$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230312e302f32342d3234203d3e20313431303733.roa File: 3130332e3135352e3230312e302f32342d3234203d3e20313431303733.roa (raw, json) Hash identifier: 0Fbx7+O+Rv0b4NqNU0B2KV0w3IM8zu8pQa22iIJf9wo= Subject key identifier: FA:5F:3E:79:CD:78:32:07:1C:C1:B7:26:F4:1E:D6:44:1F:01:C5:AD Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 1D662D28F5F08EB9AF8213C2EB7EA5D637B44593 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230312e302f32342d3234203d3e20313431303733.roa Signing time: Mon 01 Jul 2024 01:05:07 +0000 ROA not before: Mon 01 Jul 2024 01:00:07 +0000 ROA not after: Mon 30 Jun 2025 01:05:07 +0000 asID: 141073 IP address blocks: 103.155.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:66:2d:28:f5:f0:8e:b9:af:82:13:c2:eb:7e:a5:d6:37:b4:45:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jul 1 01:00:07 2024 GMT Not After : Jun 30 01:05:07 2025 GMT Subject: CN=FA5F3E79CD7832071CC1B726F41ED6441F01C5AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7d:62:f0:9c:58:01:55:9f:e0:fa:18:7a:3d: 52:69:a2:7b:94:37:85:02:05:4b:13:16:9b:a2:c9: b1:ea:1f:35:0b:f9:c2:50:d2:7b:2d:18:e4:61:0c: 34:34:5f:03:9d:9d:7e:06:06:00:05:d9:51:fe:ed: e6:ce:9d:6e:57:9a:63:6b:41:68:f7:95:13:c8:44: d3:d4:29:05:0f:66:ed:b4:02:8d:a6:e2:6a:63:28: b0:8f:25:e4:cc:ff:32:4e:1f:3c:d1:ca:e4:5c:1f: 35:d6:cc:d1:fc:dc:1c:5b:61:05:2f:85:52:12:4b: 99:09:f1:d4:96:ed:68:0c:03:be:81:f9:3d:a1:9b: f7:67:7c:f2:02:0b:3c:ab:ef:91:64:eb:48:3a:42: c5:74:45:38:7b:ad:03:2b:9f:e4:17:cc:88:5e:43: 9d:eb:1d:f6:ed:21:6e:19:18:1e:2a:25:08:f9:e0: b8:4c:a1:6a:ab:60:2a:e9:aa:79:ba:7a:a4:d1:06: 56:1f:cd:cd:cb:29:51:e3:16:b8:16:63:db:64:17: e9:4c:6b:8d:5b:71:df:e4:cc:92:a9:11:0d:ea:b2: 0f:52:61:37:bb:2a:43:64:6a:9a:8d:c5:a4:52:9a: fc:11:6e:1a:4e:c4:8e:24:36:73:47:cb:b3:48:44: df:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5F:3E:79:CD:78:32:07:1C:C1:B7:26:F4:1E:D6:44:1F:01:C5:AD X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230312e302f32342d3234203d3e20313431303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.201.0/24 Signature Algorithm: sha256WithRSAEncryption 52:08:a9:72:d2:0b:67:76:bc:18:bf:d1:06:82:50:50:55:11: 2d:97:74:93:17:aa:9f:3d:06:1a:f0:0e:b7:2a:f9:88:48:cb: bc:47:52:99:47:2e:f4:02:e1:de:9f:bd:b9:45:73:f8:f2:07: 78:4a:f5:ee:0d:3e:2b:8e:db:ec:ab:55:5a:b3:69:95:ef:d8: 10:ba:51:f2:fa:4f:1c:4c:81:70:2e:7f:23:a6:a7:cc:85:72: 3c:54:4a:a4:00:36:60:ad:b8:ab:5f:1c:e0:09:ba:f9:ec:c1: fe:b6:a6:56:60:3b:b8:86:16:25:a4:b0:8f:ee:47:69:30:24: 5d:b6:da:df:23:47:da:c2:a1:db:27:53:99:e4:e8:59:54:c7: 28:26:ee:3d:4d:7c:f9:0c:80:ce:1d:1e:86:a8:c6:09:99:c6: 8e:69:c5:8f:5f:64:2c:d7:39:31:48:80:e1:21:e2:04:57:a0: 21:09:3f:32:6b:5d:f1:22:d8:1a:a1:cd:20:0e:b5:c0:ea:6f: ac:24:8f:75:12:77:db:d6:53:82:c1:05:72:47:44:3b:32:e3: 75:91:9e:72:cc:43:5a:95:cf:4d:aa:91:7a:37:ee:f2:98:16: 4c:e2:7a:e7:c2:df:79:7d:05:79:c9:bf:94:41:95:4d:0f:da: b2:ca:ca:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHWYtKPXwjrmvghPC636l1je0RZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNDA3MDEwMTAwMDdaFw0yNTA2MzAwMTA1MDdaMDMxMTAvBgNV BAMTKEZBNUYzRTc5Q0Q3ODMyMDcxQ0MxQjcyNkY0MUVENjQ0MUYwMUM1QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHfWLwnFgBVZ/g+hh6PVJponuU N4UCBUsTFpuiybHqHzUL+cJQ0nstGORhDDQ0XwOdnX4GBgAF2VH+7ebOnW5XmmNr QWj3lRPIRNPUKQUPZu20Ao2m4mpjKLCPJeTM/zJOHzzRyuRcHzXWzNH83BxbYQUv hVISS5kJ8dSW7WgMA76B+T2hm/dnfPICCzyr75Fk60g6QsV0RTh7rQMrn+QXzIhe Q53rHfbtIW4ZGB4qJQj54LhMoWqrYCrpqnm6eqTRBlYfzc3LKVHjFrgWY9tkF+lM a41bcd/kzJKpEQ3qsg9SYTe7KkNkapqNxaRSmvwRbhpOxI4kNnNHy7NIRN+NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+l8+ec14Mgccwbcm9B7WRB8Bxa0wHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NThmODVjLWE0NTgtNGE1OC1i YmRlLTRiZmIzNDNkYzRiMC8wLzMxMzAzMzJlMzEzNTM1MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8kwDQYJ KoZIhvcNAQELBQADggEBAFIIqXLSC2d2vBi/0QaCUFBVES2XdJMXqp89BhrwDrcq +YhIy7xHUplHLvQC4d6fvblFc/jyB3hK9e4NPiuO2+yrVVqzaZXv2BC6UfL6TxxM gXAufyOmp8yFcjxUSqQANmCtuKtfHOAJuvnswf62plZgO7iGFiWksI/uR2kwJF22 2t8jR9rCodsnU5nk6FlUxygm7j1NfPkMgM4dHoaoxgmZxo5pxY9fZCzXOTFIgOEh 4gRXoCEJPzJrXfEi2BqhzSAOtcDqb6wkj3USd9vWU4LBBXJHRDsy43WRnnLMQ1qV z02qkXo37vKYFkzieufC33l9BXnJv5RBlU0P2rLKylU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org