$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa File: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (raw, json) Hash identifier: O+DYiMiMwkf2fjBBi2Y0uG1bMY8o2RWfJ3yizKPcbzk= Subject key identifier: C7:12:04:4D:53:87:1A:37:C1:DC:AB:8C:B4:C4:EB:33:99:C6:68:84 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 545E7F6A3036623AF0671CF662E6C78D406EE178 Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa Signing time: Thu 28 Nov 2024 13:02:09 +0000 ROA not before: Thu 28 Nov 2024 12:57:09 +0000 ROA not after: Thu 27 Nov 2025 13:02:09 +0000 asID: 139431 IP address blocks: 103.143.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 10:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:5e:7f:6a:30:36:62:3a:f0:67:1c:f6:62:e6:c7:8d:40:6e:e1:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Nov 28 12:57:09 2024 GMT Not After : Nov 27 13:02:09 2025 GMT Subject: CN=C712044D53871A37C1DCAB8CB4C4EB3399C66884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1b:55:0e:24:31:2f:3c:18:bb:11:f3:2c:81: 60:6a:91:c4:33:61:cc:55:ac:76:a5:82:ea:e0:4c: 0a:da:81:fa:70:1d:1e:04:cc:14:57:4e:78:fb:74: c0:d9:cf:1e:85:af:f8:4e:40:69:e2:1a:f3:ad:0e: c7:9f:49:39:57:93:48:92:a3:1f:d7:3c:0e:07:01: 13:08:d1:1d:7f:a6:fa:41:8f:83:71:db:47:58:63: bf:81:4d:c2:c6:88:14:73:c9:97:c6:22:f8:a8:c0: 69:1b:ef:26:09:77:e7:f2:65:a6:de:f3:4f:74:69: 61:f4:0a:70:95:06:5a:34:8d:ab:a5:d1:01:02:04: 14:e4:83:b5:da:8a:7b:f2:39:9a:f3:02:58:e8:e8: 11:54:f7:23:da:2d:f5:84:14:b6:e8:60:e0:40:8d: 7d:ca:5e:50:8c:ac:4b:00:06:6d:8f:4b:f5:3b:2e: ca:f4:27:e5:e5:a2:2f:d6:eb:5e:4a:d0:0e:c6:ac: 6e:82:57:73:3c:f3:f4:b2:1f:a8:f4:c2:01:79:8e: 2d:87:e0:74:18:a5:3b:c0:43:a5:40:40:b3:69:d3: 4d:12:7e:a6:b5:a9:db:0d:04:27:17:11:23:b3:3c: e1:46:98:58:b9:92:f5:38:47:20:9d:32:7f:8a:51: 1f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:12:04:4D:53:87:1A:37:C1:DC:AB:8C:B4:C4:EB:33:99:C6:68:84 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.22.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:40:dd:87:e8:5a:b6:97:71:5c:e8:75:af:68:53:76:09:68: 6b:c4:6c:6b:a7:31:63:7e:63:c7:bd:80:98:6b:1d:e4:a5:79: 8a:3d:3f:a4:7c:49:0a:dd:0c:bb:62:04:8d:03:ef:8c:bc:c1: 06:4a:bf:89:c2:e1:4f:37:bc:58:00:a0:90:82:cb:ac:e1:a7: e4:c0:19:69:91:e1:10:2f:4b:89:31:26:ae:0f:1a:e8:83:30: 20:e6:cd:0c:42:2e:f4:43:53:60:42:30:2a:66:93:ea:08:a0: c7:66:b5:86:3a:34:8f:29:47:44:93:ac:48:67:d4:bc:af:55: 93:84:75:cf:33:bd:c0:ac:8b:1f:c3:28:36:c2:d6:dd:51:77: d2:e1:e5:b3:5b:aa:4e:01:3a:e0:0c:73:e5:ea:a1:e5:d3:50: ce:b8:1a:0b:55:e2:29:a7:da:bf:b5:8b:ce:6c:7a:05:a6:5f: 49:81:04:82:04:e8:a5:81:e1:7d:83:c5:f6:c8:61:7a:5d:c2: d6:57:70:a2:a1:22:f3:dd:9b:de:61:d9:09:a3:a0:db:26:13: 9e:8a:6c:8b:ef:28:ed:6a:30:09:b5:d0:7c:d0:09:3d:47:c3: 4b:38:88:ec:5c:82:f2:b2:6d:ff:f2:f0:94:14:01:df:15:2b: 08:1a:48:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVF5/ajA2YjrwZxz2YubHjUBu4XgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNDExMjgxMjU3MDlaFw0yNTExMjcxMzAyMDlaMDMxMTAvBgNV BAMTKEM3MTIwNDRENTM4NzFBMzdDMURDQUI4Q0I0QzRFQjMzOTlDNjY4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcG1UOJDEvPBi7EfMsgWBqkcQz YcxVrHalgurgTAragfpwHR4EzBRXTnj7dMDZzx6Fr/hOQGniGvOtDsefSTlXk0iS ox/XPA4HARMI0R1/pvpBj4Nx20dYY7+BTcLGiBRzyZfGIviowGkb7yYJd+fyZabe 8090aWH0CnCVBlo0jaul0QECBBTkg7XainvyOZrzAljo6BFU9yPaLfWEFLboYOBA jX3KXlCMrEsABm2PS/U7Lsr0J+Xloi/W615K0A7GrG6CV3M88/SyH6j0wgF5ji2H 4HQYpTvAQ6VAQLNp000Sfqa1qdsNBCcXESOzPOFGmFi5kvU4RyCdMn+KUR9DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxxIETVOHGjfB3KuMtMTrM5nGaIQwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ48WMA0GCSqG SIb3DQEBCwUAA4IBAQCNQN2H6Fq2l3Fc6HWvaFN2CWhrxGxrpzFjfmPHvYCYax3k pXmKPT+kfEkK3Qy7YgSNA++MvMEGSr+JwuFPN7xYAKCQgsus4afkwBlpkeEQL0uJ MSauDxrogzAg5s0MQi70Q1NgQjAqZpPqCKDHZrWGOjSPKUdEk6xIZ9S8r1WThHXP M73ArIsfwyg2wtbdUXfS4eWzW6pOATrgDHPl6qHl01DOuBoLVeIpp9q/tYvObHoF pl9JgQSCBOilgeF9g8X2yGF6XcLWV3CioSLz3ZveYdkJo6DbJhOeimyL7yjtajAJ tdB80Ak9R8NLOIjsXILysm3/8vCUFAHfFSsIGkiA -----END CERTIFICATE-----Generated at Fri Feb 21 11:23:12 2025 by rpki-client