$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa File: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (raw, json) Hash identifier: ziqyElqA9AWawQsIwtFYhW7vigptCpJYDFMjj4wIn2E= Subject key identifier: 90:A4:88:70:D4:F4:92:52:D9:AC:E2:17:8E:69:54:13:21:E4:C4:78 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 5BBB9B0CC6BBE182DA3CE0D90E669FC0FBB7F955 Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa Signing time: Thu 28 Nov 2024 12:00:01 +0000 ROA not before: Thu 28 Nov 2024 11:55:01 +0000 ROA not after: Thu 27 Nov 2025 12:00:01 +0000 asID: 139431 IP address blocks: 103.143.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 10:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bb:9b:0c:c6:bb:e1:82:da:3c:e0:d9:0e:66:9f:c0:fb:b7:f9:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Nov 28 11:55:01 2024 GMT Not After : Nov 27 12:00:01 2025 GMT Subject: CN=90A48870D4F49252D9ACE2178E69541321E4C478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f6:70:a1:da:63:a8:03:10:74:00:81:a6:62: 3c:d2:29:3b:00:91:e5:c5:81:a1:82:f2:36:d4:e4: 9a:e4:ec:09:93:e4:95:17:f2:b7:3f:57:6f:d3:04: 2e:6c:09:e6:01:db:21:c8:7d:7a:d9:74:91:71:40: c9:9f:a6:56:3d:69:1b:90:0f:16:15:bb:f3:6c:0d: 85:d4:df:24:46:a7:42:4e:94:ed:37:47:5b:66:a1: e0:39:1b:86:99:c6:20:0e:1c:c7:8b:d9:c2:9d:21: 22:92:97:8e:24:67:df:bf:cc:13:0d:d7:b2:4e:ba: 3a:d2:b3:df:78:b6:46:8e:82:56:af:90:2a:65:a6: d3:35:71:d6:c1:eb:80:a1:00:6b:91:75:8a:36:09: a9:ef:a6:4f:67:02:b4:54:17:7a:8e:f3:30:74:ed: fa:69:55:ef:5e:1c:ad:6d:c3:97:e1:1f:02:d2:e9: 85:fe:4a:d3:bb:64:3d:fd:40:1e:de:f5:63:52:27: d6:85:59:ac:fc:7c:e7:6e:b4:1c:01:ab:5a:45:10: 37:dd:a2:dd:89:f6:e3:40:a1:8d:45:0d:63:fe:57: 67:57:3e:9e:1c:89:69:a9:4f:14:e3:ed:16:30:9f: ae:a4:2a:84:72:06:02:f0:de:ce:4e:84:b1:89:fa: 7f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A4:88:70:D4:F4:92:52:D9:AC:E2:17:8E:69:54:13:21:E4:C4:78 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.23.0/24 Signature Algorithm: sha256WithRSAEncryption b2:49:97:5c:aa:cd:25:a7:59:fa:a2:05:34:b6:e2:03:eb:1c: ed:e3:48:d4:51:97:c1:16:58:cb:50:46:98:09:aa:cf:fc:b7: f6:3e:52:08:b5:4a:8d:27:bc:1a:db:27:7a:e2:cd:43:17:8f: 55:b7:0f:39:1e:8f:af:d9:59:2f:ce:03:84:9d:44:d8:4b:26: 5f:e9:ef:f9:2e:74:9f:da:09:32:9c:84:5a:7f:82:a6:b4:85: 59:50:85:fa:2e:ca:68:15:3a:63:2a:51:3c:f4:08:af:76:22: ad:92:1b:7e:82:c8:4a:1c:ef:6f:03:6b:8e:aa:69:2d:da:7c: 2f:2f:f4:e2:31:0a:7f:24:80:24:69:e3:35:7e:40:d4:1d:25: 13:21:90:0b:87:64:23:62:0f:2a:96:90:a7:e5:92:32:01:d1: f8:1f:b0:55:73:c9:32:08:07:13:31:97:7e:85:a6:d8:ac:1b: ac:68:1d:6a:ff:96:27:94:37:c5:43:05:f6:c6:e6:23:ad:f7: 69:ad:e5:c0:12:5c:8a:04:b5:e2:5a:ad:99:6c:3d:aa:68:fc: ca:c6:f1:87:d2:a3:6e:41:f6:4d:35:76:e8:30:1a:2d:88:e7: 72:24:a7:9d:a6:ac:9b:11:4d:7b:38:1a:4b:79:1b:19:10:34: 30:07:23:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW7ubDMa74YLaPODZDmafwPu3+VUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNDExMjgxMTU1MDFaFw0yNTExMjcxMjAwMDFaMDMxMTAvBgNV BAMTKDkwQTQ4ODcwRDRGNDkyNTJEOUFDRTIxNzhFNjk1NDEzMjFFNEM0NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX9nCh2mOoAxB0AIGmYjzSKTsA keXFgaGC8jbU5Jrk7AmT5JUX8rc/V2/TBC5sCeYB2yHIfXrZdJFxQMmfplY9aRuQ DxYVu/NsDYXU3yRGp0JOlO03R1tmoeA5G4aZxiAOHMeL2cKdISKSl44kZ9+/zBMN 17JOujrSs994tkaOglavkCplptM1cdbB64ChAGuRdYo2Canvpk9nArRUF3qO8zB0 7fppVe9eHK1tw5fhHwLS6YX+StO7ZD39QB7e9WNSJ9aFWaz8fOdutBwBq1pFEDfd ot2J9uNAoY1FDWP+V2dXPp4ciWmpTxTj7RYwn66kKoRyBgLw3s5OhLGJ+n9DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkKSIcNT0klLZrOIXjmlUEyHkxHgwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ48XMA0GCSqG SIb3DQEBCwUAA4IBAQCySZdcqs0lp1n6ogU0tuID6xzt40jUUZfBFljLUEaYCarP /Lf2PlIItUqNJ7wa2yd64s1DF49Vtw85Ho+v2VkvzgOEnUTYSyZf6e/5LnSf2gky nIRaf4KmtIVZUIX6LspoFTpjKlE89AivdiKtkht+gshKHO9vA2uOqmkt2nwvL/Ti MQp/JIAkaeM1fkDUHSUTIZALh2QjYg8qlpCn5ZIyAdH4H7BVc8kyCAcTMZd+habY rBusaB1q/5YnlDfFQwX2xuYjrfdpreXAElyKBLXiWq2ZbD2qaPzKxvGH0qNuQfZN NXboMBotiOdyJKedpqybEU17OBpLeRsZEDQwByMK -----END CERTIFICATE-----Generated at Fri Feb 21 11:09:52 2025 by rpki-client