$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: cZVBXXGJKiJCT/zUIwExIpoODQYqK0TgIQSfYHzcYPg= Subject key identifier: F2:4F:F0:FC:66:9F:88:0D:94:D9:71:AB:37:D4:29:12:5B:12:A1:FF Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 6373B6F8C986D4F8C14D13AC73D326F6AA72C5CA Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa Signing time: Mon 01 Jul 2024 01:02:31 +0000 ROA not before: Mon 01 Jul 2024 00:57:31 +0000 ROA not after: Mon 30 Jun 2025 01:02:31 +0000 asID: 140456 IP address blocks: 103.153.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:73:b6:f8:c9:86:d4:f8:c1:4d:13:ac:73:d3:26:f6:aa:72:c5:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 1 00:57:31 2024 GMT Not After : Jun 30 01:02:31 2025 GMT Subject: CN=F24FF0FC669F880D94D971AB37D429125B12A1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d6:e1:dd:14:48:0a:e8:0f:cf:1f:a8:a4:9a: a2:44:e6:19:9c:5d:f7:ff:a1:48:6d:0b:cc:94:5e: a6:33:84:51:0d:16:77:15:6c:28:f2:d9:4f:dc:f7: 50:a2:52:5c:c3:c6:4c:62:ed:eb:65:2b:e9:a2:b9: fe:ab:56:67:b8:7d:12:06:ae:3f:1b:5d:ee:7d:d4: 50:ff:28:da:8b:35:de:cc:cb:6b:c9:35:93:70:d6: 10:20:d8:fc:d7:fa:08:d0:1d:b9:9d:05:69:38:be: 68:df:54:7a:88:52:c9:3b:f9:4b:02:27:88:11:b9: 9f:16:d3:f9:dd:d8:29:fc:d8:12:37:31:bd:ca:7a: 18:3c:8e:b7:14:2b:c0:86:8d:2b:54:c2:ea:5c:62: d6:0a:49:f7:6c:c1:e9:df:8d:38:13:35:eb:e1:f6: 13:d3:a7:76:70:d6:af:a2:c4:93:48:7f:60:05:13: 8d:5c:bb:9d:3d:2a:5c:33:a8:09:19:6f:33:ed:95: 68:00:4e:09:dc:66:5d:47:60:3a:49:93:5f:43:60: c1:84:15:88:84:ef:40:02:54:9a:aa:67:12:f4:3b: 7a:06:95:31:78:a5:ea:75:7d:aa:ef:00:9b:92:04: a6:1d:37:66:67:4d:d9:0c:26:b9:b8:86:a7:62:de: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4F:F0:FC:66:9F:88:0D:94:D9:71:AB:37:D4:29:12:5B:12:A1:FF X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:77:5f:21:9d:24:c2:ee:f8:bc:97:eb:64:19:bb:58:62:2d: cc:b2:78:9b:f1:b9:ce:92:19:c5:3a:55:11:61:cf:34:02:5d: 73:b8:a7:6b:02:a4:bd:11:7d:f7:a4:21:3f:cd:c8:b6:7a:25: 61:b2:6a:b5:4a:b6:1b:e2:45:f9:b7:39:48:43:46:82:5c:4e: 1c:ae:b6:9b:08:13:8a:46:60:7a:40:86:38:0a:a5:2d:c4:46: 27:8e:f9:33:17:b3:31:7a:eb:72:dc:27:bd:8b:f2:67:25:df: 45:da:46:54:d5:1b:66:e3:7d:d6:f8:c4:67:59:7a:6e:62:20: 5b:cf:39:ef:01:06:23:c9:4a:08:da:b5:0a:18:4f:bc:47:91: 8a:c9:c0:3a:98:e8:dc:f5:33:1f:e8:d4:86:d0:68:e7:f3:44: ad:27:b2:20:04:21:0c:7b:a4:dd:86:9d:26:2a:91:e1:38:68: 0e:42:9e:21:45:52:db:b6:b6:8c:26:a9:15:ca:76:4f:85:9d: ca:25:5f:8a:42:6e:c3:51:47:3d:78:08:a4:25:61:f0:02:78: c9:01:ab:d4:02:dd:ca:76:1d:ca:6b:0e:70:15:95:94:9c:4c: d6:2d:01:00:ee:10:66:84:f6:34:8d:e5:b1:a7:78:11:8e:0f: b6:61:ae:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY3O2+MmG1PjBTROsc9Mm9qpyxcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDA3MDEwMDU3MzFaFw0yNTA2MzAwMTAyMzFaMDMxMTAvBgNV BAMTKEYyNEZGMEZDNjY5Rjg4MEQ5NEQ5NzFBQjM3RDQyOTEyNUIxMkExRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC91uHdFEgK6A/PH6ikmqJE5hmc Xff/oUhtC8yUXqYzhFENFncVbCjy2U/c91CiUlzDxkxi7etlK+miuf6rVme4fRIG rj8bXe591FD/KNqLNd7My2vJNZNw1hAg2PzX+gjQHbmdBWk4vmjfVHqIUsk7+UsC J4gRuZ8W0/nd2Cn82BI3Mb3Kehg8jrcUK8CGjStUwupcYtYKSfdswenfjTgTNevh 9hPTp3Zw1q+ixJNIf2AFE41cu509KlwzqAkZbzPtlWgATgncZl1HYDpJk19DYMGE FYiE70ACVJqqZxL0O3oGlTF4pep1farvAJuSBKYdN2ZnTdkMJrm4hqdi3pixAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8k/w/GafiA2U2XGrN9QpElsSof8wHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k8MA0GCSqG SIb3DQEBCwUAA4IBAQB6d18hnSTC7vi8l+tkGbtYYi3Msnib8bnOkhnFOlURYc80 Al1zuKdrAqS9EX33pCE/zci2eiVhsmq1SrYb4kX5tzlIQ0aCXE4crrabCBOKRmB6 QIY4CqUtxEYnjvkzF7Mxeuty3Ce9i/JnJd9F2kZU1Rtm433W+MRnWXpuYiBbzznv AQYjyUoI2rUKGE+8R5GKycA6mOjc9TMf6NSG0Gjn80StJ7IgBCEMe6Tdhp0mKpHh OGgOQp4hRVLbtraMJqkVynZPhZ3KJV+KQm7DUUc9eAikJWHwAnjJAavUAt3Kdh3K aw5wFZWUnEzWLQEA7hBmhPY0jeWxp3gRjg+2Ya50 -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org