$ rpki-client -vvf repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa File: 3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa (raw, json) Hash identifier: nUVinFsoY0w+ulYAvUeNGakliI15G1kEe5kQEWg5wpI= Subject key identifier: D0:4A:70:95:0B:B4:CC:EC:88:F1:39:0C:C6:8B:75:D6:32:04:8F:80 Certificate issuer: /CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Certificate serial: 55B04185CD29B63F413F8DDE0E589EF5DB879C70 Authority key identifier: 37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa Signing time: Sat 22 Jun 2024 10:00:00 +0000 ROA not before: Sat 22 Jun 2024 09:55:00 +0000 ROA not after: Sat 21 Jun 2025 10:00:00 +0000 asID: 45724 IP address blocks: 103.231.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b0:41:85:cd:29:b6:3f:41:3f:8d:de:0e:58:9e:f5:db:87:9c:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Validity Not Before: Jun 22 09:55:00 2024 GMT Not After : Jun 21 10:00:00 2025 GMT Subject: CN=D04A70950BB4CCEC88F1390CC68B75D632048F80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:cd:c0:1a:0e:c0:d5:ef:3e:8a:2b:67:69: ce:92:1f:5b:38:5f:f6:57:b6:bb:ba:12:3f:9a:70: be:4a:27:3e:2e:d4:a7:66:37:e0:19:a9:2e:6a:e7: 1e:51:b3:47:ec:64:ef:16:10:a8:0c:0b:ed:4e:5e: 3c:2e:67:77:91:e1:2c:1a:b0:d1:4a:19:c0:9a:62: 27:3b:5b:01:a2:fe:3c:3f:d8:3c:c7:1a:25:41:f9: 12:19:a8:9b:1b:63:24:d2:46:45:69:44:2c:83:c9: 88:5e:76:08:82:c9:17:ed:2a:f8:bc:cf:a4:b7:30: 0a:91:71:af:37:0c:08:c6:42:f2:89:86:86:21:95: c8:f7:85:87:44:96:05:70:11:2b:5d:4c:b8:06:12: cc:01:75:92:2f:5b:44:bd:9b:96:83:0d:f6:82:06: 9c:db:57:cb:f9:df:11:91:f3:28:ee:0e:86:77:58: f5:ec:9d:10:64:8d:fe:62:e4:5d:60:0d:4a:c4:6c: b8:8e:f4:20:7d:0c:bb:c5:63:09:f8:b4:56:eb:96: 62:47:91:09:f2:35:66:07:97:f8:40:1a:80:f8:15: a4:4c:16:77:47:12:97:73:de:61:7b:5d:c3:f4:da: 08:01:14:9b:c6:e5:8a:0c:50:f8:a1:6a:33:90:8f: 65:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4A:70:95:0B:B4:CC:EC:88:F1:39:0C:C6:8B:75:D6:32:04:8F:80 X509v3 Authority Key Identifier: keyid:37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.112.0/22 Signature Algorithm: sha256WithRSAEncryption b3:a7:72:e3:ca:45:90:7d:3f:a9:64:55:ea:77:8d:b8:9c:12: 9a:c3:c4:a4:26:ad:f4:b3:89:e5:49:12:01:93:ec:28:b4:a1: f7:87:ea:c5:83:ff:d8:a0:52:77:d9:7b:7d:45:0b:60:cd:c3: df:67:5e:6d:fd:b5:4e:04:67:e3:7d:e8:c6:f5:2f:67:aa:ad: 11:34:78:79:c1:9b:6f:d7:0b:8b:43:c5:bf:bc:06:a2:1c:51: 57:f7:04:48:e1:33:f5:c9:e8:75:b3:51:cc:fe:a5:b6:c2:e4: ca:dc:78:8b:e1:5d:34:00:f3:f6:b9:31:e4:4b:ac:9a:7a:11: 7b:e9:86:54:37:74:ff:a6:15:ac:32:ac:41:b8:34:06:52:36: 49:9c:60:ae:35:79:93:9a:69:93:95:22:85:e6:21:58:fe:e8: 17:8c:e4:9d:12:71:61:fa:86:0d:2c:52:3f:32:b3:37:fe:f1: 5e:08:38:b8:b4:2e:99:e3:a8:15:12:84:90:90:0b:58:c5:0b: fe:48:a2:55:5c:ed:b5:7f:99:d0:35:02:82:db:ea:b5:2f:5a: 41:19:ab:d4:4b:1c:55:63:44:44:f5:c7:9b:37:96:df:6e:a9: c9:e5:7f:b0:bf:53:eb:35:35:c0:5e:d5:8a:bf:d9:d8:12:f6: 88:c6:9d:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVbBBhc0ptj9BP43eDlie9duHnHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBD ODhFNEJBOTAeFw0yNDA2MjIwOTU1MDBaFw0yNTA2MjExMDAwMDBaMDMxMTAvBgNV BAMTKEQwNEE3MDk1MEJCNENDRUM4OEYxMzkwQ0M2OEI3NUQ2MzIwNDhGODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv0c3AGg7A1e8+iitnac6SH1s4 X/ZXtru6Ej+acL5KJz4u1KdmN+AZqS5q5x5Rs0fsZO8WEKgMC+1OXjwuZ3eR4Swa sNFKGcCaYic7WwGi/jw/2DzHGiVB+RIZqJsbYyTSRkVpRCyDyYhedgiCyRftKvi8 z6S3MAqRca83DAjGQvKJhoYhlcj3hYdElgVwEStdTLgGEswBdZIvW0S9m5aDDfaC BpzbV8v53xGR8yjuDoZ3WPXsnRBkjf5i5F1gDUrEbLiO9CB9DLvFYwn4tFbrlmJH kQnyNWYHl/hAGoD4FaRMFndHEpdz3mF7XcP02ggBFJvG5YoMUPihajOQj2VpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0EpwlQu0zOyI8TkMxot11jIEj4AwHwYDVR0j BBgwFoAUNxln370gOi/UToj3htnw8MiOS6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWI4Yjg4OS0zYjNkLTRlZjUtYWQ3MC01YjEwNDVlZmYzOTMvMC8zNzE5NjdERkJE MjAzQTJGRDQ0RTg4Rjc4NkQ5RjBGMEM4OEU0QkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBDODhF NEJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYjhiODg5LTNiM2QtNGVmNS1h ZDcwLTViMTA0NWVmZjM5My8wLzMxMzAzMzJlMzIzMzMxMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dwMA0GCSqG SIb3DQEBCwUAA4IBAQCzp3LjykWQfT+pZFXqd424nBKaw8SkJq30s4nlSRIBk+wo tKH3h+rFg//YoFJ32Xt9RQtgzcPfZ15t/bVOBGfjfejG9S9nqq0RNHh5wZtv1wuL Q8W/vAaiHFFX9wRI4TP1yeh1s1HM/qW2wuTK3HiL4V00APP2uTHkS6yaehF76YZU N3T/phWsMqxBuDQGUjZJnGCuNXmTmmmTlSKF5iFY/ugXjOSdEnFh+oYNLFI/MrM3 /vFeCDi4tC6Z46gVEoSQkAtYxQv+SKJVXO21f5nQNQKC2+q1L1pBGavUSxxVY0RE 9cebN5bfbqnJ5X+wv1PrNTXAXtWKv9nYEvaIxp27 -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org