$ rpki-client -vvf repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa File: 3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: jEU4FHaabo7WN+MMZhn1CW1R/HJH/kGSv3G2UGlj5gA= Subject key identifier: 97:91:F1:3D:4D:F5:B0:9C:66:72:79:FC:DA:AE:65:1B:A7:D6:D1:A3 Certificate issuer: /CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Certificate serial: 652F560B71A7E61D167CC4E93636312AF594139F Authority key identifier: BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa Signing time: Thu 14 Dec 2023 11:00:01 +0000 ROA not before: Thu 14 Dec 2023 10:55:01 +0000 ROA not after: Thu 12 Dec 2024 11:00:01 +0000 asID: 136052 IP address blocks: 103.146.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 16:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2f:56:0b:71:a7:e6:1d:16:7c:c4:e9:36:36:31:2a:f5:94:13:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Validity Not Before: Dec 14 10:55:01 2023 GMT Not After : Dec 12 11:00:01 2024 GMT Subject: CN=9791F13D4DF5B09C667279FCDAAE651BA7D6D1A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:45:b6:15:bf:c2:be:d9:a1:64:cc:4f:6b: 58:73:50:87:eb:99:b4:ee:41:e8:a5:c0:8f:9c:ba: 99:f1:53:2e:e6:03:bd:47:22:d9:d0:52:55:6f:64: 75:76:9b:aa:b0:fb:d1:e5:c4:f6:af:df:ed:3b:39: 8a:d9:87:fa:b5:58:df:ae:a4:93:5b:a6:2d:38:0a: 14:ce:54:c6:0a:1e:39:34:6a:c3:0b:a7:5e:d3:12: 48:fa:ef:37:6a:30:c6:3a:4c:5a:15:33:6c:27:bb: 99:c1:33:f9:69:6d:f7:91:61:ab:69:a3:7c:58:f3: 7f:33:da:70:d4:be:ad:50:f2:61:86:be:5a:77:fd: 42:db:c0:7d:cc:8f:89:bb:4e:cc:a0:c6:1b:2d:be: 51:7d:f4:5b:d1:70:ac:ce:fc:8f:2f:3e:99:c4:6d: e0:84:c4:8c:df:b6:6f:9a:5c:45:5e:a9:18:99:3b: d8:b6:20:6c:24:58:0d:fc:32:42:08:da:37:7f:61: 4c:6d:06:53:5b:39:6b:d4:85:ef:bf:a7:68:e4:e1: f1:57:b6:84:a6:da:4c:ba:29:d5:2c:94:ad:2e:0d: ce:0c:6d:57:d4:65:94:24:56:d8:4c:fe:b3:e8:27: 00:4c:14:7a:47:5c:8d:6a:d1:65:f7:52:24:1a:a8: ec:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:91:F1:3D:4D:F5:B0:9C:66:72:79:FC:DA:AE:65:1B:A7:D6:D1:A3 X509v3 Authority Key Identifier: keyid:BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.202.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:7a:20:6e:be:bc:46:b7:0b:d3:e2:92:59:1a:d4:6a:f1:64: a3:7f:0c:6d:c6:1a:3c:e8:b7:2c:dd:07:70:3b:37:70:74:02: 22:bc:81:7d:1e:82:54:b4:71:a9:1d:82:54:3f:c1:1b:d5:a1: a7:bc:77:49:e4:da:fc:4d:c5:26:83:e2:8e:53:f9:2a:ad:be: b9:89:a2:1e:77:78:f0:cf:a5:7b:e7:c5:d8:e5:13:27:b6:5a: e0:f1:ae:10:e4:96:3e:97:c1:d6:37:8d:bb:6d:4e:00:3c:51: 31:21:df:e7:b2:ec:85:37:19:e1:6c:e4:20:c1:cd:db:15:45: 7f:b5:49:ae:b6:e4:49:f3:05:4d:4b:80:64:a2:a9:ec:72:0a: 56:84:64:4b:68:8f:73:0d:b6:8e:7a:38:21:19:2b:df:9f:90: d0:8e:13:ee:cc:82:7b:a6:bb:ca:34:b5:82:85:76:40:83:33: eb:b1:b3:f8:ac:ab:15:4f:e7:ef:b6:09:a7:7b:d3:88:8e:f8: f1:29:f3:b1:f4:20:3b:50:cd:c1:d2:93:0d:e3:52:77:26:3e: 90:e2:1a:a9:ff:51:38:0c:83:02:b8:9c:8e:82:9a:28:8d:ee: eb:b2:64:5a:ca:80:30:36:f8:0b:68:93:a4:2c:42:c0:31:ab: 5b:75:af:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZS9WC3Gn5h0WfMTpNjYxKvWUE58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMy NEIxRDk4MTAeFw0yMzEyMTQxMDU1MDFaFw0yNDEyMTIxMTAwMDFaMDMxMTAvBgNV BAMTKDk3OTFGMTNENERGNUIwOUM2NjcyNzlGQ0RBQUU2NTFCQTdENkQxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvUUW2Fb/CvtmhZMxPa1hzUIfr mbTuQeilwI+cupnxUy7mA71HItnQUlVvZHV2m6qw+9HlxPav3+07OYrZh/q1WN+u pJNbpi04ChTOVMYKHjk0asMLp17TEkj67zdqMMY6TFoVM2wnu5nBM/lpbfeRYatp o3xY838z2nDUvq1Q8mGGvlp3/ULbwH3Mj4m7TsygxhstvlF99FvRcKzO/I8vPpnE beCExIzftm+aXEVeqRiZO9i2IGwkWA38MkII2jd/YUxtBlNbOWvUhe+/p2jk4fFX toSm2ky6KdUslK0uDc4MbVfUZZQkVthM/rPoJwBMFHpHXI1q0WX3UiQaqOy/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl5HxPU31sJxmcnn82q5lG6fW0aMwHwYDVR0j BBgwFoAUu2nxPSztxfNIzqHBu/bh3CSx2YEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGU4ZmY0OS1mNzBhLTRiNmYtYWFlNi04Yzc3NzY5YzVkZWUvMC9CQjY5RjEzRDJD RURDNUYzNDhDRUExQzFCQkY2RTFEQzI0QjFEOTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMyNEIx RDk4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZThmZjQ5LWY3MGEtNGI2Zi1h YWU2LThjNzc3NjljNWRlZS8wLzMxMzAzMzJlMzEzNDM2MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnksowDQYJ KoZIhvcNAQELBQADggEBAI16IG6+vEa3C9Piklka1GrxZKN/DG3GGjzotyzdB3A7 N3B0AiK8gX0eglS0cakdglQ/wRvVoae8d0nk2vxNxSaD4o5T+SqtvrmJoh53ePDP pXvnxdjlEye2WuDxrhDklj6XwdY3jbttTgA8UTEh3+ey7IU3GeFs5CDBzdsVRX+1 Sa625EnzBU1LgGSiqexyClaEZEtoj3MNto56OCEZK9+fkNCOE+7Mgnumu8o0tYKF dkCDM+uxs/isqxVP5++2Cad704iO+PEp87H0IDtQzcHSkw3jUncmPpDiGqn/UTgM gwK4nI6CmiiN7uuyZFrKgDA2+Atok6QsQsAxq1t1rzI= -----END CERTIFICATE-----Generated at Thu May 2 11:32:29 2024 by rpki-client on console-fra.rpki-client.org