$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa File: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: 6S9av5iO1RLdTW1sC/u1s/hJFFSQCsrZ7RFlRZsdMWk= Subject key identifier: DA:A1:44:FE:09:68:4C:DB:80:AB:2D:6A:B0:6B:3C:5B:79:8E:50:21 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 298CB2E0F11B57CB3E41DF39B32EF30B521DD902 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa Signing time: Tue 19 Sep 2023 06:00:01 +0000 ROA not before: Tue 19 Sep 2023 05:55:01 +0000 ROA not after: Tue 17 Sep 2024 06:00:01 +0000 asID: 136052 IP address blocks: 103.28.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:8c:b2:e0:f1:1b:57:cb:3e:41:df:39:b3:2e:f3:0b:52:1d:d9:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Sep 19 05:55:01 2023 GMT Not After : Sep 17 06:00:01 2024 GMT Subject: CN=DAA144FE09684CDB80AB2D6AB06B3C5B798E5021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:28:42:67:54:3a:7e:49:cd:92:95:97:8f:73: 64:0e:f7:a9:97:53:7c:66:cc:8f:4c:69:f7:cd:04: 10:5d:c0:60:23:7b:86:e1:88:73:ad:d3:d6:29:3a: 7e:78:79:39:6a:41:58:f9:a2:a9:e4:6e:4f:95:af: c4:5d:00:ae:2a:8b:ae:34:d4:e9:aa:f5:50:62:ee: 36:b1:1a:99:46:ab:ee:24:e6:af:68:fd:f8:54:de: 53:6d:ff:10:e8:20:07:7c:cc:b7:da:e0:53:7d:d2: 90:e8:70:bd:6b:77:79:e4:28:53:63:4d:74:d7:a9: bb:63:e7:3c:a8:f4:8c:1e:db:9f:62:f3:5b:cf:56: c3:e2:37:f6:15:a6:06:49:4e:4c:a0:23:e5:e8:ef: a4:47:34:f4:f1:8e:91:18:01:6f:26:25:ce:ba:05: 3a:b0:0d:13:10:42:58:3d:4a:51:d5:89:8c:c9:e5: 78:fa:9d:c2:50:0b:35:2f:f9:75:09:b0:d1:31:b6: 2f:61:22:7d:58:3f:d8:12:cc:5a:07:de:65:4b:a9: 68:19:c3:cf:07:ae:a5:c0:35:1e:29:a9:d1:60:2e: bd:be:d7:dd:b2:1a:1b:f8:e2:e7:28:33:f1:5e:76: cb:cb:8a:91:2c:17:3a:fb:0b:81:06:b1:8f:73:13: ed:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A1:44:FE:09:68:4C:DB:80:AB:2D:6A:B0:6B:3C:5B:79:8E:50:21 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.52.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:e8:34:a5:9c:37:12:6d:87:7d:63:aa:a5:fe:5c:df:44:6a: ca:97:c6:65:45:35:01:4a:e0:64:44:67:bf:13:62:2f:b2:43: d1:c4:04:10:5a:d0:3a:28:9c:d6:6a:3b:79:11:52:88:df:aa: 67:22:47:3c:56:ac:03:79:82:1d:6c:44:b5:f2:40:35:f1:71: e0:70:9c:c1:41:30:6f:0e:b1:42:2e:df:49:fc:ad:69:4c:86: 89:ff:d5:7f:fe:64:2c:40:e0:bd:c9:ad:ef:c3:36:7c:98:12: b9:0d:b8:d4:c1:b7:a8:94:ba:50:32:22:3a:3f:3e:7e:8b:f8: 29:15:a2:fe:c4:0a:f7:49:5d:ac:8b:fe:e6:45:c7:04:8c:28: c4:be:a4:df:14:1d:48:0e:99:4d:60:81:0f:98:c2:13:7f:4b: e6:0b:c1:15:bd:91:39:5e:2d:5e:a1:dc:47:59:a5:21:47:37: 4e:fa:19:94:1d:8e:dc:d7:e9:1e:c3:7e:4a:68:f9:b8:92:8d: 4d:ec:85:13:57:c6:b8:ac:8e:a5:3d:4d:bb:95:d1:ed:c1:3d: 2e:79:0b:3f:be:7b:c2:7d:aa:25:ef:4a:cb:f2:e2:24:4e:df: 5f:df:6b:f1:34:1c:3a:d1:ca:59:69:90:3a:4f:28:af:8f:fa: d8:35:2d:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKYyy4PEbV8s+Qd85sy7zC1Id2QIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yMzA5MTkwNTU1MDFaFw0yNDA5MTcwNjAwMDFaMDMxMTAvBgNV BAMTKERBQTE0NEZFMDk2ODRDREI4MEFCMkQ2QUIwNkIzQzVCNzk4RTUwMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKEJnVDp+Sc2SlZePc2QO96mX U3xmzI9MaffNBBBdwGAje4bhiHOt09YpOn54eTlqQVj5oqnkbk+Vr8RdAK4qi640 1Omq9VBi7jaxGplGq+4k5q9o/fhU3lNt/xDoIAd8zLfa4FN90pDocL1rd3nkKFNj TXTXqbtj5zyo9Iwe259i81vPVsPiN/YVpgZJTkygI+Xo76RHNPTxjpEYAW8mJc66 BTqwDRMQQlg9SlHViYzJ5Xj6ncJQCzUv+XUJsNExti9hIn1YP9gSzFoH3mVLqWgZ w88HrqXANR4pqdFgLr2+192yGhv44ucoM/FedsvLipEsFzr7C4EGsY9zE+0VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2qFE/gloTNuAqy1qsGs8W3mOUCEwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzODJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWccNDANBgkqhkiG 9w0BAQsFAAOCAQEATug0pZw3Em2HfWOqpf5c30RqypfGZUU1AUrgZERnvxNiL7JD 0cQEEFrQOiic1mo7eRFSiN+qZyJHPFasA3mCHWxEtfJANfFx4HCcwUEwbw6xQi7f SfytaUyGif/Vf/5kLEDgvcmt78M2fJgSuQ241MG3qJS6UDIiOj8+fov4KRWi/sQK 90ldrIv+5kXHBIwoxL6k3xQdSA6ZTWCBD5jCE39L5gvBFb2ROV4tXqHcR1mlIUc3 TvoZlB2O3NfpHsN+Smj5uJKNTeyFE1fGuKyOpT1Nu5XR7cE9LnkLP757wn2qJe9K y/LiJE7fX99r8TQcOtHKWWmQOk8or4/62DUt/g== -----END CERTIFICATE-----Generated at Wed May 1 05:54:35 2024 by rpki-client on console-ams.rpki-client.org