$ rpki-client -vvf repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa File: 3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa (raw, json) Hash identifier: itO8sihFgXMUbSQlwLdSsBmvziIF/OpyE/yJGtrY67A= Subject key identifier: 5A:4D:1E:34:98:74:73:DA:A0:85:75:38:5A:FE:99:CA:75:0E:AB:6D Certificate issuer: /CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Certificate serial: 45E2E168BA0CE409AD4391D3AF1C96103D8F3AB6 Authority key identifier: 52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa Signing time: Sat 16 Nov 2024 13:00:00 +0000 ROA not before: Sat 16 Nov 2024 12:55:00 +0000 ROA not after: Sat 15 Nov 2025 13:00:00 +0000 asID: 138131 IP address blocks: 103.180.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e2:e1:68:ba:0c:e4:09:ad:43:91:d3:af:1c:96:10:3d:8f:3a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Validity Not Before: Nov 16 12:55:00 2024 GMT Not After : Nov 15 13:00:00 2025 GMT Subject: CN=5A4D1E34987473DAA08575385AFE99CA750EAB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:78:5a:7a:87:a4:55:14:6d:ea:4b:28:23:28: 54:8c:47:03:e0:de:ac:6d:64:03:30:7d:dd:73:4f: b2:c4:0f:8d:71:60:b3:1a:f7:2e:38:1a:66:97:e6: ec:1b:92:ad:77:47:01:90:89:d8:57:31:d7:26:77: c3:a8:4e:93:2f:de:d3:74:e1:5e:08:fe:b9:27:de: 86:07:d7:ee:fd:98:d0:f0:3e:92:d3:ba:c4:f0:39: 73:3c:2d:d6:16:b4:6d:7f:49:45:32:67:c4:2c:35: 89:14:0e:aa:d9:18:fe:ce:90:89:16:cc:79:1d:83: e0:c3:2c:6d:99:86:0e:e6:c8:73:80:a6:c7:d4:6c: e2:38:07:1a:d6:f8:2a:6e:ad:97:28:54:87:03:04: ce:a7:e1:28:a6:63:f2:2a:6c:a5:1a:68:49:91:e3: 1c:6e:1e:75:b4:39:16:4d:8e:58:01:58:38:31:cd: 07:87:fc:02:ec:8d:fd:85:1e:c9:77:85:4e:e4:ae: 6f:9e:d0:2c:62:59:de:fd:6b:cf:5f:a7:23:22:cc: 6c:7f:25:05:d0:81:b9:cb:b0:b3:4d:af:aa:82:3b: d3:aa:74:72:ab:b7:db:a3:90:d2:3a:0c:38:d7:43: d4:92:a9:22:a2:52:d8:02:63:29:75:1e:b6:84:80: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4D:1E:34:98:74:73:DA:A0:85:75:38:5A:FE:99:CA:75:0E:AB:6D X509v3 Authority Key Identifier: keyid:52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.164.0/23 Signature Algorithm: sha256WithRSAEncryption 62:9b:36:98:ab:b9:2c:0b:5b:dd:d7:2c:0c:b0:0b:a9:4f:68: 1d:e0:9e:62:d5:9e:d6:42:11:2f:57:3f:86:0f:9e:30:c9:14: 18:e7:08:83:58:6a:07:6f:3c:eb:95:c7:07:93:50:8b:2b:b1: 33:7f:81:1f:4d:63:88:8c:d8:1a:83:7b:4d:e3:73:7e:7e:fa: ac:28:23:7e:bf:08:7c:67:53:32:46:f5:4e:67:09:d9:b5:07: c9:9d:ae:2b:4b:fa:4a:b4:ff:3a:0b:e2:2a:85:0b:eb:fe:85: 9a:7f:3e:cb:24:c3:54:e5:e5:ae:65:98:35:d4:27:38:bc:3b: ca:17:e7:60:79:4d:f3:df:08:b4:3d:78:e6:25:6f:be:5d:45: f6:9d:e5:78:24:5c:91:3a:5d:32:a8:41:9c:db:ea:31:64:fc: 4a:8b:ee:6a:45:03:54:20:2a:65:5f:65:09:2e:51:c6:98:dc: 34:db:a9:e1:49:78:87:f1:9e:fd:61:94:21:e2:88:f5:17:a1: 45:95:db:9d:67:e2:7a:01:1a:ba:e5:ab:fb:5c:38:bb:39:da: 46:cc:58:87:31:6d:b2:e8:31:91:54:81:a6:45:9e:37:49:34: 46:02:80:b1:04:58:e3:6e:66:22:31:82:34:69:1a:7c:cf:21: 91:0f:d4:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUReLhaLoM5AmtQ5HTrxyWED2POrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZD QjhBQTI0NTAeFw0yNDExMTYxMjU1MDBaFw0yNTExMTUxMzAwMDBaMDMxMTAvBgNV BAMTKDVBNEQxRTM0OTg3NDczREFBMDg1NzUzODVBRkU5OUNBNzUwRUFCNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpeFp6h6RVFG3qSygjKFSMRwPg 3qxtZAMwfd1zT7LED41xYLMa9y44GmaX5uwbkq13RwGQidhXMdcmd8OoTpMv3tN0 4V4I/rkn3oYH1+79mNDwPpLTusTwOXM8LdYWtG1/SUUyZ8QsNYkUDqrZGP7OkIkW zHkdg+DDLG2Zhg7myHOApsfUbOI4BxrW+CpurZcoVIcDBM6n4SimY/IqbKUaaEmR 4xxuHnW0ORZNjlgBWDgxzQeH/ALsjf2FHsl3hU7krm+e0CxiWd79a89fpyMizGx/ JQXQgbnLsLNNr6qCO9OqdHKrt9ujkNI6DDjXQ9SSqSKiUtgCYyl1HraEgFMJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWk0eNJh0c9qghXU4Wv6ZynUOq20wHwYDVR0j BBgwFoAUUud7BrwmkcYTx6mHLuHij8uKokUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzkwODc4Mi00NTIwLTQ1YjQtOTllZC0xOTNlNTFkZjUxYzMvMC81MkU3N0IwNkJD MjY5MUM2MTNDN0E5ODcyRUUxRTI4RkNCOEFBMjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZDQjhB QTI0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzOTA4NzgyLTQ1MjAtNDViNC05 OWVkLTE5M2U1MWRmNTFjMy8wLzMxMzAzMzJlMzEzODMwMmUzMTM2MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntKQwDQYJ KoZIhvcNAQELBQADggEBAGKbNpiruSwLW93XLAywC6lPaB3gnmLVntZCES9XP4YP njDJFBjnCINYagdvPOuVxweTUIsrsTN/gR9NY4iM2BqDe03jc35++qwoI36/CHxn UzJG9U5nCdm1B8mdritL+kq0/zoL4iqFC+v+hZp/Psskw1Tl5a5lmDXUJzi8O8oX 52B5TfPfCLQ9eOYlb75dRfad5XgkXJE6XTKoQZzb6jFk/EqL7mpFA1QgKmVfZQku UcaY3DTbqeFJeIfxnv1hlCHiiPUXoUWV251n4noBGrrlq/tcOLs52kbMWIcxbbLo MZFUgaZFnjdJNEYCgLEEWONuZiIxgjRpGnzPIZEP1OE= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org