$ rpki-client -vvf repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa File: 3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: TLz1yxR5ee4b/e3IDYBKYGMjTfF/qSNOhivvoOQ0IN4= Subject key identifier: 21:8E:15:C7:D9:6C:68:5C:B4:1A:B0:34:5E:B8:D5:43:73:D9:57:AC Certificate issuer: /CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9 Certificate serial: 65BE3ECEFB790966A853908E64AB18FAEE7CD83D Authority key identifier: D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa Signing time: Mon 18 Mar 2024 09:00:02 +0000 ROA not before: Mon 18 Mar 2024 08:55:02 +0000 ROA not after: Mon 17 Mar 2025 09:00:02 +0000 asID: 45305 IP address blocks: 103.130.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:be:3e:ce:fb:79:09:66:a8:53:90:8e:64:ab:18:fa:ee:7c:d8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9 Validity Not Before: Mar 18 08:55:02 2024 GMT Not After : Mar 17 09:00:02 2025 GMT Subject: CN=218E15C7D96C685CB41AB0345EB8D54373D957AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:1c:1f:88:be:6f:e6:94:0b:b6:57:43:4a: 7f:d5:de:e7:8c:73:e8:72:25:fb:4a:7f:91:ef:19: d6:28:2f:87:bd:b1:c4:62:1d:d4:21:b8:c2:08:58: 0e:5f:e9:6e:58:04:e4:0b:96:86:46:5e:09:aa:81: f5:a3:92:c4:d3:fd:72:e2:a8:5a:37:dc:9a:a2:29: ec:67:eb:af:8b:63:e1:9b:7e:82:1e:99:aa:7e:36: ea:c9:f2:09:40:44:f7:f2:a0:4c:79:8b:12:52:91: f1:d6:54:03:c7:d1:e3:2b:b4:20:1e:64:12:97:ba: f8:49:a4:96:b6:a5:4f:23:91:2c:5c:eb:11:54:7e: 4b:0f:c0:7c:d7:dc:36:65:f5:c6:a6:67:9e:ae:b0: 04:c8:10:d6:d0:53:89:88:35:e0:0e:5e:cc:e6:03: 01:d8:52:11:8e:e6:38:8b:35:84:bd:a9:88:58:99: 3e:f7:f5:ce:ab:02:68:bd:7f:f5:b1:cd:69:3c:48: b1:f7:d7:b8:f9:75:bc:bb:af:03:b8:bf:fa:60:62: d3:a8:bd:85:53:5f:e2:f2:e6:03:f5:a0:4a:5f:34: bc:60:05:ed:c8:d6:ff:95:13:1b:a2:12:4e:1f:fd: a0:52:1f:fa:f3:e3:50:02:81:bb:9d:69:46:ef:ad: df:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8E:15:C7:D9:6C:68:5C:B4:1A:B0:34:5E:B8:D5:43:73:D9:57:AC X509v3 Authority Key Identifier: keyid:D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.116.0/24 Signature Algorithm: sha256WithRSAEncryption af:d2:39:6b:d6:da:87:6c:37:8c:f4:7b:4c:4a:db:5d:11:b0: 61:3a:3f:3e:1a:7d:17:75:28:4c:58:ae:d7:c2:35:22:ce:bf: 09:dd:01:05:f2:e9:4b:76:9b:eb:f5:0c:d7:87:eb:2c:b8:65: d1:d2:42:58:50:82:e7:96:4b:03:b9:9a:0e:7f:7e:cf:68:c9: 03:dc:0d:6f:c2:ab:ff:44:18:bc:2d:57:ae:70:02:16:9c:4b: 35:2c:46:2d:e0:90:9a:f1:5a:1c:80:e8:b4:a5:e1:03:f7:01: 63:19:5f:67:d4:50:ff:d6:5c:15:df:4a:35:e3:0d:2e:0c:ea: 82:91:f6:ef:10:27:c8:af:3d:54:0a:a2:5d:b5:e9:51:60:99: 27:43:bc:e8:68:49:54:e8:b2:b4:3b:0a:30:5e:19:12:43:9a: 08:65:ed:da:ed:f7:64:3c:9f:21:3b:3c:37:05:51:25:b7:eb: b7:c9:c2:14:72:00:c2:22:c2:8d:c2:a8:0e:a1:68:b3:46:4b: 67:98:17:06:42:3f:af:c1:95:58:8d:d9:81:e7:28:85:6e:d1: d6:43:7b:ba:cd:76:06:7a:58:cf:2a:b6:6e:8c:04:cc:e6:c8: 03:23:f7:8e:06:b4:db:0a:84:b2:72:d1:be:54:87:f5:73:89: 40:e6:b8:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZb4+zvt5CWaoU5COZKsY+u582D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDk0N0U4QkVBRTAxQTY3MTBFMzI0Q0Q0MTZEMzI4MkFE REZCQkZFOTAeFw0yNDAzMTgwODU1MDJaFw0yNTAzMTcwOTAwMDJaMDMxMTAvBgNV BAMTKDIxOEUxNUM3RDk2QzY4NUNCNDFBQjAzNDVFQjhENTQzNzNEOTU3QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC26hwfiL5v5pQLtldDSn/V3ueM c+hyJftKf5HvGdYoL4e9scRiHdQhuMIIWA5f6W5YBOQLloZGXgmqgfWjksTT/XLi qFo33JqiKexn66+LY+GbfoIemap+NurJ8glARPfyoEx5ixJSkfHWVAPH0eMrtCAe ZBKXuvhJpJa2pU8jkSxc6xFUfksPwHzX3DZl9camZ56usATIENbQU4mINeAOXszm AwHYUhGO5jiLNYS9qYhYmT739c6rAmi9f/WxzWk8SLH317j5dby7rwO4v/pgYtOo vYVTX+Ly5gP1oEpfNLxgBe3I1v+VExuiEk4f/aBSH/rz41ACgbudaUbvrd/JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIY4Vx9lsaFy0GrA0XrjVQ3PZV6wwHwYDVR0j BBgwFoAU2Ufovq4BpnEOMkzUFtMoKt37v+kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZmZkYzJiNy1mMzA1LTRlMDctYWFjNS00NjllOTExM2IwYjQvMC9EOTQ3RThCRUFF MDFBNjcxMEUzMjRDRDQxNkQzMjgyQURERkJCRkU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDk0N0U4QkVBRTAxQTY3MTBFMzI0Q0Q0MTZEMzI4MkFEREZC QkZFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmZmRjMmI3LWYzMDUtNGUwNy1h YWM1LTQ2OWU5MTEzYjBiNC8wLzMxMzAzMzJlMzEzMzMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J0MA0GCSqG SIb3DQEBCwUAA4IBAQCv0jlr1tqHbDeM9HtMSttdEbBhOj8+Gn0XdShMWK7XwjUi zr8J3QEF8ulLdpvr9QzXh+ssuGXR0kJYUILnlksDuZoOf37PaMkD3A1vwqv/RBi8 LVeucAIWnEs1LEYt4JCa8VocgOi0peED9wFjGV9n1FD/1lwV30o14w0uDOqCkfbv ECfIrz1UCqJdtelRYJknQ7zoaElU6LK0OwowXhkSQ5oIZe3a7fdkPJ8hOzw3BVEl t+u3ycIUcgDCIsKNwqgOoWizRktnmBcGQj+vwZVYjdmB5yiFbtHWQ3u6zXYGeljP KrZujATM5sgDI/eOBrTbCoSyctG+VIf1c4lA5ril -----END CERTIFICATE-----Generated at Fri May 24 09:24:59 2024 by rpki-client on console-fra.rpki-client.org