$ rpki-client -vvf repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: AjFSHS1N7rikp7e5IMgYxY9/qqmZpz7GnCdCCGH49eg= Subject key identifier: 75:B6:C1:23:A8:C9:2F:F8:B3:32:20:7B:73:68:F1:29:B3:22:D0:87 Certificate issuer: /CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Certificate serial: 6CB04D67F388D52C7A0B4E2E02160E2F20CB94AC Authority key identifier: 53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:00:47 +0000 ROA not before: Wed 03 Jan 2024 08:55:47 +0000 ROA not after: Wed 01 Jan 2025 09:00:47 +0000 asID: 135478 IP address blocks: 103.129.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 14:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b0:4d:67:f3:88:d5:2c:7a:0b:4e:2e:02:16:0e:2f:20:cb:94:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Validity Not Before: Jan 3 08:55:47 2024 GMT Not After : Jan 1 09:00:47 2025 GMT Subject: CN=75B6C123A8C92FF8B332207B7368F129B322D087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:58:93:cd:e6:30:85:22:34:3f:6a:14:79:f6: 5c:81:32:b8:89:dc:d0:5f:c4:56:e9:f2:1b:db:70: d2:a2:6e:86:34:e0:51:59:e1:62:15:af:2d:b9:c4: e4:1a:88:19:73:69:45:48:7c:39:8f:74:2d:44:59: 60:23:8f:36:74:78:a4:f9:67:1c:5f:26:08:1a:bc: da:0e:b8:8c:d1:7f:ff:fd:eb:4d:23:7e:fe:c5:c5: 72:34:35:01:44:08:8e:92:5e:ec:c8:16:50:69:a4: 15:88:a1:4b:a2:75:10:3d:c2:b3:1f:21:31:f3:35: 84:53:8e:08:93:67:7c:2b:2a:e1:e8:6a:60:2d:f6: c5:4e:bb:73:36:4e:41:f2:f5:7c:1c:0d:9a:fe:bc: 83:88:34:92:e2:b7:58:2b:fd:e9:c5:1a:ef:d2:8e: 90:ca:11:9f:fc:5e:2f:40:b6:c9:18:17:2a:2b:39: 17:fc:d2:58:6e:f3:43:14:ae:02:32:15:5c:98:54: 7f:be:6d:51:e0:29:fa:98:1f:6a:cb:bf:e9:67:0c: 2f:9d:a9:29:55:75:fa:19:55:40:a6:a7:47:65:5c: 8a:49:07:fe:c1:1c:88:28:8f:4d:0d:f2:8f:64:f1: a7:96:04:fe:e1:91:b4:02:2f:32:ef:76:b1:2e:f9: 56:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B6:C1:23:A8:C9:2F:F8:B3:32:20:7B:73:68:F1:29:B3:22:D0:87 X509v3 Authority Key Identifier: keyid:53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.26.0/23 Signature Algorithm: sha256WithRSAEncryption 58:29:d3:8e:9b:72:69:93:90:a7:06:20:a9:f8:47:b8:96:14: 0b:16:60:67:37:dd:ad:2c:e8:ae:5b:0c:ca:a4:56:e1:e5:50: b4:8c:42:03:7f:47:f6:2d:6e:1e:e3:58:d2:f4:bb:94:38:35: ba:21:4e:9b:ef:32:69:03:39:1f:9b:3b:61:88:23:8d:b3:58: cb:13:ee:57:ff:fd:45:dc:ed:65:40:02:d8:bb:ae:3d:12:45: 9e:28:eb:a4:16:45:2f:ff:cd:7b:45:d6:e6:b5:4e:56:8d:df: 5b:16:6d:a3:5f:49:c6:14:10:06:32:00:37:81:85:c8:96:c4: ab:14:49:6b:67:3e:ed:86:35:17:c9:a2:df:90:22:0f:4b:55: 01:cf:b2:52:12:56:a1:58:6d:11:58:14:26:9d:6e:24:59:e0: a8:c0:f3:5b:dc:60:f8:ba:13:79:74:f4:7b:64:29:fe:c1:a4: 3e:4a:2b:00:a9:10:f4:36:51:02:6d:48:21:c8:9a:ff:e0:30: 38:8b:cb:b8:dc:73:70:fd:4a:a7:9f:ee:92:86:5b:27:49:17: ff:5a:e3:91:b8:78:13:07:87:67:56:42:2a:de:78:d5:3c:a7: a2:a7:fb:fd:75:8c:55:f8:e7:ef:64:cb:eb:ae:89:40:b5:ae: bc:91:67:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbLBNZ/OI1Sx6C04uAhYOLyDLlKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVD RTBERDIxRjAeFw0yNDAxMDMwODU1NDdaFw0yNTAxMDEwOTAwNDdaMDMxMTAvBgNV BAMTKDc1QjZDMTIzQThDOTJGRjhCMzMyMjA3QjczNjhGMTI5QjMyMkQwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaWJPN5jCFIjQ/ahR59lyBMriJ 3NBfxFbp8hvbcNKiboY04FFZ4WIVry25xOQaiBlzaUVIfDmPdC1EWWAjjzZ0eKT5 ZxxfJggavNoOuIzRf//9600jfv7FxXI0NQFECI6SXuzIFlBppBWIoUuidRA9wrMf ITHzNYRTjgiTZ3wrKuHoamAt9sVOu3M2TkHy9XwcDZr+vIOINJLit1gr/enFGu/S jpDKEZ/8Xi9AtskYFyorORf80lhu80MUrgIyFVyYVH++bVHgKfqYH2rLv+lnDC+d qSlVdfoZVUCmp0dlXIpJB/7BHIgoj00N8o9k8aeWBP7hkbQCLzLvdrEu+VbTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdbbBI6jJL/izMiB7c2jxKbMi0IcwHwYDVR0j BBgwFoAUUypKbqJS6dHP9XSBpahrNc4N0h8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2RmMmFkMC02ZTk5LTQ0YTctYTA2OC01MDA2NTZmZmIwMGYvMC81MzJBNEE2RUEy NTJFOUQxQ0ZGNTc0ODFBNUE4NkIzNUNFMEREMjFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVDRTBE RDIxRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3ZGYyYWQwLTZlOTktNDRhNy1h MDY4LTUwMDY1NmZmYjAwZi8wLzMxMzAzMzJlMzEzMjM5MmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EaMA0GCSqG SIb3DQEBCwUAA4IBAQBYKdOOm3Jpk5CnBiCp+Ee4lhQLFmBnN92tLOiuWwzKpFbh 5VC0jEIDf0f2LW4e41jS9LuUODW6IU6b7zJpAzkfmzthiCONs1jLE+5X//1F3O1l QALYu649EkWeKOukFkUv/817RdbmtU5Wjd9bFm2jX0nGFBAGMgA3gYXIlsSrFElr Zz7thjUXyaLfkCIPS1UBz7JSElahWG0RWBQmnW4kWeCowPNb3GD4uhN5dPR7ZCn+ waQ+SisAqRD0NlECbUghyJr/4DA4i8u43HNw/Uqnn+6ShlsnSRf/WuORuHgTB4dn VkIq3njVPKeip/v9dYxV+OfvZMvrrolAta68kWdq -----END CERTIFICATE-----Generated at Wed May 1 13:28:04 2024 by rpki-client on console-fra.rpki-client.org