$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa File: 3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa (raw, json) Hash identifier: JLi68jT6JyJ1AmvdN71cfeboNGR1+/XmSkJ6kzPhUrY= Subject key identifier: 58:28:44:20:9A:4C:AD:F0:8C:94:1B:7F:2E:33:4D:AA:8E:C7:1A:D1 Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 0160F848E189D656D0F5137D0612A1917C5AA83B Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa Signing time: Wed 27 Dec 2023 07:15:56 +0000 ROA not before: Wed 27 Dec 2023 07:10:56 +0000 ROA not after: Wed 25 Dec 2024 07:15:56 +0000 asID: 38524 IP address blocks: 103.191.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 11:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:60:f8:48:e1:89:d6:56:d0:f5:13:7d:06:12:a1:91:7c:5a:a8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: Dec 27 07:10:56 2023 GMT Not After : Dec 25 07:15:56 2024 GMT Subject: CN=582844209A4CADF08C941B7F2E334DAA8EC71AD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:55:e5:13:4f:1f:7f:7a:e5:fd:53:08:85:86: 81:9f:bf:39:1e:43:8b:21:5b:2a:85:fe:03:2d:a6: 7a:0d:8a:52:ea:ab:5d:03:fe:08:30:9e:09:06:02: dd:c4:9b:5c:e1:b1:10:d6:eb:15:dc:d3:95:e3:32: 31:c2:b1:74:2f:91:5d:35:8e:84:a9:35:67:50:dc: bd:3f:af:b5:d5:6f:33:ea:e5:0b:8a:2e:0d:fd:c1: 43:62:40:cd:59:0c:c8:fd:3a:8f:9a:c5:b8:bb:81: 31:4f:ab:82:a5:76:31:5d:cd:aa:7c:bb:bf:a8:ae: 4a:60:e8:dd:1e:78:8b:8f:a5:56:1a:bf:69:17:2a: 70:27:86:0f:09:64:1f:41:86:c5:ec:7e:02:86:7e: 26:48:87:35:54:80:ae:a1:86:89:32:82:77:e2:7d: 62:42:b1:32:5e:43:91:22:86:5d:92:21:32:2b:c6: 6b:43:d1:1c:1c:95:e3:3e:ad:35:83:a3:6b:2a:fc: 78:ca:f5:3c:df:ae:65:95:1d:ef:c3:39:b8:fc:db: 12:f8:6c:a0:16:82:3c:95:5b:b3:b0:34:68:a3:7b: b4:68:2d:9d:4d:2a:78:d1:33:c9:4d:d5:4e:f0:c7: 70:9e:ba:fa:58:df:70:e6:09:83:1f:3e:b7:6c:27: c9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:28:44:20:9A:4C:AD:F0:8C:94:1B:7F:2E:33:4D:AA:8E:C7:1A:D1 X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:98:bb:ac:5f:ed:2d:85:1a:98:7b:c3:37:41:fe:9c:22:b8: 48:85:26:c5:c7:43:9a:7d:33:76:eb:61:24:e1:90:df:b5:f5: d5:c6:f8:ba:5e:b4:75:ec:dc:01:df:f1:f9:7b:9e:b7:ce:b7: 73:71:53:8d:ca:ad:3e:0e:f4:eb:39:31:d2:6c:4c:a2:8d:0d: 94:8a:2a:af:23:73:63:e0:aa:b5:4b:24:1c:fb:2a:06:e0:d1: 83:fc:f6:bd:2d:bb:07:ff:99:de:bd:13:90:b0:90:01:1a:04: 07:3f:f2:fa:97:03:ea:b1:be:7b:7a:a6:f5:51:e7:73:4b:e3: 71:d2:29:64:f3:4b:59:88:f9:aa:a3:c9:e6:84:17:59:4d:c8: 17:23:18:b7:01:7b:db:7b:76:6c:0a:cb:14:ec:b1:96:ec:5e: b6:63:ab:11:84:76:37:52:59:5c:f6:7e:82:ff:45:06:20:db: 4c:6f:e6:b1:a7:98:e4:ee:c8:df:51:a9:cf:bd:6b:43:1c:9d: 8b:12:95:34:94:43:7b:ae:44:e8:f4:20:e2:55:78:33:55:c3: 2c:e4:9d:a9:cc:fb:f7:59:bf:88:e6:48:f0:9b:ec:35:ad:b2: cc:7e:31:4e:e7:e7:43:7e:b7:16:d6:74:ab:e2:24:76:ca:b3: a2:d8:d1:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAWD4SOGJ1lbQ9RN9BhKhkXxaqDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yMzEyMjcwNzEwNTZaFw0yNDEyMjUwNzE1NTZaMDMxMTAvBgNV BAMTKDU4Mjg0NDIwOUE0Q0FERjA4Qzk0MUI3RjJFMzM0REFBOEVDNzFBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1VeUTTx9/euX9UwiFhoGfvzke Q4shWyqF/gMtpnoNilLqq10D/ggwngkGAt3Em1zhsRDW6xXc05XjMjHCsXQvkV01 joSpNWdQ3L0/r7XVbzPq5QuKLg39wUNiQM1ZDMj9Oo+axbi7gTFPq4KldjFdzap8 u7+orkpg6N0eeIuPpVYav2kXKnAnhg8JZB9BhsXsfgKGfiZIhzVUgK6hhokygnfi fWJCsTJeQ5Eihl2SITIrxmtD0RwcleM+rTWDo2sq/HjK9TzfrmWVHe/DObj82xL4 bKAWgjyVW7OwNGije7RoLZ1NKnjRM8lN1U7wx3CeuvpY33DmCYMfPrdsJ8nfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWChEIJpMrfCMlBt/LjNNqo7HGtEwHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7+YMA0GCSqG SIb3DQEBCwUAA4IBAQCLmLusX+0thRqYe8M3Qf6cIrhIhSbFx0OafTN262Ek4ZDf tfXVxvi6XrR17NwB3/H5e563zrdzcVONyq0+DvTrOTHSbEyijQ2UiiqvI3Nj4Kq1 SyQc+yoG4NGD/Pa9LbsH/5nevROQsJABGgQHP/L6lwPqsb57eqb1UedzS+Nx0ilk 80tZiPmqo8nmhBdZTcgXIxi3AXvbe3ZsCssU7LGW7F62Y6sRhHY3Ullc9n6C/0UG INtMb+axp5jk7sjfUanPvWtDHJ2LEpU0lEN7rkTo9CDiVXgzVcMs5J2pzPv3Wb+I 5kjwm+w1rbLMfjFO5+dDfrcW1nSr4iR2yrOi2NEI -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org