$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: VTOdkCSYRKSou4rbseqq1kv2MBANgI/9GK14MkL+qok= Subject key identifier: 2D:5F:BE:F5:31:AC:48:9A:BE:CB:68:44:B2:7F:DD:41:AF:AE:C8:C1 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 7E6BD0A6E11F497E7ECF632FD6B24A9669E3526F Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa Signing time: Thu 12 Oct 2023 12:00:01 +0000 ROA not before: Thu 12 Oct 2023 11:55:01 +0000 ROA not after: Thu 10 Oct 2024 12:00:01 +0000 asID: 141137 IP address blocks: 103.158.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 12:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:6b:d0:a6:e1:1f:49:7e:7e:cf:63:2f:d6:b2:4a:96:69:e3:52:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Oct 12 11:55:01 2023 GMT Not After : Oct 10 12:00:01 2024 GMT Subject: CN=2D5FBEF531AC489ABECB6844B27FDD41AFAEC8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fb:dc:ce:0a:f0:85:3b:11:d2:ac:9e:31:77: 8f:f4:8c:b6:05:3a:5d:ca:86:85:39:a3:58:8e:ee: a7:a6:6c:16:f9:b2:d1:a5:34:00:ec:c1:f9:c3:f8: b9:c2:5b:3a:96:d8:b3:de:43:a2:0d:f8:42:be:a7: d9:14:bb:cf:99:ef:5f:ff:ca:8c:60:d8:db:b9:27: ed:0e:ac:1d:5d:9f:a1:64:76:85:83:85:24:60:63: 07:ab:7b:76:56:a8:aa:78:e3:d7:f7:0e:87:79:04: b2:6b:27:fb:05:b8:62:72:99:68:1d:71:4c:6e:35: 80:bb:30:b4:60:82:9a:0f:26:0a:a1:27:88:5c:c1: 3b:67:55:a5:3e:55:98:b4:20:78:50:e4:ad:0f:8f: 48:b5:77:2d:72:f6:40:ac:50:ee:7c:7a:87:2b:1f: bf:d9:49:05:26:2e:69:eb:7e:6c:05:7d:c5:f5:58: f3:a2:74:11:4b:08:41:ff:b0:bc:0a:3b:66:0b:39: bc:1a:b8:63:25:4c:26:3b:06:a1:62:27:8b:fa:56: 42:8a:67:9d:25:b8:e6:e4:e0:1e:a6:a6:87:aa:3e: 40:07:82:3b:b1:8a:b4:e9:3f:9a:99:0f:8e:ed:70: 8d:01:42:cc:73:07:c2:be:9c:5c:28:e6:a2:a4:03: 1d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5F:BE:F5:31:AC:48:9A:BE:CB:68:44:B2:7F:DD:41:AF:AE:C8:C1 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/24 Signature Algorithm: sha256WithRSAEncryption 56:fc:32:cb:09:2e:63:40:f0:e7:1f:cd:07:30:33:80:6a:17: 79:24:a0:68:d3:12:cd:fd:d8:20:91:77:fa:99:e9:e3:29:77: 32:91:ef:d8:35:47:85:5d:f7:b7:38:fa:85:6e:3a:0f:52:ca: 92:b8:48:31:70:25:7a:a3:15:7b:16:24:6f:a1:8c:eb:2c:c4: c7:7f:16:0e:81:ff:25:a3:f5:dc:41:7a:a4:ed:78:55:d6:ba: 57:82:1c:e3:52:88:ee:01:82:b8:66:a2:83:e5:09:b9:83:5f: 69:5a:53:78:b8:30:0d:e5:c1:96:7b:5b:5c:d3:53:6c:18:53: f2:b4:39:29:c2:6a:dd:6c:0c:b4:52:1e:12:ca:16:71:e7:e9: 54:f2:e6:84:d5:6d:91:d5:66:e0:63:5d:55:e9:99:27:62:7d: ee:af:3a:25:93:0a:b9:7f:4f:10:6d:b1:4d:64:5b:86:61:c2: 8b:ca:27:a0:7f:84:86:44:d1:7d:54:58:af:73:c7:ed:a2:cd: b2:0d:96:35:3d:4b:d8:b9:0c:62:38:e2:37:c5:c9:ff:3e:3f: 8b:58:ef:bb:14:5b:0a:6c:11:1b:cd:08:d6:16:a2:6c:b9:de: 41:08:68:d4:8e:cb:a4:9a:33:c6:9c:4d:97:40:7a:d0:fb:ad: f1:f6:e0:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfmvQpuEfSX5+z2Mv1rJKlmnjUm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yMzEwMTIxMTU1MDFaFw0yNDEwMTAxMjAwMDFaMDMxMTAvBgNV BAMTKDJENUZCRUY1MzFBQzQ4OUFCRUNCNjg0NEIyN0ZERDQxQUZBRUM4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk+9zOCvCFOxHSrJ4xd4/0jLYF Ol3KhoU5o1iO7qembBb5stGlNADswfnD+LnCWzqW2LPeQ6IN+EK+p9kUu8+Z71// yoxg2Nu5J+0OrB1dn6FkdoWDhSRgYwere3ZWqKp449f3Dod5BLJrJ/sFuGJymWgd cUxuNYC7MLRggpoPJgqhJ4hcwTtnVaU+VZi0IHhQ5K0Pj0i1dy1y9kCsUO58eocr H7/ZSQUmLmnrfmwFfcX1WPOidBFLCEH/sLwKO2YLObwauGMlTCY7BqFiJ4v6VkKK Z50luObk4B6mpoeqPkAHgjuxirTpP5qZD47tcI0BQsxzB8K+nFwo5qKkAx0PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULV++9TGsSJq+y2hEsn/dQa+uyMEwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnvwwDQYJ KoZIhvcNAQELBQADggEBAFb8MssJLmNA8OcfzQcwM4BqF3kkoGjTEs392CCRd/qZ 6eMpdzKR79g1R4Vd97c4+oVuOg9SypK4SDFwJXqjFXsWJG+hjOssxMd/Fg6B/yWj 9dxBeqTteFXWuleCHONSiO4BgrhmooPlCbmDX2laU3i4MA3lwZZ7W1zTU2wYU/K0 OSnCat1sDLRSHhLKFnHn6VTy5oTVbZHVZuBjXVXpmSdife6vOiWTCrl/TxBtsU1k W4ZhwovKJ6B/hIZE0X1UWK9zx+2izbINljU9S9i5DGI44jfFyf8+P4tY77sUWwps ERvNCNYWomy53kEIaNSOy6SaM8acTZdAetD7rfH24Cs= -----END CERTIFICATE-----Generated at Thu May 2 10:16:52 2024 by rpki-client on console-ams.rpki-client.org