$ rpki-client -vvf repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa File: 3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa (raw, json) Hash identifier: syZBvNAl4SaJ6rx4LVOaTT+9yR8o9UPWhBROvrn3mMU= Subject key identifier: 26:59:EE:D6:B9:AB:66:38:02:60:E9:46:79:39:A9:2A:01:CC:81:82 Certificate issuer: /CN=18501FBD8586A1409C33F07377587F8C015DAFF4 Certificate serial: 5123095583CE7BA6A8298BB3B9F0BE70DB801B2C Authority key identifier: 18:50:1F:BD:85:86:A1:40:9C:33:F0:73:77:58:7F:8C:01:5D:AF:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa Signing time: Fri 31 May 2024 16:00:01 +0000 ROA not before: Fri 31 May 2024 15:55:01 +0000 ROA not after: Fri 30 May 2025 16:00:01 +0000 asID: 150960 IP address blocks: 103.122.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.crl rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:23:09:55:83:ce:7b:a6:a8:29:8b:b3:b9:f0:be:70:db:80:1b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18501FBD8586A1409C33F07377587F8C015DAFF4 Validity Not Before: May 31 15:55:01 2024 GMT Not After : May 30 16:00:01 2025 GMT Subject: CN=2659EED6B9AB66380260E9467939A92A01CC8182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d3:58:34:2f:92:dc:2b:d0:66:2f:a3:2f:52: 16:a5:08:85:e6:ed:4e:71:83:0d:2d:0d:c0:cb:9e: f2:89:61:53:52:70:94:ca:d1:1b:6c:55:c4:7c:60: 44:ba:49:a0:99:79:59:e1:4a:29:f7:60:04:44:0f: b5:56:38:b5:33:15:41:31:88:c6:30:bd:34:0f:84: 42:ce:89:a0:f6:ff:c2:ae:fd:3e:bc:5d:56:9b:8b: 2b:9e:8f:63:51:e4:e4:1c:a5:4b:db:d8:99:ff:df: 37:2e:52:27:fc:97:02:de:3d:0a:6b:fc:cf:6b:d2: 26:94:1e:b3:90:99:3d:4e:1d:e4:22:94:37:27:ba: cf:fa:f8:90:cf:62:a9:f7:55:18:fc:b7:da:68:15: ce:65:a3:5e:81:57:a9:18:17:1b:d6:82:99:92:c8: f2:06:94:be:69:40:2e:98:de:32:ca:83:9c:a4:68: 83:38:ae:5e:5f:2b:da:9a:7e:77:da:25:f5:da:cf: 1d:19:3c:18:05:8a:08:83:be:d0:71:d8:7e:eb:20: 7b:49:1a:ec:1e:0c:fd:5f:12:82:f3:d5:fc:b6:e3: 2b:55:87:7c:c4:9c:73:70:73:76:f2:f9:1c:22:92: 0b:75:47:1f:83:3b:3b:88:17:37:03:5c:db:d4:60: 48:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:59:EE:D6:B9:AB:66:38:02:60:E9:46:79:39:A9:2A:01:CC:81:82 X509v3 Authority Key Identifier: keyid:18:50:1F:BD:85:86:A1:40:9C:33:F0:73:77:58:7F:8C:01:5D:AF:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/18501FBD8586A1409C33F07377587F8C015DAFF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18501FBD8586A1409C33F07377587F8C015DAFF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1aabddbf-d119-4c80-8827-7a888a93ce03/0/3130332e3132322e3231322e302f32332d3234203d3e20313530393630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.212.0/23 Signature Algorithm: sha256WithRSAEncryption a8:33:46:bc:54:74:56:d5:87:7e:06:98:72:26:c3:21:e3:16: 63:67:50:71:c3:ff:c3:01:10:2b:3f:0f:ab:eb:96:76:ca:d8: 21:85:18:87:ea:ba:9e:2e:5c:57:9f:4f:89:08:ca:0f:11:5b: 19:c5:2a:69:7d:34:32:f7:bd:71:15:d6:2a:0c:71:01:e7:31: 8f:cc:49:f2:81:91:ee:48:a9:9c:29:31:74:d7:da:d5:ea:2a: dd:04:e3:b0:0b:ee:9c:5e:d9:71:f4:e4:c9:ab:a8:7c:02:c2: e6:91:9e:7c:6e:e7:c0:a8:54:0d:df:cb:93:10:59:27:27:83: d8:fa:5c:8e:94:14:6b:15:da:74:1f:1c:d1:8d:78:3c:ca:f0: c9:a2:39:26:28:23:15:9c:4e:10:df:1d:8f:b1:19:45:97:66: a2:45:27:dd:0c:73:ee:60:1c:24:44:34:27:e6:f3:3b:b1:e0: 10:c5:f9:15:00:2f:c1:86:2f:1c:1c:34:1b:f1:e7:3c:ed:0a: 76:20:55:d0:ec:38:db:1d:6a:34:3a:ca:53:42:41:c7:23:33: d0:a2:e8:39:69:0c:32:3a:5c:3b:7b:5e:f4:ad:7d:60:49:72: ec:9f:fa:05:00:13:9b:ca:0f:cb:61:b5:b6:f1:20:7e:52:52: d6:eb:4d:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUSMJVYPOe6aoKYuzufC+cNuAGywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg1MDFGQkQ4NTg2QTE0MDlDMzNGMDczNzc1ODdGOEMw MTVEQUZGNDAeFw0yNDA1MzExNTU1MDFaFw0yNTA1MzAxNjAwMDFaMDMxMTAvBgNV BAMTKDI2NTlFRUQ2QjlBQjY2MzgwMjYwRTk0Njc5MzlBOTJBMDFDQzgxODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS01g0L5LcK9BmL6MvUhalCIXm 7U5xgw0tDcDLnvKJYVNScJTK0RtsVcR8YES6SaCZeVnhSin3YARED7VWOLUzFUEx iMYwvTQPhELOiaD2/8Ku/T68XVabiyuej2NR5OQcpUvb2Jn/3zcuUif8lwLePQpr /M9r0iaUHrOQmT1OHeQilDcnus/6+JDPYqn3VRj8t9poFc5lo16BV6kYFxvWgpmS yPIGlL5pQC6Y3jLKg5ykaIM4rl5fK9qafnfaJfXazx0ZPBgFigiDvtBx2H7rIHtJ GuweDP1fEoLz1fy24ytVh3zEnHNwc3by+Rwikgt1Rx+DOzuIFzcDXNvUYEghAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJlnu1rmrZjgCYOlGeTmpKgHMgYIwHwYDVR0j BBgwFoAUGFAfvYWGoUCcM/Bzd1h/jAFdr/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YWFiZGRiZi1kMTE5LTRjODAtODgyNy03YTg4OGE5M2NlMDMvMC8xODUwMUZCRDg1 ODZBMTQwOUMzM0YwNzM3NzU4N0Y4QzAxNURBRkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTg1MDFGQkQ4NTg2QTE0MDlDMzNGMDczNzc1ODdGOEMwMTVE QUZGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhYWJkZGJmLWQxMTktNGM4MC04 ODI3LTdhODg4YTkzY2UwMy8wLzMxMzAzMzJlMzEzMjMyMmUzMjMxMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM2MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnetQwDQYJ KoZIhvcNAQELBQADggEBAKgzRrxUdFbVh34GmHImwyHjFmNnUHHD/8MBECs/D6vr lnbK2CGFGIfqup4uXFefT4kIyg8RWxnFKml9NDL3vXEV1ioMcQHnMY/MSfKBke5I qZwpMXTX2tXqKt0E47AL7pxe2XH05MmrqHwCwuaRnnxu58CoVA3fy5MQWScng9j6 XI6UFGsV2nQfHNGNeDzK8MmiOSYoIxWcThDfHY+xGUWXZqJFJ90Mc+5gHCRENCfm 8zux4BDF+RUAL8GGLxwcNBvx5zztCnYgVdDsONsdajQ6ylNCQccjM9Ci6DlpDDI6 XDt7XvStfWBJcuyf+gUAE5vKD8thtbbxIH5SUtbrTRA= -----END CERTIFICATE-----Generated at Sun Nov 24 23:56:42 2024 by rpki-client on console-fra.rpki-client.org