$ rpki-client -vvf repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa File: 3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: SxlmvfgGyeABOiO1CqpuRbsykBAbMv4Um1Tha9rO6mc= Subject key identifier: EA:B4:5A:37:4A:4D:C4:8E:9B:54:9A:13:7F:BC:B8:22:7E:BE:E6:0C Certificate issuer: /CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Certificate serial: 0BBEF32AA890C5698F8CFCBCE6C8FD634BFB472B Authority key identifier: 6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa Signing time: Thu 23 May 2024 05:00:00 +0000 ROA not before: Thu 23 May 2024 04:55:00 +0000 ROA not after: Thu 22 May 2025 05:00:00 +0000 asID: 131111 IP address blocks: 103.158.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:be:f3:2a:a8:90:c5:69:8f:8c:fc:bc:e6:c8:fd:63:4b:fb:47:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Validity Not Before: May 23 04:55:00 2024 GMT Not After : May 22 05:00:00 2025 GMT Subject: CN=EAB45A374A4DC48E9B549A137FBCB8227EBEE60C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:aa:1e:66:47:6d:56:44:39:ad:69:aa:ce:68: 2a:8b:0d:fe:e1:a5:7b:07:d2:4c:e1:2d:0e:e0:ad: 9a:c4:23:ae:fe:1f:41:86:42:ac:83:c3:56:5a:fc: 58:83:ea:81:97:32:15:f8:22:a6:0e:48:97:b8:60: 4a:5e:d4:72:31:c4:d0:10:f4:3f:ff:18:f7:78:fd: 72:84:fb:a3:e3:dd:a9:7a:23:c7:ac:4e:16:12:84: 82:a6:d9:ea:66:59:55:6d:03:74:26:ae:9b:47:81: 76:c4:4b:d9:ed:42:69:ce:77:9a:e9:9a:ae:a7:e8: 23:e4:00:66:61:dc:a2:7a:71:86:05:8f:f8:09:32: 13:4e:14:5f:3d:1c:a0:4c:3e:8b:72:4a:77:e4:0f: f6:1b:80:f8:a3:eb:e7:75:f1:4a:67:06:c4:41:38: c7:20:ab:22:e8:cd:5f:c7:2a:11:9d:4f:94:80:78: 5d:ad:2d:28:5a:0b:5b:3c:d6:d1:4d:9a:46:db:f1: a3:45:57:5c:ab:08:a1:46:d0:3d:88:cb:63:eb:eb: a5:b7:ba:31:04:4d:f2:28:5e:c6:a3:4e:7a:03:72: 9c:9c:ea:60:49:ff:0b:f9:11:9e:19:59:b8:79:9a: c8:6c:c7:f9:6f:98:85:3b:a7:97:d0:16:fa:f0:1a: 69:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B4:5A:37:4A:4D:C4:8E:9B:54:9A:13:7F:BC:B8:22:7E:BE:E6:0C X509v3 Authority Key Identifier: keyid:6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.194.0/24 Signature Algorithm: sha256WithRSAEncryption 52:61:51:76:3d:7d:00:b5:c5:32:41:13:8b:dd:65:43:d6:77: b3:63:15:48:af:17:a3:40:52:47:9f:7d:1b:16:83:5f:d7:93: d6:49:ca:82:d6:bf:a6:fe:80:cc:24:39:bc:dc:e9:38:48:77: 25:8c:b2:f8:62:b7:63:c8:09:64:4f:3a:f3:88:63:2b:a1:d5: 0a:25:9b:a5:f2:aa:46:51:83:5f:c5:22:38:fb:a4:29:90:b4: cc:d5:3c:a6:ef:5b:b0:0e:32:8c:dc:71:6a:a6:7c:62:82:99: 3d:e5:79:b7:74:c8:da:1a:87:35:58:27:75:4d:f4:2e:ae:2c: f4:ff:7f:e0:33:da:1b:cf:8d:12:b4:3c:3c:a3:7e:fd:dd:d2: 8c:d2:95:36:5f:d5:db:32:37:db:a2:5d:0a:f8:47:1a:7c:7e: cd:62:d4:33:fb:06:dd:fd:57:9c:81:a0:47:f8:93:44:17:ef: f1:ad:12:33:90:18:78:e3:31:87:bc:0a:18:7d:c8:45:0c:1a: 78:12:db:93:db:fc:ea:50:ad:5b:c2:df:95:c3:39:70:57:6b: f4:81:cc:c7:67:f8:c7:65:16:3a:83:7f:48:51:34:b6:89:07: 4a:f3:dc:1c:e1:45:41:9c:e7:87:84:64:ae:9e:5f:fe:21:ed: 0a:e4:22:4e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC77zKqiQxWmPjPy85sj9Y0v7RyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlD MEYyRTNGNzAeFw0yNDA1MjMwNDU1MDBaFw0yNTA1MjIwNTAwMDBaMDMxMTAvBgNV BAMTKEVBQjQ1QTM3NEE0REM0OEU5QjU0OUExMzdGQkNCODIyN0VCRUU2MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsqh5mR21WRDmtaarOaCqLDf7h pXsH0kzhLQ7grZrEI67+H0GGQqyDw1Za/FiD6oGXMhX4IqYOSJe4YEpe1HIxxNAQ 9D//GPd4/XKE+6Pj3al6I8esThYShIKm2epmWVVtA3QmrptHgXbES9ntQmnOd5rp mq6n6CPkAGZh3KJ6cYYFj/gJMhNOFF89HKBMPotySnfkD/YbgPij6+d18UpnBsRB OMcgqyLozV/HKhGdT5SAeF2tLShaC1s81tFNmkbb8aNFV1yrCKFG0D2Iy2Pr66W3 ujEETfIoXsajTnoDcpyc6mBJ/wv5EZ4ZWbh5mshsx/lvmIU7p5fQFvrwGmmJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6rRaN0pNxI6bVJoTf7y4In6+5gwwHwYDVR0j BBgwFoAUagLcEPQfzg60l5jdvPMfycDy4/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTQ2YmRhZC1mMTMwLTQ4YTktODUzNC01NGJhM2U4ZWQ2MWYvMC82QTAyREMxMEY0 MUZDRTBFQjQ5Nzk4RERCQ0YzMUZDOUMwRjJFM0Y3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlDMEYy RTNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNDZiZGFkLWYxMzAtNDhhOS04 NTM0LTU0YmEzZThlZDYxZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsIwDQYJ KoZIhvcNAQELBQADggEBAFJhUXY9fQC1xTJBE4vdZUPWd7NjFUivF6NAUkeffRsW g1/Xk9ZJyoLWv6b+gMwkObzc6ThIdyWMsvhit2PICWRPOvOIYyuh1Qolm6XyqkZR g1/FIjj7pCmQtMzVPKbvW7AOMozccWqmfGKCmT3lebd0yNoahzVYJ3VN9C6uLPT/ f+Az2hvPjRK0PDyjfv3d0ozSlTZf1dsyN9uiXQr4Rxp8fs1i1DP7Bt39V5yBoEf4 k0QX7/GtEjOQGHjjMYe8Chh9yEUMGngS25Pb/OpQrVvC35XDOXBXa/SBzMdn+Mdl FjqDf0hRNLaJB0rz3BzhRUGc54eEZK6eX/4h7QrkIk4= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:19 2024 by rpki-client on console-fra.rpki-client.org