$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa File: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (raw, json) Hash identifier: Q1RZouAbRj9rNWYYHBYFWZvoZELLl8OZIK8cMQWUDXA= Subject key identifier: 17:12:60:16:A8:E5:1C:48:E7:52:A8:80:E4:2E:D5:06:84:2F:3F:D1 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 2AE7DC5BAB06A2E6EED724BF1D0F1BBCF6C013A3 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa Signing time: Mon 31 Jul 2023 00:03:15 +0000 ROA not before: Sun 30 Jul 2023 23:58:15 +0000 ROA not after: Mon 29 Jul 2024 00:03:15 +0000 asID: 133815 IP address blocks: 103.52.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e7:dc:5b:ab:06:a2:e6:ee:d7:24:bf:1d:0f:1b:bc:f6:c0:13:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jul 30 23:58:15 2023 GMT Not After : Jul 29 00:03:15 2024 GMT Subject: CN=17126016A8E51C48E752A880E42ED506842F3FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9e:72:a5:96:f9:9d:b6:05:21:0d:24:73:d6: 98:8e:25:9b:d7:b0:52:6e:4e:dc:7b:fa:63:d3:23: 76:2e:fa:21:4b:f1:11:57:5e:3d:22:fa:62:88:c2: 56:9a:46:70:7b:1d:53:e6:e0:51:50:6d:49:ef:b8: 1f:ea:f8:32:7a:54:2c:55:ff:71:2e:eb:cf:1a:77: f4:22:39:9a:2b:86:e3:5d:62:0a:79:4e:95:bb:bb: 24:55:b6:fe:e4:9c:51:15:2a:7d:d9:42:dc:fd:37: fa:33:0e:0a:a4:be:7b:54:1e:fa:a3:c2:c6:87:56: f9:61:a9:c2:5a:bc:73:a6:ce:e4:e2:29:09:5a:e2: f9:fd:5a:ba:21:2e:a5:c1:30:30:ce:c5:02:db:4d: 52:cb:66:fd:51:a5:40:2a:79:57:9c:d7:2c:da:cd: d3:ef:2f:72:bf:f1:ec:3a:9a:54:b8:4b:09:24:89: 7d:60:27:58:99:c5:2c:b9:e0:8f:ea:62:0d:ca:aa: 5e:ff:be:57:19:69:6b:93:f6:66:fa:c2:ea:2f:cb: 0e:23:99:de:aa:49:db:94:9d:e8:93:12:f6:01:48: b4:08:37:5e:78:95:bb:05:e5:9a:2b:71:84:7b:6a: a2:ae:c6:8e:04:6e:06:82:6f:0f:36:88:4f:b4:04: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:12:60:16:A8:E5:1C:48:E7:52:A8:80:E4:2E:D5:06:84:2F:3F:D1 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.44.0/22 Signature Algorithm: sha256WithRSAEncryption 18:05:40:39:ca:7f:90:cb:24:48:99:2e:69:3b:77:ea:53:af: d6:d7:4c:4b:62:f6:0f:d6:12:f1:f7:b5:26:d0:a5:07:2e:a8: e9:19:bc:2e:6f:0d:ce:bc:16:24:d0:be:d8:6f:89:c9:11:0a: d1:f3:c6:7e:ac:fd:01:b1:c9:3a:0a:a5:85:a4:b1:cc:ba:9b: 9e:d0:e3:02:6b:1a:5e:bd:94:86:ce:1b:39:57:8c:16:5d:fd: dc:86:a1:bb:f0:91:4f:03:5b:d6:40:ac:bd:6b:60:5d:d1:2f: f2:f3:3c:80:c0:c3:cc:03:c9:26:fa:36:c0:65:8b:e8:06:27: 11:c9:3d:b2:d9:ad:d7:4c:e2:14:4b:df:82:7b:4e:58:d8:ec: f5:f6:79:d6:f4:22:cb:32:43:bc:04:6a:63:d1:08:89:63:6f: e4:93:5e:30:c5:65:37:1b:98:bf:b7:9f:22:d2:f3:b5:28:a8: 53:e2:15:87:0e:62:ce:7f:ba:39:39:1d:2b:b9:71:5f:29:18: b4:93:46:9d:a2:f0:91:b3:8a:15:63:ed:61:91:47:53:f5:58: 74:0a:dd:07:3d:78:0e:1e:bc:bb:00:a7:c5:65:23:ad:09:26: 41:a4:01:37:76:88:0e:62:23:65:76:69:78:a1:f9:be:66:1c: 61:96:c9:54 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKufcW6sGoubu1yS/HQ8bvPbAE6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yMzA3MzAyMzU4MTVaFw0yNDA3MjkwMDAzMTVaMDMxMTAvBgNV BAMTKDE3MTI2MDE2QThFNTFDNDhFNzUyQTg4MEU0MkVENTA2ODQyRjNGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHnnKllvmdtgUhDSRz1piOJZvX sFJuTtx7+mPTI3Yu+iFL8RFXXj0i+mKIwlaaRnB7HVPm4FFQbUnvuB/q+DJ6VCxV /3Eu688ad/QiOZorhuNdYgp5TpW7uyRVtv7knFEVKn3ZQtz9N/ozDgqkvntUHvqj wsaHVvlhqcJavHOmzuTiKQla4vn9WrohLqXBMDDOxQLbTVLLZv1RpUAqeVec1yza zdPvL3K/8ew6mlS4SwkkiX1gJ1iZxSy54I/qYg3Kql7/vlcZaWuT9mb6wuovyw4j md6qSduUneiTEvYBSLQIN154lbsF5ZorcYR7aqKuxo4EbgaCbw82iE+0BLRzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFxJgFqjlHEjnUqiA5C7VBoQvP9EwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMxMzAzMzJlMzUzMjJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc0LDANBgkqhkiG 9w0BAQsFAAOCAQEAGAVAOcp/kMskSJkuaTt36lOv1tdMS2L2D9YS8fe1JtClBy6o 6Rm8Lm8NzrwWJNC+2G+JyREK0fPGfqz9AbHJOgqlhaSxzLqbntDjAmsaXr2Uhs4b OVeMFl393Iahu/CRTwNb1kCsvWtgXdEv8vM8gMDDzAPJJvo2wGWL6AYnEck9stmt 10ziFEvfgntOWNjs9fZ51vQiyzJDvARqY9EIiWNv5JNeMMVlNxuYv7efItLztSio U+IVhw5izn+6OTkdK7lxXykYtJNGnaLwkbOKFWPtYZFHU/VYdArdBz14Dh68uwCn xWUjrQkmQaQBN3aIDmIjZXZpeKH5vmYcYZbJVA== -----END CERTIFICATE-----Generated at Thu May 2 22:27:16 2024 by rpki-client on console-ams.rpki-client.org