$ rpki-client -vvf repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa File: 3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa (raw, json) Hash identifier: DQ+znEqPcyl16X4SmPvFoWIlN09HZaa2OXNKE4v1ZXk= Subject key identifier: 91:C2:3B:0C:A4:83:AC:89:8A:5F:F9:1D:84:64:D0:CD:43:39:0C:8E Certificate issuer: /CN=782659A7F6433029248A38A1C68F2E9971161391 Certificate serial: 510A0BA151D86FC443872CF124D7F05B96C191A8 Authority key identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer Subject info access: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa Signing time: Fri 16 Feb 2024 04:13:47 +0000 ROA not before: Fri 16 Feb 2024 04:08:47 +0000 ROA not after: Fri 14 Feb 2025 04:13:47 +0000 asID: 151588 IP address blocks: 103.55.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.crl rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0a:0b:a1:51:d8:6f:c4:43:87:2c:f1:24:d7:f0:5b:96:c1:91:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782659A7F6433029248A38A1C68F2E9971161391 Validity Not Before: Feb 16 04:08:47 2024 GMT Not After : Feb 14 04:13:47 2025 GMT Subject: CN=91C23B0CA483AC898A5FF91D8464D0CD43390C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:8e:11:31:0d:2a:12:5e:46:6d:f4:8a:d6: a8:7f:20:66:1d:2b:e6:7c:ec:b6:fd:f0:9f:d0:c8: 27:a1:10:45:7d:87:d8:14:10:48:17:8c:fe:7b:9d: 1b:ff:ac:bb:b5:83:d9:bb:58:51:fa:4d:72:1c:b8: 9e:8b:fa:e9:9b:6b:8c:be:96:9d:a9:22:ea:3b:47: ba:a2:03:9b:07:84:73:7b:78:30:2c:1c:69:08:b3: bd:be:50:4f:ad:e7:8c:11:5b:11:45:fb:10:cb:40: d2:53:3b:f2:68:ff:19:cf:41:e7:0f:4d:6b:cb:30: 5e:01:45:c7:da:dc:70:09:24:b0:34:63:cf:08:dd: 64:ae:13:e4:f8:55:f8:7e:16:02:93:eb:98:17:42: 04:0c:6a:37:3d:11:14:7d:af:1c:f2:e4:ec:98:a1: a4:c5:1c:2e:0c:3b:dc:34:e1:28:16:11:2b:a7:33: 8b:af:20:6e:da:2b:13:78:20:1d:b6:d3:85:7d:ed: 76:7b:f1:46:86:d5:c0:93:48:3b:e1:f6:c8:c0:5a: ad:2d:20:d7:50:ec:01:30:e1:9f:9e:18:cc:e1:94: 1c:8c:fb:86:5e:50:bf:91:b0:62:a4:ae:2a:32:9f: e3:8c:de:4d:48:e4:f4:1f:ee:0e:cc:ff:15:6b:ad: 8d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C2:3B:0C:A4:83:AC:89:8A:5F:F9:1D:84:64:D0:CD:43:39:0C:8E X509v3 Authority Key Identifier: keyid:78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.252.0/23 Signature Algorithm: sha256WithRSAEncryption d2:34:5d:30:d5:d2:31:d9:69:e5:53:13:17:57:2a:bd:bb:67: 45:be:b5:f3:5e:c2:5c:1c:e0:41:80:df:ef:34:67:d8:c8:68: 75:bf:e7:43:98:47:8e:9b:40:2c:11:14:23:73:2a:1d:04:89: f4:e1:c7:1e:19:02:11:16:b4:27:d6:ce:dd:9e:07:57:31:e6: 98:ca:f9:6f:35:32:6f:29:32:a3:95:00:3e:85:cb:27:d1:75: c0:46:05:c6:98:90:c9:b9:9c:f6:7c:35:b9:a8:9f:d2:f1:b8: 95:e3:7a:6c:88:19:b4:48:28:05:92:aa:ab:0a:ee:c2:24:39: ec:20:bd:c6:60:29:b6:01:df:66:d3:01:49:b8:2a:75:34:ce: ed:11:42:60:33:ce:c0:fb:b9:26:8c:21:6a:a8:99:06:6e:e1: d8:2b:f9:5c:79:e8:6b:08:83:9f:a7:e3:80:49:50:3e:8d:e8: d5:57:18:3a:f9:b4:6d:94:b5:ef:07:b0:c6:99:15:0c:85:5f: 73:aa:30:c2:1d:93:75:8e:1d:6a:6b:ce:9a:c0:c3:0a:cb:18: 76:2a:ad:76:43:10:fa:4d:0f:51:2d:e5:46:20:19:69:c7:83: df:ff:9d:a9:5c:c1:0b:b0:e6:93:99:ea:a9:f8:26:c0:49:6a: 36:35:06:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUQoLoVHYb8RDhyzxJNfwW5bBkagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjU5QTdGNjQzMzAyOTI0OEEzOEExQzY4RjJFOTk3 MTE2MTM5MTAeFw0yNDAyMTYwNDA4NDdaFw0yNTAyMTQwNDEzNDdaMDMxMTAvBgNV BAMTKDkxQzIzQjBDQTQ4M0FDODk4QTVGRjkxRDg0NjREMENENDMzOTBDOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXI4RMQ0qEl5GbfSK1qh/IGYd K+Z87Lb98J/QyCehEEV9h9gUEEgXjP57nRv/rLu1g9m7WFH6TXIcuJ6L+umba4y+ lp2pIuo7R7qiA5sHhHN7eDAsHGkIs72+UE+t54wRWxFF+xDLQNJTO/Jo/xnPQecP TWvLMF4BRcfa3HAJJLA0Y88I3WSuE+T4Vfh+FgKT65gXQgQMajc9ERR9rxzy5OyY oaTFHC4MO9w04SgWESunM4uvIG7aKxN4IB2204V97XZ78UaG1cCTSDvh9sjAWq0t INdQ7AEw4Z+eGMzhlByM+4ZeUL+RsGKkrioyn+OM3k1I5PQf7g7M/xVrrY2bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkcI7DKSDrImKX/kdhGTQzUM5DI4wHwYDVR0j BBgwFoAUeCZZp/ZDMCkkijihxo8umXEWE5EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTRlMDRmYS03MTg4LTRmNGYtODFiYi0zMzAzODlmODcwMTUvMC83ODI2NTlBN0Y2 NDMzMDI5MjQ4QTM4QTFDNjhGMkU5OTcxMTYxMzkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjU5QTdGNjQzMzAyOTI0OEEzOEExQzY4RjJFOTk3MTE2 MTM5MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNGUwNGZhLTcxODgtNGY0Zi04 MWJiLTMzMDM4OWY4NzAxNS8wLzMxMzAzMzJlMzUzNTJlMzIzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzf8MA0GCSqG SIb3DQEBCwUAA4IBAQDSNF0w1dIx2WnlUxMXVyq9u2dFvrXzXsJcHOBBgN/vNGfY yGh1v+dDmEeOm0AsERQjcyodBIn04cceGQIRFrQn1s7dngdXMeaYyvlvNTJvKTKj lQA+hcsn0XXARgXGmJDJuZz2fDW5qJ/S8biV43psiBm0SCgFkqqrCu7CJDnsIL3G YCm2Ad9m0wFJuCp1NM7tEUJgM87A+7kmjCFqqJkGbuHYK/lceehrCIOfp+OASVA+ jejVVxg6+bRtlLXvB7DGmRUMhV9zqjDCHZN1jh1qa86awMMKyxh2Kq12QxD6TQ9R LeVGIBlpx4Pf/52pXMELsOaTmeqp+CbASWo2NQbe -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org