$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa File: 3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa (raw, json) Hash identifier: ODX263cJNyc05cGTY65a903Emb2QFlQS3Nr/YGegOM8= Subject key identifier: B0:DD:C4:53:05:96:8E:CC:A3:20:34:79:89:78:6C:45:FE:5A:1A:A8 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 52B30898726725574208C549405C080FFBEC7EBE Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa Signing time: Sun 25 Jun 2023 21:50:17 +0000 ROA not before: Sun 25 Jun 2023 21:45:17 +0000 ROA not after: Sun 23 Jun 2024 21:50:17 +0000 asID: 140482 IP address blocks: 103.152.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 16:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b3:08:98:72:67:25:57:42:08:c5:49:40:5c:08:0f:fb:ec:7e:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Jun 25 21:45:17 2023 GMT Not After : Jun 23 21:50:17 2024 GMT Subject: CN=B0DDC45305968ECCA320347989786C45FE5A1AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bb:84:a9:fb:27:bb:56:14:89:6d:dc:e5:7e: 69:c0:42:95:14:6d:04:6a:c9:13:c5:86:c7:f1:f4: c1:44:78:e6:9c:cd:91:7b:e3:34:70:a5:0b:79:ea: bb:44:d7:1b:c8:e5:2c:19:26:23:9d:6d:97:7b:9f: 23:b3:82:31:77:d6:d1:f3:12:3b:44:ca:13:b7:a7: 4c:ac:5b:74:fa:ee:18:9d:5f:8f:73:39:3f:fe:88: 99:5f:82:21:44:0f:9d:56:49:21:fb:33:3c:71:32: df:b4:92:f4:b5:82:88:7a:24:f9:46:11:f7:78:0c: 2f:19:b7:ce:d5:3c:b4:01:53:5e:f9:41:bd:58:7b: aa:20:6e:8c:f3:f7:6a:8a:f5:e9:5a:f0:48:ca:9a: 78:fe:af:4f:49:d9:27:26:9b:17:ec:c2:29:34:2b: cc:ca:ee:5b:37:f7:49:42:44:57:ec:4e:c5:2a:c0: 19:17:61:73:66:19:c5:bd:f1:88:05:6f:d1:58:b4: 9e:e1:64:07:28:1a:78:0b:c9:0d:e8:11:aa:cc:3a: 15:94:c1:47:3e:13:ee:12:c3:64:27:b2:20:0f:ee: e9:f2:df:11:04:69:75:bf:6d:19:8d:01:ba:b8:f7: a6:84:d5:b2:95:dc:f5:40:3d:9f:2f:eb:fc:6b:80: 7c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DD:C4:53:05:96:8E:CC:A3:20:34:79:89:78:6C:45:FE:5A:1A:A8 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.140.0/23 Signature Algorithm: sha256WithRSAEncryption a6:80:7e:83:9e:62:42:35:60:bc:db:21:7d:c4:d6:60:b5:ea: b1:81:41:48:ed:bb:22:43:84:6f:f2:b5:03:7a:44:9e:08:c5: 31:c9:f6:9b:39:cd:5b:d0:6b:59:6f:d7:05:82:20:85:74:ff: fb:19:9c:1a:e7:28:b4:5c:8a:06:93:cc:d5:ca:34:6c:63:4b: 33:30:b0:67:28:eb:43:cb:d1:2f:1b:79:57:de:03:3f:0d:72: 21:bf:33:86:4f:d3:9f:8f:56:f3:c2:5e:be:18:62:2e:ad:e5: bd:5a:74:a5:be:12:22:5d:d6:cd:a6:85:39:33:d3:96:25:c6: 20:29:19:0b:5d:42:bf:20:03:26:1e:ac:6a:e1:88:5c:62:02: 82:3b:23:e8:53:4e:7d:be:cf:9b:2d:ec:11:b0:7d:21:e3:67: 5b:cc:31:55:0d:35:ba:56:30:de:72:d4:69:a2:d6:36:9d:58: 6e:17:b6:97:aa:9d:cf:26:fa:b2:7a:f5:28:db:5c:84:96:73: 49:63:bc:15:7a:59:f4:16:3a:27:a7:d0:2b:cf:e2:d2:db:28: da:0f:15:cc:1b:4a:28:31:74:96:4c:d9:54:60:74:35:b0:17: c0:04:bf:59:f3:59:35:d1:73:cd:d9:0f:2e:76:49:f6:6d:ae: 73:34:09:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUrMImHJnJVdCCMVJQFwID/vsfr4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yMzA2MjUyMTQ1MTdaFw0yNDA2MjMyMTUwMTdaMDMxMTAvBgNV BAMTKEIwRERDNDUzMDU5NjhFQ0NBMzIwMzQ3OTg5Nzg2QzQ1RkU1QTFBQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeu4Sp+ye7VhSJbdzlfmnAQpUU bQRqyRPFhsfx9MFEeOaczZF74zRwpQt56rtE1xvI5SwZJiOdbZd7nyOzgjF31tHz EjtEyhO3p0ysW3T67hidX49zOT/+iJlfgiFED51WSSH7MzxxMt+0kvS1goh6JPlG Efd4DC8Zt87VPLQBU175Qb1Ye6ogbozz92qK9ela8EjKmnj+r09J2Scmmxfswik0 K8zK7ls390lCRFfsTsUqwBkXYXNmGcW98YgFb9FYtJ7hZAcoGngLyQ3oEarMOhWU wUc+E+4Sw2QnsiAP7uny3xEEaXW/bRmNAbq496aE1bKV3PVAPZ8v6/xrgHxfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsN3EUwWWjsyjIDR5iXhsRf5aGqgwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzEzNTMyMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmIwwDQYJ KoZIhvcNAQELBQADggEBAKaAfoOeYkI1YLzbIX3E1mC16rGBQUjtuyJDhG/ytQN6 RJ4IxTHJ9ps5zVvQa1lv1wWCIIV0//sZnBrnKLRcigaTzNXKNGxjSzMwsGco60PL 0S8beVfeAz8NciG/M4ZP05+PVvPCXr4YYi6t5b1adKW+EiJd1s2mhTkz05YlxiAp GQtdQr8gAyYerGrhiFxiAoI7I+hTTn2+z5st7BGwfSHjZ1vMMVUNNbpWMN5y1Gmi 1jadWG4Xtpeqnc8m+rJ69SjbXISWc0ljvBV6WfQWOien0CvP4tLbKNoPFcwbSigx dJZM2VRgdDWwF8AEv1nzWTXRc83ZDy52SfZtrnM0CZk= -----END CERTIFICATE-----Generated at Wed May 1 15:35:30 2024 by rpki-client on console-ams.rpki-client.org