$ rpki-client -vvf repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/3130332e3135372e37362e302f32332d3234203d3e20313431313132.roa File: 3130332e3135372e37362e302f32332d3234203d3e20313431313132.roa (raw, json) Hash identifier: xyN4gf78a7jI8Z4ciAYVpZOIcZkGTzx+yhZ1lijRom8= Subject key identifier: 70:D2:04:B3:B4:54:F8:B0:42:61:07:3C:57:58:D0:D1:7E:B0:A4:89 Certificate issuer: /CN=50D9825940B483F044841C179E5B7712607CAB2A Certificate serial: 449344F867E9B3E25B9339157A394CD2B479E934 Authority key identifier: 50:D9:82:59:40:B4:83:F0:44:84:1C:17:9E:5B:77:12:60:7C:AB:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/50D9825940B483F044841C179E5B7712607CAB2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/3130332e3135372e37362e302f32332d3234203d3e20313431313132.roa Signing time: Fri 06 Sep 2024 15:52:49 +0000 ROA not before: Fri 06 Sep 2024 15:47:49 +0000 ROA not after: Fri 05 Sep 2025 15:52:49 +0000 asID: 141112 IP address blocks: 103.157.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/50D9825940B483F044841C179E5B7712607CAB2A.crl rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/50D9825940B483F044841C179E5B7712607CAB2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/50D9825940B483F044841C179E5B7712607CAB2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:93:44:f8:67:e9:b3:e2:5b:93:39:15:7a:39:4c:d2:b4:79:e9:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50D9825940B483F044841C179E5B7712607CAB2A Validity Not Before: Sep 6 15:47:49 2024 GMT Not After : Sep 5 15:52:49 2025 GMT Subject: CN=70D204B3B454F8B04261073C5758D0D17EB0A489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6d:c6:94:cf:a1:79:4d:a6:3b:b1:25:3f:c5: 89:6d:8b:af:fa:d9:4e:2e:32:fa:f8:a6:00:bb:f2: 7e:7f:cc:f7:52:da:90:98:bf:bf:0a:8f:37:06:10: 1f:f4:e6:67:19:81:ac:dc:d5:66:f7:65:7f:35:35: 39:34:75:5c:a3:87:37:50:48:fb:a2:9d:07:9a:f0: 25:9f:0c:18:f5:f7:66:f7:83:6a:11:33:4b:c0:86: 85:05:14:42:ce:29:fb:66:7a:c7:3c:a1:42:71:ac: 16:e0:3d:76:6a:f7:9c:e5:23:33:21:db:d6:e0:95: 86:c2:86:42:dc:a0:38:14:fe:51:dd:69:e3:b8:1d: b6:7e:56:34:44:5c:0e:dc:30:98:30:f7:d8:76:a9: 51:13:3a:00:b1:d9:f7:ce:e6:df:f0:32:82:07:9f: 80:7f:5f:b8:71:73:af:c5:dc:cd:f0:bb:2d:b1:cd: 5b:a4:63:a7:9a:b6:9b:91:e5:e6:89:d0:a0:17:6d: de:45:fa:40:fb:a3:1e:d4:ed:f7:e4:89:e3:2e:f0: 72:61:97:12:54:26:95:b2:0d:5f:a4:0f:26:9c:a9: cc:45:ea:1b:6b:68:43:2b:30:c7:9a:1f:d0:b1:cc: 94:58:81:53:a3:04:16:b6:41:b6:b5:5e:3b:7a:3e: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D2:04:B3:B4:54:F8:B0:42:61:07:3C:57:58:D0:D1:7E:B0:A4:89 X509v3 Authority Key Identifier: keyid:50:D9:82:59:40:B4:83:F0:44:84:1C:17:9E:5B:77:12:60:7C:AB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/50D9825940B483F044841C179E5B7712607CAB2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/50D9825940B483F044841C179E5B7712607CAB2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/3130332e3135372e37362e302f32332d3234203d3e20313431313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.76.0/23 Signature Algorithm: sha256WithRSAEncryption 83:5a:1c:6e:49:a8:e7:fa:f6:9c:3c:9d:b1:13:0e:7e:75:fd: cc:79:ac:01:71:1c:4a:a8:d9:5b:d6:59:ec:88:43:9e:4c:1d: c0:83:ca:fb:f4:a2:22:f2:d0:58:49:8d:84:d9:e5:76:47:bd: 37:13:30:b0:1d:d8:1f:4f:7d:ca:09:a8:e3:4e:2c:ab:63:46: 78:14:e1:31:d7:ee:2c:80:34:e7:ce:07:54:33:30:84:f3:de: 3b:fa:cc:ca:1e:89:7b:c7:6e:5b:a4:62:34:3a:14:7b:52:e5: 1f:fa:af:6e:b7:1b:33:c0:07:c6:23:46:e0:65:35:bd:47:55: 91:69:9b:05:0c:27:12:35:b4:cc:d8:ae:a6:1e:08:c9:0c:24: 67:2c:f2:af:22:81:a3:de:33:e4:5f:d8:0e:d7:bd:91:e8:1b: b8:32:d7:24:58:f6:64:f3:d2:41:98:8b:f6:b9:be:d6:eb:ca: 89:1f:95:e8:e8:dc:4b:61:e5:de:36:06:44:87:98:12:86:80: de:c0:81:6c:b3:ec:05:67:1b:0d:d8:95:97:7e:38:e9:79:cd: d7:8f:f7:a6:30:05:b7:06:6b:b6:bc:42:97:9f:fb:47:e6:17: c7:4f:f4:1f:29:54:cd:c8:75:2b:f3:3c:97:e5:1b:90:9b:cd: 07:43:b0:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURJNE+Gfps+JbkzkVejlM0rR56TQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTBEOTgyNTk0MEI0ODNGMDQ0ODQxQzE3OUU1Qjc3MTI2 MDdDQUIyQTAeFw0yNDA5MDYxNTQ3NDlaFw0yNTA5MDUxNTUyNDlaMDMxMTAvBgNV BAMTKDcwRDIwNEIzQjQ1NEY4QjA0MjYxMDczQzU3NThEMEQxN0VCMEE0ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPbcaUz6F5TaY7sSU/xYlti6/6 2U4uMvr4pgC78n5/zPdS2pCYv78KjzcGEB/05mcZgazc1Wb3ZX81NTk0dVyjhzdQ SPuinQea8CWfDBj192b3g2oRM0vAhoUFFELOKftmesc8oUJxrBbgPXZq95zlIzMh 29bglYbChkLcoDgU/lHdaeO4HbZ+VjREXA7cMJgw99h2qVETOgCx2ffO5t/wMoIH n4B/X7hxc6/F3M3wuy2xzVukY6eatpuR5eaJ0KAXbd5F+kD7ox7U7ffkieMu8HJh lxJUJpWyDV+kDyacqcxF6htraEMrMMeaH9CxzJRYgVOjBBa2Qba1Xjt6PtidAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcNIEs7RU+LBCYQc8V1jQ0X6wpIkwHwYDVR0j BBgwFoAUUNmCWUC0g/BEhBwXnlt3EmB8qyowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDQ2YTU2NC02MzQ3LTQwZWYtYmFkMy00ZGFhZTMwNmQ0MjEvMC81MEQ5ODI1OTQw QjQ4M0YwNDQ4NDFDMTc5RTVCNzcxMjYwN0NBQjJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTBEOTgyNTk0MEI0ODNGMDQ0ODQxQzE3OUU1Qjc3MTI2MDdD QUIyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNDZhNTY0LTYzNDctNDBlZi1i YWQzLTRkYWFlMzA2ZDQyMS8wLzMxMzAzMzJlMzEzNTM3MmUzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ51MMA0GCSqG SIb3DQEBCwUAA4IBAQCDWhxuSajn+vacPJ2xEw5+df3MeawBcRxKqNlb1lnsiEOe TB3Ag8r79KIi8tBYSY2E2eV2R703EzCwHdgfT33KCajjTiyrY0Z4FOEx1+4sgDTn zgdUMzCE8947+szKHol7x25bpGI0OhR7UuUf+q9utxszwAfGI0bgZTW9R1WRaZsF DCcSNbTM2K6mHgjJDCRnLPKvIoGj3jPkX9gO172R6Bu4MtckWPZk89JBmIv2ub7W 68qJH5Xo6NxLYeXeNgZEh5gShoDewIFss+wFZxsN2JWXfjjpec3Xj/emMAW3Bmu2 vEKXn/tH5hfHT/QfKVTNyHUr8zyX5RuQm80HQ7DZ -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org