$ rpki-client -vvf repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa File: 3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa (raw, json) Hash identifier: 6ce+LBa3GICr1Mgt/xtux05v3qPiXp2ZYS6ViLVoXMc= Subject key identifier: E5:D0:D9:7A:46:7D:CF:3E:31:8F:84:2D:4A:C3:FD:1A:BF:BF:BD:0C Certificate issuer: /CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Certificate serial: 21D88476C7622D7DDDB92AE50FBAD37EF395953E Authority key identifier: 5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa Signing time: Mon 01 Jul 2024 01:04:00 +0000 ROA not before: Mon 01 Jul 2024 00:59:00 +0000 ROA not after: Mon 30 Jun 2025 01:04:00 +0000 asID: 136102 IP address blocks: 103.90.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d8:84:76:c7:62:2d:7d:dd:b9:2a:e5:0f:ba:d3:7e:f3:95:95:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F1EC0378C7B3A8912CA32E382D2C083E173E71C Validity Not Before: Jul 1 00:59:00 2024 GMT Not After : Jun 30 01:04:00 2025 GMT Subject: CN=E5D0D97A467DCF3E318F842D4AC3FD1ABFBFBD0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:df:1f:02:2b:9e:00:39:17:0f:4b:0b:88:22: 4d:85:d7:fd:e2:ae:72:7f:58:2c:8a:47:11:8a:15: f4:d3:92:a8:47:c3:b5:6f:09:03:0f:e1:b7:11:07: 6e:4a:9a:1e:e2:97:53:66:ee:d5:97:e5:6d:da:c5: fa:34:58:30:44:01:ea:d9:42:29:b6:bb:d8:25:e9: f5:90:b2:a2:f7:ca:a0:13:0e:c5:ea:ba:45:cb:37: 47:52:5c:29:25:33:48:27:f3:84:45:ec:a4:eb:ff: e7:d3:b7:a3:ab:6c:22:c3:0d:50:89:a1:ba:ed:97: e8:48:43:39:59:b6:0d:f5:00:90:57:ab:ec:f4:4a: 2a:24:2d:36:9e:7f:b5:39:bc:a7:36:ce:76:a0:64: 9e:08:84:c5:e6:1d:a6:44:9e:00:93:82:b0:ac:f2: 92:0d:ec:5b:d0:52:6d:06:62:c5:83:fd:a7:7f:ff: cc:24:5a:19:fc:88:28:11:75:71:c8:53:ab:42:14: 4b:0d:0a:ca:b6:89:b5:a4:09:0f:e0:2c:b1:60:93: 56:23:0d:0b:86:e8:22:3a:61:d4:7e:76:db:77:82: 39:02:9b:1c:ca:bf:05:d5:9c:5c:e5:e0:8f:12:08: 02:9b:5b:d6:29:00:32:91:84:1b:12:43:32:61:7c: 5c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D0:D9:7A:46:7D:CF:3E:31:8F:84:2D:4A:C3:FD:1A:BF:BF:BD:0C X509v3 Authority Key Identifier: keyid:5F:1E:C0:37:8C:7B:3A:89:12:CA:32:E3:82:D2:C0:83:E1:73:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5F1EC0378C7B3A8912CA32E382D2C083E173E71C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4402daa5-fb0c-4a24-9889-33bd50db4fe0/0/3130332e39302e3235302e302f32332d3234203d3e20313336313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.250.0/23 Signature Algorithm: sha256WithRSAEncryption c1:b8:ca:e8:33:0a:b2:b3:2a:03:cd:51:78:b1:88:38:18:c0: d4:93:30:4f:c3:78:9b:c4:54:ea:a6:9c:28:d1:21:84:a2:d2: 62:c3:71:38:eb:67:a2:19:3b:e5:cf:f7:f0:76:9d:c8:75:c5: 84:44:72:2b:66:3d:84:f3:54:78:55:a2:f2:8f:c8:6e:7f:7f: b5:fe:03:72:91:6f:2e:5c:8d:b3:b2:71:9d:48:26:e4:93:2d: e6:1a:48:66:f6:e8:c9:2e:91:85:0a:93:66:eb:2c:ac:a4:e5: 23:48:36:5c:b9:5c:61:8a:cd:12:58:38:e8:fd:b4:96:27:42: 31:06:88:a2:8d:c2:77:f7:09:b0:ac:16:0e:11:22:e6:0d:b9: fb:d1:06:32:04:5d:40:ae:ab:7f:2e:04:0e:20:c1:5f:8f:99: b4:97:d6:fb:56:12:1c:b3:bf:26:09:7a:96:46:ba:98:a6:0b: 91:8b:0a:d5:0f:cf:6e:9c:33:1d:6a:73:54:fa:8b:ee:f6:fb: cc:05:fb:95:6e:9e:62:16:a8:dd:33:bd:3a:83:50:fe:8c:99: 71:7b:c7:9f:39:27:5e:05:fb:2d:e2:5c:c6:1f:7a:fa:c4:6c: 6c:d7:37:51:06:5d:0f:2c:eb:2e:19:ea:dd:c3:f6:41:c3:69: 6d:4a:d3:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIdiEdsdiLX3duSrlD7rTfvOVlT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNF MTczRTcxQzAeFw0yNDA3MDEwMDU5MDBaFw0yNTA2MzAwMTA0MDBaMDMxMTAvBgNV BAMTKEU1RDBEOTdBNDY3RENGM0UzMThGODQyRDRBQzNGRDFBQkZCRkJEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb3x8CK54AORcPSwuIIk2F1/3i rnJ/WCyKRxGKFfTTkqhHw7VvCQMP4bcRB25Kmh7il1Nm7tWX5W3axfo0WDBEAerZ Qim2u9gl6fWQsqL3yqATDsXqukXLN0dSXCklM0gn84RF7KTr/+fTt6OrbCLDDVCJ obrtl+hIQzlZtg31AJBXq+z0SiokLTaef7U5vKc2znagZJ4IhMXmHaZEngCTgrCs 8pIN7FvQUm0GYsWD/ad//8wkWhn8iCgRdXHIU6tCFEsNCsq2ibWkCQ/gLLFgk1Yj DQuG6CI6YdR+dtt3gjkCmxzKvwXVnFzl4I8SCAKbW9YpADKRhBsSQzJhfFwvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5dDZekZ9zz4xj4QtSsP9Gr+/vQwwHwYDVR0j BBgwFoAUXx7AN4x7OokSyjLjgtLAg+Fz5xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDAyZGFhNS1mYjBjLTRhMjQtOTg4OS0zM2JkNTBkYjRmZTAvMC81RjFFQzAzNzhD N0IzQTg5MTJDQTMyRTM4MkQyQzA4M0UxNzNFNzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUYxRUMwMzc4QzdCM0E4OTEyQ0EzMkUzODJEMkMwODNFMTcz RTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0MDJkYWE1LWZiMGMtNGEyNC05 ODg5LTMzYmQ1MGRiNGZlMC8wLzMxMzAzMzJlMzkzMDJlMzIzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1r6MA0GCSqG SIb3DQEBCwUAA4IBAQDBuMroMwqysyoDzVF4sYg4GMDUkzBPw3ibxFTqppwo0SGE otJiw3E462eiGTvlz/fwdp3IdcWERHIrZj2E81R4VaLyj8huf3+1/gNykW8uXI2z snGdSCbkky3mGkhm9ujJLpGFCpNm6yyspOUjSDZcuVxhis0SWDjo/bSWJ0IxBoii jcJ39wmwrBYOESLmDbn70QYyBF1Arqt/LgQOIMFfj5m0l9b7VhIcs78mCXqWRrqY pguRiwrVD89unDMdanNU+ovu9vvMBfuVbp5iFqjdM706g1D+jJlxe8efOSdeBfst 4lzGH3r6xGxs1zdRBl0PLOsuGerdw/ZBw2ltStP3 -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org