$ rpki-client -vvf repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa File: 3130332e35322e36302e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: VYfOnSr/N8rvbR6VjMh/olyNmsypisxyWI2UetiiFgI= Subject key identifier: B2:B8:C6:7E:FD:E9:D3:91:37:96:AD:56:31:B4:E4:8A:8D:5A:60:74 Certificate issuer: /CN=A17DC55845B70106CEB3A498496454BE640F44AB Certificate serial: 2301CBBC3EA0F9E95A3DDEEC76D864F7B18458CA Authority key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa Signing time: Wed 08 Nov 2023 07:00:00 +0000 ROA not before: Wed 08 Nov 2023 06:55:00 +0000 ROA not after: Wed 06 Nov 2024 07:00:00 +0000 asID: 138881 IP address blocks: 103.52.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:01:cb:bc:3e:a0:f9:e9:5a:3d:de:ec:76:d8:64:f7:b1:84:58:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A17DC55845B70106CEB3A498496454BE640F44AB Validity Not Before: Nov 8 06:55:00 2023 GMT Not After : Nov 6 07:00:00 2024 GMT Subject: CN=B2B8C67EFDE9D3913796AD5631B4E48A8D5A6074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:1e:b5:8e:86:f1:fe:cb:7b:e2:57:2a:dc: 55:31:07:b8:be:da:a1:8b:80:91:85:59:18:f6:f8: b7:bc:97:8a:1a:31:2b:99:46:84:2b:82:90:97:4a: d8:6b:5c:5e:ec:7d:19:01:61:96:14:d7:58:f6:02: 47:3b:74:fa:e5:d4:52:97:76:19:2f:5a:aa:ee:20: 85:3b:46:e3:15:79:cb:1c:87:8b:47:ed:1f:b1:f5: 63:fe:90:db:58:e0:53:4e:5a:2e:f4:af:a5:81:54: de:5a:b0:16:71:d8:f9:93:07:d5:13:cc:89:f0:ff: d4:47:ee:f7:f8:28:3f:15:b7:bb:92:99:49:c7:8f: c5:b0:3b:7f:6a:48:cf:de:e4:7e:d3:22:93:89:0c: 3b:c9:ab:0b:a3:d7:b8:b0:33:56:ed:c1:8f:f9:b8: 8f:d6:b4:04:50:56:e7:a3:bd:3c:5e:aa:51:c8:c5: 0d:a1:22:60:d0:fe:0f:85:e4:a9:ca:5b:88:56:c5: 26:01:a7:04:b5:b2:ff:9e:a1:7b:6f:e1:d2:2b:a4: c4:88:0d:09:8f:75:89:ac:80:f5:9a:38:82:cc:35: 77:29:6b:ad:2b:ab:87:b1:77:f4:4a:14:b9:cb:53: c9:ec:ea:d2:e3:ce:20:7d:4b:09:31:78:03:d5:78: 10:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B8:C6:7E:FD:E9:D3:91:37:96:AD:56:31:B4:E4:8A:8D:5A:60:74 X509v3 Authority Key Identifier: keyid:A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.60.0/24 Signature Algorithm: sha256WithRSAEncryption b2:74:14:6f:ab:98:96:b6:05:a2:a1:c8:49:d5:a7:4b:ea:d7: b8:e2:4f:f3:04:46:f6:56:31:ff:e5:63:b8:02:ca:54:d1:4c: 72:d5:74:65:97:5b:09:dc:db:1c:f2:30:b5:2e:f9:18:ce:c9: 11:ca:b4:30:4c:4a:a2:b9:42:ff:f9:a2:31:c0:df:7d:d4:96: a5:c8:d1:d2:fd:04:e8:62:8e:26:3c:fb:80:7f:51:01:8c:06: 7e:0b:96:85:88:2c:b7:56:4b:9d:bc:ee:bc:91:f5:04:94:3b: ff:8d:f7:b9:d9:8d:5b:0b:c7:20:8b:c7:42:92:6b:30:98:00: a4:41:2e:18:9c:08:ee:34:f0:ff:21:b1:45:5f:2d:6d:2e:95: f5:88:10:6c:cf:44:fd:fd:03:5b:71:0c:e5:f8:6c:3c:4a:92: c9:7d:a6:fa:cc:22:1e:47:b3:e3:bc:c8:67:f3:ae:b5:c7:8b: a8:70:1b:a5:4a:74:3a:29:a9:b0:9e:e3:27:16:ed:e4:ce:df: 18:ac:5d:48:a6:1e:c7:a0:59:ed:02:94:61:b5:2d:aa:ed:06: 8f:fd:a8:7b:4e:82:ba:54:3b:25:78:18:22:91:cc:24:37:39: 62:ce:80:ed:41:5e:dd:3b:6b:ee:45:87:af:99:2e:2d:8a:6a: 32:2f:4e:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIwHLvD6g+elaPd7sdthk97GEWMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2 NDBGNDRBQjAeFw0yMzExMDgwNjU1MDBaFw0yNDExMDYwNzAwMDBaMDMxMTAvBgNV BAMTKEIyQjhDNjdFRkRFOUQzOTEzNzk2QUQ1NjMxQjRFNDhBOEQ1QTYwNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQKh61jobx/st74lcq3FUxB7i+ 2qGLgJGFWRj2+Le8l4oaMSuZRoQrgpCXSthrXF7sfRkBYZYU11j2Akc7dPrl1FKX dhkvWqruIIU7RuMVecsch4tH7R+x9WP+kNtY4FNOWi70r6WBVN5asBZx2PmTB9UT zInw/9RH7vf4KD8Vt7uSmUnHj8WwO39qSM/e5H7TIpOJDDvJqwuj17iwM1btwY/5 uI/WtARQVuejvTxeqlHIxQ2hImDQ/g+F5KnKW4hWxSYBpwS1sv+eoXtv4dIrpMSI DQmPdYmsgPWaOILMNXcpa60rq4exd/RKFLnLU8ns6tLjziB9SwkxeAPVeBB/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsrjGfv3p05E3lq1WMbTkio1aYHQwHwYDVR0j BBgwFoAUoX3FWEW3AQbOs6SYSWRUvmQPRKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMC9BMTdEQzU1ODQ1 QjcwMTA2Q0VCM0E0OTg0OTY0NTRCRTY0MEY0NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2NDBG NDRBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzUzMjJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0PDANBgkqhkiG 9w0BAQsFAAOCAQEAsnQUb6uYlrYFoqHISdWnS+rXuOJP8wRG9lYx/+VjuALKVNFM ctV0ZZdbCdzbHPIwtS75GM7JEcq0MExKorlC//miMcDffdSWpcjR0v0E6GKOJjz7 gH9RAYwGfguWhYgst1ZLnbzuvJH1BJQ7/433udmNWwvHIIvHQpJrMJgApEEuGJwI 7jTw/yGxRV8tbS6V9YgQbM9E/f0DW3EM5fhsPEqSyX2m+swiHkez47zIZ/OutceL qHAbpUp0OimpsJ7jJxbt5M7fGKxdSKYex6BZ7QKUYbUtqu0Gj/2oe06CulQ7JXgY IpHMJDc5Ys6A7UFe3Ttr7kWHr5kuLYpqMi9O3w== -----END CERTIFICATE-----Generated at Mon May 6 09:06:29 2024 by rpki-client on console-fra.rpki-client.org