$ rpki-client -vvf repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa File: 3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa (raw, json) Hash identifier: HUyZVggHumztZJqDuUq0rbC0G3JuYf3tprMJdkbzVD0= Subject key identifier: 45:27:B1:DA:3D:C3:62:4A:E4:10:92:B0:D2:91:29:18:09:D9:95:5D Certificate issuer: /CN=C005531488F38475CA53CB4A7ABCEC0C32F75962 Certificate serial: 2D91B8C16D6FB6FF8F778E7ACA2C4E2F51B1AEC1 Authority key identifier: C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa Signing time: Tue 19 Mar 2024 09:00:01 +0000 ROA not before: Tue 19 Mar 2024 08:55:01 +0000 ROA not after: Tue 18 Mar 2025 09:00:01 +0000 asID: 58495 IP address blocks: 103.146.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.crl rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:91:b8:c1:6d:6f:b6:ff:8f:77:8e:7a:ca:2c:4e:2f:51:b1:ae:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C005531488F38475CA53CB4A7ABCEC0C32F75962 Validity Not Before: Mar 19 08:55:01 2024 GMT Not After : Mar 18 09:00:01 2025 GMT Subject: CN=4527B1DA3DC3624AE41092B0D291291809D9955D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b9:15:f1:f0:ca:f4:4a:f7:0f:46:50:49:73: 12:01:1b:3c:21:ac:70:c6:d6:9d:f5:44:43:f1:d3: 8a:f3:38:77:ad:37:4e:29:c4:ee:ad:33:ee:bf:b5: 52:03:4d:b6:7f:3d:5b:82:40:4e:9d:49:15:1d:91: 61:8f:6f:a0:b0:78:e6:43:ae:3d:30:da:58:f8:a7: 5d:ba:54:cc:42:16:0c:18:07:d2:45:d0:cf:08:b5: c1:75:23:69:01:e9:75:ca:c3:ca:fe:c9:ae:5c:1a: 80:77:57:06:89:a8:bf:f2:80:c7:e0:68:3c:d6:42: 13:54:91:13:17:7c:5e:f7:21:fc:4e:4b:59:eb:e2: 5f:74:bd:31:18:24:71:a2:da:db:ea:f7:92:73:6d: 22:7d:42:bd:35:da:a5:60:79:a3:1e:d0:42:32:7f: b3:bd:bf:9f:7a:9a:18:ab:6f:9a:30:15:c4:4c:19: dd:a1:e6:b3:31:ad:e8:77:42:e9:22:7f:86:c0:2d: 2a:be:09:ec:5e:4e:6e:d2:4a:5d:31:1e:ad:ee:41: 8b:e6:4d:70:2d:b6:b3:d1:61:eb:96:a4:52:1d:5e: 63:a9:b0:b7:f4:4d:1a:59:89:d6:38:21:f8:22:4a: 35:ec:a0:71:19:2c:12:f1:1b:c9:dd:eb:f4:91:c1: 3c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:27:B1:DA:3D:C3:62:4A:E4:10:92:B0:D2:91:29:18:09:D9:95:5D X509v3 Authority Key Identifier: keyid:C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.189.0/24 Signature Algorithm: sha256WithRSAEncryption 50:74:2f:dc:d0:78:a4:c0:7c:eb:43:35:51:3d:1d:c5:cf:a9: 08:05:f9:d0:ee:53:d2:15:bb:eb:b8:a4:f0:2a:4a:82:9f:1a: ba:04:a2:a1:60:11:67:94:09:20:26:ab:d0:2b:47:a0:0b:6e: 70:d7:92:88:9e:8c:e0:33:f3:bb:bd:2f:6d:29:01:44:2b:f3: 84:ab:83:32:64:3c:63:9a:9d:a5:fe:ea:1f:ad:b8:aa:6b:c8: ec:78:bc:21:79:24:0b:ed:25:33:01:c0:69:24:fb:2e:7a:e0: 2b:0b:ab:45:9e:61:ac:6b:8c:01:6d:d8:cb:63:7f:bf:18:6d: 90:78:54:47:a7:ec:6c:c9:8c:2a:3f:62:1f:a1:7d:1e:2c:86: e5:59:92:ba:d5:84:ea:37:2b:ab:ab:dc:70:c5:d7:23:e2:26: 6f:52:df:d9:c3:f6:77:1f:b8:60:d2:4a:dd:d1:2b:fb:cb:90: d6:85:d8:ba:70:ad:10:a0:6c:bd:e9:fe:4f:cb:e1:ff:36:44: 11:fe:b6:1f:17:51:ab:f5:34:a6:8f:3c:b6:df:f6:46:86:aa: 29:63:c6:32:e8:61:37:9a:71:11:a4:2d:ea:d0:31:41:ee:eb: d8:23:dc:5b:0c:d2:fa:88:b9:12:6a:11:da:4e:a4:48:90:b3: 52:62:84:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULZG4wW1vtv+Pd456yixOL1GxrsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwNTUzMTQ4OEYzODQ3NUNBNTNDQjRBN0FCQ0VDMEMz MkY3NTk2MjAeFw0yNDAzMTkwODU1MDFaFw0yNTAzMTgwOTAwMDFaMDMxMTAvBgNV BAMTKDQ1MjdCMURBM0RDMzYyNEFFNDEwOTJCMEQyOTEyOTE4MDlEOTk1NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuRXx8Mr0SvcPRlBJcxIBGzwh rHDG1p31REPx04rzOHetN04pxO6tM+6/tVIDTbZ/PVuCQE6dSRUdkWGPb6CweOZD rj0w2lj4p126VMxCFgwYB9JF0M8ItcF1I2kB6XXKw8r+ya5cGoB3VwaJqL/ygMfg aDzWQhNUkRMXfF73IfxOS1nr4l90vTEYJHGi2tvq95JzbSJ9Qr012qVgeaMe0EIy f7O9v596mhirb5owFcRMGd2h5rMxreh3Qukif4bALSq+CexeTm7SSl0xHq3uQYvm TXAttrPRYeuWpFIdXmOpsLf0TRpZidY4IfgiSjXsoHEZLBLxG8nd6/SRwTxjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURSex2j3DYkrkEJKw0pEpGAnZlV0wHwYDVR0j BBgwFoAUwAVTFIjzhHXKU8tKerzsDDL3WWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDY0Y2JlZS1jNTEzLTQ2YzYtYTFkMC0zZWMwMWQ3YTY2MjYvMC9DMDA1NTMxNDg4 RjM4NDc1Q0E1M0NCNEE3QUJDRUMwQzMyRjc1OTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwNTUzMTQ4OEYzODQ3NUNBNTNDQjRBN0FCQ0VDMEMzMkY3 NTk2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NjRjYmVlLWM1MTMtNDZjNi1h MWQwLTNlYzAxZDdhNjYyNi8wLzMxMzAzMzJlMzEzNDM2MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5K9MA0GCSqG SIb3DQEBCwUAA4IBAQBQdC/c0HikwHzrQzVRPR3Fz6kIBfnQ7lPSFbvruKTwKkqC nxq6BKKhYBFnlAkgJqvQK0egC25w15KInozgM/O7vS9tKQFEK/OEq4MyZDxjmp2l /uofrbiqa8jseLwheSQL7SUzAcBpJPsueuArC6tFnmGsa4wBbdjLY3+/GG2QeFRH p+xsyYwqP2IfoX0eLIblWZK61YTqNyurq9xwxdcj4iZvUt/Zw/Z3H7hg0krd0Sv7 y5DWhdi6cK0QoGy96f5Py+H/NkQR/rYfF1Gr9TSmjzy23/ZGhqopY8Yy6GE3mnER pC3q0DFB7uvYI9xbDNL6iLkSahHaTqRIkLNSYoQj -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org