$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa File: 3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa (raw, json) Hash identifier: zDCAlAOQmPKd75zbRwUUowA/7GtmYxJIftrZudSNftg= Subject key identifier: FC:6A:FE:6E:32:E5:25:4E:2D:F2:45:21:B7:F4:5D:B4:C1:8A:38:09 Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 558DCE02CEB527E45B7C417D299C932DFD3BB1FE Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa Signing time: Mon 01 Jul 2024 01:03:50 +0000 ROA not before: Mon 01 Jul 2024 00:58:50 +0000 ROA not after: Mon 30 Jun 2025 01:03:50 +0000 asID: 140404 IP address blocks: 103.151.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:8d:ce:02:ce:b5:27:e4:5b:7c:41:7d:29:9c:93:2d:fd:3b:b1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jul 1 00:58:50 2024 GMT Not After : Jun 30 01:03:50 2025 GMT Subject: CN=FC6AFE6E32E5254E2DF24521B7F45DB4C18A3809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:fb:fe:f1:38:96:44:68:ac:75:11:3f:e7: cf:59:59:e2:2e:12:a6:c3:36:65:29:b5:c2:29:3b: e5:2e:8d:b8:5c:eb:95:3a:0f:5b:d7:d1:69:08:94: 23:00:8b:50:24:1c:38:55:62:87:57:26:1f:70:ab: eb:ee:46:d3:58:cc:a7:d5:0f:3f:8c:18:1e:0a:1b: 3d:c3:99:0c:1c:1a:28:59:24:8a:12:db:ff:52:db: 75:6a:8e:93:7c:ae:d8:31:d7:46:63:aa:9e:3e:ec: d3:ed:73:62:46:4d:81:e3:3f:cc:a4:50:bc:35:68: c2:6f:23:79:8d:85:89:ef:02:c0:7d:0a:f4:df:83: cf:79:7d:1b:54:f4:6d:a2:ac:0d:d7:ff:37:b6:10: 98:2e:da:ca:dc:a9:45:5c:4c:cc:e2:53:03:df:6a: 08:d8:33:8e:4e:b1:ae:6a:31:74:5a:85:42:cb:5f: 59:9d:f2:8a:da:d9:ba:95:06:db:89:17:c8:e3:72: 61:f7:15:cc:64:b1:4e:3d:e8:c1:b7:81:48:89:81: 7c:21:82:b6:9a:f6:22:4b:6a:09:67:94:9e:da:73: c2:cb:b8:19:f0:f7:5a:1b:22:b7:de:d0:ad:0c:3d: 1d:0f:91:ab:65:f5:79:27:1b:1a:53:4b:5f:d2:97: b3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6A:FE:6E:32:E5:25:4E:2D:F2:45:21:B7:F4:5D:B4:C1:8A:38:09 X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32332d3233203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.22.0/23 Signature Algorithm: sha256WithRSAEncryption 09:f0:ad:fc:7d:01:d6:31:43:3e:df:ed:34:ca:04:87:03:b0: 8d:e2:72:3c:f0:eb:69:02:67:f1:83:65:58:c9:06:32:c9:a3: 91:3c:44:34:5e:2b:a2:9c:fe:e7:cf:23:6a:3e:2b:04:d7:e6: dc:a2:6a:5c:44:4e:c4:a1:e5:db:4a:7c:6a:b2:64:6b:c6:f8: c9:41:45:7e:a4:4b:c1:a5:df:9b:bf:f4:ed:63:80:19:86:20: f2:78:73:27:74:88:e7:93:17:67:a2:92:5f:e4:91:c8:f6:a0: d6:2c:e5:b6:1c:62:66:2a:3e:ef:8d:2f:12:27:7f:83:0e:4a: 79:85:62:03:5e:ad:04:38:7f:d6:ba:00:92:e5:e2:3a:56:3d: 76:ec:93:74:60:0f:fb:7f:34:be:a4:5c:ca:32:02:4d:97:b6: fe:e9:f7:5d:d1:1c:1f:38:3c:bc:fe:ad:3f:53:5f:67:41:6f: 2c:58:df:69:f5:db:e8:e4:8a:80:23:b5:3e:db:f1:29:4e:c0: fc:03:7c:b5:24:62:a8:f2:73:50:52:bc:70:90:8f:ef:0e:a2: fe:89:8a:72:fe:fb:cb:5b:0b:b2:1b:ad:ee:1f:e0:83:e2:15: 50:42:30:8b:c1:dc:e2:d2:78:1c:ad:ad:93:bf:a2:e1:fd:d4: 98:cc:df:0c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVY3OAs61J+RbfEF9KZyTLf07sf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yNDA3MDEwMDU4NTBaFw0yNTA2MzAwMTAzNTBaMDMxMTAvBgNV BAMTKEZDNkFGRTZFMzJFNTI1NEUyREYyNDUyMUI3RjQ1REI0QzE4QTM4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIivv+8TiWRGisdRE/589ZWeIu EqbDNmUptcIpO+Uujbhc65U6D1vX0WkIlCMAi1AkHDhVYodXJh9wq+vuRtNYzKfV Dz+MGB4KGz3DmQwcGihZJIoS2/9S23VqjpN8rtgx10Zjqp4+7NPtc2JGTYHjP8yk ULw1aMJvI3mNhYnvAsB9CvTfg895fRtU9G2irA3X/ze2EJgu2srcqUVcTMziUwPf agjYM45Osa5qMXRahULLX1md8ora2bqVBtuJF8jjcmH3FcxksU496MG3gUiJgXwh graa9iJLaglnlJ7ac8LLuBnw91obIrfe0K0MPR0Pkatl9XknGxpTS1/Sl7NLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/Gr+bjLlJU4t8kUht/RdtMGKOAkwHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5cWMA0GCSqG SIb3DQEBCwUAA4IBAQAJ8K38fQHWMUM+3+00ygSHA7CN4nI88OtpAmfxg2VYyQYy yaORPEQ0XiuinP7nzyNqPisE1+bcompcRE7EoeXbSnxqsmRrxvjJQUV+pEvBpd+b v/TtY4AZhiDyeHMndIjnkxdnopJf5JHI9qDWLOW2HGJmKj7vjS8SJ3+DDkp5hWID Xq0EOH/WugCS5eI6Vj127JN0YA/7fzS+pFzKMgJNl7b+6fdd0RwfODy8/q0/U19n QW8sWN9p9dvo5IqAI7U+2/EpTsD8A3y1JGKo8nNQUrxwkI/vDqL+iYpy/vvLWwuy G63uH+CD4hVQQjCLwdzi0ngcra2Tv6Lh/dSYzN8M -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org