$ rpki-client -vvf repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/3130332e3136392e322e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e322e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: 2v/e8pZGfh01NCUDSkHZRtnFbJ6H6cU7Yzu2u9dK07E= Subject key identifier: 1A:DC:9B:23:95:83:98:DA:A9:C6:BC:07:76:80:E4:BB:74:CC:B8:D1 Certificate issuer: /CN=2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E Certificate serial: 24BEC8169E2281331CF5E79C6560E7CAA805C1AA Authority key identifier: 2B:DF:AF:A7:0A:11:BF:BF:6C:98:2B:BF:2C:2C:08:4D:E8:0E:03:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/3130332e3136392e322e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:01:52 +0000 ROA not before: Fri 01 Sep 2023 09:56:52 +0000 ROA not after: Fri 30 Aug 2024 10:01:52 +0000 asID: 17995 IP address blocks: 103.169.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.crl rsync://repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:be:c8:16:9e:22:81:33:1c:f5:e7:9c:65:60:e7:ca:a8:05:c1:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E Validity Not Before: Sep 1 09:56:52 2023 GMT Not After : Aug 30 10:01:52 2024 GMT Subject: CN=1ADC9B23958398DAA9C6BC077680E4BB74CCB8D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:54:fe:7d:92:d3:81:6a:ed:5c:04:8d:5c:b9: ae:ad:80:d5:da:3c:fc:55:73:a0:ce:7b:ba:ff:ff: 8a:1b:57:76:c0:d1:f1:5d:39:ae:91:0c:46:95:a3: ef:d0:ee:7f:2b:8a:fe:ef:d9:02:fe:40:60:43:1f: 28:9f:00:89:2c:bf:4b:a7:3a:df:0d:96:af:5d:8b: 68:e6:9f:59:25:16:50:6e:4e:63:fb:25:0a:b1:ca: 6b:b2:96:f4:66:1c:47:f5:14:b0:38:60:e1:42:20: c5:8d:c0:d9:c5:b2:ff:96:64:62:17:b3:20:d5:12: f4:56:42:e3:18:86:f5:a7:eb:f7:7a:a2:ee:f5:c6: 96:79:cc:c5:70:61:b1:a2:e4:75:f8:f4:52:c9:96: 0c:ab:c9:c3:37:17:6c:54:81:06:e2:c1:c8:03:41: 47:8b:9a:be:13:ce:58:ff:7d:34:c0:09:ec:99:2e: ce:c2:10:03:e6:eb:88:e4:22:44:8b:33:d3:84:b6: 63:33:18:64:9f:6c:c5:f8:6d:fa:2f:6e:89:d9:50: 23:23:6f:90:b5:34:08:a5:88:f9:17:a6:74:49:74: f0:c4:4d:19:da:a6:cc:5a:32:8c:11:38:5d:98:cd: 8e:9b:da:ea:04:52:72:cc:e1:ee:d4:4e:25:9c:87: bd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DC:9B:23:95:83:98:DA:A9:C6:BC:07:76:80:E4:BB:74:CC:B8:D1 X509v3 Authority Key Identifier: keyid:2B:DF:AF:A7:0A:11:BF:BF:6C:98:2B:BF:2C:2C:08:4D:E8:0E:03:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BDFAFA70A11BFBF6C982BBF2C2C084DE80E034E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52cd9cea-3bf4-4a9c-aee6-00339c06550b/0/3130332e3136392e322e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.2.0/23 Signature Algorithm: sha256WithRSAEncryption b6:56:98:de:97:1f:b8:72:52:e5:f7:67:a9:72:e2:bc:78:a9: 56:ed:7e:13:22:b9:37:37:11:dc:ba:00:5a:f5:e7:87:f4:29: 61:ea:15:d4:44:e2:b0:8b:e7:93:96:bf:65:a3:71:35:98:11: 39:2c:c1:e8:31:c6:bf:2d:35:59:8a:be:ed:5f:d4:66:0c:9e: 2c:55:a1:9c:0c:91:5c:54:86:04:34:59:3b:38:e2:b2:82:5c: a4:a0:0e:62:bf:03:ab:53:5e:ff:5c:cf:ef:42:5b:ba:30:5f: 12:e0:00:a2:37:e2:16:da:d9:48:70:7d:a6:80:01:d2:c3:9a: 65:d6:76:09:c5:74:70:89:6e:57:bd:c2:2e:ab:cd:c6:ee:57: 88:24:db:01:cf:66:67:f1:04:86:73:65:8b:f5:df:08:4b:18: f9:73:d5:1c:34:46:29:cc:f3:c1:bf:b1:dc:b8:5e:b9:9f:c3: dd:4b:2d:b4:72:e7:03:48:c6:3a:e4:6e:a2:0a:87:f5:a0:36: 4d:37:0b:3d:4c:8c:ac:eb:66:ba:f7:90:1b:4e:56:c9:f4:d5: d4:0d:a0:47:a1:9e:b8:3a:67:14:76:3c:60:b9:e5:41:74:2c: 6a:bb:8b:ec:cb:11:de:fc:2c:6e:ea:83:15:6f:dc:f9:c9:c5: 1c:00:54:4c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJL7IFp4igTMc9eecZWDnyqgFwaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkJERkFGQTcwQTExQkZCRjZDOTgyQkJGMkMyQzA4NERF ODBFMDM0RTAeFw0yMzA5MDEwOTU2NTJaFw0yNDA4MzAxMDAxNTJaMDMxMTAvBgNV BAMTKDFBREM5QjIzOTU4Mzk4REFBOUM2QkMwNzc2ODBFNEJCNzRDQ0I4RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVP59ktOBau1cBI1cua6tgNXa PPxVc6DOe7r//4obV3bA0fFdOa6RDEaVo+/Q7n8riv7v2QL+QGBDHyifAIksv0un Ot8Nlq9di2jmn1klFlBuTmP7JQqxymuylvRmHEf1FLA4YOFCIMWNwNnFsv+WZGIX syDVEvRWQuMYhvWn6/d6ou71xpZ5zMVwYbGi5HX49FLJlgyrycM3F2xUgQbiwcgD QUeLmr4Tzlj/fTTACeyZLs7CEAPm64jkIkSLM9OEtmMzGGSfbMX4bfovbonZUCMj b5C1NAiliPkXpnRJdPDETRnapsxaMowROF2YzY6b2uoEUnLM4e7UTiWch72zAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGtybI5WDmNqpxrwHdoDku3TMuNEwHwYDVR0j BBgwFoAUK9+vpwoRv79smCu/LCwITegOA04wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmNkOWNlYS0zYmY0LTRhOWMtYWVlNi0wMDMzOWMwNjU1MGIvMC8yQkRGQUZBNzBB MTFCRkJGNkM5ODJCQkYyQzJDMDg0REU4MEUwMzRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkJERkFGQTcwQTExQkZCRjZDOTgyQkJGMkMyQzA4NERFODBF MDM0RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyY2Q5Y2VhLTNiZjQtNGE5Yy1h ZWU2LTAwMzM5YzA2NTUwYi8wLzMxMzAzMzJlMzEzNjM5MmUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqQIwDQYJKoZIhvcN AQELBQADggEBALZWmN6XH7hyUuX3Z6ly4rx4qVbtfhMiuTc3Edy6AFr154f0KWHq FdRE4rCL55OWv2WjcTWYETkswegxxr8tNVmKvu1f1GYMnixVoZwMkVxUhgQ0WTs4 4rKCXKSgDmK/A6tTXv9cz+9CW7owXxLgAKI34hba2UhwfaaAAdLDmmXWdgnFdHCJ ble9wi6rzcbuV4gk2wHPZmfxBIZzZYv13whLGPlz1Rw0RinM88G/sdy4Xrmfw91L LbRy5wNIxjrkbqIKh/WgNk03Cz1MjKzrZrr3kBtOVsn01dQNoEehnrg6ZxR2PGC5 5UF0LGq7i+zLEd78LG7qgxVv3PnJxRwAVEw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:44 2024 by rpki-client on console-ams.rpki-client.org