$ rpki-client -vvf repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa File: 3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa (raw, json) Hash identifier: uUdG4SGiybweBVH5rVedbcrvTamlpHOnLNXLU4+Tbhc= Subject key identifier: 2E:44:29:9F:9A:71:CD:A5:EC:FA:15:C2:1E:30:05:E2:8D:4A:37:18 Certificate issuer: /CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Certificate serial: 3712CDF4BF57B67023710B3DB22C11E75F364213 Authority key identifier: 10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa Signing time: Wed 23 Oct 2024 04:00:00 +0000 ROA not before: Wed 23 Oct 2024 03:55:00 +0000 ROA not after: Wed 22 Oct 2025 04:00:00 +0000 asID: 150470 IP address blocks: 103.51.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:12:cd:f4:bf:57:b6:70:23:71:0b:3d:b2:2c:11:e7:5f:36:42:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Validity Not Before: Oct 23 03:55:00 2024 GMT Not After : Oct 22 04:00:00 2025 GMT Subject: CN=2E44299F9A71CDA5ECFA15C21E3005E28D4A3718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:69:be:30:0e:a2:71:6e:25:69:75:e1:f4:31: 4c:70:09:97:62:ad:46:a0:1b:d0:4c:3b:06:76:d9: 7d:4c:8a:1e:b2:27:2d:78:c1:41:3e:58:2b:56:1b: b3:75:42:f0:2f:30:93:be:31:7d:d5:5e:2a:26:29: 76:9e:58:ee:2f:65:9e:7d:04:a6:e3:40:65:2c:06: 58:d2:19:27:80:c0:86:26:a0:59:ab:d7:de:42:7e: 91:3c:2f:26:5c:30:f0:d4:7e:e3:4b:24:a8:02:f0: 41:d3:0b:73:e0:81:ed:bb:f6:45:9f:69:22:e8:41: 68:b8:c5:6f:67:a2:ca:24:3f:70:d9:18:aa:57:fd: dc:93:2e:7b:93:6d:a4:c6:22:23:4b:42:81:38:53: 5b:24:5e:fd:e3:a1:a4:39:4c:82:c3:05:49:7e:29: 30:9a:22:8a:40:59:58:37:08:0b:42:6c:99:1e:2e: f2:c5:50:97:34:3c:e7:92:d6:a4:a7:a3:95:1b:0b: fc:9d:fd:38:29:e0:df:da:7a:6e:f5:83:ae:48:63: d8:00:ef:37:16:76:0d:a7:18:2e:40:8d:48:19:6b: 76:15:f4:04:0b:a8:72:20:57:70:fe:12:2b:64:c3: 63:96:5a:6b:e2:96:5a:71:d0:f5:e1:b4:52:99:e8: 2c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:44:29:9F:9A:71:CD:A5:EC:FA:15:C2:1E:30:05:E2:8D:4A:37:18 X509v3 Authority Key Identifier: keyid:10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.122.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:34:67:1b:df:16:b2:d4:d3:e6:dd:92:48:15:8f:5e:96:af: 05:9d:dd:db:49:ce:52:68:b4:78:36:83:0b:4d:ad:07:85:92: 1a:2c:a8:31:3e:e7:af:e5:7c:7a:69:46:33:46:bb:1b:65:9e: c2:00:70:3d:d8:8f:44:a0:b8:4c:25:61:48:ee:fa:d7:ce:7e: 14:53:f7:33:f8:43:31:07:fd:fe:92:fc:24:4f:84:d4:8a:5f: c5:c8:54:66:f0:5c:bc:4f:9e:1c:90:72:da:5c:a4:32:5e:0e: 93:d6:d0:40:02:74:bc:e7:7c:1b:d3:6d:b6:b8:86:18:38:2f: e2:a9:9b:74:00:9e:0c:63:bd:5a:74:99:d4:48:93:c1:9b:c5: f1:5d:de:bd:ff:d5:9a:38:bd:71:28:be:78:3d:ed:2e:69:2f: d2:77:89:77:a8:7b:7a:fe:7d:65:87:fb:4e:69:66:cc:c2:b1: 86:37:f4:d3:13:de:10:23:70:c7:e7:46:10:f1:f2:60:de:e3: 45:0c:01:e2:51:e1:ed:71:ec:0f:c1:10:d5:15:79:a4:68:bf: 4d:a8:ca:b9:5b:92:5e:48:a3:cc:78:e6:58:5b:e1:ab:1a:1e: 69:77:38:31:3a:5c:78:a1:23:3c:d8:49:69:9d:7a:6d:f8:55: cb:ea:2f:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNxLN9L9XtnAjcQs9siwR5182QhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1 Mzg5QkI1OTAeFw0yNDEwMjMwMzU1MDBaFw0yNTEwMjIwNDAwMDBaMDMxMTAvBgNV BAMTKDJFNDQyOTlGOUE3MUNEQTVFQ0ZBMTVDMjFFMzAwNUUyOEQ0QTM3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIab4wDqJxbiVpdeH0MUxwCZdi rUagG9BMOwZ22X1Mih6yJy14wUE+WCtWG7N1QvAvMJO+MX3VXiomKXaeWO4vZZ59 BKbjQGUsBljSGSeAwIYmoFmr195CfpE8LyZcMPDUfuNLJKgC8EHTC3Pgge279kWf aSLoQWi4xW9nosokP3DZGKpX/dyTLnuTbaTGIiNLQoE4U1skXv3joaQ5TILDBUl+ KTCaIopAWVg3CAtCbJkeLvLFUJc0POeS1qSno5UbC/yd/Tgp4N/aem71g65IY9gA 7zcWdg2nGC5AjUgZa3YV9AQLqHIgV3D+Eitkw2OWWmvillpx0PXhtFKZ6CyhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULkQpn5pxzaXs+hXCHjAF4o1KNxgwHwYDVR0j BBgwFoAUEExPz4iPPIa4wSjYHFuV/lOJu1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjhlZWM1Yi01MzI0LTQ0MjItYTMyZi05YjFkY2VkMzc1OWYvMC8xMDRDNEZDRjg4 OEYzQzg2QjhDMTI4RDgxQzVCOTVGRTUzODlCQjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1Mzg5 QkI1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyOGVlYzViLTUzMjQtNDQyMi1h MzJmLTliMWRjZWQzNzU5Zi8wLzMxMzAzMzJlMzUzMTJlMzEzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzN6MA0GCSqG SIb3DQEBCwUAA4IBAQAdNGcb3xay1NPm3ZJIFY9elq8Fnd3bSc5SaLR4NoMLTa0H hZIaLKgxPuev5Xx6aUYzRrsbZZ7CAHA92I9EoLhMJWFI7vrXzn4UU/cz+EMxB/3+ kvwkT4TUil/FyFRm8Fy8T54ckHLaXKQyXg6T1tBAAnS853wb0222uIYYOC/iqZt0 AJ4MY71adJnUSJPBm8XxXd69/9WaOL1xKL54Pe0uaS/Sd4l3qHt6/n1lh/tOaWbM wrGGN/TTE94QI3DH50YQ8fJg3uNFDAHiUeHtcewPwRDVFXmkaL9NqMq5W5JeSKPM eOZYW+GrGh5pdzgxOlx4oSM82ElpnXpt+FXL6i/D -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org