$ rpki-client -vvf repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa File: 3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa (raw, json) Hash identifier: 6DlhDPybrE7AwBlt1xLh8rGaAnVZnMoKKgsa0q1LFIw= Subject key identifier: 8D:29:17:BE:2D:CC:13:39:BF:4E:BC:FE:70:DE:07:5E:33:71:7B:E5 Certificate issuer: /CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Certificate serial: 74ACE67CC7554DC7FD112E7EE9F99692957BDD37 Authority key identifier: 21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa Signing time: Thu 02 May 2024 11:00:01 +0000 ROA not before: Thu 02 May 2024 10:55:01 +0000 ROA not after: Thu 01 May 2025 11:00:01 +0000 asID: 135473 IP address blocks: 103.73.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ac:e6:7c:c7:55:4d:c7:fd:11:2e:7e:e9:f9:96:92:95:7b:dd:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Validity Not Before: May 2 10:55:01 2024 GMT Not After : May 1 11:00:01 2025 GMT Subject: CN=8D2917BE2DCC1339BF4EBCFE70DE075E33717BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:69:22:94:3f:6a:75:86:06:55:8e:0b:d0:b2: 9e:89:b3:60:70:a5:21:b1:2b:77:88:b8:6d:d1:49: 09:2e:6d:d4:b8:8d:f0:5c:88:c5:44:28:7a:61:d2: d3:58:2e:66:84:c0:93:c9:d4:52:94:4b:68:0c:32: 8e:09:fe:2a:f3:16:80:48:fe:4d:70:ea:86:c6:3f: d8:fb:fd:8c:1b:6c:92:e9:62:69:01:0a:52:86:7d: 40:20:e7:31:eb:17:11:b9:07:8d:df:47:0e:17:5e: 69:13:d0:7f:7a:fb:3d:b2:3a:ee:4c:67:ff:82:4e: 2c:5d:06:f9:e7:36:88:1e:9e:68:44:7b:19:10:73: 71:2e:dc:0c:c5:bd:8a:a4:b2:01:ac:0c:66:28:0f: 11:eb:56:53:76:ad:ac:06:2c:df:d4:bf:8e:cc:9e: 55:65:fc:58:ee:8b:09:17:e0:5d:6f:4e:7e:a9:46: 86:3c:88:8d:2b:6f:a2:25:d0:f7:5c:88:be:0c:49: c6:2b:ca:83:20:6b:81:03:09:07:72:5d:49:26:9a: 52:b5:8e:a7:58:d0:87:39:c0:14:ea:dd:e5:c1:07: 81:f8:d7:a7:bb:a9:b4:a3:7b:a3:a2:66:dd:7a:df: 6f:ab:9f:8d:a2:96:62:6e:de:fe:9d:a2:6c:b9:a1: a2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:29:17:BE:2D:CC:13:39:BF:4E:BC:FE:70:DE:07:5E:33:71:7B:E5 X509v3 Authority Key Identifier: keyid:21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.235.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:78:ff:10:d0:07:c5:4b:83:43:3c:0c:9d:f7:6b:96:07:be: c2:3c:99:5c:63:0e:18:5f:5c:a7:bb:72:8a:74:93:8c:83:e6: b5:bb:c3:c4:2c:9e:f4:d2:ad:9d:8f:5f:eb:2c:cd:6b:bc:24: 46:a3:0e:04:4f:4e:65:f0:f1:56:08:b2:ee:ce:f2:f1:95:b3: f5:66:67:8e:40:b2:c7:e9:b0:ac:72:bd:e6:0d:12:4b:ef:4b: a2:8b:a3:29:61:6e:b6:92:c3:69:83:69:0a:d0:c5:ff:ee:92: 31:97:9c:9a:3e:1f:c5:d5:d9:5d:cb:b1:77:fc:4c:2c:1a:79: 7c:a7:0c:e7:95:9f:a1:cf:e4:66:f4:29:11:f0:c2:b4:99:a2: 9e:b4:99:f5:1c:96:78:6b:e0:31:d1:d6:97:cf:d8:ab:04:bb: 05:c6:ab:c7:c4:d8:3e:6c:8d:d7:7d:dd:09:3e:0c:a3:a2:13: d5:66:ef:07:92:9e:c2:15:73:de:5b:ae:c5:bb:f1:c7:68:09: 79:31:af:77:87:9b:98:10:19:8a:c4:bb:e9:e5:a1:90:3b:72: b1:e6:9c:44:7c:3b:ef:b0:54:97:7e:43:be:8a:0c:6c:11:a5: 3b:2e:e5:a4:02:5e:56:7e:89:34:94:4f:b9:f2:01:10:f1:03: ee:57:0b:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdKzmfMdVTcf9ES5+6fmWkpV73TcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZC ODhBMzJBOTAeFw0yNDA1MDIxMDU1MDFaFw0yNTA1MDExMTAwMDFaMDMxMTAvBgNV BAMTKDhEMjkxN0JFMkRDQzEzMzlCRjRFQkNGRTcwREUwNzVFMzM3MTdCRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQaSKUP2p1hgZVjgvQsp6Js2Bw pSGxK3eIuG3RSQkubdS4jfBciMVEKHph0tNYLmaEwJPJ1FKUS2gMMo4J/irzFoBI /k1w6obGP9j7/YwbbJLpYmkBClKGfUAg5zHrFxG5B43fRw4XXmkT0H96+z2yOu5M Z/+CTixdBvnnNogenmhEexkQc3Eu3AzFvYqksgGsDGYoDxHrVlN2rawGLN/Uv47M nlVl/FjuiwkX4F1vTn6pRoY8iI0rb6Il0PdciL4MScYryoMga4EDCQdyXUkmmlK1 jqdY0Ic5wBTq3eXBB4H416e7qbSje6OiZt1632+rn42ilmJu3v6domy5oaJxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjSkXvi3MEzm/Trz+cN4HXjNxe+UwHwYDVR0j BBgwFoAUIQ/ZjrTZpNjQ/Lmy87u8f7iKMqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mjc4OGM4OC1jYTJjLTRmYTAtYTM1Zi0zZTdhMTA4ODcyMjgvMC8yMTBGRDk4RUI0 RDlBNEQ4RDBGQ0I5QjJGM0JCQkM3RkI4OEEzMkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZCODhB MzJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNzg4Yzg4LWNhMmMtNGZhMC1h MzVmLTNlN2ExMDg4NzIyOC8wLzMxMzAzMzJlMzczMzJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0nrMA0GCSqG SIb3DQEBCwUAA4IBAQAteP8Q0AfFS4NDPAyd92uWB77CPJlcYw4YX1ynu3KKdJOM g+a1u8PELJ700q2dj1/rLM1rvCRGow4ET05l8PFWCLLuzvLxlbP1ZmeOQLLH6bCs cr3mDRJL70uii6MpYW62ksNpg2kK0MX/7pIxl5yaPh/F1dldy7F3/EwsGnl8pwzn lZ+hz+Rm9CkR8MK0maKetJn1HJZ4a+Ax0daXz9irBLsFxqvHxNg+bI3Xfd0JPgyj ohPVZu8Hkp7CFXPeW67Fu/HHaAl5Ma93h5uYEBmKxLvp5aGQO3Kx5pxEfDvvsFSX fkO+igxsEaU7LuWkAl5Wfok0lE+58gEQ8QPuVwsa -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:57 2024 by rpki-client on console-ams.rpki-client.org