$ rpki-client -vvf repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa File: 3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa (raw, json) Hash identifier: 9eTzVSPH+omA3cV5yyIW0hWjWwQg4yB4G18BN8FCyjg= Subject key identifier: 1D:85:42:A0:7C:74:A5:DA:94:C1:31:06:EF:9F:85:56:4E:F3:C9:53 Certificate issuer: /CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Certificate serial: 59981C89EAC41CEA46A4DEE61FA49E4E8ADEEA40 Authority key identifier: 79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa Signing time: Wed 12 Jun 2024 15:42:35 +0000 ROA not before: Wed 12 Jun 2024 15:37:35 +0000 ROA not after: Wed 11 Jun 2025 15:42:35 +0000 asID: 149976 IP address blocks: 103.157.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:98:1c:89:ea:c4:1c:ea:46:a4:de:e6:1f:a4:9e:4e:8a:de:ea:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Validity Not Before: Jun 12 15:37:35 2024 GMT Not After : Jun 11 15:42:35 2025 GMT Subject: CN=1D8542A07C74A5DA94C13106EF9F85564EF3C953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9b:6c:27:db:18:85:56:cb:8c:5b:21:35:24: 87:a4:be:8d:a6:14:32:36:11:e5:c9:78:20:7c:ea: 81:98:ea:a3:b0:40:e1:63:c7:42:41:6f:f6:1c:1c: 4c:43:15:fc:bc:0b:b1:8d:81:19:42:7b:7f:08:f4: 2c:77:69:33:e7:66:1b:e6:f8:1a:a7:2b:50:a5:77: 3a:1a:27:f6:07:5e:43:76:8c:ed:1c:5a:5f:e3:9b: ef:2c:59:df:68:53:7d:93:b7:55:2e:0f:98:8f:1d: b5:07:a6:02:9b:09:84:18:64:80:17:c1:8d:5a:b3: 36:3a:30:7a:ae:fd:17:24:fd:f7:e6:68:0f:f3:54: 2a:5c:f9:34:10:cb:89:e6:3f:b4:f9:51:ef:8e:6d: da:c1:84:a2:98:35:9e:b7:ee:31:42:64:e9:a5:84: cf:98:aa:5b:8d:0b:bc:11:04:37:f6:7a:ec:bf:5a: e4:53:0f:c8:b4:d9:5f:de:76:52:9f:a6:4a:bc:3e: b0:c5:e7:3a:4b:6a:11:66:4d:c4:fd:01:3f:e3:c2: e6:15:58:1b:a3:5e:99:5e:54:2b:ed:98:ba:f5:54: 0f:b0:5d:67:c0:f8:38:29:0f:1a:83:21:fc:89:fe: 50:a1:5c:e9:b1:ec:4a:7b:b5:2b:42:3c:85:06:54: e8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:85:42:A0:7C:74:A5:DA:94:C1:31:06:EF:9F:85:56:4E:F3:C9:53 X509v3 Authority Key Identifier: keyid:79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.62.0/23 Signature Algorithm: sha256WithRSAEncryption 91:92:e0:a0:9e:48:74:f9:55:74:2d:09:8c:37:0f:e3:36:67: 92:16:53:7a:8d:7e:aa:9c:b0:ec:f5:1a:a8:d9:56:07:99:3f: 9d:1e:14:ea:7c:95:d7:7c:09:47:88:6d:0f:cb:7e:5c:80:5c: 8c:35:cd:81:1a:b4:d9:f1:a5:20:10:ff:89:0c:4b:5d:ba:18: 7e:58:82:d2:1b:6a:c7:66:e6:c9:1f:02:5d:b0:99:c5:3d:5e: 01:c3:6d:6d:a5:59:75:cf:01:f4:22:4b:f5:af:5e:63:ea:8c: d2:9f:31:59:a4:0a:22:29:52:6d:16:a2:88:6c:e8:d0:cc:af: 23:48:b1:57:c0:fa:b6:ac:8f:ac:e2:d7:b8:4a:56:5d:7c:50: c7:19:09:b8:0c:7f:82:82:72:0c:f4:6e:1b:ab:ae:a6:80:fb: 60:2a:76:37:fa:ce:5f:4d:ec:b3:c5:07:bf:be:ba:88:a0:5c: dd:49:bd:7a:52:a1:26:6e:b8:90:8e:9b:e9:11:b0:2e:ff:ce: 3c:c2:cb:fe:3b:18:2d:be:41:1b:af:16:8c:f4:c2:94:0a:23: 78:5d:b7:bb:a7:97:0c:5d:4f:b3:c1:b4:69:0f:d8:3d:ed:ee: ed:c3:98:86:80:b2:99:a0:11:78:a4:27:72:95:ab:64:e2:95: 29:a2:80:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWZgcierEHOpGpN7mH6SeTore6kAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzND QUQyNkRENTAeFw0yNDA2MTIxNTM3MzVaFw0yNTA2MTExNTQyMzVaMDMxMTAvBgNV BAMTKDFEODU0MkEwN0M3NEE1REE5NEMxMzEwNkVGOUY4NTU2NEVGM0M5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4m2wn2xiFVsuMWyE1JIekvo2m FDI2EeXJeCB86oGY6qOwQOFjx0JBb/YcHExDFfy8C7GNgRlCe38I9Cx3aTPnZhvm +BqnK1CldzoaJ/YHXkN2jO0cWl/jm+8sWd9oU32Tt1UuD5iPHbUHpgKbCYQYZIAX wY1aszY6MHqu/Rck/ffmaA/zVCpc+TQQy4nmP7T5Ue+ObdrBhKKYNZ637jFCZOml hM+YqluNC7wRBDf2euy/WuRTD8i02V/edlKfpkq8PrDF5zpLahFmTcT9AT/jwuYV WBujXpleVCvtmLr1VA+wXWfA+DgpDxqDIfyJ/lChXOmx7Ep7tStCPIUGVOibAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHYVCoHx0pdqUwTEG75+FVk7zyVMwHwYDVR0j BBgwFoAUeYlE9/vFfVz79fG7aA8tc8rSbdUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmQzMDU4Ny1hN2NhLTQxOTUtYTM1OS0wYzBmNjI3YWY4ZGEvMC83OTg5NDRGN0ZC QzU3RDVDRkJGNUYxQkI2ODBGMkQ3M0NBRDI2REQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzNDQUQy NkRENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZDMwNTg3LWE3Y2EtNDE5NS1h MzU5LTBjMGY2MjdhZjhkYS8wLzMxMzAzMzJlMzEzNTM3MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ50+MA0GCSqG SIb3DQEBCwUAA4IBAQCRkuCgnkh0+VV0LQmMNw/jNmeSFlN6jX6qnLDs9Rqo2VYH mT+dHhTqfJXXfAlHiG0Py35cgFyMNc2BGrTZ8aUgEP+JDEtduhh+WILSG2rHZubJ HwJdsJnFPV4Bw21tpVl1zwH0Ikv1r15j6ozSnzFZpAoiKVJtFqKIbOjQzK8jSLFX wPq2rI+s4te4SlZdfFDHGQm4DH+CgnIM9G4bq66mgPtgKnY3+s5fTeyzxQe/vrqI oFzdSb16UqEmbriQjpvpEbAu/848wsv+OxgtvkEbrxaM9MKUCiN4Xbe7p5cMXU+z wbRpD9g97e7tw5iGgLKZoBF4pCdylatk4pUpooAl -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org