$ rpki-client -vvf rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa File: 3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa (raw, json) Hash identifier: HuCfQjJNbpugIelrMpmJ1tNl7Uys4Bc9xilmaLOvcjE= Subject key identifier: C8:2E:F6:75:FB:58:D3:FB:F7:3D:A1:B1:9D:9D:C3:3E:46:95:9F:24 Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Certificate serial: 7AEA2DA5504675C14320FA7B8BBC4E0CE850BA30 Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject info access: rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa Signing time: Mon 09 Oct 2023 04:41:50 +0000 ROA not before: Mon 09 Oct 2023 04:36:50 +0000 ROA not after: Mon 07 Oct 2024 04:41:50 +0000 asID: 151188 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ea:2d:a5:50:46:75:c1:43:20:fa:7b:8b:bc:4e:0c:e8:50:ba:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Validity Not Before: Oct 9 04:36:50 2023 GMT Not After : Oct 7 04:41:50 2024 GMT Subject: CN=C82EF675FB58D3FBF73DA1B19D9DC33E46959F24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:e4:49:bb:d5:89:20:5e:2e:72:7e:9e:e7: 95:fb:21:3c:e2:ed:a5:cb:58:5f:6f:f8:15:10:13: 5e:a0:ee:fa:31:1c:0c:a1:bf:ab:5f:b5:c3:9a:8c: 12:b4:aa:55:b1:3c:1c:08:97:26:d3:00:c7:78:97: 1f:a9:28:15:3a:67:d0:b3:e3:b7:02:2f:d5:e6:a0: e2:19:37:78:82:72:a3:11:a7:d7:bb:ee:6a:09:28: 9c:c5:75:5d:c1:26:57:2c:56:ec:d5:19:1e:98:05: be:15:26:c0:ec:7e:ec:fe:09:0b:55:a3:9a:23:5d: 6e:0e:6f:8d:6e:a8:7d:a4:71:d8:fe:c7:f9:7d:83: 3c:c9:ba:bc:91:17:4a:18:38:8a:8e:11:69:26:fe: 0c:de:12:37:2c:78:a8:b1:06:c3:4a:b4:21:7b:9b: a9:8f:ea:68:b6:64:ee:e9:85:f7:de:ad:2b:55:b4: 0c:0b:e6:04:20:91:1c:fc:bf:8e:a3:a1:c2:aa:13: 31:f0:ff:c5:b2:ff:5c:11:ea:54:7c:77:2a:1a:02: 41:8c:c0:95:f2:84:d4:fb:d5:3d:2d:31:31:7e:53: fa:0e:fb:c0:b0:83:74:6b:3a:be:05:20:ed:01:be: d7:52:be:fe:24:2a:4c:9c:d7:f8:2e:3b:ff:a7:19: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2E:F6:75:FB:58:D3:FB:F7:3D:A1:B1:9D:9D:C3:3E:46:95:9F:24 X509v3 Authority Key Identifier: keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 84:08:21:81:76:f6:2f:b5:49:54:08:bf:db:ad:1d:35:3d:40: 62:43:2e:8b:c6:67:68:3c:1f:2c:51:3c:81:c6:e5:2c:66:af: ff:16:43:3f:b7:6f:e8:fd:61:72:80:69:ab:84:57:d4:01:eb: 54:32:5e:11:9b:47:4e:84:b2:e5:8e:3a:e0:f3:33:a6:03:52: b4:59:df:75:2e:a6:38:e2:99:96:da:d0:29:37:27:00:b4:db: e2:0f:5e:d0:79:dc:b0:7c:54:86:37:b2:1a:f1:15:2b:93:44: f0:5d:6d:bc:83:3b:89:48:25:c8:ec:3a:96:f9:ce:8f:7f:59: f6:99:33:4c:7e:6e:9b:e5:f2:08:14:98:39:53:7c:c7:1b:d6: 25:f4:34:27:ff:77:cd:3b:0a:27:5c:2e:96:02:95:09:71:3d: 4b:5a:5b:19:3c:f2:64:71:bf:f8:67:1f:63:a3:75:37:c2:ed: e4:32:8f:7c:aa:a1:2c:8a:31:44:26:7c:9f:84:92:5b:5a:d5: b1:d6:d3:7d:c3:b5:d5:f0:01:a6:a1:35:67:1f:08:6f:22:c1: 4c:4a:d1:5f:1f:54:39:67:cb:9b:25:a0:fe:a4:84:20:c6:bd: c8:ae:27:f0:8c:72:4d:4b:8f:f3:51:2a:0e:30:48:b7:a2:cd: ea:c5:3d:c4 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUeuotpVBGdcFDIPp7i7xODOhQujAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyg3MDYxMDAyNkM3 RjJBMDRFMTYzRDRGRTU1MzFEN0JDNDZFNzU0N0M5MB4XDTIzMTAwOTA0MzY1MFoX DTI0MTAwNzA0NDE1MFowMzExMC8GA1UEAxMoQzgyRUY2NzVGQjU4RDNGQkY3M0RB MUIxOUQ5REMzM0U0Njk1OUYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoD5Em71YkgXi5yfp7nlfshPOLtpctYX2/4FRATXqDu+jEcDKG/q1+1w5qM ErSqVbE8HAiXJtMAx3iXH6koFTpn0LPjtwIv1eag4hk3eIJyoxGn17vuagkonMV1 XcEmVyxW7NUZHpgFvhUmwOx+7P4JC1WjmiNdbg5vjW6ofaRx2P7H+X2DPMm6vJEX Shg4io4RaSb+DN4SNyx4qLEGw0q0IXubqY/qaLZk7umF996tK1W0DAvmBCCRHPy/ jqOhwqoTMfD/xbL/XBHqVHx3KhoCQYzAlfKE1PvVPS0xMX5T+g77wLCDdGs6vgUg 7QG+11K+/iQqTJzX+C47/6cZp8MCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTILvZ1 +1jT+/c9obGdncM+RpWfJDAfBgNVHSMEGDAWgBRwYQAmx/KgThY9T+VTHXvEbnVH yTAOBgNVHQ8BAf8EBAMCB4AwWwYDVR0fBFQwUjBQoE6gTIZKcnN5bmM6Ly9ycGtp LmNvL3JlcG8vU2ltcGxlLzIvNzA2MTAwMjZDN0YyQTA0RTE2M0Q0RkU1NTMxRDdC QzQ2RTc1NDdDOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJC NDY4RjdDNzJGRDFGRjIvY0dFQUpzZnlvRTRXUFVfbFV4MTd4RzUxUjhrLmNlcjB4 BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnBraS5jby9yZXBv L1NpbXBsZS8yLzMxMzAzMzJlMzIzNDM0MmUzMTM2MzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMTM1MzEzMTM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9KMwDQYJKoZIhvcNAQEL BQADggEBAIQIIYF29i+1SVQIv9utHTU9QGJDLovGZ2g8HyxRPIHG5Sxmr/8WQz+3 b+j9YXKAaauEV9QB61QyXhGbR06EsuWOOuDzM6YDUrRZ33UupjjimZba0Ck3JwC0 2+IPXtB53LB8VIY3shrxFSuTRPBdbbyDO4lIJcjsOpb5zo9/WfaZM0x+bpvl8ggU mDlTfMcb1iX0NCf/d807CidcLpYClQlxPUtaWxk88mRxv/hnH2OjdTfC7eQyj3yq oSyKMUQmfJ+Eklta1bHW033DtdXwAaahNWcfCG8iwUxK0V8fVDlny5sloP6khCDG vciuJ/CMck1Lj/NRKg4wSLeizerFPcQ= -----END CERTIFICATE-----Generated at Sat Jun 1 18:10:43 2024 by rpki-client on console-ams.rpki-client.org