$ rpki-client -vvf rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20323135333130.roa File: 3130332e3234342e3136332e302f32342d3234203d3e20323135333130.roa (raw, json) Hash identifier: 22rYHPLc4BciYdKLJCiC1TsHUy+pVrpapDvHeYqxUr4= Subject key identifier: 85:8A:FA:FE:2D:A8:EF:B4:B5:3F:C7:47:AC:93:D9:FC:C2:9B:2B:8B Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Certificate serial: 356AB51185444D59992461A6DA29E39AD5ABCBC3 Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject info access: rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20323135333130.roa Signing time: Sat 23 Mar 2024 15:27:17 +0000 ROA not before: Sat 23 Mar 2024 15:22:17 +0000 ROA not after: Sat 22 Mar 2025 15:27:17 +0000 asID: 215310 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 23:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6a:b5:11:85:44:4d:59:99:24:61:a6:da:29:e3:9a:d5:ab:cb:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Validity Not Before: Mar 23 15:22:17 2024 GMT Not After : Mar 22 15:27:17 2025 GMT Subject: CN=858AFAFE2DA8EFB4B53FC747AC93D9FCC29B2B8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:39:ac:43:6d:30:13:fc:f4:80:97:b4:17: 14:38:ab:51:93:5b:a9:09:e8:be:e4:0c:d6:ad:8d: 49:83:95:b9:6e:55:26:01:d6:01:39:66:e0:3e:ad: f1:9d:3a:8f:80:ec:b1:64:27:8f:2f:d4:f9:61:96: 76:0a:ed:cb:95:0d:a9:e8:93:a5:98:8c:13:31:ea: 60:31:61:69:77:7b:cd:ab:b2:bd:e8:c0:9b:60:10: 73:33:f8:7c:dc:3e:2a:25:fb:96:2a:8c:4a:e5:c5: b6:35:d7:5b:19:82:73:d1:8d:76:be:f2:e9:f6:73: 00:a6:38:0e:8c:84:16:09:3a:c8:14:e6:c8:10:8e: d5:55:5a:3e:05:bd:21:32:cc:de:11:14:ca:e5:93: 89:b4:19:ae:63:58:0c:da:eb:a3:f4:78:ed:51:67: 85:47:b3:a5:20:f0:32:07:f0:7c:7f:fb:64:7e:a1: ca:c3:63:f9:a4:74:d2:fb:89:43:2c:1d:80:ec:c6: 9e:a6:87:1a:09:6c:71:c0:ad:40:28:5b:83:a9:10: 04:d8:f1:86:95:88:77:1d:25:f4:e5:93:12:51:24: 2d:bc:d7:fa:3a:e3:c2:e8:fb:10:5e:d4:9d:41:66: e3:07:e2:f9:e8:b8:f8:b1:bb:d4:6f:a1:40:cc:93: 07:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8A:FA:FE:2D:A8:EF:B4:B5:3F:C7:47:AC:93:D9:FC:C2:9B:2B:8B X509v3 Authority Key Identifier: keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Simple/2/3130332e3234342e3136332e302f32342d3234203d3e20323135333130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 45:2e:64:be:c4:06:67:06:16:c5:09:92:77:cf:e5:e4:8d:79: 13:44:d9:d0:39:01:fb:a8:6a:e2:0a:3c:c8:91:6c:01:21:b1: 69:38:b1:3b:8f:e7:78:6a:aa:01:bc:fe:02:4a:3b:02:40:67: 9c:ec:43:e1:e8:93:84:bb:c1:55:ec:b2:f2:71:84:53:f6:2b: 99:80:a6:9c:e2:7d:df:51:89:82:54:cb:31:9d:a1:a4:f7:b5: 01:7f:22:33:b7:3e:63:02:a0:36:35:c5:db:88:ce:46:09:86: ff:a1:de:6e:a7:6b:a7:21:2e:a0:21:bd:c1:48:81:e1:49:0c: 6a:17:f0:7c:fd:42:f0:1c:69:3e:8f:d9:fc:8b:71:24:cb:69: 01:8a:49:e2:eb:05:88:9c:db:f3:fe:a6:60:3a:51:aa:35:a1: db:15:19:80:cb:18:b5:fd:85:98:a3:82:e3:92:1a:22:69:09: a6:be:62:ca:ef:85:dd:61:d5:b9:fd:78:46:55:6e:3d:6c:37: 92:7e:b3:b0:d5:f3:12:6c:40:06:35:f3:e9:91:53:92:e8:6b: aa:fa:8a:bc:0c:6f:ef:2d:db:2c:3b:50:25:8b:b3:fb:e0:77: e1:0e:7b:d6:b3:24:5a:aa:d8:0c:0d:6e:19:4a:af:d8:65:6a: 61:3b:7c:27 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUNWq1EYVETVmZJGGm2injmtWry8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyg3MDYxMDAyNkM3 RjJBMDRFMTYzRDRGRTU1MzFEN0JDNDZFNzU0N0M5MB4XDTI0MDMyMzE1MjIxN1oX DTI1MDMyMjE1MjcxN1owMzExMC8GA1UEAxMoODU4QUZBRkUyREE4RUZCNEI1M0ZD NzQ3QUM5M0Q5RkNDMjlCMkI4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMx3OaxDbTAT/PSAl7QXFDirUZNbqQnovuQM1q2NSYOVuW5VJgHWATlm4D6t 8Z06j4DssWQnjy/U+WGWdgrty5UNqeiTpZiMEzHqYDFhaXd7zauyvejAm2AQczP4 fNw+KiX7liqMSuXFtjXXWxmCc9GNdr7y6fZzAKY4DoyEFgk6yBTmyBCO1VVaPgW9 ITLM3hEUyuWTibQZrmNYDNrro/R47VFnhUezpSDwMgfwfH/7ZH6hysNj+aR00vuJ QywdgOzGnqaHGglsccCtQChbg6kQBNjxhpWIdx0l9OWTElEkLbzX+jrjwuj7EF7U nUFm4wfi+ei4+LG71G+hQMyTB00CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSFivr+ LajvtLU/x0esk9n8wpsrizAfBgNVHSMEGDAWgBRwYQAmx/KgThY9T+VTHXvEbnVH yTAOBgNVHQ8BAf8EBAMCB4AwWwYDVR0fBFQwUjBQoE6gTIZKcnN5bmM6Ly9ycGtp LmNvL3JlcG8vU2ltcGxlLzIvNzA2MTAwMjZDN0YyQTA0RTE2M0Q0RkU1NTMxRDdC QzQ2RTc1NDdDOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJC NDY4RjdDNzJGRDFGRjIvY0dFQUpzZnlvRTRXUFVfbFV4MTd4RzUxUjhrLmNlcjB4 BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnBraS5jby9yZXBv L1NpbXBsZS8yLzMxMzAzMzJlMzIzNDM0MmUzMTM2MzMyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMjMxMzUzMzMxMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9KMwDQYJKoZIhvcNAQEL BQADggEBAEUuZL7EBmcGFsUJknfP5eSNeRNE2dA5AfuoauIKPMiRbAEhsWk4sTuP 53hqqgG8/gJKOwJAZ5zsQ+Hok4S7wVXssvJxhFP2K5mAppzifd9RiYJUyzGdoaT3 tQF/IjO3PmMCoDY1xduIzkYJhv+h3m6na6chLqAhvcFIgeFJDGoX8Hz9QvAcaT6P 2fyLcSTLaQGKSeLrBYic2/P+pmA6Uao1odsVGYDLGLX9hZijguOSGiJpCaa+Ysrv hd1h1bn9eEZVbj1sN5J+s7DV8xJsQAY18+mRU5Loa6r6irwMb+8t2yw7UCWLs/vg d+EOe9azJFqq2AwNbhlKr9hlamE7fCc= -----END CERTIFICATE-----Generated at Sat Jun 1 00:19:20 2024 by rpki-client on console-ams.rpki-client.org