$ rpki-client -vvf repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa File: 3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa (raw, json) Hash identifier: IG7iZEXbFHO4xLgOmo6o/7KH2TIUqm7sDNEwcVuQSOg= Subject key identifier: 5A:F9:21:2D:1A:DE:9D:E6:8E:5C:31:1F:91:76:02:F6:37:65:75:8B Certificate issuer: /CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Certificate serial: 3E149CDCEE095BAE879DB52AFEA6F46DA93DFE55 Authority key identifier: 5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa Signing time: Fri 26 Jul 2024 08:02:43 +0000 ROA not before: Fri 26 Jul 2024 07:57:43 +0000 ROA not after: Fri 25 Jul 2025 08:02:43 +0000 asID: 136102 IP address blocks: 103.10.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:14:9c:dc:ee:09:5b:ae:87:9d:b5:2a:fe:a6:f4:6d:a9:3d:fe:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Validity Not Before: Jul 26 07:57:43 2024 GMT Not After : Jul 25 08:02:43 2025 GMT Subject: CN=5AF9212D1ADE9DE68E5C311F917602F63765758B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3a:0c:28:c5:52:e0:0e:5d:4b:88:05:ef:12: 00:86:77:47:2b:44:7a:c5:92:d9:a6:9a:88:bf:f5: e2:bb:e4:ce:72:eb:77:1c:8d:a5:d6:47:92:25:8b: 65:ba:fd:1a:17:e8:28:13:0a:fd:50:8f:5e:87:94: de:93:ee:b8:5d:ff:7b:d0:58:e8:ec:0f:6d:d1:25: 4a:0c:96:bf:da:8d:6d:5b:9d:5e:a9:1f:ed:68:f7: a2:a9:32:89:c9:34:cb:2b:30:e9:b0:d1:ba:23:fe: 55:d5:1e:f0:15:00:c4:92:13:0a:47:8b:ca:e5:d5: 0a:a2:8c:0c:20:28:e9:f9:6f:19:ce:a9:5a:74:70: 43:54:c5:d2:42:8c:b8:0b:97:d3:b3:de:9a:8f:96: 7c:54:bf:81:1f:22:53:b5:28:c8:92:77:5e:71:bc: ec:19:ce:48:d0:26:cb:94:c8:55:ab:86:a0:4c:86: 53:ad:c3:d6:64:44:5a:f7:6a:69:96:7c:24:87:fe: 0b:58:58:08:84:32:c5:b3:4f:f6:15:7d:1b:96:94: 91:4b:e4:52:e8:ba:ad:d2:80:0b:47:43:cf:27:35: bf:b2:1e:86:92:24:4e:ac:66:99:11:f3:ed:8e:9c: 82:d8:c1:9b:9f:33:e8:9e:b1:b5:0f:9a:f9:e7:0a: 49:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F9:21:2D:1A:DE:9D:E6:8E:5C:31:1F:91:76:02:F6:37:65:75:8B X509v3 Authority Key Identifier: keyid:5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e31302e3134382e302f32322d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.148.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:0c:e9:96:ab:9f:19:a1:50:ac:1a:c3:64:4d:27:8e:6f:10: 44:10:97:d3:15:15:26:ed:61:f7:60:0c:a2:57:84:df:6b:4f: 5c:9b:64:50:95:94:77:bb:21:79:4c:16:45:5a:f1:0f:33:8e: a9:44:b7:05:25:7e:6d:30:7a:36:d1:ef:f4:dd:85:61:07:93: 23:a1:d2:98:ce:62:86:29:25:01:9d:58:f8:61:d9:4d:43:71: 3e:6e:89:a3:ad:8a:ee:49:73:8d:d6:0f:ec:de:b2:87:c9:da: 2a:a5:87:02:e4:a2:e4:3b:a1:3f:ad:c6:13:6f:7e:15:33:fb: a0:0d:49:ae:07:5d:a3:87:ec:5e:59:ba:ac:d1:0d:5e:e9:97: bb:d7:ba:ba:5b:5d:4d:10:7f:dd:cc:ac:1d:7c:03:73:39:d0: 3f:db:30:68:e9:86:e7:5b:d9:6d:d4:28:a0:c2:95:a4:f9:03: 87:7c:39:28:7f:36:f2:ae:2f:50:6e:ca:c5:d6:46:0e:28:a9: a1:60:8e:cf:a9:e9:49:3d:f4:9d:3a:10:00:1c:32:86:45:05: ef:64:3f:32:f1:34:a8:3e:ab:ae:d6:1f:8e:1a:dd:70:12:d6: 54:f6:c5:b1:9b:e0:d6:32:cd:06:40:c5:9e:1b:5d:d5:72:61: 69:32:d9:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPhSc3O4JW66HnbUq/qb0bak9/lUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNF MTczRTcxQzAeFw0yNDA3MjYwNzU3NDNaFw0yNTA3MjUwODAyNDNaMDMxMTAvBgNV BAMTKDVBRjkyMTJEMUFERTlERTY4RTVDMzExRjkxNzYwMkY2Mzc2NTc1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOgwoxVLgDl1LiAXvEgCGd0cr RHrFktmmmoi/9eK75M5y63ccjaXWR5Ili2W6/RoX6CgTCv1Qj16HlN6T7rhd/3vQ WOjsD23RJUoMlr/ajW1bnV6pH+1o96KpMonJNMsrMOmw0boj/lXVHvAVAMSSEwpH i8rl1QqijAwgKOn5bxnOqVp0cENUxdJCjLgLl9Oz3pqPlnxUv4EfIlO1KMiSd15x vOwZzkjQJsuUyFWrhqBMhlOtw9ZkRFr3ammWfCSH/gtYWAiEMsWzT/YVfRuWlJFL 5FLouq3SgAtHQ88nNb+yHoaSJE6sZpkR8+2OnILYwZufM+iesbUPmvnnCknhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWvkhLRreneaOXDEfkXYC9jdldYswHwYDVR0j BBgwFoAUXx7AN4x7OokSyjLjgtLAg+Fz5xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDAyZGFhNS1mYjBjLTRhMjQtOTg4OS0zM2JkNTBkYjRmZTAvMC81RjFFQzAzNzhD N0IzQTg5MTJDQTMyRTM4MkQyQzA4M0UxNzNFNzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNFMTcz RTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzEzMDJlMzEzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZwqUMA0GCSqG SIb3DQEBCwUAA4IBAQBNDOmWq58ZoVCsGsNkTSeObxBEEJfTFRUm7WH3YAyiV4Tf a09cm2RQlZR3uyF5TBZFWvEPM46pRLcFJX5tMHo20e/03YVhB5MjodKYzmKGKSUB nVj4YdlNQ3E+bomjrYruSXON1g/s3rKHydoqpYcC5KLkO6E/rcYTb34VM/ugDUmu B12jh+xeWbqs0Q1e6Ze717q6W11NEH/dzKwdfANzOdA/2zBo6YbnW9lt1CigwpWk +QOHfDkofzbyri9QbsrF1kYOKKmhYI7PqelJPfSdOhAAHDKGRQXvZD8y8TSoPquu 1h+OGt1wEtZU9sWxm+DWMs0GQMWeG13VcmFpMtnZ -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org