$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa File: 3130332e32332e3233322e302f32342d3234203d3e203538343735.roa (raw, json) Hash identifier: xPu4MaJ1Ex5OsGN/PlkQZBoAFEGuQn4DnsRDSiEV2xA= Subject key identifier: B5:8F:70:94:DB:AC:33:D2:21:A4:F1:E6:A0:B2:AA:35:AE:48:EA:0B Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 1E2C614FB405B7E6B6281164313B6ACE1B01E149 Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa Signing time: Mon 31 Jul 2023 00:13:42 +0000 ROA not before: Mon 31 Jul 2023 00:08:42 +0000 ROA not after: Mon 29 Jul 2024 00:13:42 +0000 asID: 58475 IP address blocks: 103.23.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 19:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:2c:61:4f:b4:05:b7:e6:b6:28:11:64:31:3b:6a:ce:1b:01:e1:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 31 00:08:42 2023 GMT Not After : Jul 29 00:13:42 2024 GMT Subject: CN=B58F7094DBAC33D221A4F1E6A0B2AA35AE48EA0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7a:79:3c:e8:7d:e4:e1:2e:62:09:7b:06:4e: 71:20:bd:81:8b:c7:1c:41:22:ea:94:8a:1c:23:9d: 24:92:c3:61:11:f1:8e:63:c2:64:05:b5:5e:70:ef: 6d:7f:5b:cf:ea:b1:23:f3:f1:69:79:2b:01:23:e1: f4:e9:25:26:7a:76:73:3a:ba:52:f2:e5:25:28:89: 52:99:e7:a8:80:b2:8a:df:60:e5:29:c8:45:00:e1: 78:78:c0:f6:5b:50:ed:b0:96:60:22:39:4b:ab:0d: 32:d3:58:74:fd:3e:0c:65:fb:60:86:56:6a:7b:c0: 13:55:48:c6:cb:d0:21:6e:b2:07:2f:28:12:6b:9f: 6c:d7:5c:86:64:ee:d6:20:53:ad:3d:82:67:c5:db: be:f0:bf:79:5c:e8:23:f6:ea:cc:a5:3e:a0:0c:60: 9b:db:ab:4a:83:13:52:21:9e:89:a3:29:db:dd:ff: da:0e:16:a4:d0:a0:08:5e:4b:f1:70:e4:02:57:cd: cc:63:5c:cb:06:1f:e1:d2:ad:d1:83:6a:12:da:27: 41:bd:64:0d:63:7c:c2:6e:30:d5:f9:26:86:c0:be: 52:3a:99:73:31:33:96:f5:14:af:67:ec:46:04:55: 3e:d1:1d:61:e6:eb:9c:5b:e7:73:b9:15:8e:95:8b: 3a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:8F:70:94:DB:AC:33:D2:21:A4:F1:E6:A0:B2:AA:35:AE:48:EA:0B X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.232.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:9b:cb:2b:28:7d:51:38:17:4e:d8:6a:10:e0:79:7f:ae:a9: b5:41:7e:21:eb:8a:21:f3:9f:0c:03:d2:8a:23:02:f8:e0:88: e4:62:4c:dd:7b:4a:ec:94:24:0a:9f:18:86:42:c0:e2:83:11: c0:58:5c:92:24:5b:93:70:55:c9:ef:f4:4d:f7:30:21:5b:b5: 1d:0f:f0:0f:49:88:14:4e:9d:eb:3f:89:9a:59:14:e9:af:18: ec:dc:6f:ad:23:10:e1:87:47:6f:0c:f2:04:1c:5c:9a:b9:93: 7b:dc:5b:c1:5c:d1:63:a6:b6:da:ff:f3:29:30:20:c9:00:d4: 5a:fc:e3:56:db:2b:8c:7f:d4:89:9c:22:0a:ec:b3:19:92:14: f3:c8:5c:14:89:f3:ab:2a:cf:01:15:62:fd:80:8c:91:84:9f: a8:41:17:4e:ef:ea:65:12:5a:a2:57:53:32:84:37:43:5b:77: ad:e0:39:7e:d0:a8:91:be:54:f4:62:b7:53:06:25:d6:e9:14: 39:f6:4e:18:89:1a:8d:47:84:62:ef:dd:8d:5b:38:1e:85:4e: 46:bf:d7:84:84:a6:04:d2:50:76:a0:78:c5:4d:fb:b0:bd:d4: ac:e5:54:d5:81:94:0f:ed:8c:00:81:9d:73:36:dd:20:8c:21: 00:f3:a5:03 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHixhT7QFt+a2KBFkMTtqzhsB4UkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yMzA3MzEwMDA4NDJaFw0yNDA3MjkwMDEzNDJaMDMxMTAvBgNV BAMTKEI1OEY3MDk0REJBQzMzRDIyMUE0RjFFNkEwQjJBQTM1QUU0OEVBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/enk86H3k4S5iCXsGTnEgvYGL xxxBIuqUihwjnSSSw2ER8Y5jwmQFtV5w721/W8/qsSPz8Wl5KwEj4fTpJSZ6dnM6 ulLy5SUoiVKZ56iAsorfYOUpyEUA4Xh4wPZbUO2wlmAiOUurDTLTWHT9Pgxl+2CG Vmp7wBNVSMbL0CFusgcvKBJrn2zXXIZk7tYgU609gmfF277wv3lc6CP26sylPqAM YJvbq0qDE1IhnomjKdvd/9oOFqTQoAheS/Fw5AJXzcxjXMsGH+HSrdGDahLaJ0G9 ZA1jfMJuMNX5JobAvlI6mXMxM5b1FK9n7EYEVT7RHWHm65xb53O5FY6Vizq3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtY9wlNusM9IhpPHmoLKqNa5I6gswHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMxMzAzMzJlMzIzMzJlMzIzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6DANBgkqhkiG 9w0BAQsFAAOCAQEATpvLKyh9UTgXTthqEOB5f66ptUF+IeuKIfOfDAPSiiMC+OCI 5GJM3XtK7JQkCp8YhkLA4oMRwFhckiRbk3BVye/0TfcwIVu1HQ/wD0mIFE6d6z+J mlkU6a8Y7NxvrSMQ4YdHbwzyBBxcmrmTe9xbwVzRY6a22v/zKTAgyQDUWvzjVtsr jH/UiZwiCuyzGZIU88hcFInzqyrPARVi/YCMkYSfqEEXTu/qZRJaoldTMoQ3Q1t3 reA5ftCokb5U9GK3UwYl1ukUOfZOGIkajUeEYu/djVs4HoVORr/XhISmBNJQdqB4 xU37sL3UrOVU1YGUD+2MAIGdczbdIIwhAPOlAw== -----END CERTIFICATE-----Generated at Fri Apr 19 15:08:54 2024 by rpki-client on console-fra.rpki-client.org