$ rpki-client -vvf repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa File: 3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa (raw, json) Hash identifier: rkc9d5miRbKyeh1ruV869BB1IYExxmNktxZlzNwDrFs= Subject key identifier: 65:24:F0:53:9A:5B:11:6D:65:64:63:02:9F:F2:B5:30:F6:AC:3C:8D Certificate issuer: /CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Certificate serial: 2117AB0D31EF209D75814757A3FAF088BA8EF4AD Authority key identifier: 37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa Signing time: Sat 22 Jul 2023 10:00:00 +0000 ROA not before: Sat 22 Jul 2023 09:55:00 +0000 ROA not after: Sat 20 Jul 2024 10:00:00 +0000 asID: 45724 IP address blocks: 103.231.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:17:ab:0d:31:ef:20:9d:75:81:47:57:a3:fa:f0:88:ba:8e:f4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Validity Not Before: Jul 22 09:55:00 2023 GMT Not After : Jul 20 10:00:00 2024 GMT Subject: CN=6524F0539A5B116D656463029FF2B530F6AC3C8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:f4:89:c6:92:36:7a:75:10:a8:06:68:bf: 9b:b7:df:ff:a8:33:c4:0d:60:95:5c:f4:4c:a5:2e: 85:b6:b1:f1:27:86:ed:07:08:09:a1:89:ac:c5:8f: f4:fa:20:aa:48:37:f5:51:9b:a7:c3:f3:41:72:45: ea:16:a0:6c:f7:53:ad:55:b3:96:d2:56:4b:43:92: 10:31:0c:9e:b0:08:3e:08:0d:e2:16:39:6f:3f:78: e6:5f:14:e7:55:83:94:ad:1b:6a:e9:0e:4c:58:e3: bd:48:b9:ca:e8:e6:b5:fe:d6:cf:47:d8:ab:d8:78: 56:40:96:d1:92:9e:b9:19:38:e7:53:c4:b5:7f:fe: 71:c8:f8:0e:3b:8b:07:4f:98:3e:72:c9:ea:c9:93: 39:fd:73:c5:2e:16:0f:0b:63:4a:13:e0:ca:8f:d6: 1a:8b:ab:a2:dc:b8:07:fc:c7:8b:19:e9:94:89:15: 2d:8a:61:f9:97:85:dc:03:d3:5c:22:b4:2e:b1:fc: 91:d1:63:de:a0:96:69:6a:05:e1:61:ef:f0:e1:17: e5:53:5e:b9:fa:5e:d1:11:d6:86:2e:82:55:d5:a4: 2e:d6:4f:f1:ba:c9:63:89:4d:b0:dc:59:2d:17:b7: c1:c5:59:41:a4:40:31:63:52:91:d0:9d:d1:f2:f8: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:24:F0:53:9A:5B:11:6D:65:64:63:02:9F:F2:B5:30:F6:AC:3C:8D X509v3 Authority Key Identifier: keyid:37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3130332e3233312e3131322e302f32322d3234203d3e203435373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.112.0/22 Signature Algorithm: sha256WithRSAEncryption 36:56:bc:d6:eb:90:a4:16:9e:f4:12:e5:fc:c9:c1:c0:48:28: 87:bc:08:84:f9:4d:ae:44:57:28:6c:f4:e3:47:c2:bb:12:de: 71:8c:91:04:c6:56:e2:0d:c1:c4:1f:dd:5b:14:3a:6a:54:fb: 6d:98:72:a6:e0:73:d1:eb:c7:fc:88:cf:e1:b4:61:ce:21:04: 4d:d5:a2:d7:c7:9b:33:1d:71:b2:76:7a:ef:40:60:d3:59:ad: 77:d7:28:46:64:1b:55:f4:4c:6e:d9:de:cf:a2:77:59:9d:16: 6e:23:2f:47:a0:95:01:a1:d0:a9:6c:55:ce:c2:06:60:df:0e: 67:cc:b7:4a:a7:29:d4:61:7a:15:e5:16:60:84:db:6f:e6:65: 70:ab:36:01:ab:93:c7:53:d7:2d:74:82:53:3c:62:05:73:7b: dc:00:6f:7f:a2:10:90:60:19:5c:cc:a6:83:b7:60:fc:7d:3b: 6b:f1:21:df:b8:4b:99:00:0f:cb:83:a2:81:f1:b6:cb:7b:73: 87:3b:67:31:fa:b3:9b:93:c5:fe:be:c4:89:20:70:9c:93:8a: 72:16:92:b0:73:59:2a:a5:85:36:dd:dc:c2:c1:23:0d:a5:35: 23:33:d7:a2:b6:65:c3:d8:ca:a5:83:d3:9a:54:fc:99:b7:02: b4:93:36:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIRerDTHvIJ11gUdXo/rwiLqO9K0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBD ODhFNEJBOTAeFw0yMzA3MjIwOTU1MDBaFw0yNDA3MjAxMDAwMDBaMDMxMTAvBgNV BAMTKDY1MjRGMDUzOUE1QjExNkQ2NTY0NjMwMjlGRjJCNTMwRjZBQzNDOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3i/SJxpI2enUQqAZov5u33/+o M8QNYJVc9EylLoW2sfEnhu0HCAmhiazFj/T6IKpIN/VRm6fD80FyReoWoGz3U61V s5bSVktDkhAxDJ6wCD4IDeIWOW8/eOZfFOdVg5StG2rpDkxY471Iucro5rX+1s9H 2KvYeFZAltGSnrkZOOdTxLV//nHI+A47iwdPmD5yyerJkzn9c8UuFg8LY0oT4MqP 1hqLq6LcuAf8x4sZ6ZSJFS2KYfmXhdwD01witC6x/JHRY96glmlqBeFh7/DhF+VT Xrn6XtER1oYuglXVpC7WT/G6yWOJTbDcWS0Xt8HFWUGkQDFjUpHQndHy+MxtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZSTwU5pbEW1lZGMCn/K1MPasPI0wHwYDVR0j BBgwFoAUNxln370gOi/UToj3htnw8MiOS6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWI4Yjg4OS0zYjNkLTRlZjUtYWQ3MC01YjEwNDVlZmYzOTMvMC8zNzE5NjdERkJE MjAzQTJGRDQ0RTg4Rjc4NkQ5RjBGMEM4OEU0QkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBDODhF NEJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYjhiODg5LTNiM2QtNGVmNS1h ZDcwLTViMTA0NWVmZjM5My8wLzMxMzAzMzJlMzIzMzMxMmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dwMA0GCSqG SIb3DQEBCwUAA4IBAQA2VrzW65CkFp70EuX8ycHASCiHvAiE+U2uRFcobPTjR8K7 Et5xjJEExlbiDcHEH91bFDpqVPttmHKm4HPR68f8iM/htGHOIQRN1aLXx5szHXGy dnrvQGDTWa131yhGZBtV9Exu2d7PondZnRZuIy9HoJUBodCpbFXOwgZg3w5nzLdK pynUYXoV5RZghNtv5mVwqzYBq5PHU9ctdIJTPGIFc3vcAG9/ohCQYBlczKaDt2D8 fTtr8SHfuEuZAA/Lg6KB8bbLe3OHO2cx+rObk8X+vsSJIHCck4pyFpKwc1kqpYU2 3dzCwSMNpTUjM9eitmXD2Mqlg9OaVPyZtwK0kzaU -----END CERTIFICATE-----Generated at Fri May 31 20:32:45 2024 by rpki-client on console-ams.rpki-client.org