24:ad:01:ad:23:69:aa:53:fe:f4:23:01:8a:2a: 01:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AE:5F:E7:1A:4C:64:AC:D6:17:67:A5:2E:0A:63:06:D5:AA:14:3C X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:2e:0b:8e:82:c7:ba:66:04:6a:d9:60:00:13:da:fe:3a:ae: ce:93:71:f6:25:c4:35:d6:bc:12:b9:43:c4:d1:19:da:e4:a1: 41:b6:72:bb:b8:3b:e7:9b:b1:22:92:6c:35:a2:f9:3b:42:a6: 05:d0:46:bb:8d:33:8a:e2:a8:13:c1:bc:19:3c:b7:2c:80:c1: dc:9f:b0:2d:34:a3:bf:0b:4b:58:31:1b:31:af:41:cf:12:90: 68:69:d9:d5:ef:48:75:fc:76:de:73:c8:69:ae:3a:ff:49:b7: 03:ae:f2:a7:78:82:85:6c:bf:09:2d:90:20:58:3d:3c:e2:8e: c4:43:11:fd:42:92:91:91:b7:d1:b2:4b:d1:3c:e2:1e:d3:e1: 78:5f:2f:d7:e5:05:54:23:1a:ba:5c:21:7f:40:70:25:64:15: 80:71:7e:0d:6a:ad:f9:fb:4f:43:ee:08:3e:d0:a8:2f:2c:1e: 34:94:7f:b8:1f:b4:20:62:c4:74:2f:d5:61:25:6c:9f:0b:ad: f8:90:f8:40:4f:fa:ba:1e:0e:5e:f1:57:00:a4:b2:dc:7b:f4: ec:1c:2e:89:f5:fd:a3:e3:4b:75:5b:bc:28:27:d8:ff:9b:8b: c5:54:56:ef:08:e3:96:c1:e7:d7:52:51:0a:c1:fa:c3:ae:7b: 4b:15:3c:b6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbSE1cQS2jaPxdhr5/MQsYEq833QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yMzExMTAxNDU1MDFaFw0yNDExMDgxNTAwMDFaMDMxMTAvBgNV BAMTKDJGQUU1RkU3MUE0QzY0QUNENjE3NjdBNTJFMEE2MzA2RDVBQTE0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCScscIapNDP1M0vuid9pzOiVF 4+oKJ2GfLWCtCKA0ILjEKPQAkp38vOtS2I8CW/3/AiVVs7dYQjtHQtRTsaTQZDv9 Nox2JNL2ErzKMLfSVv3LLtZQamn35XMivctz02V7FPdzL0Lj7liFeSHqsCZop9Kz Y7YBN4g0IyjeN4eAUggWfOQWMeFeeTInAQhEnffgCLz5yST44tBr6/d9ZmiJnQ+5 JoR+swycSyyfJdrzYspdvBFRBItdJmmJxF438JKiXsYNnHI5l5LYpgwG+jzlCUtq 4vOuc6ETx/izPNm9mLOwhF0xKaeRDowqrDzeEG8krQGtI2mqU/70IwGKKgEbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUL65f5xpMZKzWF2elLgpjBtWqFDwwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXkwDQYJ KoZIhvcNAQELBQADggEBAF4uC46Cx7pmBGrZYAAT2v46rs6TcfYlxDXWvBK5Q8TR GdrkoUG2cru4O+ebsSKSbDWi+TtCpgXQRruNM4riqBPBvBk8tyyAwdyfsC00o78L S1gxGzGvQc8SkGhp2dXvSHX8dt5zyGmuOv9JtwOu8qd4goVsvwktkCBYPTzijsRD Ef1CkpGRt9GyS9E84h7T4XhfL9flBVQjGrpcIX9AcCVkFYBxfg1qrfn7T0PuCD7Q qC8sHjSUf7gftCBixHQv1WElbJ8LrfiQ+EBP+roeDl7xVwCkstx79OwcLon1/aPj S3VbvCgn2P+bi8VUVu8I45bB59dSUQrB+sOue0sVPLY= -----END CERTIFICATE-----Generated at Sat Jun 22 19:34:42 2024 by rpki-client on console-fra.rpki-client.org