$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa File: 3130332e32332e3233332e302f32342d3234203d3e203538343735.roa (raw, json) Hash identifier: txolTLSTXE7ODx/u5tuDDDCNUIZtYjDew9/efServ68= Subject key identifier: 57:53:6C:7B:EA:82:37:76:55:E5:A2:83:6D:C3:71:9F:C1:5B:F4:32 Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 6D38DC74403953DF91987CD4B161DB2733714FE6 Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa Signing time: Mon 01 Jul 2024 01:06:00 +0000 ROA not before: Mon 01 Jul 2024 01:01:00 +0000 ROA not after: Mon 30 Jun 2025 01:06:00 +0000 asID: 58475 IP address blocks: 103.23.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:38:dc:74:40:39:53:df:91:98:7c:d4:b1:61:db:27:33:71:4f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 1 01:01:00 2024 GMT Not After : Jun 30 01:06:00 2025 GMT Subject: CN=57536C7BEA82377655E5A2836DC3719FC15BF432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bf:dc:c4:ce:d6:75:e0:a2:d4:92:1c:c9:ad: e1:7d:cb:d6:b9:40:61:77:d0:d3:e7:fd:f5:b8:b5: 86:38:98:31:cb:b2:51:2d:d2:29:ac:55:ef:09:1f: 15:02:4f:be:5f:77:83:c6:43:c0:2c:0a:b9:15:c2: 60:1a:d2:89:2d:df:4d:9a:34:df:29:e2:61:90:a7: 53:d2:f5:7d:29:17:ff:d9:ff:51:81:92:63:27:20: dd:f5:13:d2:41:f3:37:31:7a:fd:75:60:77:73:b1: b3:c8:ab:0f:26:01:87:7b:35:b1:4f:b7:97:43:4a: 2a:ec:ee:e5:f0:3a:6d:ed:35:a6:4e:fd:ff:98:b5: 58:0a:b7:55:4f:f4:0c:c6:2f:c8:9e:e0:ee:b2:75: 47:32:e1:6f:82:8e:28:87:60:87:ea:22:56:c6:9a: 64:34:2e:f3:0c:fe:90:52:9d:70:c5:94:15:16:6a: a1:65:48:d3:68:49:3a:ad:69:25:3a:12:43:49:8c: 91:a0:24:19:3a:1d:b6:b6:12:0b:90:60:47:a0:f8: 7a:60:5e:c0:ce:53:5f:07:82:a5:64:5e:49:4e:6e: 80:de:72:3c:da:5a:70:fa:58:9e:68:30:b3:ff:46: 11:f4:a9:d4:05:4f:39:cc:87:8c:7e:f5:ce:77:48: aa:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:53:6C:7B:EA:82:37:76:55:E5:A2:83:6D:C3:71:9F:C1:5B:F4:32 X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233332e302f32342d3234203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.233.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e7:e7:f9:9a:01:ca:73:dc:49:41:77:6f:5a:f7:0f:1f:3a: 26:03:e3:66:09:84:72:5e:a9:50:2d:4b:a7:5e:22:0a:df:92: f6:be:f8:a4:48:7b:06:54:5a:41:16:9f:b5:75:81:35:4c:1f: ae:29:56:a0:2a:52:f4:55:6d:12:c8:5c:1f:b8:a3:3f:04:e9: 10:a9:6a:c0:6b:94:11:6c:bb:9e:68:3a:c2:bc:c2:e0:3b:2e: 98:72:76:9a:e4:0a:53:4a:7d:5f:a2:63:79:bd:9e:e9:ac:12: 78:2b:fc:73:90:6b:5b:2a:fa:de:c1:78:d9:4e:b2:05:ae:73: d6:70:5e:83:73:96:a1:d5:be:9a:ab:ce:15:4f:51:7c:2e:5e: 21:a2:d7:8b:40:9e:dd:65:56:4a:41:9d:de:47:53:aa:32:1c: 02:06:b8:72:36:77:55:91:3a:28:2a:d4:87:5e:5e:27:6c:d9: 32:93:f7:62:57:41:c9:e2:04:49:86:55:62:51:dd:27:ec:7c: b4:6b:58:78:ad:bd:6f:85:15:0f:95:21:4e:84:4c:af:13:e9: ab:d7:cd:0e:96:f3:6d:98:66:e1:3b:f2:5c:4d:2a:91:97:58: 5b:46:12:48:0b:d3:79:ca:5f:3f:3d:28:ad:37:39:79:b2:26: cb:bb:c6:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbTjcdEA5U9+RmHzUsWHbJzNxT+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNDA3MDEwMTAxMDBaFw0yNTA2MzAwMTA2MDBaMDMxMTAvBgNV BAMTKDU3NTM2QzdCRUE4MjM3NzY1NUU1QTI4MzZEQzM3MTlGQzE1QkY0MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQv9zEztZ14KLUkhzJreF9y9a5 QGF30NPn/fW4tYY4mDHLslEt0imsVe8JHxUCT75fd4PGQ8AsCrkVwmAa0okt302a NN8p4mGQp1PS9X0pF//Z/1GBkmMnIN31E9JB8zcxev11YHdzsbPIqw8mAYd7NbFP t5dDSirs7uXwOm3tNaZO/f+YtVgKt1VP9AzGL8ie4O6ydUcy4W+CjiiHYIfqIlbG mmQ0LvMM/pBSnXDFlBUWaqFlSNNoSTqtaSU6EkNJjJGgJBk6Hba2EguQYEeg+Hpg XsDOU18HgqVkXklOboDecjzaWnD6WJ5oMLP/RhH0qdQFTznMh4x+9c53SKrbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUV1Nse+qCN3ZV5aKDbcNxn8Fb9DIwHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMxMzAzMzJlMzIzMzJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6TANBgkqhkiG 9w0BAQsFAAOCAQEAk+fn+ZoBynPcSUF3b1r3Dx86JgPjZgmEcl6pUC1Lp14iCt+S 9r74pEh7BlRaQRaftXWBNUwfrilWoCpS9FVtEshcH7ijPwTpEKlqwGuUEWy7nmg6 wrzC4DsumHJ2muQKU0p9X6Jjeb2e6awSeCv8c5BrWyr63sF42U6yBa5z1nBeg3OW odW+mqvOFU9RfC5eIaLXi0Ce3WVWSkGd3kdTqjIcAga4cjZ3VZE6KCrUh15eJ2zZ MpP3YldByeIESYZVYlHdJ+x8tGtYeK29b4UVD5UhToRMrxPpq9fNDpbzbZhm4Tvy XE0qkZdYW0YSSAvTecpfPz0orTc5ebImy7vGZw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org