$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa File: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: zg2ywZvhXk1OBE+v0Nmay43y91QU2g9xsVV4MCw8I0Y= Subject key identifier: 98:AC:37:5A:36:52:32:E9:58:A2:41:8E:53:9B:09:51:71:D1:B0:36 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 4E2E567988AABE6531865DFA9AF773933E282F21 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa Signing time: Fri 18 Aug 2023 12:00:00 +0000 ROA not before: Fri 18 Aug 2023 11:55:00 +0000 ROA not after: Fri 16 Aug 2024 12:00:00 +0000 asID: 140456 IP address blocks: 103.153.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:2e:56:79:88:aa:be:65:31:86:5d:fa:9a:f7:73:93:3e:28:2f:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Aug 18 11:55:00 2023 GMT Not After : Aug 16 12:00:00 2024 GMT Subject: CN=98AC375A365232E958A2418E539B095171D1B036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9c:69:24:89:72:05:9d:44:50:5d:66:64:5c: 37:f9:a1:67:4b:6e:51:01:24:92:bf:64:fd:e1:52: a6:de:39:ea:b0:00:dd:31:9b:96:74:d0:22:f0:45: 56:b0:62:5c:23:6a:3f:c8:3d:a7:af:db:4e:50:99: 19:ea:8e:3d:56:ab:b4:e0:4b:76:26:27:c0:cc:f0: ed:a9:04:c1:1d:b1:aa:41:f7:b1:ba:f9:90:e4:45: 72:a8:e3:b1:5d:cf:f6:0b:88:9b:e0:ce:94:b0:af: a4:72:b6:58:9e:6f:f6:cc:73:a4:c3:74:04:bb:8a: b9:d7:6e:be:49:40:37:3e:97:34:bc:c0:e3:2b:ca: 31:68:8c:5d:22:ff:f0:6f:74:2c:42:51:3f:cb:e9: 29:7f:37:0c:0f:c8:5c:5f:1c:77:bc:9f:30:ba:5f: ad:6a:d4:49:7f:03:05:89:12:43:5e:31:ae:c2:31: 24:77:e5:47:41:d4:85:c2:7b:fa:94:14:90:fe:4d: 5e:09:d9:3f:47:d1:90:43:f0:3b:3f:f9:90:03:e8: 39:8b:fa:e9:e3:36:26:19:a3:2f:5d:e8:7b:7c:14: 9a:4a:74:7f:9e:63:96:63:d6:d6:6a:1d:1b:cc:87: a4:c3:83:cc:81:50:61:0e:89:a1:41:99:43:37:38: 84:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AC:37:5A:36:52:32:E9:58:A2:41:8E:53:9B:09:51:71:D1:B0:36 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/23 Signature Algorithm: sha256WithRSAEncryption 21:de:95:8e:a7:22:b8:98:b6:b8:a5:9a:6f:45:fe:fd:07:99: 16:37:92:92:2f:77:9a:36:10:1c:09:22:95:1c:c8:69:74:56: 5b:0c:e6:95:e1:aa:dd:b1:fd:4c:f5:5c:4d:cd:10:0c:3d:dc: ee:c8:a4:44:af:53:86:59:2d:76:08:7a:1c:c5:3a:c9:32:40: ca:94:86:29:3c:48:ea:4e:66:63:5c:64:ce:05:aa:94:d7:c4: 2d:19:2c:a7:9d:27:31:6d:5c:6e:d1:d0:41:71:f7:ff:de:c1: 91:c0:5d:f9:6a:84:12:1f:31:dc:0c:e8:13:57:eb:34:20:73: 15:24:0e:08:73:3d:a3:e3:66:f8:c7:05:f0:c5:96:ef:a1:b3: 18:b4:80:d1:5b:87:82:c2:f3:ee:ac:f7:99:01:23:a1:37:98: 99:3b:23:3d:0e:40:c3:af:0d:6f:cd:bd:d4:61:fc:f5:fa:fb: f1:a1:ba:75:3f:a0:47:e2:cf:5b:b7:50:5b:d2:c7:24:be:d8: e0:8e:98:97:65:36:fb:5e:a5:a6:ff:42:7f:fc:fd:72:4a:70: 41:be:1f:75:3c:7d:7a:ca:4f:4a:c8:23:37:32:de:b6:48:6d: db:42:4c:55:64:0e:a2:2d:6d:65:47:43:a5:de:ef:f5:4f:d9: 7c:e8:f0:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTi5WeYiqvmUxhl36mvdzkz4oLyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yMzA4MTgxMTU1MDBaFw0yNDA4MTYxMjAwMDBaMDMxMTAvBgNV BAMTKDk4QUMzNzVBMzY1MjMyRTk1OEEyNDE4RTUzOUIwOTUxNzFEMUIwMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWnGkkiXIFnURQXWZkXDf5oWdL blEBJJK/ZP3hUqbeOeqwAN0xm5Z00CLwRVawYlwjaj/IPaev205QmRnqjj1Wq7Tg S3YmJ8DM8O2pBMEdsapB97G6+ZDkRXKo47Fdz/YLiJvgzpSwr6Rytlieb/bMc6TD dAS7irnXbr5JQDc+lzS8wOMryjFojF0i//BvdCxCUT/L6Sl/NwwPyFxfHHe8nzC6 X61q1El/AwWJEkNeMa7CMSR35UdB1IXCe/qUFJD+TV4J2T9H0ZBD8Ds/+ZAD6DmL +unjNiYZoy9d6Ht8FJpKdH+eY5Zj1tZqHRvMh6TDg8yBUGEOiaFBmUM3OITnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmKw3WjZSMulYokGOU5sJUXHRsDYwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQAh3pWOpyK4mLa4pZpvRf79B5kWN5KSL3eaNhAcCSKVHMhp dFZbDOaV4ardsf1M9VxNzRAMPdzuyKREr1OGWS12CHocxTrJMkDKlIYpPEjqTmZj XGTOBaqU18QtGSynnScxbVxu0dBBcff/3sGRwF35aoQSHzHcDOgTV+s0IHMVJA4I cz2j42b4xwXwxZbvobMYtIDRW4eCwvPurPeZASOhN5iZOyM9DkDDrw1vzb3UYfz1 +vvxobp1P6BH4s9bt1Bb0sckvtjgjpiXZTb7XqWm/0J//P1ySnBBvh91PH16yk9K yCM3Mt62SG3bQkxVZA6iLW1lR0Ol3u/1T9l86PAq -----END CERTIFICATE-----Generated at Thu May 2 22:11:05 2024 by rpki-client on console-fra.rpki-client.org