$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa File: 3130332e34312e3230342e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: HKVKgP2DiCFcE1ol84eqttrqH4BEUCk3X5rZIBCFu7A= Subject key identifier: 34:39:A9:E3:8E:A0:37:4D:49:BE:2E:77:ED:35:A0:8E:D6:14:CD:FB Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 447AAD318D633C561E9866B9CC309F18468028FE Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 21:00:01 +0000 ROA not before: Fri 08 Dec 2023 20:55:01 +0000 ROA not after: Fri 06 Dec 2024 21:00:01 +0000 asID: 58397 IP address blocks: 103.41.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7a:ad:31:8d:63:3c:56:1e:98:66:b9:cc:30:9f:18:46:80:28:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Dec 8 20:55:01 2023 GMT Not After : Dec 6 21:00:01 2024 GMT Subject: CN=3439A9E38EA0374D49BE2E77ED35A08ED614CDFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:55:78:49:00:b6:9c:36:7a:ab:39:1e:37:14: 74:fd:2d:97:7c:98:19:ee:50:ca:a8:ad:7f:82:0e: 76:ed:f6:1f:73:7d:08:f4:c9:8e:97:f8:d9:c1:0e: 04:78:22:f0:33:61:a9:5d:a5:97:6d:5c:58:0b:3c: 58:93:b8:07:95:0d:24:76:fa:cc:eb:00:d1:50:f8: 01:cf:bb:1f:a0:2e:1d:33:07:50:0a:9d:13:7d:e8: 32:9d:93:ee:3a:e4:06:7e:35:80:fc:a2:27:83:0f: df:5e:a7:25:2f:cb:25:d3:ff:79:fa:19:67:c6:7a: c3:e6:97:40:25:b6:cc:c2:df:ff:2c:1c:95:f7:03: fa:61:d6:3e:e0:44:3d:4c:53:19:4c:9c:44:90:9b: 26:44:fd:20:11:90:4c:e7:0f:c2:32:e2:3a:98:2a: ad:28:98:2a:8e:14:5c:7d:93:69:27:2d:02:69:3b: 74:3e:81:6f:d3:5d:c0:b9:8c:e7:91:54:96:83:f9: f0:67:b8:14:ee:20:69:26:ec:9b:24:e4:bb:14:92: 24:17:dc:b1:e3:85:23:8c:8d:51:3b:77:2f:b6:f4: fb:e9:0f:5a:63:bf:c3:5a:a4:63:66:df:fb:62:8a: 4e:c9:98:68:10:cf:30:ed:97:2d:f0:5c:d3:32:31: da:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:39:A9:E3:8E:A0:37:4D:49:BE:2E:77:ED:35:A0:8E:D6:14:CD:FB X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3130332e34312e3230342e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.204.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:71:0a:58:60:14:d1:27:34:af:95:7c:1c:92:f2:10:9d:4c: bb:80:fc:83:0d:9a:78:01:78:87:1a:3a:6d:94:a1:7a:66:5b: 63:0e:6d:d9:d0:59:5a:e5:bb:f0:56:1b:9d:ee:6b:ef:3d:8e: 33:1d:4d:3f:80:97:39:6e:f2:05:76:e5:47:81:e8:11:f8:d2: b2:67:bd:fd:19:05:c9:0f:86:14:b1:80:6a:c7:02:ca:f5:6e: db:aa:a0:00:e6:52:87:4c:ae:3f:2b:7a:fe:18:be:c5:84:7f: cd:f6:59:88:9b:92:18:47:d9:70:5d:77:92:e6:18:1a:82:cc: 68:5e:1c:0a:53:c9:e5:3b:bf:3a:10:a9:0b:6f:9f:bf:6a:aa: 19:7a:3f:34:cf:70:aa:16:e9:d7:5d:d4:8a:20:78:97:c3:5d: fb:ef:bf:4e:63:ad:05:12:66:4a:1b:9d:6f:88:36:5c:80:22: e1:23:0e:f2:f2:73:26:75:db:c9:cb:5e:51:10:6b:df:47:cc: 03:d2:4d:53:13:67:ca:95:85:5c:17:fe:f5:b2:d1:0c:83:9e: 43:7d:ff:31:2d:08:48:99:a7:f6:cd:ef:c0:af:38:2c:cc:71: 33:00:d9:26:ce:76:74:86:8e:7d:94:a7:f4:83:71:76:47:d3: 04:bc:f4:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURHqtMY1jPFYemGa5zDCfGEaAKP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yMzEyMDgyMDU1MDFaFw0yNDEyMDYyMTAwMDFaMDMxMTAvBgNV BAMTKDM0MzlBOUUzOEVBMDM3NEQ0OUJFMkU3N0VEMzVBMDhFRDYxNENERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhVXhJALacNnqrOR43FHT9LZd8 mBnuUMqorX+CDnbt9h9zfQj0yY6X+NnBDgR4IvAzYaldpZdtXFgLPFiTuAeVDSR2 +szrANFQ+AHPux+gLh0zB1AKnRN96DKdk+465AZ+NYD8oieDD99epyUvyyXT/3n6 GWfGesPml0AltszC3/8sHJX3A/ph1j7gRD1MUxlMnESQmyZE/SARkEznD8Iy4jqY Kq0omCqOFFx9k2knLQJpO3Q+gW/TXcC5jOeRVJaD+fBnuBTuIGkm7Jsk5LsUkiQX 3LHjhSOMjVE7dy+29PvpD1pjv8NapGNm3/tiik7JmGgQzzDtly3wXNMyMdpnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNDmp446gN01Jvi537TWgjtYUzfswHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzAzMzJlMzQzMTJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcpzDANBgkqhkiG 9w0BAQsFAAOCAQEADXEKWGAU0Sc0r5V8HJLyEJ1Mu4D8gw2aeAF4hxo6bZShemZb Yw5t2dBZWuW78FYbne5r7z2OMx1NP4CXOW7yBXblR4HoEfjSsme9/RkFyQ+GFLGA ascCyvVu26qgAOZSh0yuPyt6/hi+xYR/zfZZiJuSGEfZcF13kuYYGoLMaF4cClPJ 5Tu/OhCpC2+fv2qqGXo/NM9wqhbp113UiiB4l8Nd+++/TmOtBRJmShudb4g2XIAi 4SMO8vJzJnXbycteURBr30fMA9JNUxNnypWFXBf+9bLRDIOeQ33/MS0ISJmn9s3v wK84LMxxMwDZJs52dIaOfZSn9INxdkfTBLz0mQ== -----END CERTIFICATE-----Generated at Thu May 2 17:40:14 2024 by rpki-client on console-fra.rpki-client.org