$ rpki-client -vvf repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa File: 3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa (raw, json) Hash identifier: njZui3mP1CWZe0H8BsSBs1TRd9EQTjeGC9OsbMLHKdk= Subject key identifier: C2:ED:34:12:29:A9:C9:B3:6F:E8:B6:C4:42:13:D7:8C:8A:99:F1:13 Certificate issuer: /CN=82EE517606C76902159E8886F875EF96B0327C72 Certificate serial: 4ECBD3328BA8945618469F68699AE7D627634145 Authority key identifier: 82:EE:51:76:06:C7:69:02:15:9E:88:86:F8:75:EF:96:B0:32:7C:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa Signing time: Thu 09 Nov 2023 12:00:01 +0000 ROA not before: Thu 09 Nov 2023 11:55:01 +0000 ROA not after: Thu 07 Nov 2024 12:00:01 +0000 asID: 141105 IP address blocks: 103.157.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.crl rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 07:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:cb:d3:32:8b:a8:94:56:18:46:9f:68:69:9a:e7:d6:27:63:41:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82EE517606C76902159E8886F875EF96B0327C72 Validity Not Before: Nov 9 11:55:01 2023 GMT Not After : Nov 7 12:00:01 2024 GMT Subject: CN=C2ED341229A9C9B36FE8B6C44213D78C8A99F113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2c:37:e6:7a:cc:70:6b:1a:b2:96:15:7b:61: b6:ce:85:20:de:93:eb:c2:62:16:b9:06:fa:24:97: 1a:6f:e9:1f:ab:50:72:a3:61:d1:d8:81:85:e5:9c: a2:a2:79:7d:56:7b:e1:57:ca:95:70:b7:d3:95:d2: 80:1a:c5:86:82:24:6e:7b:cb:ff:d1:37:b9:b7:0a: 1b:83:5c:9f:bb:37:2b:1d:05:83:04:9f:ff:33:df: ca:6f:1b:11:7f:01:e9:d2:0a:50:a9:a9:24:e4:31: 34:30:ae:61:80:09:f5:16:d3:86:76:62:6b:65:4a: 11:62:b7:3a:ee:98:63:c8:61:99:11:71:98:ad:50: b9:ff:44:2a:47:da:37:04:a9:2e:9f:e8:a8:71:17: 11:39:8e:1a:3b:ba:e1:fc:13:bb:5f:f7:48:0f:87: 76:a6:bd:0c:b7:d2:03:dc:d4:1b:7a:e7:94:29:1d: f6:42:af:e9:18:32:82:c6:fe:c1:39:c0:5f:78:9c: 1f:df:90:3a:6f:41:4a:b6:e6:17:54:89:88:44:a3: 41:72:3d:d8:92:9f:c1:5d:b2:38:9c:c4:78:a1:07: 5c:14:23:46:0b:67:86:4f:75:dd:40:fa:89:c0:3a: 1f:85:7e:87:b4:d1:12:6c:f7:79:3f:c7:6a:46:24: 73:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:ED:34:12:29:A9:C9:B3:6F:E8:B6:C4:42:13:D7:8C:8A:99:F1:13 X509v3 Authority Key Identifier: keyid:82:EE:51:76:06:C7:69:02:15:9E:88:86:F8:75:EF:96:B0:32:7C:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.24.0/24 Signature Algorithm: sha256WithRSAEncryption ab:1d:73:1d:38:e7:03:f8:b0:58:2b:dd:98:02:55:f5:5a:70: 93:41:26:12:4a:bc:a3:bd:12:a0:ef:e2:6a:b7:fc:c0:70:5b: 77:b1:13:60:b1:27:4a:0b:e9:6f:fe:f5:96:ec:c1:51:a8:e4: 1e:0e:02:83:22:09:1b:60:1d:05:12:0d:97:34:66:ac:b6:ea: 0d:82:b6:aa:7c:e8:4f:09:10:32:26:d5:3e:30:aa:40:8b:95: f8:16:ba:97:cb:27:31:45:10:9a:0a:f4:9b:72:c9:22:7c:4c: 53:78:4c:12:d7:fc:0c:b3:ee:76:36:00:60:88:f2:e3:0d:08: ea:45:87:1b:0b:e1:d4:46:d0:6d:1c:a9:dd:cc:8a:f7:42:79: 9d:d2:a4:48:a1:27:97:2c:95:2a:5b:9d:41:10:8a:72:20:f2: 11:11:03:97:f5:d5:f3:09:50:61:b0:5f:88:ac:52:fe:6c:2e: cf:9d:3f:f5:fd:e3:b1:30:f4:64:bb:c9:ab:f3:a7:ef:a2:61: b6:f9:8e:ac:d1:4a:9b:80:cf:05:86:8c:a7:56:d4:cb:c2:65: fa:43:b1:b6:13:1b:1d:ea:78:1c:79:f9:0b:ab:2a:c8:82:5e: 76:23:dd:05:35:3c:40:f2:55:be:9c:c3:e0:20:a5:2a:a4:68: 7c:10:47:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTsvTMouolFYYRp9oaZrn1idjQUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODJFRTUxNzYwNkM3NjkwMjE1OUU4ODg2Rjg3NUVGOTZC MDMyN0M3MjAeFw0yMzExMDkxMTU1MDFaFw0yNDExMDcxMjAwMDFaMDMxMTAvBgNV BAMTKEMyRUQzNDEyMjlBOUM5QjM2RkU4QjZDNDQyMTNENzhDOEE5OUYxMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpLDfmesxwaxqylhV7YbbOhSDe k+vCYha5Bvoklxpv6R+rUHKjYdHYgYXlnKKieX1We+FXypVwt9OV0oAaxYaCJG57 y//RN7m3ChuDXJ+7NysdBYMEn/8z38pvGxF/AenSClCpqSTkMTQwrmGACfUW04Z2 YmtlShFitzrumGPIYZkRcZitULn/RCpH2jcEqS6f6KhxFxE5jho7uuH8E7tf90gP h3amvQy30gPc1Bt655QpHfZCr+kYMoLG/sE5wF94nB/fkDpvQUq25hdUiYhEo0Fy PdiSn8FdsjicxHihB1wUI0YLZ4ZPdd1A+onAOh+Ffoe00RJs93k/x2pGJHPtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwu00EimpybNv6LbEQhPXjIqZ8RMwHwYDVR0j BBgwFoAUgu5RdgbHaQIVnoiG+HXvlrAyfHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmM2NWI4Yy0zOWU5LTQ3OGQtODc0Mi1jNTM1YjYxYmFlNTkvMC84MkVFNTE3NjA2 Qzc2OTAyMTU5RTg4ODZGODc1RUY5NkIwMzI3QzcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODJFRTUxNzYwNkM3NjkwMjE1OUU4ODg2Rjg3NUVGOTZCMDMy N0M3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYzY1YjhjLTM5ZTktNDc4ZC04 NzQyLWM1MzViNjFiYWU1OS8wLzMxMzAzMzJlMzEzNTM3MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ50YMA0GCSqG SIb3DQEBCwUAA4IBAQCrHXMdOOcD+LBYK92YAlX1WnCTQSYSSryjvRKg7+Jqt/zA cFt3sRNgsSdKC+lv/vWW7MFRqOQeDgKDIgkbYB0FEg2XNGastuoNgraqfOhPCRAy JtU+MKpAi5X4FrqXyycxRRCaCvSbcskifExTeEwS1/wMs+52NgBgiPLjDQjqRYcb C+HURtBtHKndzIr3Qnmd0qRIoSeXLJUqW51BEIpyIPIREQOX9dXzCVBhsF+IrFL+ bC7PnT/1/eOxMPRku8mr86fvomG2+Y6s0UqbgM8FhoynVtTLwmX6Q7G2Exsd6ngc efkLqyrIgl52I90FNTxA8lW+nMPgIKUqpGh8EEd0 -----END CERTIFICATE-----Generated at Thu May 2 08:50:10 2024 by rpki-client on console-fra.rpki-client.org