$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa File: 3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa (raw, json) Hash identifier: CQaVJZmL6h8kjMNiZieDgcDEEcCMYE0h1Qo7AexvMpY= Subject key identifier: 0D:82:D6:85:F9:CE:F8:95:89:73:6E:E8:20:6F:AD:BA:BE:AE:71:79 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 50DEC0CBC5E774126D179C4E186EF32170E48682 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:34:19 +0000 ROA not before: Fri 02 Aug 2024 12:29:19 +0000 ROA not after: Fri 01 Aug 2025 12:34:19 +0000 asID: 153087 IP address blocks: 103.136.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:de:c0:cb:c5:e7:74:12:6d:17:9c:4e:18:6e:f3:21:70:e4:86:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:29:19 2024 GMT Not After : Aug 1 12:34:19 2025 GMT Subject: CN=0D82D685F9CEF89589736EE8206FADBABEAE7179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:55:8c:0a:ae:6d:53:9f:a5:00:79:41:e3:81: dc:37:00:c0:04:86:71:de:99:f8:85:7a:f6:d1:15: e0:c7:80:73:f4:53:f2:18:e4:37:f6:f0:55:5d:a0: 9c:b1:95:3b:96:03:99:5c:d4:da:91:b4:5e:27:55: 33:fe:19:e7:d6:9e:73:38:61:b3:d9:6b:fd:0a:20: 6c:ce:9a:fe:6f:5b:af:1a:bc:f2:e4:27:bf:26:3a: 88:7a:79:dc:92:19:29:95:83:99:96:6e:35:12:75: 3f:05:6f:3f:8c:28:3d:7a:4a:cd:85:d2:3c:4e:7f: a1:63:b8:35:ed:7d:47:63:26:5f:53:51:28:ff:d3: 32:c2:3e:03:90:17:78:6e:ff:a6:a9:f0:2d:3c:3c: b5:f6:dd:9d:a0:21:85:a0:f2:68:78:31:a9:c3:c2: c7:95:ac:32:e6:68:e7:28:8f:8c:92:46:76:0d:bc: c3:1a:28:cc:d5:34:b8:5b:64:1f:5f:7a:8f:71:35: 50:03:30:9d:44:a7:85:29:2f:ad:83:76:d9:55:5e: b6:a6:67:5c:c8:db:42:87:0a:cd:4d:91:0a:3a:f6: a9:08:26:0b:86:7c:c4:77:ac:8e:72:3d:4f:6b:bc: 1c:03:94:c1:97:b5:29:fb:1b:d2:93:44:39:92:bc: a8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:82:D6:85:F9:CE:F8:95:89:73:6E:E8:20:6F:AD:BA:BE:AE:71:79 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.162.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:79:0a:6d:fe:80:ac:c6:39:77:6a:cb:12:81:ee:02:32:6d: b8:47:28:4b:f5:b2:1f:3c:15:93:c6:3c:ba:d0:33:1e:9b:9e: 5d:c1:5e:53:83:5d:b9:b8:d0:3d:7c:42:c4:72:83:a5:79:6f: 9b:52:ac:22:3c:e8:23:c2:33:49:6c:29:99:80:2f:de:42:c2: 3b:ef:60:5e:a5:42:db:95:08:36:86:23:65:37:e3:b3:ea:bf: 56:c4:7b:02:4b:e2:b2:2b:aa:f0:29:cd:45:74:af:0b:6c:98: f6:24:0e:e2:2e:d6:0e:65:18:85:6d:38:c2:14:2f:60:6a:8d: 91:8c:48:b7:fa:59:3a:f9:64:b9:d5:74:12:18:87:8b:04:d2: eb:f9:ee:f1:45:95:96:af:68:c3:30:71:30:f5:d9:53:85:ab: 30:a1:68:5c:f9:9a:9e:57:d2:f6:4f:ac:7f:31:58:5b:63:a6: dc:79:33:e8:76:56:df:64:d8:6d:58:c5:d3:f1:85:24:76:9c: 85:8d:b2:e3:6b:34:80:66:7d:49:8c:3e:fb:99:bb:35:ff:78: 01:ff:bd:13:52:29:d7:b6:ea:5f:2f:f4:6d:0a:80:71:4b:ad: fb:80:c3:ae:91:f2:a4:56:82:77:3a:79:41:f1:6b:35:11:c3: ca:2d:9a:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUN7Ay8XndBJtF5xOGG7zIXDkhoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjI5MTlaFw0yNTA4MDExMjM0MTlaMDMxMTAvBgNV BAMTKDBEODJENjg1RjlDRUY4OTU4OTczNkVFODIwNkZBREJBQkVBRTcxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZVYwKrm1Tn6UAeUHjgdw3AMAE hnHemfiFevbRFeDHgHP0U/IY5Df28FVdoJyxlTuWA5lc1NqRtF4nVTP+GefWnnM4 YbPZa/0KIGzOmv5vW68avPLkJ78mOoh6edySGSmVg5mWbjUSdT8Fbz+MKD16Ss2F 0jxOf6FjuDXtfUdjJl9TUSj/0zLCPgOQF3hu/6ap8C08PLX23Z2gIYWg8mh4ManD wseVrDLmaOcoj4ySRnYNvMMaKMzVNLhbZB9feo9xNVADMJ1Ep4UpL62DdtlVXram Z1zI20KHCs1NkQo69qkIJguGfMR3rI5yPU9rvBwDlMGXtSn7G9KTRDmSvKglAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDYLWhfnO+JWJc27oIG+tur6ucXkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniKIwDQYJ KoZIhvcNAQELBQADggEBAHp5Cm3+gKzGOXdqyxKB7gIybbhHKEv1sh88FZPGPLrQ Mx6bnl3BXlODXbm40D18QsRyg6V5b5tSrCI86CPCM0lsKZmAL95CwjvvYF6lQtuV CDaGI2U347Pqv1bEewJL4rIrqvApzUV0rwtsmPYkDuIu1g5lGIVtOMIUL2BqjZGM SLf6WTr5ZLnVdBIYh4sE0uv57vFFlZavaMMwcTD12VOFqzChaFz5mp5X0vZPrH8x WFtjptx5M+h2Vt9k2G1YxdPxhSR2nIWNsuNrNIBmfUmMPvuZuzX/eAH/vRNSKde2 6l8v9G0KgHFLrfuAw66R8qRWgnc6eUHxazURw8otmvY= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org