$ rpki-client -vvf repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa File: 3130332e32332e3130302e302f32322d3234203d3e203538343030.roa (raw, json) Hash identifier: lUSfpnZx9fdKlYaVxzrjLEaDLuVRY9GhAiW+Xn0l+aw= Subject key identifier: 8C:74:1F:99:08:57:DE:30:78:56:B1:1A:24:7E:3A:C1:35:F9:FD:CB Certificate issuer: /CN=22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C Certificate serial: 7916DE5DCCA497F34D5BA2FD23FDA4033D4A6EA9 Authority key identifier: 22:CD:3A:20:CF:62:1A:5B:0B:99:E4:28:C8:E5:73:19:C0:A9:CE:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa Signing time: Mon 26 Feb 2024 07:26:10 +0000 ROA not before: Mon 26 Feb 2024 07:21:10 +0000 ROA not after: Mon 24 Feb 2025 07:26:10 +0000 asID: 58400 IP address blocks: 103.23.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.crl rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:16:de:5d:cc:a4:97:f3:4d:5b:a2:fd:23:fd:a4:03:3d:4a:6e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C Validity Not Before: Feb 26 07:21:10 2024 GMT Not After : Feb 24 07:26:10 2025 GMT Subject: CN=8C741F990857DE307856B11A247E3AC135F9FDCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:35:d7:c1:e3:1d:b0:a3:1c:4e:98:16:d7:7d: 1a:1a:3a:24:9e:39:10:70:ee:02:c5:6a:23:b0:b3: d0:7f:3b:60:0e:44:b8:2e:f5:1a:0f:ad:7f:7c:b2: 1f:fa:eb:65:aa:c0:9f:fc:5d:c3:bb:3e:bd:80:b1: 7b:24:18:93:c9:df:63:dd:94:07:c9:33:59:6a:37: 38:63:81:0e:6b:5a:71:14:e1:4e:68:e6:6d:2c:78: 95:3a:e3:08:46:e8:b7:ef:93:e0:3e:c6:48:7e:9d: 02:0a:21:3e:06:de:f4:80:86:d8:99:dd:ee:c3:e5: ae:fe:8c:d5:85:11:43:5d:ce:73:73:4a:18:43:33: 8e:fe:22:fd:81:36:6a:cd:d2:93:17:a6:cd:22:df: f0:3b:c0:b2:41:69:76:57:1f:e8:cd:01:c3:ca:60: 60:ff:b2:0b:10:bf:89:18:a9:54:71:4d:e6:5f:3a: f5:3e:c0:8c:95:3f:27:4a:b2:5f:9e:8f:a4:7c:53: ba:f7:9e:e6:24:81:50:d8:42:41:34:6c:96:7d:3a: 2a:7c:41:c6:86:bb:47:9e:ae:d3:db:84:ff:7e:93: 7b:17:62:05:87:c8:d4:41:64:f1:c7:48:77:48:b9: b3:51:89:f6:48:f9:6a:b0:61:c6:5f:5d:c3:63:15: 91:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:74:1F:99:08:57:DE:30:78:56:B1:1A:24:7E:3A:C1:35:F9:FD:CB X509v3 Authority Key Identifier: keyid:22:CD:3A:20:CF:62:1A:5B:0B:99:E4:28:C8:E5:73:19:C0:A9:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.100.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:7d:94:fc:65:68:04:c5:22:a2:20:51:24:db:60:c7:43:11: 6b:3f:84:11:0f:30:7d:fd:34:12:68:e1:08:de:9d:84:e2:3c: 47:f5:ca:c5:c4:4d:ce:60:ae:01:db:31:6b:1f:5a:c0:b8:f8: b5:fd:23:ef:89:7c:3c:7d:3f:6e:18:6f:b2:57:32:af:94:af: 63:50:89:53:43:69:ec:f7:63:8c:de:ec:2e:a6:51:b7:d6:bd: 49:f6:f5:04:79:3f:68:43:50:2f:0d:50:ee:81:ad:06:08:a7: 4a:ee:b0:b3:5c:f2:ec:7e:b6:d2:80:41:7d:7c:d0:c7:25:49: 4c:00:68:dc:e2:11:eb:fc:d4:5a:41:aa:32:13:81:2a:4a:9c: fe:b8:22:fc:e3:bc:40:d1:8e:93:61:cd:96:38:52:98:46:3f: 7e:09:21:03:0d:98:9f:73:ac:d8:d4:6e:1c:3e:33:8c:91:1e: 89:dc:26:93:71:1d:b8:ee:cd:75:41:2b:88:62:f6:3e:94:2f: af:65:5c:ff:36:e7:7c:3b:7b:a3:e8:40:9b:12:99:2b:2b:a0: 29:53:9a:00:83:46:44:d3:b6:b9:e1:ec:90:b4:98:fd:ac:00: 4c:ab:05:d2:5c:29:eb:b1:0b:4b:4a:82:b2:06:fd:cd:6c:cd: cd:e5:5d:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeRbeXcykl/NNW6L9I/2kAz1KbqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjJDRDNBMjBDRjYyMUE1QjBCOTlFNDI4QzhFNTczMTlD MEE5Q0UyQzAeFw0yNDAyMjYwNzIxMTBaFw0yNTAyMjQwNzI2MTBaMDMxMTAvBgNV BAMTKDhDNzQxRjk5MDg1N0RFMzA3ODU2QjExQTI0N0UzQUMxMzVGOUZEQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtNdfB4x2woxxOmBbXfRoaOiSe ORBw7gLFaiOws9B/O2AORLgu9RoPrX98sh/662WqwJ/8XcO7Pr2AsXskGJPJ32Pd lAfJM1lqNzhjgQ5rWnEU4U5o5m0seJU64whG6Lfvk+A+xkh+nQIKIT4G3vSAhtiZ 3e7D5a7+jNWFEUNdznNzShhDM47+Iv2BNmrN0pMXps0i3/A7wLJBaXZXH+jNAcPK YGD/sgsQv4kYqVRxTeZfOvU+wIyVPydKsl+ej6R8U7r3nuYkgVDYQkE0bJZ9Oip8 QcaGu0eertPbhP9+k3sXYgWHyNRBZPHHSHdIubNRifZI+WqwYcZfXcNjFZEpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjHQfmQhX3jB4VrEaJH46wTX5/cswHwYDVR0j BBgwFoAUIs06IM9iGlsLmeQoyOVzGcCpziwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzE4MDcwNC02YjY0LTRhNDAtOGYzZC1mZmRmZDVlMzdkZWYvMC8yMkNEM0EyMENG NjIxQTVCMEI5OUU0MjhDOEU1NzMxOUMwQTlDRTJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjJDRDNBMjBDRjYyMUE1QjBCOTlFNDI4QzhFNTczMTlDMEE5 Q0UyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MTgwNzA0LTZiNjQtNGE0MC04 ZjNkLWZmZGZkNWUzN2RlZi8wLzMxMzAzMzJlMzIzMzJlMzEzMDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODM0MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcXZDANBgkqhkiG 9w0BAQsFAAOCAQEAC32U/GVoBMUioiBRJNtgx0MRaz+EEQ8wff00EmjhCN6dhOI8 R/XKxcRNzmCuAdsxax9awLj4tf0j74l8PH0/bhhvslcyr5SvY1CJU0Np7PdjjN7s LqZRt9a9Sfb1BHk/aENQLw1Q7oGtBginSu6ws1zy7H620oBBfXzQxyVJTABo3OIR 6/zUWkGqMhOBKkqc/rgi/OO8QNGOk2HNljhSmEY/fgkhAw2Yn3Os2NRuHD4zjJEe idwmk3EduO7NdUEriGL2PpQvr2Vc/zbnfDt7o+hAmxKZKyugKVOaAINGRNO2ueHs kLSY/awATKsF0lwp67ELS0qCsgb9zWzNzeVdQQ== -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:15 2024 by rpki-client on console-fra.rpki-client.org