$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: QEq8jNx2qgo9wFvMjpQwwTDlq5Z+M7FLAg6t2ZLkWJY= Subject key identifier: A0:77:F2:5B:39:8B:0F:B9:46:D5:1B:69:EE:50:D9:6F:B8:03:33:01 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 134E14464509C73EEB18BA16C241F87D4BB66E60 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa Signing time: Mon 01 Jul 2024 01:02:31 +0000 ROA not before: Mon 01 Jul 2024 00:57:31 +0000 ROA not after: Mon 30 Jun 2025 01:02:31 +0000 asID: 140456 IP address blocks: 103.153.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:4e:14:46:45:09:c7:3e:eb:18:ba:16:c2:41:f8:7d:4b:b6:6e:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 1 00:57:31 2024 GMT Not After : Jun 30 01:02:31 2025 GMT Subject: CN=A077F25B398B0FB946D51B69EE50D96FB8033301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:de:11:f7:f8:d8:a7:f5:50:60:13:53:2f:b5: f7:ce:71:87:6e:e6:c7:25:f1:d3:aa:4c:94:d9:cb: 41:57:17:10:20:53:6a:9a:32:dc:f3:c7:99:0a:44: 67:93:2c:bd:de:0a:69:e3:f1:f3:ae:f1:e6:d4:21: 4e:84:47:06:1b:20:7e:82:19:10:8c:b2:90:54:fe: 9b:6f:cd:cc:cb:57:e9:c5:0e:4a:9a:0e:a4:80:32: 9f:0f:a4:ad:3f:f8:c4:cc:02:0e:68:c4:4b:07:e2: 05:aa:0f:67:ce:b6:52:91:a0:96:42:76:44:69:a6: 3d:bc:88:ab:31:e9:79:32:57:27:f2:a0:c6:4c:31: 9b:50:85:77:9c:ee:9e:15:62:cc:82:86:97:83:fd: d5:57:46:88:46:20:41:1b:20:2f:30:9c:81:90:9d: 43:6b:57:1e:33:3c:70:69:cc:94:c2:f9:a1:65:5e: 03:9c:86:a2:d0:9f:1a:4d:be:07:ec:a2:88:17:60: 0e:5f:88:a9:79:0e:af:c9:ea:88:1f:63:8a:86:c1: 7b:a5:dc:58:c4:02:66:31:81:28:af:55:7e:3a:1d: c2:25:b4:ac:a2:cf:b1:47:6b:df:00:c2:98:3f:b1: f3:93:dc:41:b0:a3:38:25:b4:10:1b:df:df:ea:56: f3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:77:F2:5B:39:8B:0F:B9:46:D5:1B:69:EE:50:D9:6F:B8:03:33:01 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.61.0/24 Signature Algorithm: sha256WithRSAEncryption 03:4f:ac:b4:f9:bd:0a:cf:0e:a0:d3:89:d7:09:11:07:fc:41: d7:d7:b6:13:8e:4c:a2:5d:db:2d:3d:af:8e:a2:3c:b2:c7:59: fa:ef:ea:12:0b:df:ab:67:27:c1:88:08:a2:13:7f:59:bc:e2: bf:b6:65:05:a7:1f:21:62:d6:59:a2:21:53:4b:cd:38:eb:b1: 49:32:94:d7:5d:9b:bc:14:dc:2b:92:06:de:be:85:f9:e8:90: e1:8a:61:89:fb:eb:ca:63:d6:a0:82:63:92:59:8e:ce:29:62: 06:f1:2d:39:24:1b:8e:49:80:db:55:90:da:2b:8c:b2:fb:5e: ea:86:86:0f:6a:f7:e4:52:a3:e3:7c:4d:7c:93:88:77:cc:5c: 1d:3f:11:a5:b0:64:e5:0c:79:cf:70:f7:92:8d:0e:1e:e1:88: 96:af:27:d2:48:61:13:06:08:42:62:b5:df:31:8a:c3:02:48: 0e:56:13:80:f3:ef:07:f5:61:76:47:b0:aa:92:73:15:cb:06: ab:79:7e:8e:01:fb:dd:cd:c9:d1:bc:05:41:5e:5c:6b:82:8c: 0d:fe:d7:9c:bb:c4:e0:1b:b1:37:68:95:9a:be:cc:f0:b0:ed: 25:53:a7:62:44:cd:7b:ba:49:8c:38:92:4e:fe:22:70:0c:ba: 1d:39:44:bc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE04URkUJxz7rGLoWwkH4fUu2bmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDA3MDEwMDU3MzFaFw0yNTA2MzAwMTAyMzFaMDMxMTAvBgNV BAMTKEEwNzdGMjVCMzk4QjBGQjk0NkQ1MUI2OUVFNTBEOTZGQjgwMzMzMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm3hH3+Nin9VBgE1MvtffOcYdu 5scl8dOqTJTZy0FXFxAgU2qaMtzzx5kKRGeTLL3eCmnj8fOu8ebUIU6ERwYbIH6C GRCMspBU/ptvzczLV+nFDkqaDqSAMp8PpK0/+MTMAg5oxEsH4gWqD2fOtlKRoJZC dkRppj28iKsx6XkyVyfyoMZMMZtQhXec7p4VYsyChpeD/dVXRohGIEEbIC8wnIGQ nUNrVx4zPHBpzJTC+aFlXgOchqLQnxpNvgfsoogXYA5fiKl5Dq/J6ogfY4qGwXul 3FjEAmYxgSivVX46HcIltKyiz7FHa98Awpg/sfOT3EGwozgltBAb39/qVvNHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoHfyWzmLD7lG1Rtp7lDZb7gDMwEwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k9MA0GCSqG SIb3DQEBCwUAA4IBAQADT6y0+b0Kzw6g04nXCREH/EHX17YTjkyiXdstPa+Oojyy x1n67+oSC9+rZyfBiAiiE39ZvOK/tmUFpx8hYtZZoiFTS80467FJMpTXXZu8FNwr kgbevoX56JDhimGJ++vKY9aggmOSWY7OKWIG8S05JBuOSYDbVZDaK4yy+17qhoYP avfkUqPjfE18k4h3zFwdPxGlsGTlDHnPcPeSjQ4e4YiWryfSSGETBghCYrXfMYrD AkgOVhOA8+8H9WF2R7CqknMVywareX6OAfvdzcnRvAVBXlxrgowN/tecu8TgG7E3 aJWavszwsO0lU6diRM17ukmMOJJO/iJwDLodOUS8 -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org