$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: mRrZqAPHb4XJzz5cGa7dcJ2jdEQdFLgAExKUBSXeUiE= Subject key identifier: A5:40:B1:10:6B:13:19:61:6A:0F:36:2A:AF:06:EE:AB:1B:6B:35:11 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 6446D4D06CC5982342586AE7BFB613F7238AD296 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa Signing time: Sun 31 Dec 2023 08:14:41 +0000 ROA not before: Sun 31 Dec 2023 08:09:41 +0000 ROA not after: Sun 29 Dec 2024 08:14:41 +0000 asID: 135439 IP address blocks: 103.214.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 05:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:46:d4:d0:6c:c5:98:23:42:58:6a:e7:bf:b6:13:f7:23:8a:d2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 31 08:09:41 2023 GMT Not After : Dec 29 08:14:41 2024 GMT Subject: CN=A540B1106B1319616A0F362AAF06EEAB1B6B3511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:28:ac:03:e9:39:3e:2f:d1:c7:0b:00:b6: 49:e1:b8:02:85:80:1d:cd:cd:35:45:96:c5:ed:8c: 49:4e:8b:01:e6:5a:df:65:3e:22:90:da:af:5b:d3: f0:39:79:8a:87:54:9a:c0:6a:d8:73:5c:80:97:9a: fa:9d:ed:98:e6:ce:6a:85:8c:d8:a0:32:91:f9:2f: c6:07:3d:a2:be:0d:fb:6e:51:5d:f6:62:12:b3:80: 71:04:0b:f3:2c:ff:80:51:6c:a0:10:f5:d1:eb:cd: ed:f7:0b:bf:16:95:d5:44:83:35:4a:23:f1:c3:92: 1c:94:aa:02:b4:04:52:bd:ed:c7:2c:f6:e8:c0:8a: fc:26:2c:fe:cf:5d:c6:27:41:ee:54:06:8f:22:bc: fd:34:af:aa:b6:cd:93:cd:16:83:16:be:5b:a8:81: 48:b5:6c:b9:61:94:58:bc:89:dc:e1:21:41:4a:05: e2:1c:a5:9d:8f:a7:84:69:d1:7a:4a:68:a1:35:ed: 29:11:69:33:3b:dc:e2:95:fd:17:ef:28:ac:12:6a: ff:d7:b4:6c:9c:aa:76:09:20:76:57:20:53:b5:6e: e3:ef:c8:cd:d3:fa:d6:6c:88:4b:8d:8e:dd:60:2d: a8:10:5a:75:e7:d7:1d:c8:33:21:2f:2d:d8:d5:3f: c9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:40:B1:10:6B:13:19:61:6A:0F:36:2A:AF:06:EE:AB:1B:6B:35:11 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.237.0/24 Signature Algorithm: sha256WithRSAEncryption 89:04:d2:83:f4:29:02:58:47:cc:d8:9c:02:ed:f4:73:46:74: 9b:3c:32:80:c2:5f:dc:fa:fd:c2:4b:73:94:9f:b3:fe:34:4d: c7:4b:ea:e8:99:92:d2:19:3b:af:d5:27:49:9b:ef:2f:38:07: 6e:d2:1b:76:6a:59:1f:08:e0:18:95:a5:1f:e8:14:9c:b8:2b: 8e:bf:fb:93:c8:46:41:ff:ae:1e:44:a2:97:64:f6:c4:21:2b: fe:0b:00:b4:72:b9:31:7a:db:65:72:f6:d2:9e:bf:ae:63:58: 6a:fc:6d:11:08:f0:6f:04:3f:b0:c7:93:f1:f1:76:33:99:a7: 7e:66:f5:19:b4:c9:86:ab:71:0b:8b:b9:0e:30:2f:9d:c8:ec: 46:d0:ca:fc:c9:33:3d:2c:7c:a5:89:dd:6d:ec:f7:85:9f:c0: d9:19:3c:9e:36:d4:c3:3f:6a:4c:fd:d9:55:82:01:bf:c1:ef: f0:96:1f:e9:09:1e:54:8a:d8:82:77:8f:96:99:a4:e7:b7:f5: 33:9f:ad:60:bf:60:37:68:74:40:75:55:53:3a:e8:ad:46:a0: 70:21:35:a3:63:e3:88:32:b3:65:7c:e6:89:f1:99:25:51:82: 0a:6f:02:e3:5c:1c:02:db:0b:be:c0:ef:64:cd:89:75:55:38: 5c:07:b7:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZEbU0GzFmCNCWGrnv7YT9yOK0pYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yMzEyMzEwODA5NDFaFw0yNDEyMjkwODE0NDFaMDMxMTAvBgNV BAMTKEE1NDBCMTEwNkIxMzE5NjE2QTBGMzYyQUFGMDZFRUFCMUI2QjM1MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ1CisA+k5Pi/RxwsAtknhuAKF gB3NzTVFlsXtjElOiwHmWt9lPiKQ2q9b0/A5eYqHVJrAathzXICXmvqd7ZjmzmqF jNigMpH5L8YHPaK+DftuUV32YhKzgHEEC/Ms/4BRbKAQ9dHrze33C78WldVEgzVK I/HDkhyUqgK0BFK97ccs9ujAivwmLP7PXcYnQe5UBo8ivP00r6q2zZPNFoMWvluo gUi1bLlhlFi8idzhIUFKBeIcpZ2Pp4Rp0XpKaKE17SkRaTM73OKV/RfvKKwSav/X tGycqnYJIHZXIFO1buPvyM3T+tZsiEuNjt1gLagQWnXn1x3IMyEvLdjVP8mFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpUCxEGsTGWFqDzYqrwbuqxtrNREwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u0wDQYJ KoZIhvcNAQELBQADggEBAIkE0oP0KQJYR8zYnALt9HNGdJs8MoDCX9z6/cJLc5Sf s/40TcdL6uiZktIZO6/VJ0mb7y84B27SG3ZqWR8I4BiVpR/oFJy4K46/+5PIRkH/ rh5Eopdk9sQhK/4LALRyuTF622Vy9tKev65jWGr8bREI8G8EP7DHk/HxdjOZp35m 9Rm0yYarcQuLuQ4wL53I7EbQyvzJMz0sfKWJ3W3s94WfwNkZPJ421MM/akz92VWC Ab/B7/CWH+kJHlSK2IJ3j5aZpOe39TOfrWC/YDdodEB1VVM66K1GoHAhNaNj44gy s2V85onxmSVRggpvAuNcHALbC77A72TNiXVVOFwHtzY= -----END CERTIFICATE-----Generated at Sat Jun 1 00:12:06 2024 by rpki-client on console-ams.rpki-client.org