$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e38312e3130312e302f32342d3234203d3e203538343735.roa File: 3130332e38312e3130312e302f32342d3234203d3e203538343735.roa (raw, json) Hash identifier: itCBvlenhfkmaHmcUDy/3wulfqyiEA7xaF9EOQF9bE4= Subject key identifier: A8:52:32:DD:6E:32:6C:FF:A7:DD:EB:73:DA:1C:76:82:61:66:18:F0 Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 51E60FE6C12C90388993A26A500DF4152B244EFD Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e38312e3130312e302f32342d3234203d3e203538343735.roa Signing time: Mon 01 Jul 2024 01:06:00 +0000 ROA not before: Mon 01 Jul 2024 01:01:00 +0000 ROA not after: Mon 30 Jun 2025 01:06:00 +0000 asID: 58475 IP address blocks: 103.81.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:e6:0f:e6:c1:2c:90:38:89:93:a2:6a:50:0d:f4:15:2b:24:4e:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 1 01:01:00 2024 GMT Not After : Jun 30 01:06:00 2025 GMT Subject: CN=A85232DD6E326CFFA7DDEB73DA1C7682616618F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:8c:f9:b3:44:8b:ae:f0:4d:78:ef:53:2f: 14:62:e9:8c:7a:3a:c7:1f:9c:e7:d9:08:20:27:bc: bd:cc:4c:45:53:5d:26:16:e3:bd:4c:4a:45:db:bf: fd:5e:97:c8:a8:19:2f:ce:e5:fe:fc:5d:7d:2b:66: 36:c0:ba:aa:7e:29:a8:c1:be:05:31:d5:4f:90:91: 60:34:0b:de:15:16:80:c5:c1:84:3f:12:bc:3f:0e: 61:45:62:d2:7f:97:b1:f4:66:7b:77:f9:cf:9e:67: e7:f4:72:57:2e:90:af:92:0a:c4:01:41:b4:b0:91: 6e:30:b4:f1:f8:1a:1b:dc:03:c1:85:f1:e6:43:92: 17:83:86:08:ab:a8:59:18:1c:2e:3a:a3:49:6e:9f: 11:61:63:96:e4:3e:e9:48:f0:fd:08:fc:20:ce:de: b3:4c:7c:95:4a:cf:fa:84:5a:4d:b2:ed:92:97:4d: 13:7b:d2:ab:26:4a:f2:6f:6f:10:ac:f8:86:52:65: ad:03:60:7c:0a:39:e0:43:cb:3b:0c:16:d5:74:fe: 0a:09:41:e2:2c:f1:8c:9b:cc:97:57:02:16:d8:c5: db:ce:fd:7b:f5:7c:e0:d6:b1:59:78:b2:d3:95:af: 17:ac:db:b5:6e:70:6d:58:36:77:08:de:88:37:a6: 31:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:52:32:DD:6E:32:6C:FF:A7:DD:EB:73:DA:1C:76:82:61:66:18:F0 X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e38312e3130312e302f32342d3234203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.101.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:48:60:f8:7b:62:b3:71:e6:c5:3f:f6:83:23:a8:f0:54:8a: e1:9b:34:f9:64:1a:a4:99:8b:f2:db:9c:5f:5e:91:21:a8:00: 80:98:a7:78:a1:35:cf:05:6b:70:5d:8d:cd:d6:44:8d:df:a2: 0f:f1:49:f9:cd:b6:0e:c9:58:c4:20:e4:e1:f1:20:45:d8:ee: 01:a4:d0:d9:7a:62:9f:53:21:f4:7c:24:35:d5:46:13:c3:c4: 51:2f:c1:95:5e:d5:19:28:0b:96:9a:8c:4e:0b:e1:91:c0:a7: 4e:49:7b:e2:5c:18:40:f4:5d:71:01:03:97:2b:c7:ef:28:d6: e2:07:a8:58:a5:0f:14:a7:e5:e6:ed:4d:6c:be:51:b2:4f:09: 80:84:b2:07:0b:7d:a7:be:0f:96:2c:31:31:25:39:52:57:7a: 3a:22:3e:cc:ff:39:e3:47:a4:06:06:c4:c3:24:74:dd:45:21: 98:64:a0:89:86:15:58:9d:fd:57:2a:40:ea:90:52:98:9a:ff: d2:eb:eb:19:44:41:b2:59:63:09:24:2a:78:ef:1f:f2:aa:3b: 73:5c:54:2d:b6:2d:52:fd:cf:de:2a:f3:d7:3c:17:90:c9:22: 11:2f:88:f1:3d:8d:0e:0d:3b:5c:25:e9:6c:ea:94:98:d9:7a: a0:79:59:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUeYP5sEskDiJk6JqUA30FSskTv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNDA3MDEwMTAxMDBaFw0yNTA2MzAwMTA2MDBaMDMxMTAvBgNV BAMTKEE4NTIzMkRENkUzMjZDRkZBN0RERUI3M0RBMUM3NjgyNjE2NjE4RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1sIz5s0SLrvBNeO9TLxRi6Yx6 OscfnOfZCCAnvL3MTEVTXSYW471MSkXbv/1el8ioGS/O5f78XX0rZjbAuqp+KajB vgUx1U+QkWA0C94VFoDFwYQ/Erw/DmFFYtJ/l7H0Znt3+c+eZ+f0clcukK+SCsQB QbSwkW4wtPH4GhvcA8GF8eZDkheDhgirqFkYHC46o0lunxFhY5bkPulI8P0I/CDO 3rNMfJVKz/qEWk2y7ZKXTRN70qsmSvJvbxCs+IZSZa0DYHwKOeBDyzsMFtV0/goJ QeIs8YybzJdXAhbYxdvO/Xv1fODWsVl4stOVrxes27VucG1YNncI3og3pjHBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqFIy3W4ybP+n3etz2hx2gmFmGPAwHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMxMzAzMzJlMzgzMTJlMzEzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdRZTANBgkqhkiG 9w0BAQsFAAOCAQEAekhg+Htis3HmxT/2gyOo8FSK4Zs0+WQapJmL8tucX16RIagA gJineKE1zwVrcF2NzdZEjd+iD/FJ+c22DslYxCDk4fEgRdjuAaTQ2Xpin1Mh9Hwk NdVGE8PEUS/BlV7VGSgLlpqMTgvhkcCnTkl74lwYQPRdcQEDlyvH7yjW4geoWKUP FKfl5u1NbL5Rsk8JgISyBwt9p74PliwxMSU5Uld6OiI+zP8540ekBgbEwyR03UUh mGSgiYYVWJ39VypA6pBSmJr/0uvrGURBslljCSQqeO8f8qo7c1xULbYtUv3P3irz 1zwXkMkiES+I8T2NDg07XCXpbOqUmNl6oHlZRQ== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org