$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa File: 3130332e32332e3233322e302f32342d3234203d3e203538343735.roa (raw, json) Hash identifier: U43WoSNbXdcBa1UWb8d2YU9Hoj0ZL679eSTM/whmqA4= Subject key identifier: CC:1B:E0:A2:AD:65:62:28:0E:5C:93:74:DB:58:23:5C:B5:CE:15:D3 Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 0DA24FC11E2FEECD47C0ABA51D2C03B91A9F93F9 Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa Signing time: Mon 01 Jul 2024 01:06:02 +0000 ROA not before: Mon 01 Jul 2024 01:01:02 +0000 ROA not after: Mon 30 Jun 2025 01:06:02 +0000 asID: 58475 IP address blocks: 103.23.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a2:4f:c1:1e:2f:ee:cd:47:c0:ab:a5:1d:2c:03:b9:1a:9f:93:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 1 01:01:02 2024 GMT Not After : Jun 30 01:06:02 2025 GMT Subject: CN=CC1BE0A2AD6562280E5C9374DB58235CB5CE15D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3c:70:04:a5:a8:d7:8d:4b:da:50:1e:5c:2c: ae:09:e5:fb:e0:c3:30:fb:1c:bc:2d:aa:87:7f:b2: 2a:98:b5:87:d3:6d:27:91:10:3b:4e:87:e8:70:66: da:a2:84:d0:1d:46:41:0d:8a:9a:2b:72:7c:17:02: 5d:84:6b:71:cf:eb:75:3e:77:ee:5a:42:66:82:e9: 24:6d:29:2e:df:83:c2:48:f6:9a:5a:f9:38:41:90: 99:4e:06:9f:0f:0a:a5:c1:78:59:a5:61:c5:54:dd: 5d:f0:9e:67:eb:fe:80:de:4b:ae:43:4d:d0:c6:2d: 3e:78:86:4a:b8:89:67:a9:97:25:63:70:26:5d:87: 8a:7d:9e:94:ee:cd:99:b0:c3:a7:2a:3c:96:81:70: 5e:76:fb:52:ab:2c:5c:d5:cb:57:39:1f:66:f3:af: 3e:25:38:dc:ca:20:8d:be:94:93:32:c8:ca:ff:57: e6:70:46:d2:5a:44:34:f0:33:99:b2:28:43:dc:98: 21:7c:ae:83:29:79:cc:e4:d7:37:f4:91:44:27:bf: ce:b0:d0:4a:85:49:75:0f:5f:58:e2:a7:00:c9:98: c9:0d:e7:13:5a:9d:3c:57:a3:52:c8:4e:9e:94:c2: 80:e5:50:07:e9:9f:38:8e:13:f1:17:72:1f:3f:46: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:1B:E0:A2:AD:65:62:28:0E:5C:93:74:DB:58:23:5C:B5:CE:15:D3 X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.232.0/24 Signature Algorithm: sha256WithRSAEncryption 20:f5:2d:42:20:1a:28:2a:d4:59:8f:94:87:c6:21:66:49:60: 9c:56:e4:7b:2f:6c:89:37:de:43:45:f5:9f:d5:2d:a2:59:99: 40:dc:d5:05:cd:56:88:cd:eb:db:da:07:e1:e8:3a:e3:f5:29: cc:4d:eb:ee:b2:a2:f4:8b:f3:f4:6d:80:d8:61:25:57:ee:df: 0d:92:80:41:3d:40:2d:14:bf:24:93:0b:cd:91:44:f2:7a:e6: 10:b1:47:7d:9d:79:ac:77:18:b3:fb:8e:29:2f:7a:fc:67:a6: 4b:85:16:f8:a7:6e:11:17:82:17:f1:7b:b5:47:df:84:85:31: 26:33:02:f9:8c:1f:39:16:0a:ca:56:f6:1c:fd:a5:44:5b:72: 32:8a:e5:2a:33:cb:fa:a7:ae:85:cb:ad:09:b4:9a:26:7f:3c: 96:e5:6a:88:3e:25:83:9b:a6:cf:05:90:49:24:3e:b6:60:e1: 23:f7:9e:00:06:a1:12:0b:7e:f7:10:74:a3:8e:75:e9:16:9d: 84:b2:5a:c4:78:28:d3:2a:62:4b:80:95:51:0d:b6:cc:fa:25: 39:c2:22:78:02:4e:14:1d:0f:2d:28:16:2a:1e:15:20:f7:31: 62:b0:9a:8c:79:dc:2d:18:31:00:5c:c2:3e:48:ef:88:09:78: 63:0a:ef:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDaJPwR4v7s1HwKulHSwDuRqfk/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNDA3MDEwMTAxMDJaFw0yNTA2MzAwMTA2MDJaMDMxMTAvBgNV BAMTKENDMUJFMEEyQUQ2NTYyMjgwRTVDOTM3NERCNTgyMzVDQjVDRTE1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsPHAEpajXjUvaUB5cLK4J5fvg wzD7HLwtqod/siqYtYfTbSeREDtOh+hwZtqihNAdRkENiporcnwXAl2Ea3HP63U+ d+5aQmaC6SRtKS7fg8JI9ppa+ThBkJlOBp8PCqXBeFmlYcVU3V3wnmfr/oDeS65D TdDGLT54hkq4iWeplyVjcCZdh4p9npTuzZmww6cqPJaBcF52+1KrLFzVy1c5H2bz rz4lONzKII2+lJMyyMr/V+ZwRtJaRDTwM5myKEPcmCF8roMpeczk1zf0kUQnv86w 0EqFSXUPX1jipwDJmMkN5xNanTxXo1LITp6UwoDlUAfpnziOE/EXch8/RqyvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzBvgoq1lYigOXJN021gjXLXOFdMwHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMxMzAzMzJlMzIzMzJlMzIzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6DANBgkqhkiG 9w0BAQsFAAOCAQEAIPUtQiAaKCrUWY+Uh8YhZklgnFbkey9siTfeQ0X1n9UtolmZ QNzVBc1WiM3r29oH4eg64/UpzE3r7rKi9Ivz9G2A2GElV+7fDZKAQT1ALRS/JJML zZFE8nrmELFHfZ15rHcYs/uOKS96/GemS4UW+KduEReCF/F7tUffhIUxJjMC+Ywf ORYKylb2HP2lRFtyMorlKjPL+qeuhcutCbSaJn88luVqiD4lg5umzwWQSSQ+tmDh I/eeAAahEgt+9xB0o4516RadhLJaxHgo0ypiS4CVUQ22zPolOcIieAJOFB0PLSgW Kh4VIPcxYrCajHncLRgxAFzCPkjviAl4YwrvbQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org