$ rpki-client -vvf rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa File: 3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa (raw, json) Hash identifier: 3wk9R+O1nlM/IzR48D1N9Vj69pSmgWBuHrEb8E1giWs= Subject key identifier: BB:37:AC:35:88:50:B6:72:97:40:5A:6E:DE:F5:C3:86:57:B9:BA:F9 Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Certificate serial: 5BE0669CFD9581ECF9C3A1B45539C30B52BC4997 Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject info access: rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa Signing time: Mon 09 Sep 2024 05:22:47 +0000 ROA not before: Mon 09 Sep 2024 05:17:47 +0000 ROA not after: Mon 08 Sep 2025 05:22:47 +0000 asID: 151188 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 08:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e0:66:9c:fd:95:81:ec:f9:c3:a1:b4:55:39:c3:0b:52:bc:49:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Validity Not Before: Sep 9 05:17:47 2024 GMT Not After : Sep 8 05:22:47 2025 GMT Subject: CN=BB37AC358850B67297405A6EDEF5C38657B9BAF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:88:38:5d:e9:b1:48:db:bd:29:6e:e5:25: 74:b2:df:ff:e8:c6:7a:3d:28:ee:3d:c2:50:34:04: 3d:6b:89:25:d5:7c:50:ba:13:bb:fd:fd:92:af:c1: 61:1a:0b:0c:26:f1:fb:79:96:b0:89:98:7d:69:23: bd:09:58:1f:fc:d5:83:3b:fb:2a:4c:c6:c9:e3:38: 7e:06:3a:d8:bc:18:1d:8f:a8:2c:cf:82:21:51:1e: b1:28:5a:7b:28:15:67:0d:9b:7a:b6:54:ff:ff:ea: 2d:08:76:a4:d9:c0:c1:cc:57:c4:02:6e:13:15:99: 09:f1:0f:c8:b0:64:22:83:4b:ab:bb:cb:11:28:23: 36:bd:6a:fe:2c:d5:0e:cd:37:fe:8f:50:19:72:bf: da:f9:c5:92:df:57:f0:9c:5e:a8:63:6d:f3:83:96: 43:e9:31:c7:64:b2:6a:c9:02:35:f7:0d:ff:24:9b: 15:26:7d:1f:dd:1b:a0:82:8f:5b:79:ef:b4:98:7f: 11:ca:d7:0c:30:f0:18:6e:12:34:66:6f:4d:e3:7b: 86:11:8c:c9:48:df:ce:7b:b1:eb:18:4f:4a:63:3a: cf:36:fc:4e:2c:b2:59:75:65:80:ef:e9:94:f4:5d: bf:e5:cf:ad:a3:69:8f:ad:94:84:c0:dc:8f:70:d3: a8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:37:AC:35:88:50:B6:72:97:40:5A:6E:DE:F5:C3:86:57:B9:BA:F9 X509v3 Authority Key Identifier: keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20313531313838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:96:b8:d6:6c:03:f7:e5:2f:f4:e4:f4:3f:b9:42:e3:c6:97: 90:d4:7c:05:11:fb:53:6b:96:55:97:30:d0:06:9b:ee:47:29: e6:90:84:75:d9:26:2a:1c:da:8c:29:92:c8:7e:eb:2b:2f:58: 4b:95:76:9c:59:c3:64:15:1a:1e:0f:76:77:c6:15:18:24:d5: 42:5b:70:51:27:05:c2:40:5a:53:95:ee:75:40:62:70:22:10: e9:a6:ab:37:d4:3c:3f:46:e9:a8:85:d8:c2:2e:cd:6c:e8:e7: 17:06:15:f4:d1:bd:44:25:35:9d:b2:d0:d9:f2:91:98:58:c3: 8e:fb:80:57:ec:97:48:25:26:5d:be:25:17:13:fe:b6:03:9e: 6e:dc:6a:27:9f:e9:76:3a:ec:cd:84:ac:25:be:87:08:1f:6c: 33:23:2b:b4:c5:33:ff:52:c4:8f:a8:75:5e:20:cc:91:fa:4a: 33:3b:15:36:18:3a:fd:d7:c1:01:57:e9:66:d4:5d:44:50:fb: 12:48:db:a5:c2:5b:9f:87:ef:11:1f:84:39:d6:67:55:f5:1a: 26:72:98:17:86:b9:43:2d:10:1f:5f:0c:bb:a4:0f:12:7a:4f: b9:00:ce:8e:c2:3b:a8:a8:86:48:3e:75:97:ce:ea:38:53:67: 78:5e:01:45 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUW+BmnP2Vgez5w6G0VTnDC1K8SZcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyg3MDYxMDAyNkM3 RjJBMDRFMTYzRDRGRTU1MzFEN0JDNDZFNzU0N0M5MB4XDTI0MDkwOTA1MTc0N1oX DTI1MDkwODA1MjI0N1owMzExMC8GA1UEAxMoQkIzN0FDMzU4ODUwQjY3Mjk3NDA1 QTZFREVGNUMzODY1N0I5QkFGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNgiDhd6bFI270pbuUldLLf/+jGej0o7j3CUDQEPWuJJdV8ULoTu/39kq/B YRoLDCbx+3mWsImYfWkjvQlYH/zVgzv7KkzGyeM4fgY62LwYHY+oLM+CIVEesSha eygVZw2berZU///qLQh2pNnAwcxXxAJuExWZCfEPyLBkIoNLq7vLESgjNr1q/izV Ds03/o9QGXK/2vnFkt9X8JxeqGNt84OWQ+kxx2SyaskCNfcN/ySbFSZ9H90boIKP W3nvtJh/EcrXDDDwGG4SNGZvTeN7hhGMyUjfznux6xhPSmM6zzb8TiyyWXVlgO/p lPRdv+XPraNpj62UhMDcj3DTqPUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBS7N6w1 iFC2cpdAWm7e9cOGV7m6+TAfBgNVHSMEGDAWgBRwYQAmx/KgThY9T+VTHXvEbnVH yTAOBgNVHQ8BAf8EBAMCB4AwWwYDVR0fBFQwUjBQoE6gTIZKcnN5bmM6Ly9ycGtp LmNvL3JlcG8vU2ltcGxlLzIvNzA2MTAwMjZDN0YyQTA0RTE2M0Q0RkU1NTMxRDdC QzQ2RTc1NDdDOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJC NDY4RjdDNzJGRDFGRjIvY0dFQUpzZnlvRTRXUFVfbFV4MTd4RzUxUjhrLmNlcjB4 BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnBraS5jby9yZXBv L1NpbXBsZS8yLzMxMzAzMzJlMzIzNDM0MmUzMTM2MzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMTM1MzEzMTM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9KMwDQYJKoZIhvcNAQEL BQADggEBAD6WuNZsA/flL/Tk9D+5QuPGl5DUfAUR+1NrllWXMNAGm+5HKeaQhHXZ Jioc2owpksh+6ysvWEuVdpxZw2QVGh4PdnfGFRgk1UJbcFEnBcJAWlOV7nVAYnAi EOmmqzfUPD9G6aiF2MIuzWzo5xcGFfTRvUQlNZ2y0NnykZhYw477gFfsl0glJl2+ JRcT/rYDnm7caief6XY67M2ErCW+hwgfbDMjK7TFM/9SxI+odV4gzJH6SjM7FTYY Ov3XwQFX6WbUXURQ+xJI26XCW5+H7xEfhDnWZ1X1GiZymBeGuUMtEB9fDLukDxJ6 T7kAzo7CO6iohkg+dZfO6jhTZ3heAUU= -----END CERTIFICATE-----Generated at Mon Nov 25 09:07:26 2024 by rpki-client on console-fra.rpki-client.org