$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa File: 3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa (raw, json) Hash identifier: zwB5l8LT24BhLoLaBW1yBvtnyWEzq+AG9lc9wMoAgJg= Subject key identifier: A5:B9:5C:17:B0:6F:1D:18:22:EB:09:19:3A:F7:AB:29:E1:B5:E1:BC Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 5A3EE9487E9981A0906B1391FC2F9F35DBEDD965 Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa Signing time: Mon 08 Apr 2024 15:19:17 +0000 ROA not before: Mon 08 Apr 2024 15:14:17 +0000 ROA not after: Mon 07 Apr 2025 15:19:17 +0000 asID: 151994 IP address blocks: 103.255.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3e:e9:48:7e:99:81:a0:90:6b:13:91:fc:2f:9f:35:db:ed:d9:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Apr 8 15:14:17 2024 GMT Not After : Apr 7 15:19:17 2025 GMT Subject: CN=A5B95C17B06F1D1822EB09193AF7AB29E1B5E1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:77:80:c1:4f:22:30:0b:0e:cc:46:49:53:11: e9:8e:1f:3e:23:15:c4:64:3a:3a:2d:b5:a0:e9:24: 49:fb:19:5d:43:6d:b2:1f:a5:50:63:b1:35:f0:4e: b0:5a:a9:b3:71:a9:52:f7:16:99:d5:3d:e8:26:8a: 4d:bb:31:de:44:6a:21:6d:ad:f3:c6:47:7b:76:5a: e6:31:00:e6:65:3b:56:53:40:65:41:17:14:ba:0d: 06:9f:1e:39:a3:14:8c:a5:e4:0b:b5:96:b9:d5:12: 4b:75:6d:12:fb:2a:77:a9:78:3d:05:c2:81:3b:d1: 1c:ac:bb:fa:0f:9c:26:b3:3f:c8:60:42:cc:1d:32: 21:9f:c9:80:e1:d4:a0:15:09:d4:c2:25:bf:34:6d: 4a:2d:e4:02:b4:e9:50:72:dd:13:c2:55:5c:0a:74: 10:1b:97:ca:df:17:9f:ef:98:d1:f6:08:da:67:3e: 3e:0b:98:0c:30:fe:f2:e1:92:57:5b:8f:91:87:3b: 64:22:aa:07:d0:29:20:fe:1e:e2:5a:3d:10:fa:2b: 6e:b5:25:ae:fa:43:30:f7:2b:f0:50:74:59:6e:f0: 6a:8f:4e:a8:2f:b6:15:3c:75:a8:f0:3f:5b:63:b7: 15:71:a0:c1:bf:38:3f:9f:d0:b0:21:ee:25:15:cf: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B9:5C:17:B0:6F:1D:18:22:EB:09:19:3A:F7:AB:29:E1:B5:E1:BC X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.164.0/24 Signature Algorithm: sha256WithRSAEncryption 59:c0:6d:97:ea:aa:ee:47:fb:7f:ce:f8:91:47:0e:8d:42:83: da:b6:3d:3d:d6:3f:05:10:d5:60:97:1a:c3:18:ec:6b:af:83: 8f:3a:fb:ff:80:3e:99:5e:51:28:09:fa:5a:de:c2:1c:fd:91: 64:c5:cf:89:6d:49:44:e1:43:8a:0d:8a:a9:1d:0b:53:d8:13: 4d:96:24:7e:f1:a5:46:84:9a:3c:22:1a:6a:ba:16:a7:44:fe: 26:75:5f:1f:c4:dd:32:ea:3b:36:c9:5f:41:71:37:7c:8a:78: 1d:16:6a:29:c2:a3:3a:e1:0f:60:2a:eb:d4:a4:ee:e2:df:68: ad:b1:54:74:e8:b3:18:3f:c5:4d:85:37:de:71:99:c8:26:41: e8:12:7d:7b:cb:80:56:fa:e8:ee:26:6e:22:44:81:68:f5:ad: 17:ae:36:46:45:1a:ef:c0:88:9d:9c:39:cc:76:15:6f:41:4f: 61:7c:24:38:2a:29:10:57:c8:63:8f:8e:81:3c:4e:fb:84:3b: c2:26:d4:7a:0c:ca:bb:45:e5:9d:ea:ce:28:7e:37:22:e9:8c: 10:ae:b2:3f:cc:93:0b:75:ed:75:7d:d6:52:84:2f:9a:69:20: d9:39:9f:77:8d:77:07:9b:f0:24:6e:6f:b3:14:b6:73:01:cc: 9e:da:85:81 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWj7pSH6ZgaCQaxOR/C+fNdvt2WUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNDA0MDgxNTE0MTdaFw0yNTA0MDcxNTE5MTdaMDMxMTAvBgNV BAMTKEE1Qjk1QzE3QjA2RjFEMTgyMkVCMDkxOTNBRjdBQjI5RTFCNUUxQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxd4DBTyIwCw7MRklTEemOHz4j FcRkOjottaDpJEn7GV1DbbIfpVBjsTXwTrBaqbNxqVL3FpnVPegmik27Md5EaiFt rfPGR3t2WuYxAOZlO1ZTQGVBFxS6DQafHjmjFIyl5Au1lrnVEkt1bRL7KnepeD0F woE70Rysu/oPnCazP8hgQswdMiGfyYDh1KAVCdTCJb80bUot5AK06VBy3RPCVVwK dBAbl8rfF5/vmNH2CNpnPj4LmAww/vLhkldbj5GHO2QiqgfQKSD+HuJaPRD6K261 Ja76QzD3K/BQdFlu8GqPTqgvthU8dajwP1tjtxVxoMG/OD+f0LAh7iUVz5SVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpblcF7BvHRgi6wkZOverKeG14bwwHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/6QwDQYJ KoZIhvcNAQELBQADggEBAFnAbZfqqu5H+3/O+JFHDo1Cg9q2PT3WPwUQ1WCXGsMY 7Guvg486+/+APpleUSgJ+lrewhz9kWTFz4ltSUThQ4oNiqkdC1PYE02WJH7xpUaE mjwiGmq6FqdE/iZ1Xx/E3TLqOzbJX0FxN3yKeB0WainCozrhD2Aq69Sk7uLfaK2x VHTosxg/xU2FN95xmcgmQegSfXvLgFb66O4mbiJEgWj1rReuNkZFGu/AiJ2cOcx2 FW9BT2F8JDgqKRBXyGOPjoE8TvuEO8Im1HoMyrtF5Z3qzih+NyLpjBCusj/Mkwt1 7XV91lKEL5ppINk5n3eNdweb8CRub7MUtnMBzJ7ahYE= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org