$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa File: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: Ph2LxEiolC6ArIBIyc7nIIe12ZHiBP++mEznYLkMNzE= Subject key identifier: 5B:7D:B3:74:8A:61:C0:F6:62:FF:59:37:7F:9A:FE:5D:77:CC:81:9E Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 7CFB7CFE2C69DE64C4344EDEE08236C01B999719 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa Signing time: Mon 31 Jul 2023 00:02:39 +0000 ROA not before: Sun 30 Jul 2023 23:57:39 +0000 ROA not after: Mon 29 Jul 2024 00:02:39 +0000 asID: 140456 IP address blocks: 103.153.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fb:7c:fe:2c:69:de:64:c4:34:4e:de:e0:82:36:c0:1b:99:97:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jul 30 23:57:39 2023 GMT Not After : Jul 29 00:02:39 2024 GMT Subject: CN=5B7DB3748A61C0F662FF59377F9AFE5D77CC819E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fc:87:b1:c2:27:51:65:a9:bd:56:d7:41:1b: 0f:e5:e8:25:c5:c2:d5:24:03:7f:05:90:ea:3b:6b: a7:e9:93:de:db:ca:e6:fc:c5:26:9a:99:43:a8:cf: 24:2f:3a:54:7f:6f:08:ef:e0:98:85:3e:18:23:0a: 54:45:30:29:fa:4f:08:c3:e2:e1:be:88:88:e8:0d: 45:3b:f2:c7:8e:0f:90:e5:59:52:e1:2a:34:76:39: 4f:72:31:84:8b:b1:06:be:3a:e9:b3:d4:3c:ba:86: dc:46:fc:da:54:f3:4a:e3:1f:c2:d9:7f:77:a2:88: 33:a8:2b:ec:f8:74:1e:0b:e2:53:1b:a4:48:41:af: 50:6c:7d:be:8d:75:f6:38:e6:51:eb:34:4b:ce:da: 20:fb:16:2e:bb:e7:44:53:c0:40:37:ec:32:c3:aa: 0f:20:c3:76:b0:eb:2f:30:9c:a3:94:18:57:6f:85: a2:53:df:3e:07:72:68:e9:c2:6b:85:85:4f:92:ff: 2d:b8:df:08:cc:77:6f:a1:0b:ce:81:9e:51:ee:03: c8:19:d1:a0:42:53:85:bb:32:9d:c3:b6:7a:4f:8e: 3d:af:29:42:59:7e:67:51:5d:46:ee:54:8c:13:4a: 40:f8:96:aa:3d:d3:87:1d:a2:a2:8d:fe:2a:37:bc: 96:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7D:B3:74:8A:61:C0:F6:62:FF:59:37:7F:9A:FE:5D:77:CC:81:9E X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.61.0/24 Signature Algorithm: sha256WithRSAEncryption 71:01:59:f9:83:5a:8c:02:14:27:31:85:b2:fc:76:7b:35:be: b2:05:58:2d:2b:7a:23:38:9c:b0:12:f5:aa:f3:d6:e1:c9:73: b6:05:2d:b4:d0:ea:aa:5b:52:7f:04:9e:0c:31:22:9b:1a:12: a5:7c:6a:d4:a9:7c:4a:c3:3f:c1:5f:bf:a2:2f:c4:8e:50:ca: 0f:0f:16:ad:24:8c:65:ce:7d:91:d1:49:3b:67:1d:1a:5f:c0: 7e:04:df:b4:f7:78:cb:e5:cd:2d:0b:24:f6:0c:f8:8a:80:3f: 59:6a:c0:6d:5c:1a:36:26:7a:54:34:09:d3:10:57:b8:15:08: fd:e0:b4:8b:9d:09:18:a0:d0:36:82:9d:63:20:d5:ae:b8:a5: b1:1a:a5:65:13:33:e3:44:67:d3:80:dc:c8:a8:61:82:c3:5b: 24:14:14:7c:41:92:99:e1:ad:43:ff:72:bb:af:14:e0:71:21: 69:25:93:53:59:2b:5e:c0:ae:0b:7d:ea:f7:1e:65:f4:d5:61: 81:45:e9:48:8e:99:75:45:13:75:b3:00:12:2c:cc:97:19:a1: 68:dd:8e:17:57:7a:fc:6c:17:ca:5b:8a:bd:ad:98:2a:60:78: 7a:f6:45:69:c3:82:50:49:be:1b:20:2f:82:41:33:19:da:f3: 0a:23:a1:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfPt8/ixp3mTENE7e4II2wBuZlxkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yMzA3MzAyMzU3MzlaFw0yNDA3MjkwMDAyMzlaMDMxMTAvBgNV BAMTKDVCN0RCMzc0OEE2MUMwRjY2MkZGNTkzNzdGOUFGRTVENzdDQzgxOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ/IexwidRZam9VtdBGw/l6CXF wtUkA38FkOo7a6fpk97byub8xSaamUOozyQvOlR/bwjv4JiFPhgjClRFMCn6TwjD 4uG+iIjoDUU78seOD5DlWVLhKjR2OU9yMYSLsQa+Oumz1Dy6htxG/NpU80rjH8LZ f3eiiDOoK+z4dB4L4lMbpEhBr1Bsfb6NdfY45lHrNEvO2iD7Fi6750RTwEA37DLD qg8gw3aw6y8wnKOUGFdvhaJT3z4HcmjpwmuFhU+S/y243wjMd2+hC86BnlHuA8gZ 0aBCU4W7Mp3DtnpPjj2vKUJZfmdRXUbuVIwTSkD4lqo904cdoqKN/io3vJY/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW32zdIphwPZi/1k3f5r+XXfMgZ4wHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZkLThkZTUtNGE2OS04 NWYxLWM0NDg5N2FlNjEyMS8wLzMxMzAzMzJlMzEzNTMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5k9MA0GCSqG SIb3DQEBCwUAA4IBAQBxAVn5g1qMAhQnMYWy/HZ7Nb6yBVgtK3ojOJywEvWq89bh yXO2BS200OqqW1J/BJ4MMSKbGhKlfGrUqXxKwz/BX7+iL8SOUMoPDxatJIxlzn2R 0Uk7Zx0aX8B+BN+093jL5c0tCyT2DPiKgD9ZasBtXBo2JnpUNAnTEFe4FQj94LSL nQkYoNA2gp1jINWuuKWxGqVlEzPjRGfTgNzIqGGCw1skFBR8QZKZ4a1D/3K7rxTg cSFpJZNTWStewK4Lfer3HmX01WGBRelIjpl1RRN1swASLMyXGaFo3Y4XV3r8bBfK W4q9rZgqYHh69kVpw4JQSb4bIC+CQTMZ2vMKI6EN -----END CERTIFICATE-----Generated at Thu May 2 22:27:16 2024 by rpki-client on console-ams.rpki-client.org