$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa File: 3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa (raw, json) Hash identifier: DQ6tr9CPErOI4RG1ZAv/ldO7tY9jf/c+WNf9/AzYbiQ= Subject key identifier: 27:59:AD:F4:81:39:BA:82:A0:1C:1A:B4:02:AC:E2:8C:A1:02:DC:4F Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 74E013DA83993205F56CC376DD36B2CDDF9E0253 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa Signing time: Tue 05 Nov 2024 11:02:00 +0000 ROA not before: Tue 05 Nov 2024 10:57:00 +0000 ROA not after: Tue 04 Nov 2025 11:02:00 +0000 asID: 140479 IP address blocks: 103.154.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e0:13:da:83:99:32:05:f5:6c:c3:76:dd:36:b2:cd:df:9e:02:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Nov 5 10:57:00 2024 GMT Not After : Nov 4 11:02:00 2025 GMT Subject: CN=2759ADF48139BA82A01C1AB402ACE28CA102DC4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fb:ec:8b:d3:5e:ca:b1:35:91:3a:6f:d3:aa: bc:c2:36:74:9e:66:39:57:3f:ac:69:00:59:b3:39: 62:2b:65:80:0b:b2:eb:af:93:ff:11:33:4a:19:fc: 36:fc:4c:40:52:e9:c3:d5:4a:26:51:30:18:55:80: 1d:8c:10:66:34:ec:2e:bf:80:2c:a6:ab:ca:12:0f: 78:9c:fd:e0:66:7c:6c:b9:ac:e1:cc:f9:d7:ac:22: 95:65:85:d1:af:6b:3f:48:9c:60:27:1c:4d:ea:3b: 08:92:a0:b4:ec:9e:c5:f7:68:3f:28:37:4e:1d:0a: 87:3f:96:6f:76:da:3a:8e:76:3d:ae:f2:a4:b6:5d: 7c:8c:26:dd:50:58:2a:cd:91:b2:a6:10:71:bc:f4: 76:3e:67:2c:4c:17:04:59:34:60:11:1f:75:68:cd: e5:15:2a:0f:92:82:59:eb:ed:20:3d:0d:18:76:65: fb:91:ba:9e:ac:d9:9a:de:6b:81:cd:2c:1b:e5:91: 58:47:41:78:99:41:c6:46:8b:a8:6c:16:75:04:ca: f6:7d:b4:3f:7b:c1:cf:82:44:99:8f:69:00:8c:57: 64:9a:a8:c2:4c:07:4e:dd:ed:a5:2e:a2:78:e6:5f: 2b:17:5e:08:9a:28:e8:dd:72:70:d3:e3:ae:92:b2: 3c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:59:AD:F4:81:39:BA:82:A0:1C:1A:B4:02:AC:E2:8C:A1:02:DC:4F X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/24 Signature Algorithm: sha256WithRSAEncryption 76:32:d6:57:92:27:b2:b8:c9:6a:6e:b0:6e:09:95:c6:01:ae: f8:72:11:7d:af:d3:2c:a0:8f:30:98:97:20:33:f9:de:af:aa: 7f:78:b8:d8:c2:47:8a:4e:c5:16:e3:a3:4a:59:94:b4:57:e2: b7:0d:e6:c9:ce:28:de:3e:d5:27:e5:33:f7:4e:25:48:4e:8e: 06:9a:19:b8:27:3d:95:df:e3:1e:a9:57:78:0b:25:24:42:86: 58:fc:82:5a:fe:2b:c1:fc:9d:e2:00:43:c9:07:bb:d8:8c:9e: b0:b1:b0:01:20:b3:d8:89:9c:5b:99:9e:0a:7b:4e:3d:d1:32: 9d:1c:03:cd:5f:cd:f8:c6:9e:75:fc:c4:56:74:76:1d:48:cb: b7:e2:c6:43:36:08:e2:fe:ea:42:46:84:26:dd:5e:59:b3:0a: 89:ea:9d:82:f3:fa:99:d2:bd:70:be:2b:95:9e:c6:eb:91:97: 47:2d:ad:93:e6:e6:8a:0d:c6:0b:f8:28:9a:a1:7b:25:58:bb: 71:cb:cf:4c:16:ee:80:25:69:43:90:a1:31:1f:88:6b:0a:7e: fe:7a:6c:c6:c9:86:3e:5a:96:c1:69:91:21:58:6c:b6:f2:9a: 08:f0:ca:28:b5:d7:bd:fc:77:dd:c9:60:14:04:21:12:07:bf: 94:a0:ea:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdOAT2oOZMgX1bMN23Tayzd+eAlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNDExMDUxMDU3MDBaFw0yNTExMDQxMTAyMDBaMDMxMTAvBgNV BAMTKDI3NTlBREY0ODEzOUJBODJBMDFDMUFCNDAyQUNFMjhDQTEwMkRDNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm++yL017KsTWROm/TqrzCNnSe ZjlXP6xpAFmzOWIrZYALsuuvk/8RM0oZ/Db8TEBS6cPVSiZRMBhVgB2MEGY07C6/ gCymq8oSD3ic/eBmfGy5rOHM+desIpVlhdGvaz9InGAnHE3qOwiSoLTsnsX3aD8o N04dCoc/lm922jqOdj2u8qS2XXyMJt1QWCrNkbKmEHG89HY+ZyxMFwRZNGARH3Vo zeUVKg+Sglnr7SA9DRh2ZfuRup6s2Zrea4HNLBvlkVhHQXiZQcZGi6hsFnUEyvZ9 tD97wc+CRJmPaQCMV2SaqMJMB07d7aUuonjmXysXXgiaKOjdcnDT466SsjzHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ1mt9IE5uoKgHBq0AqzijKEC3E8wHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMxMzAzMzJlMzEzNTM0MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5o0MA0GCSqG SIb3DQEBCwUAA4IBAQB2MtZXkieyuMlqbrBuCZXGAa74chF9r9MsoI8wmJcgM/ne r6p/eLjYwkeKTsUW46NKWZS0V+K3DebJzijePtUn5TP3TiVITo4Gmhm4Jz2V3+Me qVd4CyUkQoZY/IJa/ivB/J3iAEPJB7vYjJ6wsbABILPYiZxbmZ4Ke0490TKdHAPN X834xp51/MRWdHYdSMu34sZDNgji/upCRoQm3V5ZswqJ6p2C8/qZ0r1wviuVnsbr kZdHLa2T5uaKDcYL+CiaoXslWLtxy89MFu6AJWlDkKExH4hrCn7+emzGyYY+WpbB aZEhWGy28poI8Mootde9/HfdyWAUBCESB7+UoOp+ -----END CERTIFICATE-----Generated at Fri Nov 29 13:08:53 2024 by rpki-client on console-fra.rpki-client.org