$ rpki-client -vvf repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa File: 3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa (raw, json) Hash identifier: rzjnKVoPcvg8LoYYqlAPNG8z+kcZAMAEA1cgciQRlhI= Subject key identifier: 2A:3A:4F:13:ED:ED:18:EE:1A:3F:35:B0:B6:28:32:D1:07:34:CF:6E Certificate issuer: /CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F Certificate serial: 7599E2B92BD27422FD6CD7AC2F38458BCD3EE45B Authority key identifier: 35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa Signing time: Thu 15 Aug 2024 04:01:32 +0000 ROA not before: Thu 15 Aug 2024 03:56:32 +0000 ROA not after: Thu 14 Aug 2025 04:01:32 +0000 asID: 58404 IP address blocks: 103.102.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.crl rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:99:e2:b9:2b:d2:74:22:fd:6c:d7:ac:2f:38:45:8b:cd:3e:e4:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F Validity Not Before: Aug 15 03:56:32 2024 GMT Not After : Aug 14 04:01:32 2025 GMT Subject: CN=2A3A4F13EDED18EE1A3F35B0B62832D10734CF6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:94:e9:cf:a0:84:cf:a6:f4:06:f6:c5:05:ca: dd:35:f7:6c:7a:c0:5d:fa:71:e7:3a:06:0b:5c:85: 88:f0:ac:12:37:1b:b9:ac:ff:34:4f:d7:75:33:fe: ef:82:52:9a:50:3b:01:b8:9c:c2:13:33:24:ab:45: 14:34:b2:45:e1:31:67:dc:96:40:a6:5b:3e:a0:68: 88:3b:0e:b3:29:be:19:e6:10:1a:8b:42:d1:9c:32: 29:08:57:c8:dd:39:08:a8:99:f6:23:86:af:ce:4c: 30:2c:ce:1f:6f:bb:23:ad:f3:c7:55:b3:7e:d6:54: 29:64:d3:2c:80:be:40:19:69:b8:a8:55:ab:25:97: 4e:e6:86:a4:76:4a:1d:c2:d9:25:10:c6:4a:f2:d2: bc:86:e2:9b:ce:50:e4:9c:ec:0d:7e:08:f7:1a:8b: 01:91:67:07:d5:b8:7e:b2:c4:82:7e:51:5c:33:31: de:f7:ee:3a:9b:15:ef:fa:65:b3:86:0c:99:68:1d: 74:bd:0f:f9:a0:ca:66:7e:f0:17:4a:89:6c:a8:ed: 18:74:fc:66:9b:74:cb:78:86:8e:78:86:81:ab:5f: ef:22:8d:a5:b2:9f:cc:a2:ea:6e:0b:45:95:7b:88: 4f:f9:b8:8e:b3:2a:ff:0a:d2:d4:9f:b5:ed:07:fd: f1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3A:4F:13:ED:ED:18:EE:1A:3F:35:B0:B6:28:32:D1:07:34:CF:6E X509v3 Authority Key Identifier: keyid:35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.152.0/22 Signature Algorithm: sha256WithRSAEncryption 53:43:70:f6:b6:95:6f:f6:4e:1b:8f:d4:3d:96:cb:4e:1b:e1: 1b:43:dd:95:29:1d:3a:a4:bc:25:17:d9:c9:02:9f:fd:53:e8: 0c:a2:be:26:5a:88:d6:ae:48:ca:41:35:ab:4a:1c:37:3d:90: 59:28:41:6a:b1:eb:8c:4d:c3:0d:1c:c3:cb:60:ab:ef:38:f2: ca:bf:ad:a9:29:8d:17:92:67:82:f9:44:c6:c9:fa:7e:9e:6c: 11:b5:26:83:b7:31:7b:26:18:69:cc:e5:99:82:b7:92:cf:f4: 8b:ee:27:ad:77:74:db:80:70:9b:06:28:b8:46:be:b2:be:26: 5f:95:12:b1:8f:53:1a:b6:97:50:ef:36:45:c9:c7:0a:e2:dc: ec:6b:70:e4:f6:81:79:ed:91:13:76:20:94:0d:7e:aa:e7:ec: 98:c6:3b:18:58:10:f7:29:ee:8a:1e:e7:2c:5d:4a:3a:62:3b: 22:1c:58:cf:e7:8b:3b:d7:db:62:90:86:be:45:30:21:cb:67: 9d:bf:f2:8f:52:50:2b:ff:19:24:ee:c7:65:d0:e2:cb:cf:96: 92:07:5c:39:75:1d:27:9b:20:d2:9e:87:4b:cc:7b:ae:29:91: bc:f9:b8:74:2f:f9:4f:74:79:70:57:f8:37:72:1f:d4:0b:da: 5a:1b:f8:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdZniuSvSdCL9bNesLzhFi80+5FswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2RUEzODgwMUJDNTFFRjNFREI4NzMwMzg3RjhFREVC RDExODk4RjAeFw0yNDA4MTUwMzU2MzJaFw0yNTA4MTQwNDAxMzJaMDMxMTAvBgNV BAMTKDJBM0E0RjEzRURFRDE4RUUxQTNGMzVCMEI2MjgzMkQxMDczNENGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDlOnPoITPpvQG9sUFyt0192x6 wF36cec6BgtchYjwrBI3G7ms/zRP13Uz/u+CUppQOwG4nMITMySrRRQ0skXhMWfc lkCmWz6gaIg7DrMpvhnmEBqLQtGcMikIV8jdOQiomfYjhq/OTDAszh9vuyOt88dV s37WVClk0yyAvkAZabioVasll07mhqR2Sh3C2SUQxkry0ryG4pvOUOSc7A1+CPca iwGRZwfVuH6yxIJ+UVwzMd737jqbFe/6ZbOGDJloHXS9D/mgymZ+8BdKiWyo7Rh0 /GabdMt4ho54hoGrX+8ijaWyn8yi6m4LRZV7iE/5uI6zKv8K0tSfte0H/fHRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKjpPE+3tGO4aPzWwtigy0Qc0z24wHwYDVR0j BBgwFoAUNW6jiAG8Ue8+24cwOH+O3r0RiY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjJiNmVkMi1jYzU4LTQ1YzUtYmQ4OC1jYjk1NTA3MTZhMDQvMC8zNTZFQTM4ODAx QkM1MUVGM0VEQjg3MzAzODdGOEVERUJEMTE4OThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2RUEzODgwMUJDNTFFRjNFREI4NzMwMzg3RjhFREVCRDEx ODk4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMmI2ZWQyLWNjNTgtNDVjNS1i ZDg4LWNiOTU1MDcxNmEwNC8wLzMxMzAzMzJlMzEzMDMyMmUzMTM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2aYMA0GCSqG SIb3DQEBCwUAA4IBAQBTQ3D2tpVv9k4bj9Q9lstOG+EbQ92VKR06pLwlF9nJAp/9 U+gMor4mWojWrkjKQTWrShw3PZBZKEFqseuMTcMNHMPLYKvvOPLKv62pKY0XkmeC +UTGyfp+nmwRtSaDtzF7JhhpzOWZgreSz/SL7ietd3TbgHCbBii4Rr6yviZflRKx j1MatpdQ7zZFyccK4tzsa3Dk9oF57ZETdiCUDX6q5+yYxjsYWBD3Ke6KHucsXUo6 YjsiHFjP54s719tikIa+RTAhy2edv/KPUlAr/xkk7sdl0OLLz5aSB1w5dR0nmyDS nodLzHuuKZG8+bh0L/lPdHlwV/g3ch/UC9paG/jc -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org