$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: RsjclfA4UI4Ib3XQzvsEeNxGPTVUI6STPHh+sY8Jop8= Subject key identifier: 9D:99:2D:83:D5:C9:5F:62:96:42:57:7B:BB:ED:5F:AF:78:CB:F5:E2 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 27C86ACBD63E9596B227D9292928A51714F33E20 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa Signing time: Mon 31 Jul 2023 00:02:39 +0000 ROA not before: Sun 30 Jul 2023 23:57:39 +0000 ROA not after: Mon 29 Jul 2024 00:02:39 +0000 asID: 140456 IP address blocks: 103.153.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c8:6a:cb:d6:3e:95:96:b2:27:d9:29:29:28:a5:17:14:f3:3e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 30 23:57:39 2023 GMT Not After : Jul 29 00:02:39 2024 GMT Subject: CN=9D992D83D5C95F629642577BBBED5FAF78CBF5E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ec:79:7a:94:95:ef:2b:d5:40:a9:37:f6:a7: 3c:0c:49:f8:14:09:90:ec:7d:ba:58:15:4a:01:02: c6:ad:23:74:97:0d:47:ae:43:6a:f8:51:d2:66:fe: bb:c0:ff:67:99:4c:3b:19:4a:99:3a:f5:3d:66:b1: ba:6f:95:ee:87:87:a1:fb:6b:4f:c9:bd:07:52:0a: 48:45:a1:2e:96:72:b9:e3:67:d4:2c:dc:cc:bf:0e: 80:5a:d8:58:ea:f8:7d:8d:73:1f:f2:60:79:a5:c0: 47:57:2e:f2:9f:de:26:7e:35:85:c3:5c:37:b5:a6: 1f:d5:17:42:7d:22:53:b7:73:b3:36:73:9d:be:ed: 1f:03:43:da:f4:cb:28:b9:e6:30:aa:53:dc:55:5c: 6e:b6:4f:f0:27:cc:f6:28:5a:68:0b:89:1b:58:02: 11:7e:be:ef:84:ac:1b:34:69:b3:68:37:e4:43:25: ec:ec:62:fc:95:a5:bf:2f:a9:02:cc:1f:54:a2:65: bf:48:de:ef:1d:1d:96:3d:0c:80:ae:b3:e6:5c:3d: 95:6a:f1:0e:b0:d3:44:3b:33:9e:55:0b:c4:44:81: 46:c0:87:ba:f6:75:fe:c6:be:2c:a0:93:bc:c1:c2: 33:b1:9f:5d:84:c4:4c:ef:d8:58:a6:54:4c:24:5b: 0f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:99:2D:83:D5:C9:5F:62:96:42:57:7B:BB:ED:5F:AF:78:CB:F5:E2 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:57:83:0b:83:9c:6b:d8:b1:43:ca:f8:07:2d:0b:dc:5b:b8: 25:0e:7a:76:f3:73:ac:62:e1:c5:37:27:62:44:d3:27:78:2a: 51:33:91:d4:b7:15:db:6f:72:eb:2c:f0:d0:62:86:9f:6e:4e: c6:2f:3a:3a:0c:aa:b5:9d:2c:f3:e0:32:5f:cf:5c:68:23:35: a6:3c:7f:4d:e3:63:f8:e0:f1:06:9f:3f:a5:15:0e:73:e2:a9: 69:7b:6d:11:40:0e:13:f2:8c:67:e6:53:b0:ff:ac:58:b6:c0: e0:c9:15:6e:3f:d9:e9:0a:a3:28:9d:38:58:a4:e1:12:6d:8f: 8f:5f:20:17:c6:64:18:87:2e:73:fd:ee:ec:09:98:d9:53:44: 8e:04:58:37:8d:72:6f:6a:fd:8c:77:e4:5e:5a:87:ff:54:6f: 94:31:12:43:45:04:cb:bc:eb:0c:12:f0:6d:87:d9:6a:22:8b: 8c:75:1c:f2:be:b2:be:1e:63:17:b6:57:dc:35:7e:6b:dc:8c: a2:bc:10:79:fc:1a:b8:66:5e:98:f4:e4:91:d0:31:14:05:0f: 95:6e:56:d1:e4:3d:74:ab:5e:be:e7:ca:c0:90:64:d6:f7:11: 84:95:e1:e8:a3:bf:f6:77:c9:9c:a8:20:5a:78:03:5c:43:52: 6f:86:d6:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ8hqy9Y+lZayJ9kpKSilFxTzPiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yMzA3MzAyMzU3MzlaFw0yNDA3MjkwMDAyMzlaMDMxMTAvBgNV BAMTKDlEOTkyRDgzRDVDOTVGNjI5NjQyNTc3QkJCRUQ1RkFGNzhDQkY1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+7Hl6lJXvK9VAqTf2pzwMSfgU CZDsfbpYFUoBAsatI3SXDUeuQ2r4UdJm/rvA/2eZTDsZSpk69T1msbpvle6Hh6H7 a0/JvQdSCkhFoS6WcrnjZ9Qs3My/DoBa2Fjq+H2Ncx/yYHmlwEdXLvKf3iZ+NYXD XDe1ph/VF0J9IlO3c7M2c52+7R8DQ9r0yyi55jCqU9xVXG62T/AnzPYoWmgLiRtY AhF+vu+ErBs0abNoN+RDJezsYvyVpb8vqQLMH1SiZb9I3u8dHZY9DICus+ZcPZVq 8Q6w00Q7M55VC8REgUbAh7r2df7Gviygk7zBwjOxn12ExEzv2FimVEwkWw+5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnZktg9XJX2KWQld7u+1fr3jL9eIwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQBaV4MLg5xr2LFDyvgHLQvcW7glDnp283OsYuHFNydiRNMn eCpRM5HUtxXbb3LrLPDQYoafbk7GLzo6DKq1nSzz4DJfz1xoIzWmPH9N42P44PEG nz+lFQ5z4qlpe20RQA4T8oxn5lOw/6xYtsDgyRVuP9npCqMonThYpOESbY+PXyAX xmQYhy5z/e7sCZjZU0SOBFg3jXJvav2Md+ReWof/VG+UMRJDRQTLvOsMEvBth9lq IouMdRzyvrK+HmMXtlfcNX5r3IyivBB5/Bq4Zl6Y9OSR0DEUBQ+VblbR5D10q16+ 58rAkGTW9xGEleHoo7/2d8mcqCBaeANcQ1Jvhtac -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org