$ rpki-client -vvf repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: zMxSmroB5hx9dKNqeKSghm5X3bKfrqcdd3JxnZwBQZY= Subject key identifier: AC:25:FC:3B:39:3D:1D:DF:34:D2:23:09:5F:EC:C2:34:2A:30:49:5E Certificate issuer: /CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Certificate serial: 5AF760BBF6B971838FC9D35213C2E3566B5A6C06 Authority key identifier: 51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:00:00 +0000 ROA not before: Wed 03 Jan 2024 08:55:00 +0000 ROA not after: Wed 01 Jan 2025 09:00:00 +0000 asID: 135478 IP address blocks: 103.129.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 20:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f7:60:bb:f6:b9:71:83:8f:c9:d3:52:13:c2:e3:56:6b:5a:6c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Validity Not Before: Jan 3 08:55:00 2024 GMT Not After : Jan 1 09:00:00 2025 GMT Subject: CN=AC25FC3B393D1DDF34D223095FECC2342A30495E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:d6:0d:e1:f7:ba:d5:6c:7d:aa:ca:1b:47: 49:ef:d0:a8:7c:11:7f:68:8f:35:c9:01:8d:2a:68: 25:cb:ea:cf:3e:db:fa:96:52:82:99:81:2e:eb:3c: d7:9a:89:2c:ff:73:95:04:19:2e:16:c5:3c:d9:a8: a4:d0:94:e7:79:dc:18:47:50:40:ae:7c:d0:22:46: 08:63:8c:94:dd:ef:4d:5f:86:fa:d0:39:5a:0b:fa: 63:48:28:9f:62:7f:fa:f5:54:95:e5:89:d9:fc:d9: fc:44:3b:9e:a8:8e:a5:71:64:21:a3:6b:42:2e:da: 62:0c:cc:5d:5a:cc:89:99:24:d2:77:17:16:2e:a7: 4a:e4:c5:c2:f9:46:df:40:fc:5c:82:14:46:07:c7: 22:71:00:f2:35:84:89:00:d4:16:22:11:ca:27:8a: 28:77:40:48:1f:3f:1e:54:9a:7b:68:8f:f0:0a:40: 8b:25:fa:27:c4:6c:c1:81:32:ad:56:d2:ac:d2:30: f9:56:71:5b:a6:4c:43:54:5e:af:81:41:53:9a:21: 66:13:48:48:61:5e:2c:06:44:f4:c5:94:6e:50:bd: f3:a0:49:e6:b1:80:f9:79:b4:24:19:19:d4:0e:39: 90:17:c0:b7:f9:5c:a7:21:3d:f8:d7:26:a4:1d:6e: eb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:25:FC:3B:39:3D:1D:DF:34:D2:23:09:5F:EC:C2:34:2A:30:49:5E X509v3 Authority Key Identifier: keyid:51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.22.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:92:9a:92:1b:86:18:5d:24:ca:24:a7:bc:c1:b8:15:49:e0: 3d:08:8b:e4:98:bb:cd:7c:f4:d3:0f:07:9c:5c:b4:81:d2:38: 33:b2:a1:69:8d:98:c1:ad:e4:a6:d1:da:db:64:0f:09:e1:0f: 94:ef:a2:48:8d:5c:dc:bb:5e:eb:4c:ba:bc:8d:aa:5a:58:65: e4:7f:fa:57:d3:57:3d:38:48:9f:30:c1:eb:a6:66:55:c7:32: b8:13:75:5d:92:b7:4c:99:8f:0d:8c:c9:a4:36:d6:82:d0:36: 83:6a:6d:e6:ba:76:36:3a:c4:c5:05:88:7e:6b:6f:ba:3e:39: d5:77:ea:21:3b:e6:c5:c5:0b:07:fd:ec:55:e8:14:3a:52:c9: 08:66:72:7a:90:ff:3a:c0:ac:ee:0d:00:9c:d0:1a:66:b5:4d: 03:1c:63:2d:31:ed:c7:b2:8a:b6:13:aa:49:5a:f4:c6:43:5f: 83:fc:7c:e7:6e:87:21:f0:59:b2:d5:d5:3c:10:4b:1c:48:96: ee:5f:d1:a3:5e:b2:de:97:f1:26:97:63:5c:0e:18:6b:f5:cb: f4:cd:0e:64:21:bb:79:b8:c9:73:58:71:bd:f1:22:c4:12:c6: 19:e2:45:cd:77:a2:d1:c1:d9:63:8c:b5:4d:2a:fe:3e:fe:d4: 4b:5c:5a:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWvdgu/a5cYOPydNSE8LjVmtabAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJF N0I0MTI5NzAeFw0yNDAxMDMwODU1MDBaFw0yNTAxMDEwOTAwMDBaMDMxMTAvBgNV BAMTKEFDMjVGQzNCMzkzRDFEREYzNEQyMjMwOTVGRUNDMjM0MkEzMDQ5NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93dYN4fe61Wx9qsobR0nv0Kh8 EX9ojzXJAY0qaCXL6s8+2/qWUoKZgS7rPNeaiSz/c5UEGS4WxTzZqKTQlOd53BhH UECufNAiRghjjJTd701fhvrQOVoL+mNIKJ9if/r1VJXlidn82fxEO56ojqVxZCGj a0Iu2mIMzF1azImZJNJ3FxYup0rkxcL5Rt9A/FyCFEYHxyJxAPI1hIkA1BYiEcon iih3QEgfPx5Umntoj/AKQIsl+ifEbMGBMq1W0qzSMPlWcVumTENUXq+BQVOaIWYT SEhhXiwGRPTFlG5QvfOgSeaxgPl5tCQZGdQOOZAXwLf5XKchPfjXJqQdbutvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrCX8Ozk9Hd800iMJX+zCNCowSV4wHwYDVR0j BBgwFoAUUZfip4u6HoyeuAjkWpndK+e0EpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NjU0MjgzOS0yODU4LTQ5ZjAtYWNkZi1mYTdkM2FiOWM1NTgvMC81MTk3RTJBNzhC QkExRThDOUVCODA4RTQ1QTk5REQyQkU3QjQxMjk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJFN0I0 MTI5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2NTQyODM5LTI4NTgtNDlmMC1h Y2RmLWZhN2QzYWI5YzU1OC8wLzMxMzAzMzJlMzEzMjM5MmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EWMA0GCSqG SIb3DQEBCwUAA4IBAQAqkpqSG4YYXSTKJKe8wbgVSeA9CIvkmLvNfPTTDwecXLSB 0jgzsqFpjZjBreSm0drbZA8J4Q+U76JIjVzcu17rTLq8japaWGXkf/pX01c9OEif MMHrpmZVxzK4E3VdkrdMmY8NjMmkNtaC0DaDam3munY2OsTFBYh+a2+6PjnVd+oh O+bFxQsH/exV6BQ6UskIZnJ6kP86wKzuDQCc0BpmtU0DHGMtMe3Hsoq2E6pJWvTG Q1+D/Hznboch8Fmy1dU8EEscSJbuX9GjXrLel/Eml2NcDhhr9cv0zQ5kIbt5uMlz WHG98SLEEsYZ4kXNd6LRwdljjLVNKv4+/tRLXFpv -----END CERTIFICATE-----Generated at Wed May 1 20:46:51 2024 by rpki-client on console-ams.rpki-client.org