$ rpki-client -vvf repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: kqMJU8kz62ENz/kMr1+leae/U8SugiVYAP2XMec4n8Y= Subject key identifier: 33:95:FB:D1:01:AF:39:D4:FB:CE:E9:D9:27:ED:25:22:94:AF:40:C3 Certificate issuer: /CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Certificate serial: 54F8D2B247656E04B1619BFF65612CD87425EED9 Authority key identifier: 53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:00:47 +0000 ROA not before: Wed 03 Jan 2024 08:55:47 +0000 ROA not after: Wed 01 Jan 2025 09:00:47 +0000 asID: 135478 IP address blocks: 103.129.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f8:d2:b2:47:65:6e:04:b1:61:9b:ff:65:61:2c:d8:74:25:ee:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Validity Not Before: Jan 3 08:55:47 2024 GMT Not After : Jan 1 09:00:47 2025 GMT Subject: CN=3395FBD101AF39D4FBCEE9D927ED252294AF40C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b7:9f:08:79:4c:1a:97:f3:b4:f9:ba:a6:b6: 1b:01:16:3e:19:2a:d1:a3:fa:95:47:bb:3e:25:5b: 44:c2:24:d8:cc:75:08:ad:e2:da:79:d8:d0:37:b6: a6:c9:36:11:56:6a:ac:f7:cd:08:fe:b7:60:34:0a: b9:0d:94:7a:18:dc:1d:e1:f5:2c:46:b4:af:0f:1c: 26:df:e7:5a:92:0b:e9:8c:49:28:21:f4:63:77:76: 27:a2:c7:42:b4:4e:40:2d:ff:0c:c1:3e:0b:54:77: 5d:1c:e8:c8:26:92:a4:50:9e:a1:35:b0:66:ce:fd: bf:5b:9b:c7:8c:52:53:1a:bc:28:da:92:f8:e3:16: f7:c1:5d:16:fa:b3:7e:fc:01:0d:35:d8:69:27:37: 2c:b7:f9:2f:78:72:f9:df:ef:e3:87:94:45:89:72: de:f8:9e:ea:d0:6e:05:23:58:d1:a0:f9:0f:e1:05: c6:53:95:4d:4d:5d:b2:5a:b5:34:d9:97:e7:ae:1e: 94:f0:4d:76:3d:99:42:1f:d4:77:81:4f:cf:82:b7: df:a5:00:c3:3f:0b:dc:16:42:52:02:ac:15:f3:da: 75:1e:49:e3:b9:88:5b:c6:5e:55:17:0a:d8:11:e7: b4:f8:ca:81:6d:ab:32:0d:23:8e:c0:74:c8:d4:32: bc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:95:FB:D1:01:AF:39:D4:FB:CE:E9:D9:27:ED:25:22:94:AF:40:C3 X509v3 Authority Key Identifier: keyid:53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.24.0/23 Signature Algorithm: sha256WithRSAEncryption 75:9e:73:7d:76:27:94:5d:a3:1f:b9:5d:db:d9:b5:72:d6:0f: cd:ce:3a:af:70:cf:9b:44:83:94:78:33:9a:96:44:df:b5:b1: 95:30:01:cf:9b:6d:68:68:4e:eb:ae:81:ff:7b:cc:f4:e2:bd: 24:c4:b0:93:cd:84:a5:83:9b:94:08:78:f2:d8:e5:cb:3b:86: 7a:5b:2d:dd:61:c9:b6:b2:25:bb:8a:6f:8a:1f:15:86:bd:f9: 3c:d3:63:fd:5b:a8:fc:bf:08:8e:e6:14:ac:65:5e:a9:bb:f8: 89:22:a3:36:c8:cf:65:09:08:22:0f:b2:ea:da:9c:3d:93:1f: e7:9d:dc:71:fd:a6:db:7d:d3:00:c9:0f:c5:9c:aa:56:c6:57: 23:b3:26:f9:d5:fb:35:80:d8:58:8e:9f:8d:29:e0:31:70:9a: 8b:50:c3:5a:6b:c8:3a:af:e7:85:91:ff:4f:89:72:db:c1:12: 9e:55:0c:27:bf:1c:41:dd:dc:80:20:e9:53:c7:23:6b:cb:5b: 46:7b:9e:91:6e:92:7f:dd:cd:5a:eb:da:83:e9:21:3d:59:81: 49:f7:d4:31:97:6f:bf:21:33:a8:fa:11:3e:08:ab:f1:06:a0: 00:13:65:a8:0f:c1:35:47:0b:63:19:f8:77:60:2f:3b:c8:99: 89:ec:d0:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVPjSskdlbgSxYZv/ZWEs2HQl7tkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVD RTBERDIxRjAeFw0yNDAxMDMwODU1NDdaFw0yNTAxMDEwOTAwNDdaMDMxMTAvBgNV BAMTKDMzOTVGQkQxMDFBRjM5RDRGQkNFRTlEOTI3RUQyNTIyOTRBRjQwQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJt58IeUwal/O0+bqmthsBFj4Z KtGj+pVHuz4lW0TCJNjMdQit4tp52NA3tqbJNhFWaqz3zQj+t2A0CrkNlHoY3B3h 9SxGtK8PHCbf51qSC+mMSSgh9GN3dieix0K0TkAt/wzBPgtUd10c6MgmkqRQnqE1 sGbO/b9bm8eMUlMavCjakvjjFvfBXRb6s378AQ012GknNyy3+S94cvnf7+OHlEWJ ct74nurQbgUjWNGg+Q/hBcZTlU1NXbJatTTZl+euHpTwTXY9mUIf1HeBT8+Ct9+l AMM/C9wWQlICrBXz2nUeSeO5iFvGXlUXCtgR57T4yoFtqzINI47AdMjUMrzzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM5X70QGvOdT7zunZJ+0lIpSvQMMwHwYDVR0j BBgwFoAUUypKbqJS6dHP9XSBpahrNc4N0h8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2RmMmFkMC02ZTk5LTQ0YTctYTA2OC01MDA2NTZmZmIwMGYvMC81MzJBNEE2RUEy NTJFOUQxQ0ZGNTc0ODFBNUE4NkIzNUNFMEREMjFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVDRTBE RDIxRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3ZGYyYWQwLTZlOTktNDRhNy1h MDY4LTUwMDY1NmZmYjAwZi8wLzMxMzAzMzJlMzEzMjM5MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EYMA0GCSqG SIb3DQEBCwUAA4IBAQB1nnN9dieUXaMfuV3b2bVy1g/NzjqvcM+bRIOUeDOalkTf tbGVMAHPm21oaE7rroH/e8z04r0kxLCTzYSlg5uUCHjy2OXLO4Z6Wy3dYcm2siW7 im+KHxWGvfk802P9W6j8vwiO5hSsZV6pu/iJIqM2yM9lCQgiD7Lq2pw9kx/nndxx /abbfdMAyQ/FnKpWxlcjsyb51fs1gNhYjp+NKeAxcJqLUMNaa8g6r+eFkf9PiXLb wRKeVQwnvxxB3dyAIOlTxyNry1tGe56RbpJ/3c1a69qD6SE9WYFJ99Qxl2+/ITOo +hE+CKvxBqAAE2WoD8E1RwtjGfh3YC87yJmJ7NDZ -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org