$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa File: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: S+MMrSxkm+20Gx180EdlH1YNBkEDPrj8PEBtJ4+Q9J4= Subject key identifier: 7B:72:BB:F7:7B:C7:C4:95:63:99:D8:46:A1:0E:6C:E3:90:7D:47:2E Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 3CAC3F2545BB67EB05475876F38AED9CCB669F72 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa Signing time: Fri 19 Jul 2024 12:00:00 +0000 ROA not before: Fri 19 Jul 2024 11:55:00 +0000 ROA not after: Fri 18 Jul 2025 12:00:00 +0000 asID: 140456 IP address blocks: 103.153.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ac:3f:25:45:bb:67:eb:05:47:58:76:f3:8a:ed:9c:cb:66:9f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 19 11:55:00 2024 GMT Not After : Jul 18 12:00:00 2025 GMT Subject: CN=7B72BBF77BC7C4956399D846A10E6CE3907D472E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:25:3c:7d:98:50:3a:dd:98:5e:4d:84:e0:6b: ca:85:5d:49:b4:d9:9c:e9:88:36:66:ea:e2:da:6a: 01:06:71:7a:34:f5:12:85:8f:64:bd:d7:06:a8:2e: 41:9d:05:d3:6c:2a:cd:75:a7:cd:93:89:d8:11:95: 2e:bd:02:94:19:b1:ed:8b:97:1f:9c:32:bc:42:d2: 3f:27:b1:2e:0e:30:5f:e8:a2:d2:b7:66:cd:ef:fc: f8:a9:e9:c1:16:16:a9:ab:19:11:be:35:f9:83:ed: a1:39:cf:a5:7f:f1:f7:bd:3e:a8:ce:10:0c:97:4f: 67:e7:72:a4:ee:37:49:ad:3e:3b:84:2f:b5:a8:d8: 83:f3:f9:41:1f:ec:44:36:f7:b1:0b:84:a9:08:4f: 0a:ba:a1:0f:fa:2e:a9:94:a6:c1:bd:5e:7f:07:9e: cf:06:c8:67:6b:de:bc:cf:4f:bc:18:0e:bc:3d:8c: 5a:17:be:5b:56:5e:72:87:5b:e0:66:33:05:e6:13: 17:e9:83:9b:b1:85:16:a4:a3:e3:8c:cc:e2:6b:cd: 79:27:89:25:87:83:12:e9:0a:14:13:95:8b:a8:c3: 9c:9d:b1:09:6d:4e:06:52:1d:4f:96:88:eb:e1:37: 36:ca:b2:f8:f8:90:6f:4d:4d:b2:d1:19:4d:37:67: 82:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:72:BB:F7:7B:C7:C4:95:63:99:D8:46:A1:0E:6C:E3:90:7D:47:2E X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:01:69:07:15:75:4b:4b:a4:ae:be:61:84:53:f3:77:aa:1d: cb:fb:3c:8b:09:23:1c:7b:67:d7:0d:e5:c6:c5:5f:05:be:6b: 78:b8:a2:60:4a:0e:a4:68:08:74:40:96:af:c3:cb:45:22:ad: 76:28:28:23:f4:e1:c8:01:58:c6:d8:d5:57:69:95:52:a0:51: df:4a:45:68:8a:42:46:62:d4:db:a0:f0:d0:ea:2d:e5:e5:55: 9c:64:c7:08:24:ce:60:ea:52:1a:5b:c2:36:b5:c8:88:9c:84: c1:97:ec:a2:64:fe:a4:7c:6a:c3:61:51:e9:d0:bd:ee:de:fa: 0d:6a:07:9e:e5:f8:ba:75:e3:6a:1a:5b:95:04:a3:8c:54:d2: c5:af:1f:1d:3e:07:ef:1d:1f:31:af:c9:89:19:a8:70:9c:99: af:c4:b1:0d:d3:e5:23:b7:e8:e3:22:96:62:91:66:3a:4c:ed: f8:e0:6b:1a:05:88:fd:f7:76:eb:72:7b:80:3d:72:89:c7:ea: e2:82:1d:e2:b2:47:bf:83:b3:8d:ab:af:9b:51:34:27:d1:d1: a9:13:ba:e2:22:2f:46:66:6d:3b:37:a6:57:e1:16:ac:1e:01: 43:c0:4b:19:50:0a:af:5e:ab:4d:dd:98:f7:3e:9a:e3:b2:77: ac:4f:75:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPKw/JUW7Z+sFR1h284rtnMtmn3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDA3MTkxMTU1MDBaFw0yNTA3MTgxMjAwMDBaMDMxMTAvBgNV BAMTKDdCNzJCQkY3N0JDN0M0OTU2Mzk5RDg0NkExMEU2Q0UzOTA3RDQ3MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxJTx9mFA63ZheTYTga8qFXUm0 2ZzpiDZm6uLaagEGcXo09RKFj2S91waoLkGdBdNsKs11p82TidgRlS69ApQZse2L lx+cMrxC0j8nsS4OMF/ootK3Zs3v/Pip6cEWFqmrGRG+NfmD7aE5z6V/8fe9PqjO EAyXT2fncqTuN0mtPjuEL7Wo2IPz+UEf7EQ297ELhKkITwq6oQ/6LqmUpsG9Xn8H ns8GyGdr3rzPT7wYDrw9jFoXvltWXnKHW+BmMwXmExfpg5uxhRako+OMzOJrzXkn iSWHgxLpChQTlYuow5ydsQltTgZSHU+WiOvhNzbKsvj4kG9NTbLRGU03Z4J5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe3K793vHxJVjmdhGoQ5s45B9Ry4wHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQBNAWkHFXVLS6SuvmGEU/N3qh3L+zyLCSMce2fXDeXGxV8F vmt4uKJgSg6kaAh0QJavw8tFIq12KCgj9OHIAVjG2NVXaZVSoFHfSkVoikJGYtTb oPDQ6i3l5VWcZMcIJM5g6lIaW8I2tciInITBl+yiZP6kfGrDYVHp0L3u3voNagee 5fi6deNqGluVBKOMVNLFrx8dPgfvHR8xr8mJGahwnJmvxLEN0+Ujt+jjIpZikWY6 TO344GsaBYj993brcnuAPXKJx+righ3iske/g7ONq6+bUTQn0dGpE7riIi9GZm07 N6ZX4RasHgFDwEsZUAqvXqtN3Zj3PprjsnesT3VG -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org