$ rpki-client -vvf rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa File: 3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa (raw, json) Hash identifier: YJD0JcFbLew5SatIrcZvpEZDDkOl3PKtVZn3Xm0iQTU= Subject key identifier: 62:2C:98:00:98:AC:E8:AA:23:AD:64:31:0C:46:18:00:46:CF:AA:4F Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Certificate serial: 070A4614780C3E5E6FBB6574A37E0271084FC284 Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject info access: rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa Signing time: Wed 17 Jul 2024 04:55:00 +0000 ROA not before: Wed 17 Jul 2024 04:50:00 +0000 ROA not after: Wed 16 Jul 2025 04:55:00 +0000 asID: 142046 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:0a:46:14:78:0c:3e:5e:6f:bb:65:74:a3:7e:02:71:08:4f:c2:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Validity Not Before: Jul 17 04:50:00 2024 GMT Not After : Jul 16 04:55:00 2025 GMT Subject: CN=622C980098ACE8AA23AD64310C46180046CFAA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:94:75:ca:30:0f:c1:8c:f0:f8:4f:ee:fe:9b: f8:88:f2:94:26:f9:49:02:98:b1:5c:e1:be:9e:54: bc:c2:49:02:5b:7d:f5:50:cb:08:bd:75:bd:2b:5e: d1:ed:e3:10:32:9b:31:2a:59:3e:b5:17:65:15:ce: 66:58:6a:36:cb:01:d4:92:4a:b5:c8:1b:89:c3:13: 3b:5f:23:a6:ee:c3:e9:8a:06:6d:0e:4a:bc:e7:88: 2a:a7:23:c2:4c:74:6a:25:a7:73:db:1b:24:25:e4: a2:89:7d:e8:1f:9c:68:d7:ce:05:cf:d4:17:d3:cc: c2:cd:f1:0d:54:93:e5:bc:d9:24:18:e0:82:35:8c: 10:eb:ab:ad:d6:da:c6:0f:ee:e6:86:0f:3b:c1:18: e7:67:e7:e5:25:a3:61:eb:f3:01:c8:db:e4:ee:8c: 79:2a:16:32:6a:3f:40:c9:11:d1:a7:96:85:f8:42: 58:7f:9f:cc:c1:5f:52:cb:45:7a:b8:09:71:2a:85: 17:c6:e4:ab:bd:9d:2c:af:96:1b:04:e3:4a:c9:ff: 51:37:4b:8b:55:47:60:3e:fd:63:d1:bf:34:59:52: bd:7f:64:51:6f:cc:9b:50:0c:94:9a:a1:76:03:77: d2:8a:3c:3b:da:25:30:11:9e:fa:e2:e0:98:34:01: a0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2C:98:00:98:AC:E8:AA:23:AD:64:31:0C:46:18:00:46:CF:AA:4F X509v3 Authority Key Identifier: keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313432303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:4d:f5:7d:fe:7b:fa:60:69:3c:51:7d:c9:3c:2d:fd:d5:d2: 72:79:cb:47:24:93:6f:be:a5:0f:f4:f8:5c:08:f7:9a:95:14: 8f:1d:66:4b:8f:b5:fc:e6:5d:78:b5:21:15:ed:e1:bb:6c:6a: 0e:39:f2:bf:28:58:4e:1a:c6:8f:63:33:46:57:31:89:1b:7d: ab:ff:46:4b:fc:5e:f5:15:7a:22:e7:22:6a:bc:1b:88:b9:fd: df:38:23:34:6f:27:01:02:9d:8f:ff:f1:1f:83:2b:21:5c:18: b4:55:c5:db:d2:6b:6e:68:17:42:aa:f7:6b:24:36:ca:a8:66: 5a:dc:92:8c:84:aa:55:df:c2:cd:0a:63:32:fb:0e:47:33:b7: b7:33:25:74:1f:b7:4d:b5:68:e5:1e:1a:4f:f6:ef:61:90:1a: cc:e6:a6:b8:69:54:71:e3:43:55:ee:04:0c:80:07:04:7f:45: 73:e1:3b:e4:7d:76:a1:e0:fc:66:39:df:5c:ea:d1:8d:bf:f1: e1:a6:85:d1:a6:c8:70:77:81:f3:ce:f2:4c:8a:f4:91:6e:bd: fd:8e:55:c3:42:12:fc:54:3b:b2:0a:aa:0c:34:2d:a1:b8:95: a7:fd:a7:1f:84:7d:43:fd:33:fd:91:52:a0:47:b3:b1:d3:ff: d9:31:f4:fc -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUBwpGFHgMPl5vu2V0o34CcQhPwoQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyg3MDYxMDAyNkM3 RjJBMDRFMTYzRDRGRTU1MzFEN0JDNDZFNzU0N0M5MB4XDTI0MDcxNzA0NTAwMFoX DTI1MDcxNjA0NTUwMFowMzExMC8GA1UEAxMoNjIyQzk4MDA5OEFDRThBQTIzQUQ2 NDMxMEM0NjE4MDA0NkNGQUE0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqUdcowD8GM8PhP7v6b+IjylCb5SQKYsVzhvp5UvMJJAlt99VDLCL11vSte 0e3jEDKbMSpZPrUXZRXOZlhqNssB1JJKtcgbicMTO18jpu7D6YoGbQ5KvOeIKqcj wkx0aiWnc9sbJCXkool96B+caNfOBc/UF9PMws3xDVST5bzZJBjggjWMEOurrdba xg/u5oYPO8EY52fn5SWjYevzAcjb5O6MeSoWMmo/QMkR0aeWhfhCWH+fzMFfUstF ergJcSqFF8bkq72dLK+WGwTjSsn/UTdLi1VHYD79Y9G/NFlSvX9kUW/Mm1AMlJqh dgN30oo8O9olMBGe+uLgmDQBoO0CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRiLJgA mKzoqiOtZDEMRhgARs+qTzAfBgNVHSMEGDAWgBRwYQAmx/KgThY9T+VTHXvEbnVH yTAOBgNVHQ8BAf8EBAMCB4AwWwYDVR0fBFQwUjBQoE6gTIZKcnN5bmM6Ly9ycGtp LmNvL3JlcG8vU2ltcGxlLzIvNzA2MTAwMjZDN0YyQTA0RTE2M0Q0RkU1NTMxRDdC QzQ2RTc1NDdDOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJC NDY4RjdDNzJGRDFGRjIvY0dFQUpzZnlvRTRXUFVfbFV4MTd4RzUxUjhrLmNlcjB4 BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnBraS5jby9yZXBv L1NpbXBsZS8yLzMxMzAzMzJlMzIzNDM0MmUzMTM2MzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMTM0MzIzMDM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9KMwDQYJKoZIhvcNAQEL BQADggEBAFtN9X3+e/pgaTxRfck8Lf3V0nJ5y0ckk2++pQ/0+FwI95qVFI8dZkuP tfzmXXi1IRXt4btsag458r8oWE4axo9jM0ZXMYkbfav/Rkv8XvUVeiLnImq8G4i5 /d84IzRvJwECnY//8R+DKyFcGLRVxdvSa25oF0Kq92skNsqoZlrckoyEqlXfws0K YzL7Dkczt7czJXQft021aOUeGk/272GQGszmprhpVHHjQ1XuBAyABwR/RXPhO+R9 dqHg/GY531zq0Y2/8eGmhdGmyHB3gfPO8kyK9JFuvf2OVcNCEvxUO7IKqgw0LaG4 laf9px+EfUP9M/2RUqBHs7HT/9kx9Pw= -----END CERTIFICATE-----Generated at Fri Sep 20 00:20:26 2024 by rpki-client on console-fra.rpki-client.org