$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa File: 3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa (raw, json) Hash identifier: eI8dCQp89JpyDVvAhhRf+09pPWkET3pxzzKB7GVamlE= Subject key identifier: F7:C5:3E:9C:0A:9F:BA:EB:EA:AD:BB:C1:C2:26:40:1C:D9:CA:07:73 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 22B7637713C5BC6E5CBBC40C78A4DA709E3552C1 Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa Signing time: Sun 26 May 2024 22:00:02 +0000 ROA not before: Sun 26 May 2024 21:55:02 +0000 ROA not after: Sun 25 May 2025 22:00:02 +0000 asID: 140482 IP address blocks: 103.152.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b7:63:77:13:c5:bc:6e:5c:bb:c4:0c:78:a4:da:70:9e:35:52:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: May 26 21:55:02 2024 GMT Not After : May 25 22:00:02 2025 GMT Subject: CN=F7C53E9C0A9FBAEBEAADBBC1C226401CD9CA0773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:99:e2:6b:8e:1b:0c:52:4e:49:b3:0d:1d:7e: a9:4a:5e:c9:66:85:6a:32:be:77:5b:d8:f9:d1:6a: 0f:7b:db:a1:46:08:c8:67:28:3b:6c:87:e6:d5:43: c4:4d:5a:b2:68:2a:a6:e0:84:eb:84:b0:c1:b1:4a: 3d:19:b7:b7:f4:1f:9e:f4:af:bc:83:64:da:8a:05: 5e:70:77:5c:5d:78:c8:7c:7f:19:ec:8c:a5:96:ec: 6b:74:19:0a:98:45:47:1c:45:79:e1:32:ae:bb:70: 43:53:33:80:b8:8f:86:61:00:c0:77:b3:be:32:c0: 82:1a:c5:5a:82:7c:cf:0c:28:1e:ee:23:8e:e4:8f: 9c:60:1b:34:60:57:86:ce:e9:d3:b5:3d:8b:b5:09: 01:a6:64:ba:c7:aa:93:a4:67:4d:97:d0:da:29:41: e4:b3:8c:fa:70:82:73:6e:1b:b5:d4:0f:f1:2d:a9: 79:ee:7f:86:dc:38:55:79:f9:2b:c7:a7:71:4c:b6: a2:1a:4e:c9:c7:87:73:61:3e:59:65:d5:ef:d6:a2: e2:4e:b8:b8:b5:aa:9a:dd:e2:10:29:fc:5f:9a:1f: fc:11:84:d9:fd:37:8f:c8:71:70:cb:7a:b9:a9:45: 9f:c7:52:4a:e7:54:8d:07:49:3b:90:9b:53:fb:f9: 89:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C5:3E:9C:0A:9F:BA:EB:EA:AD:BB:C1:C2:26:40:1C:D9:CA:07:73 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3135322e3134302e302f32332d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.140.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:87:75:9d:f3:d8:7e:d3:1f:6f:84:27:46:d2:f7:e8:96:19: 19:e4:47:a8:ed:c8:b0:0d:0c:1d:92:15:a1:65:49:fc:b9:77: 6c:36:c0:dd:00:85:19:5d:8b:26:49:a7:8b:c0:56:f8:c8:7d: 2d:f1:55:2b:a9:3f:b9:b1:87:62:07:78:fb:0e:c2:e4:d2:fd: a0:ec:b2:80:79:b1:1c:0a:b2:bc:16:4e:e9:6f:a2:f3:21:f9: 64:5a:bf:ec:2d:27:1d:49:84:63:20:6e:cc:18:07:64:6a:30: d5:59:09:d6:7e:6a:38:81:74:09:4d:f4:4d:b7:4c:27:d1:4e: 2e:eb:2b:f2:fe:48:51:70:53:e9:18:e0:e2:e5:ea:42:7b:53: 6b:ce:2b:b1:7f:9c:51:e1:2b:f2:60:95:37:a2:5a:03:5d:e9: 45:ef:0d:5d:45:69:66:41:7b:28:53:df:2e:1a:11:d1:c5:a2: 98:97:dd:ea:d9:f6:88:85:28:7b:b4:75:97:dc:b2:74:84:3b: e3:85:83:ff:92:81:ad:48:a5:28:1d:c7:42:a0:6f:8c:68:a1: 83:03:15:41:e7:65:ef:42:58:a7:63:60:e7:9a:4b:57:42:0a: c9:48:b0:fa:f7:95:08:88:a4:6a:bc:10:48:87:09:dd:29:89: e7:f8:3e:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIrdjdxPFvG5cu8QMeKTacJ41UsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNDA1MjYyMTU1MDJaFw0yNTA1MjUyMjAwMDJaMDMxMTAvBgNV BAMTKEY3QzUzRTlDMEE5RkJBRUJFQUFEQkJDMUMyMjY0MDFDRDlDQTA3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5meJrjhsMUk5Jsw0dfqlKXslm hWoyvndb2PnRag9726FGCMhnKDtsh+bVQ8RNWrJoKqbghOuEsMGxSj0Zt7f0H570 r7yDZNqKBV5wd1xdeMh8fxnsjKWW7Gt0GQqYRUccRXnhMq67cENTM4C4j4ZhAMB3 s74ywIIaxVqCfM8MKB7uI47kj5xgGzRgV4bO6dO1PYu1CQGmZLrHqpOkZ02X0Nop QeSzjPpwgnNuG7XUD/EtqXnuf4bcOFV5+SvHp3FMtqIaTsnHh3NhPlll1e/WouJO uLi1qprd4hAp/F+aH/wRhNn9N4/IcXDLermpRZ/HUkrnVI0HSTuQm1P7+YmFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU98U+nAqfuuvqrbvBwiZAHNnKB3MwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzEzNTMyMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmIwwDQYJ KoZIhvcNAQELBQADggEBADyHdZ3z2H7TH2+EJ0bS9+iWGRnkR6jtyLANDB2SFaFl Sfy5d2w2wN0AhRldiyZJp4vAVvjIfS3xVSupP7mxh2IHePsOwuTS/aDssoB5sRwK srwWTulvovMh+WRav+wtJx1JhGMgbswYB2RqMNVZCdZ+ajiBdAlN9E23TCfRTi7r K/L+SFFwU+kY4OLl6kJ7U2vOK7F/nFHhK/JglTeiWgNd6UXvDV1FaWZBeyhT3y4a EdHFopiX3erZ9oiFKHu0dZfcsnSEO+OFg/+Sga1IpSgdx0Kgb4xooYMDFUHnZe9C WKdjYOeaS1dCCslIsPr3lQiIpGq8EEiHCd0pief4Plw= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org