$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa File: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: /uPmMXJbLV/RJ1NBuMsFBIxXXdZGUbZTuxT3HZUYdMU= Subject key identifier: 41:A0:CD:A2:CD:75:C5:FF:8D:09:20:4D:DA:BE:E8:0C:33:A7:3F:16 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 4DF56DAC9C75CD46FCF9324A829C86B94A429208 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa Signing time: Tue 19 Sep 2023 06:00:01 +0000 ROA not before: Tue 19 Sep 2023 05:55:01 +0000 ROA not after: Tue 17 Sep 2024 06:00:01 +0000 asID: 136052 IP address blocks: 103.15.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f5:6d:ac:9c:75:cd:46:fc:f9:32:4a:82:9c:86:b9:4a:42:92:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Sep 19 05:55:01 2023 GMT Not After : Sep 17 06:00:01 2024 GMT Subject: CN=41A0CDA2CD75C5FF8D09204DDABEE80C33A73F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2d:14:55:30:c3:e2:db:47:c9:f9:b4:15:aa: 1b:70:20:e5:dd:77:1d:9d:2d:b9:40:06:64:17:1a: 54:94:24:10:5e:2d:2f:2a:53:11:b7:bd:14:fe:bc: 59:49:83:c6:52:f3:e4:e7:10:b9:3a:f2:69:f3:f2: 94:23:02:12:6c:86:20:21:6e:03:60:78:df:07:d5: 5c:8a:24:7c:bf:86:bc:c9:62:c7:22:05:16:e5:73: a5:06:63:ba:55:72:ac:cb:10:2f:b7:b9:e7:8a:6f: e8:43:19:7e:7d:6e:c4:b7:e8:d8:d1:dd:e0:83:d8: a9:f1:95:52:8f:53:5f:c6:46:b4:dd:f0:0a:1c:4c: 6b:21:47:e1:ef:c4:f7:c6:17:2f:fe:54:6f:cf:0a: 93:85:78:85:d7:75:ec:07:f6:c8:f5:0e:77:f3:eb: 05:ca:9c:20:87:bc:a2:24:a8:d6:83:47:54:37:3f: 5a:e7:e8:2a:7a:58:83:b0:f7:18:05:00:1c:5a:93: bf:07:b8:a9:61:81:ec:00:b4:a5:a3:fb:fe:0c:e2: 45:38:cf:2e:9b:c4:39:ae:6d:d3:15:f1:a4:14:5f: cd:90:d2:b4:f4:4f:6c:33:95:cb:1e:cc:1a:03:5d: 55:2a:8e:ed:c8:a0:41:18:ee:08:56:30:4e:51:73: 94:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A0:CD:A2:CD:75:C5:FF:8D:09:20:4D:DA:BE:E8:0C:33:A7:3F:16 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.226.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:ef:6a:01:f2:21:a9:39:2c:92:ba:1d:e8:0b:d9:dc:fd:9f: 91:7d:cc:13:52:de:ba:3e:b3:4d:5d:30:ee:23:4f:8a:cc:04: 0c:a8:c9:d9:d2:e3:88:55:f1:72:c6:25:eb:17:a8:1d:b8:b2: 4e:d3:39:1f:e5:ae:d7:6d:c9:63:f7:cd:74:53:8e:5c:54:56: ff:29:f1:36:ca:68:d2:16:ee:83:be:fb:aa:4d:f8:10:1c:1c: 32:02:6e:e0:ea:29:c8:2a:be:f3:ce:0a:74:53:ac:c6:8b:9b: b9:e6:d9:19:dc:25:79:55:33:69:1b:2a:de:b5:08:63:d6:40: 1a:0e:6b:5e:8b:00:0d:ce:4b:2a:69:e6:f2:56:38:61:ef:8f: 82:73:26:93:a6:0e:69:a9:a6:ee:8d:b8:5f:fa:18:9b:2c:87: c9:30:43:5e:78:e9:19:89:f9:d7:47:f4:89:fd:57:23:a5:07: 95:03:01:d3:1d:a8:c0:7a:92:e0:62:7e:c8:c1:b7:91:67:41: 01:54:6c:63:55:73:dd:e0:89:9a:05:cf:26:eb:ac:f4:71:7a: 56:62:d4:fe:e1:1d:bd:02:51:ff:8b:54:b4:e8:54:1e:61:f9: b5:05:f2:01:2e:de:b0:bf:ca:54:36:05:71:9c:a4:93:92:66: 5a:01:d1:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTfVtrJx1zUb8+TJKgpyGuUpCkggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yMzA5MTkwNTU1MDFaFw0yNDA5MTcwNjAwMDFaMDMxMTAvBgNV BAMTKDQxQTBDREEyQ0Q3NUM1RkY4RDA5MjA0RERBQkVFODBDMzNBNzNGMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRLRRVMMPi20fJ+bQVqhtwIOXd dx2dLblABmQXGlSUJBBeLS8qUxG3vRT+vFlJg8ZS8+TnELk68mnz8pQjAhJshiAh bgNgeN8H1VyKJHy/hrzJYsciBRblc6UGY7pVcqzLEC+3ueeKb+hDGX59bsS36NjR 3eCD2KnxlVKPU1/GRrTd8AocTGshR+HvxPfGFy/+VG/PCpOFeIXXdewH9sj1Dnfz 6wXKnCCHvKIkqNaDR1Q3P1rn6Cp6WIOw9xgFABxak78HuKlhgewAtKWj+/4M4kU4 zy6bxDmubdMV8aQUX82Q0rT0T2wzlcsezBoDXVUqju3IoEEY7ghWME5Rc5TTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQaDNos11xf+NCSBN2r7oDDOnPxYwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzEzNTJlMzIzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw/iMA0GCSqG SIb3DQEBCwUAA4IBAQB872oB8iGpOSySuh3oC9nc/Z+RfcwTUt66PrNNXTDuI0+K zAQMqMnZ0uOIVfFyxiXrF6gduLJO0zkf5a7Xbclj9810U45cVFb/KfE2ymjSFu6D vvuqTfgQHBwyAm7g6inIKr7zzgp0U6zGi5u55tkZ3CV5VTNpGyretQhj1kAaDmte iwANzksqaebyVjhh74+CcyaTpg5pqabujbhf+hibLIfJMENeeOkZifnXR/SJ/Vcj pQeVAwHTHajAepLgYn7IwbeRZ0EBVGxjVXPd4ImaBc8m66z0cXpWYtT+4R29AlH/ i1S06FQeYfm1BfIBLt6wv8pUNgVxnKSTkmZaAdF+ -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org