$ rpki-client -vvf repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa File: 3130332e34392e35312e302f32342d3234203d3e20313530343830.roa (raw, json) Hash identifier: NnyYzXzSxdzxhfpnF1FgqkZdDhlXPV+OeQvDx0/A5o0= Subject key identifier: 8D:2B:D2:5C:B3:F7:0D:70:EC:D6:62:0F:19:8E:96:26:A3:EC:65:B4 Certificate issuer: /CN=722D23AD0F959CE5CBFF927C152517F07060D195 Certificate serial: 4B836574C05554EB4412538C7B72C0A59E4F7DC2 Authority key identifier: 72:2D:23:AD:0F:95:9C:E5:CB:FF:92:7C:15:25:17:F0:70:60:D1:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722D23AD0F959CE5CBFF927C152517F07060D195.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa Signing time: Fri 29 Mar 2024 07:00:00 +0000 ROA not before: Fri 29 Mar 2024 06:55:00 +0000 ROA not after: Fri 28 Mar 2025 07:00:00 +0000 asID: 150480 IP address blocks: 103.49.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/722D23AD0F959CE5CBFF927C152517F07060D195.crl rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/722D23AD0F959CE5CBFF927C152517F07060D195.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722D23AD0F959CE5CBFF927C152517F07060D195.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 12:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:83:65:74:c0:55:54:eb:44:12:53:8c:7b:72:c0:a5:9e:4f:7d:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=722D23AD0F959CE5CBFF927C152517F07060D195 Validity Not Before: Mar 29 06:55:00 2024 GMT Not After : Mar 28 07:00:00 2025 GMT Subject: CN=8D2BD25CB3F70D70ECD6620F198E9626A3EC65B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c0:b4:1c:aa:3b:ea:a2:6e:9f:2a:0b:5f:1c: b0:13:b1:be:ee:26:2b:f0:07:23:19:dd:f1:8e:c7: 0b:be:95:76:75:30:ed:c8:c0:b6:01:fc:1c:f3:f1: 8f:d3:cd:40:26:d9:a9:97:c7:67:1a:94:a4:3d:34: b8:7a:35:c4:82:69:91:47:a3:4c:98:aa:1c:06:56: e3:6c:c1:ff:8d:08:05:cf:7e:90:dd:c1:78:bd:50: fd:e0:f9:c7:d0:bd:63:7b:92:47:57:4a:c5:78:58: 8a:5f:26:cd:e4:0a:27:59:c0:f7:6c:3d:01:bf:01: b7:66:74:0e:cb:dc:b4:30:15:c5:13:14:c8:d1:d1: ad:d2:aa:c9:49:da:5b:dc:48:1b:b5:98:91:f1:7d: 1d:4b:61:77:96:8b:05:1a:ce:79:d0:dd:fc:a8:a7: df:45:11:ac:f6:47:87:31:8b:a4:d4:53:4d:9f:c1: 44:7a:86:12:4f:c8:55:61:0c:ac:17:19:55:fb:35: 58:de:a5:61:32:91:55:90:75:fd:0b:ca:b3:fb:62: 56:cb:a8:75:86:94:82:5d:89:4f:a6:e0:3b:f7:8f: 44:4b:fd:65:41:49:0a:da:cb:25:e0:53:a6:2f:61: 32:16:54:58:87:17:e4:f8:85:fd:4a:af:e9:f0:b6: 12:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2B:D2:5C:B3:F7:0D:70:EC:D6:62:0F:19:8E:96:26:A3:EC:65:B4 X509v3 Authority Key Identifier: keyid:72:2D:23:AD:0F:95:9C:E5:CB:FF:92:7C:15:25:17:F0:70:60:D1:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/722D23AD0F959CE5CBFF927C152517F07060D195.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722D23AD0F959CE5CBFF927C152517F07060D195.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.51.0/24 Signature Algorithm: sha256WithRSAEncryption 92:3e:8a:ed:b5:34:8e:3b:9f:8b:81:69:68:a3:0b:5b:5e:0b: 1b:1f:ef:58:ca:89:4b:72:35:fa:f5:a4:93:38:ef:90:c9:bf: 92:78:46:60:bb:6d:47:eb:3c:32:ae:6c:10:9a:19:2c:70:1b: db:3a:45:f5:bb:22:03:42:75:63:35:f5:65:d4:f6:8f:d6:bd: f5:e5:8c:43:4a:8d:a0:71:5f:50:6c:f6:c3:92:d8:fa:b5:28: 28:a8:6c:1a:55:2d:6b:93:46:66:7f:95:98:be:16:a0:77:1d: 1e:bb:76:6e:46:36:a0:8a:93:be:e9:d1:c2:68:0b:6c:00:29: 97:67:dd:91:34:79:b6:1f:23:f7:1d:08:ed:fd:31:23:1a:c7: aa:49:bc:03:07:65:e7:73:37:d3:2d:d2:c9:7d:11:ac:40:a3: 64:74:b9:ed:5c:1b:10:57:27:fe:98:39:1f:e2:db:ae:59:70: d6:af:7f:08:25:cb:02:65:3a:3b:a0:83:fb:38:ed:04:31:7b: 25:db:95:88:fd:65:15:57:04:a1:33:dc:93:5a:85:59:70:23: 92:6a:0c:96:70:41:83:d7:7d:6c:6a:38:a8:3e:24:c0:c2:6f: d6:ed:f1:8f:b5:15:4b:8e:63:fc:0d:d5:43:cd:57:ca:94:78: 08:e3:bb:20 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS4NldMBVVOtEElOMe3LApZ5PfcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzIyRDIzQUQwRjk1OUNFNUNCRkY5MjdDMTUyNTE3RjA3 MDYwRDE5NTAeFw0yNDAzMjkwNjU1MDBaFw0yNTAzMjgwNzAwMDBaMDMxMTAvBgNV BAMTKDhEMkJEMjVDQjNGNzBENzBFQ0Q2NjIwRjE5OEU5NjI2QTNFQzY1QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNwLQcqjvqom6fKgtfHLATsb7u JivwByMZ3fGOxwu+lXZ1MO3IwLYB/Bzz8Y/TzUAm2amXx2calKQ9NLh6NcSCaZFH o0yYqhwGVuNswf+NCAXPfpDdwXi9UP3g+cfQvWN7kkdXSsV4WIpfJs3kCidZwPds PQG/AbdmdA7L3LQwFcUTFMjR0a3SqslJ2lvcSBu1mJHxfR1LYXeWiwUaznnQ3fyo p99FEaz2R4cxi6TUU02fwUR6hhJPyFVhDKwXGVX7NVjepWEykVWQdf0LyrP7YlbL qHWGlIJdiU+m4Dv3j0RL/WVBSQrayyXgU6YvYTIWVFiHF+T4hf1Kr+nwthKPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjSvSXLP3DXDs1mIPGY6WJqPsZbQwHwYDVR0j BBgwFoAUci0jrQ+VnOXL/5J8FSUX8HBg0ZUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2U4ZGE5Yy1iZGJkLTQ5MDgtYmE5Mi1kOTBmZWE5YzhmMDUvMC83MjJEMjNBRDBG OTU5Q0U1Q0JGRjkyN0MxNTI1MTdGMDcwNjBEMTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzIyRDIzQUQwRjk1OUNFNUNCRkY5MjdDMTUyNTE3RjA3MDYw RDE5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjZThkYTljLWJkYmQtNDkwOC1i YTkyLWQ5MGZlYTljOGYwNS8wLzMxMzAzMzJlMzQzOTJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcxMzANBgkqhkiG 9w0BAQsFAAOCAQEAkj6K7bU0jjufi4FpaKMLW14LGx/vWMqJS3I1+vWkkzjvkMm/ knhGYLttR+s8Mq5sEJoZLHAb2zpF9bsiA0J1YzX1ZdT2j9a99eWMQ0qNoHFfUGz2 w5LY+rUoKKhsGlUta5NGZn+VmL4WoHcdHrt2bkY2oIqTvunRwmgLbAApl2fdkTR5 th8j9x0I7f0xIxrHqkm8Awdl53M30y3SyX0RrECjZHS57VwbEFcn/pg5H+Lbrllw 1q9/CCXLAmU6O6CD+zjtBDF7JduViP1lFVcEoTPck1qFWXAjkmoMlnBBg9d9bGo4 qD4kwMJv1u3xj7UVS45j/A3VQ81XypR4COO7IA== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org