$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa File: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (raw, json) Hash identifier: SffqdAz1gd+t/rUnnOAfpFPhA27m18dkwd09UZgq2W0= Subject key identifier: 15:43:3B:84:31:C3:DA:11:EC:41:96:7E:75:3A:A3:61:47:02:7E:D1 Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 0D3253E6305C998CFD541BCB3AA834A54002397C Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa Signing time: Fri 12 Apr 2024 09:00:01 +0000 ROA not before: Fri 12 Apr 2024 08:55:01 +0000 ROA not after: Fri 11 Apr 2025 09:00:01 +0000 asID: 149742 IP address blocks: 103.189.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:32:53:e6:30:5c:99:8c:fd:54:1b:cb:3a:a8:34:a5:40:02:39:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Apr 12 08:55:01 2024 GMT Not After : Apr 11 09:00:01 2025 GMT Subject: CN=15433B8431C3DA11EC41967E753AA36147027ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4f:ba:2c:71:f0:ae:52:6f:18:91:a7:33:72: d1:10:49:6a:1b:c8:59:58:a4:98:d7:81:ba:47:f7: 1c:ae:c0:7b:80:1a:81:99:13:be:33:ad:72:a9:a3: 42:87:41:21:65:59:e7:a3:16:ae:92:b3:c3:38:94: 49:bc:97:1d:52:8a:a7:79:26:65:ba:b6:e2:e7:f5: 2e:6a:36:c1:a5:55:bb:e0:15:8b:0f:cd:de:04:2f: 5e:b8:6b:e9:7c:53:66:f9:97:71:c6:2a:cb:ef:a3: 27:f9:23:13:3b:dd:34:cb:a7:05:28:45:bb:f7:fd: 41:17:67:54:d8:16:f9:31:2c:4e:16:e4:c6:ad:b1: f9:9a:1e:bf:f5:72:e1:bd:4a:b3:7b:cb:c2:3e:ea: d3:24:da:8b:f0:1a:15:45:7b:0a:88:aa:eb:6a:2a: 09:cc:5b:8e:04:1f:7f:49:cc:96:4e:46:36:0e:97: 25:73:79:29:3d:68:ba:83:9d:74:72:d7:59:9b:25: c8:60:dc:d7:94:04:b7:ea:5e:b9:21:c3:4f:ce:ea: 62:f9:b4:f5:4f:3d:c5:1c:c4:97:fe:57:98:fb:77: d7:3c:fe:c1:f7:bd:f7:9c:70:d8:55:bf:a4:8d:be: f8:b6:8b:2a:54:ba:a5:f0:04:8a:55:53:4d:57:6d: 72:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:43:3B:84:31:C3:DA:11:EC:41:96:7E:75:3A:A3:61:47:02:7E:D1 X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.60.0/23 Signature Algorithm: sha256WithRSAEncryption 27:02:31:53:0b:22:65:e8:43:50:49:a9:8b:ec:a3:b6:84:db: bb:8c:de:09:3e:c0:fb:fe:cc:e3:05:14:ce:12:84:c7:fd:9e: 18:2c:4a:41:0a:b6:c4:52:da:1f:9a:b0:62:a8:77:a0:97:21: 69:a6:22:8f:7d:83:c7:c3:5a:c9:cf:65:f4:18:2a:85:a1:57: 65:29:f1:2c:ee:37:3b:15:c4:77:21:21:fa:ac:93:4d:98:bf: 05:1d:47:dc:22:4e:a4:93:64:4f:96:b2:fd:f3:3b:30:4e:a5: 92:fe:3c:23:28:14:49:4c:b2:0b:46:49:43:95:1d:c0:79:37: dc:ce:3a:8c:c5:f0:97:c9:7a:14:9a:76:b3:34:24:b2:7b:92: 5d:9d:32:e8:cf:54:c3:0e:90:11:cb:7f:ab:01:3a:75:96:bf: 20:cd:95:02:f5:0e:bd:e3:37:a2:ec:4f:37:c5:32:54:92:b6: 25:de:7f:76:2f:6c:dd:04:01:7e:aa:9e:a3:f3:fa:fd:84:ca: 89:75:91:25:30:f4:c1:69:7a:ba:fc:d6:2f:58:9a:02:6e:77: 76:c8:c3:34:c3:ba:63:4a:e7:e8:07:17:c3:bb:25:a5:2e:a6: 7d:46:12:de:0f:0e:85:b3:2b:62:86:34:d5:10:ce:39:93:c0: ac:60:67:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDTJT5jBcmYz9VBvLOqg0pUACOXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNDA0MTIwODU1MDFaFw0yNTA0MTEwOTAwMDFaMDMxMTAvBgNV BAMTKDE1NDMzQjg0MzFDM0RBMTFFQzQxOTY3RTc1M0FBMzYxNDcwMjdFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoT7oscfCuUm8YkaczctEQSWob yFlYpJjXgbpH9xyuwHuAGoGZE74zrXKpo0KHQSFlWeejFq6Ss8M4lEm8lx1Siqd5 JmW6tuLn9S5qNsGlVbvgFYsPzd4EL164a+l8U2b5l3HGKsvvoyf5IxM73TTLpwUo Rbv3/UEXZ1TYFvkxLE4W5MatsfmaHr/1cuG9SrN7y8I+6tMk2ovwGhVFewqIqutq KgnMW44EH39JzJZORjYOlyVzeSk9aLqDnXRy11mbJchg3NeUBLfqXrkhw0/O6mL5 tPVPPcUcxJf+V5j7d9c8/sH3vfeccNhVv6SNvvi2iypUuqXwBIpVU01XbXLbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFUM7hDHD2hHsQZZ+dTqjYUcCftEwHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhZDNjYzhhLTk3MzgtNDUxYi1h Nzk4LTdiNzZiMDk0MGI0Yi8wLzMxMzAzMzJlMzEzODM5MmUzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ708MA0GCSqG SIb3DQEBCwUAA4IBAQAnAjFTCyJl6ENQSamL7KO2hNu7jN4JPsD7/szjBRTOEoTH /Z4YLEpBCrbEUtofmrBiqHeglyFppiKPfYPHw1rJz2X0GCqFoVdlKfEs7jc7FcR3 ISH6rJNNmL8FHUfcIk6kk2RPlrL98zswTqWS/jwjKBRJTLILRklDlR3AeTfczjqM xfCXyXoUmnazNCSye5JdnTLoz1TDDpARy3+rATp1lr8gzZUC9Q694zei7E83xTJU krYl3n92L2zdBAF+qp6j8/r9hMqJdZElMPTBaXq6/NYvWJoCbnd2yMM0w7pjSufo BxfDuyWlLqZ9RhLeDw6FsytihjTVEM45k8CsYGeB -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org