$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa File: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: LKQ8XjfBdPZzD6wV85IhJ+CRHZwJAWSK3nJw8LV1UIc= Subject key identifier: 81:B0:A8:D6:1E:B5:6E:4F:75:E9:D1:38:EF:F9:12:9C:2B:28:9E:ED Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 1D490129DB83612B4BC6B17CEC7D194E954592B3 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa Signing time: Wed 20 Sep 2023 05:01:22 +0000 ROA not before: Wed 20 Sep 2023 04:56:22 +0000 ROA not after: Wed 18 Sep 2024 05:01:22 +0000 asID: 58404 IP address blocks: 103.195.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 05:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:49:01:29:db:83:61:2b:4b:c6:b1:7c:ec:7d:19:4e:95:45:92:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Sep 20 04:56:22 2023 GMT Not After : Sep 18 05:01:22 2024 GMT Subject: CN=81B0A8D61EB56E4F75E9D138EFF9129C2B289EED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:07:cf:e7:39:4d:c3:77:1e:3d:21:66:c5: e6:76:6e:c3:04:10:ba:62:dd:83:fe:fc:84:96:d0: f0:08:8b:0a:28:c3:9b:27:32:d1:ce:0e:63:05:81: cd:df:f4:72:bd:d7:2f:d7:7e:a9:50:33:c6:36:93: 01:b7:a5:ac:85:58:a3:39:d9:13:76:c4:6d:3b:70: ed:ed:67:73:68:62:40:94:f7:8f:0d:8d:df:3c:7d: 52:73:7e:a1:4f:8b:4d:56:cd:d6:32:35:a3:33:d8: ad:87:15:ad:e5:31:ab:5a:2d:74:db:40:38:13:8b: 9f:21:53:b1:0b:e2:39:ee:97:e0:37:f0:77:54:d3: 77:f0:00:8e:72:f8:ed:7c:80:37:9f:e0:d4:41:57: d7:9f:63:a5:33:d2:99:5b:03:39:d4:92:9c:20:4b: dd:a9:b4:80:48:c3:11:cf:a4:5c:4d:12:bd:c9:67: 90:5a:90:dd:62:40:bf:4f:82:5f:9e:ed:d3:4c:df: 90:a5:44:ef:94:77:87:d3:b9:d6:ca:9d:44:71:ea: 08:dc:f0:7b:d9:d6:20:23:a9:1e:2f:2b:79:fd:8f: f8:64:71:65:65:ae:8d:53:ee:1d:a3:b2:ae:40:5d: 62:90:8d:e6:9e:d1:92:3e:f7:49:f2:ca:76:bd:51: d9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B0:A8:D6:1E:B5:6E:4F:75:E9:D1:38:EF:F9:12:9C:2B:28:9E:ED X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/3130332e3139352e39302e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.90.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:5a:88:f0:2e:06:f3:e8:f8:dd:08:2a:7e:56:a7:91:d3:34: 32:d9:ec:0f:a9:cb:98:e8:f3:21:76:d3:7e:3b:21:ab:6a:b8: 42:1f:f3:5a:e3:6b:be:95:1c:27:52:22:51:0a:57:fc:db:30: 53:48:38:85:58:26:56:b1:a3:77:c1:5c:91:a8:b5:ee:ba:75: 4e:ee:da:14:1d:f4:03:b4:bd:4c:55:e1:22:40:5c:ee:56:27: f0:c8:01:53:8a:82:3c:51:b5:b2:af:37:04:49:2b:eb:62:15: 9f:07:e9:2d:b3:33:d0:f1:3d:97:7c:b9:a0:cd:60:fe:80:55: b8:c0:62:d3:01:ff:13:e3:f0:36:bc:0d:5d:a8:15:b8:8e:65: d9:aa:e6:ba:19:ad:12:4a:1d:d5:83:a7:93:3d:13:23:0e:6c: 4d:f0:73:44:dd:c6:dc:b9:36:62:98:af:fe:ad:74:11:48:15: 4b:90:90:c1:03:18:26:6e:5c:b6:25:ba:5c:90:bf:e7:ab:24: 5a:65:f8:03:d8:ca:e2:ae:7a:01:fd:5c:a2:3c:17:8d:d2:b2: 54:73:07:ec:f4:0c:e9:66:7c:d4:78:8d:c0:34:5e:76:25:57: 5c:5f:84:35:92:06:b0:10:95:d1:15:9d:06:d2:2b:ff:59:63: fc:5f:f3:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHUkBKduDYStLxrF87H0ZTpVFkrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yMzA5MjAwNDU2MjJaFw0yNDA5MTgwNTAxMjJaMDMxMTAvBgNV BAMTKDgxQjBBOEQ2MUVCNTZFNEY3NUU5RDEzOEVGRjkxMjlDMkIyODlFRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWxQfP5zlNw3cePSFmxeZ2bsME ELpi3YP+/ISW0PAIiwoow5snMtHODmMFgc3f9HK91y/XfqlQM8Y2kwG3payFWKM5 2RN2xG07cO3tZ3NoYkCU948Njd88fVJzfqFPi01WzdYyNaMz2K2HFa3lMataLXTb QDgTi58hU7EL4jnul+A38HdU03fwAI5y+O18gDef4NRBV9efY6Uz0plbAznUkpwg S92ptIBIwxHPpFxNEr3JZ5BakN1iQL9Pgl+e7dNM35ClRO+Ud4fTudbKnURx6gjc 8HvZ1iAjqR4vK3n9j/hkcWVlro1T7h2jsq5AXWKQjeae0ZI+90nyyna9Udn1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgbCo1h61bk916dE47/kSnCsonu0wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMzLWU0ZTEtNDFhMS1h YWYwLWQ2MTNhY2E0OTMwYy8wLzMxMzAzMzJlMzEzOTM1MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfDWjANBgkqhkiG 9w0BAQsFAAOCAQEAO1qI8C4G8+j43QgqflankdM0MtnsD6nLmOjzIXbTfjshq2q4 Qh/zWuNrvpUcJ1IiUQpX/NswU0g4hVgmVrGjd8Fckai17rp1Tu7aFB30A7S9TFXh IkBc7lYn8MgBU4qCPFG1sq83BEkr62IVnwfpLbMz0PE9l3y5oM1g/oBVuMBi0wH/ E+PwNrwNXagVuI5l2armuhmtEkod1YOnkz0TIw5sTfBzRN3G3Lk2Ypiv/q10EUgV S5CQwQMYJm5ctiW6XJC/56skWmX4A9jK4q56Af1cojwXjdKyVHMH7PQM6WZ81HiN wDRediVXXF+ENZIGsBCV0RWdBtIr/1lj/F/zCA== -----END CERTIFICATE-----Generated at Fri Apr 19 06:15:26 2024 by rpki-client on console-ams.rpki-client.org