$ rpki-client -vvf repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa File: 3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: BdihZDS/tzCmUBevlIu9UDvRioqzeTxPODGMUovQZWY= Subject key identifier: 7B:48:58:8B:CE:A0:E4:D8:44:56:66:6F:4D:74:7E:12:4F:0E:D5:2E Certificate issuer: /CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Certificate serial: 335B0E3FD5523BAD6B3755CB07F69E4F3CA1A37E Authority key identifier: 31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa Signing time: Tue 22 Oct 2024 07:03:59 +0000 ROA not before: Tue 22 Oct 2024 06:58:59 +0000 ROA not after: Tue 21 Oct 2025 07:03:59 +0000 asID: 139456 IP address blocks: 103.152.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5b:0e:3f:d5:52:3b:ad:6b:37:55:cb:07:f6:9e:4f:3c:a1:a3:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Validity Not Before: Oct 22 06:58:59 2024 GMT Not After : Oct 21 07:03:59 2025 GMT Subject: CN=7B48588BCEA0E4D84456666F4D747E124F0ED52E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:59:2f:31:f4:d7:be:40:a4:c8:c9:3c:a6:a6: ab:39:2a:13:13:7f:0a:b0:3f:c7:36:6a:9b:2b:8f: af:f7:f8:71:31:f0:d7:5f:fd:96:94:42:ce:74:70: 00:e2:fc:42:1d:a9:e6:53:d5:58:4a:4e:03:2a:80: d1:70:51:59:36:42:fa:8a:af:e9:14:d6:bb:04:91: 48:56:42:8a:e3:7c:b7:aa:10:0e:27:bb:10:08:b4: 6c:97:97:7b:55:56:9b:b8:13:29:39:22:a0:a1:82: d0:00:ba:a4:34:c7:c8:54:16:89:00:bb:9e:47:7d: 63:2b:bf:27:fe:03:5e:c4:95:29:d9:ad:09:ab:f2: e8:79:39:ad:62:ff:0f:24:e8:16:e9:40:e6:a8:b6: ff:49:55:c5:0e:6b:ef:45:a7:3c:8e:cc:55:b2:31: 55:02:e3:a0:c0:fc:14:37:c0:a8:8a:e2:e9:70:d8: 1c:90:7c:18:e4:8e:cb:7e:cc:09:89:ec:7c:b7:2e: f1:c3:1a:a3:d4:64:9f:4e:91:90:c9:d3:7d:d8:e8: ec:b0:e6:30:bc:b7:22:0f:75:4a:8f:32:55:e1:e6: fc:0a:2d:c6:54:29:e3:86:b3:a9:4e:45:ef:8b:b5: af:04:45:71:0b:ca:bf:5d:99:36:67:f3:72:d5:76: 80:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:48:58:8B:CE:A0:E4:D8:44:56:66:6F:4D:74:7E:12:4F:0E:D5:2E X509v3 Authority Key Identifier: keyid:31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.242.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:a1:06:60:7d:46:c5:c8:43:d6:de:87:9b:28:f5:5a:8a:97: a7:53:b7:de:fd:81:ff:0b:06:28:7f:23:69:86:94:e5:3f:37: fe:9a:dc:c5:45:2a:90:52:39:e0:19:bb:f5:d0:51:2e:26:d0: d1:de:10:61:cb:c4:13:1b:08:fd:57:c1:17:23:12:28:79:60: 55:f0:17:29:36:0d:9d:61:55:75:d4:49:41:98:4d:b0:95:94: 5f:3c:7a:20:60:39:90:d8:94:cb:73:4f:77:bb:c1:6b:b7:d2: 2e:1a:d9:8f:16:55:be:5f:ac:cf:58:d2:15:c1:04:4a:08:89: ba:f8:ad:eb:40:f4:93:e2:13:46:d7:34:5d:26:44:0b:00:4a: 60:05:b9:87:80:3c:a4:dd:55:87:09:b3:d5:a3:80:a1:ba:23: b2:79:6a:97:14:a7:63:c7:f3:e5:9c:71:e3:93:09:f3:c7:e4: 8f:84:d2:c7:e8:40:ae:50:fc:eb:3f:60:12:a7:47:51:18:e0: 8e:00:95:5f:66:19:2f:04:91:87:fd:74:f2:ca:52:39:ec:be: ec:04:49:71:0d:58:8f:7e:34:d4:52:65:1f:86:b8:03:c7:48: 1e:2d:58:ff:47:26:aa:8e:85:9e:7a:24:b5:3e:0a:98:14:58: 42:13:7c:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM1sOP9VSO61rN1XLB/aeTzyho34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZE Q0RCQjQwMDAeFw0yNDEwMjIwNjU4NTlaFw0yNTEwMjEwNzAzNTlaMDMxMTAvBgNV BAMTKDdCNDg1ODhCQ0VBMEU0RDg0NDU2NjY2RjRENzQ3RTEyNEYwRUQ1MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhWS8x9Ne+QKTIyTympqs5KhMT fwqwP8c2apsrj6/3+HEx8Ndf/ZaUQs50cADi/EIdqeZT1VhKTgMqgNFwUVk2QvqK r+kU1rsEkUhWQorjfLeqEA4nuxAItGyXl3tVVpu4Eyk5IqChgtAAuqQ0x8hUFokA u55HfWMrvyf+A17ElSnZrQmr8uh5Oa1i/w8k6BbpQOaotv9JVcUOa+9FpzyOzFWy MVUC46DA/BQ3wKiK4ulw2ByQfBjkjst+zAmJ7Hy3LvHDGqPUZJ9OkZDJ033Y6Oyw 5jC8tyIPdUqPMlXh5vwKLcZUKeOGs6lORe+Lta8ERXELyr9dmTZn83LVdoDtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUe0hYi86g5NhEVmZvTXR+Ek8O1S4wHwYDVR0j BBgwFoAUMUmIp58qUi0u0dSsmcSr39zbtAAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGJhNjc3OC1iMTZkLTRiYTgtOTg0Zi0zNGU0MTlmYzljNDkvMC8zMTQ5ODhBNzlG MkE1MjJEMkVEMUQ0QUM5OUM0QUJERkRDREJCNDAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZEQ0RC QjQwMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMxMzAzMzJlMzEzNTMyMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmPIwDQYJ KoZIhvcNAQELBQADggEBABuhBmB9RsXIQ9beh5so9VqKl6dTt979gf8LBih/I2mG lOU/N/6a3MVFKpBSOeAZu/XQUS4m0NHeEGHLxBMbCP1XwRcjEih5YFXwFyk2DZ1h VXXUSUGYTbCVlF88eiBgOZDYlMtzT3e7wWu30i4a2Y8WVb5frM9Y0hXBBEoIibr4 retA9JPiE0bXNF0mRAsASmAFuYeAPKTdVYcJs9WjgKG6I7J5apcUp2PH8+WcceOT CfPH5I+E0sfoQK5Q/Os/YBKnR1EY4I4AlV9mGS8EkYf9dPLKUjnsvuwESXENWI9+ NNRSZR+GuAPHSB4tWP9HJqqOhZ56JLU+CpgUWEITfAQ= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org