$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa File: 3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa (raw, json) Hash identifier: H4Mljy64TF64wUNSwj+AzCiQqQvCFa0xecWWT/Y6tf4= Subject key identifier: 0D:19:CA:D4:21:F5:02:34:A7:2F:F4:61:C8:1F:4C:E1:6C:D7:E7:24 Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 6EEC858E590EAB4A520BCAC80E12232868F4EB9A Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa Signing time: Mon 01 Jul 2024 01:03:50 +0000 ROA not before: Mon 01 Jul 2024 00:58:50 +0000 ROA not after: Mon 30 Jun 2025 01:03:50 +0000 asID: 140404 IP address blocks: 103.151.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ec:85:8e:59:0e:ab:4a:52:0b:ca:c8:0e:12:23:28:68:f4:eb:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jul 1 00:58:50 2024 GMT Not After : Jun 30 01:03:50 2025 GMT Subject: CN=0D19CAD421F50234A72FF461C81F4CE16CD7E724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3b:4c:21:85:bb:fb:73:e6:40:55:1f:7d:84: f4:95:72:c4:be:9f:94:09:38:93:c6:54:94:70:82: 02:84:8c:f6:75:62:be:51:1a:42:32:5a:5f:95:83: 92:a7:fb:83:d0:7d:d2:4b:97:76:17:eb:55:53:56: 7c:7c:5f:89:c0:c6:9c:57:4f:c0:7d:da:bb:70:44: 7a:15:c6:97:56:f8:c2:42:3a:96:35:67:41:b4:7c: 90:b3:d8:0f:9c:94:e0:e5:47:69:84:bc:ea:91:cb: 46:d9:09:e2:e4:4f:a6:6d:dc:b5:4b:e4:0a:ec:f4: ce:d4:69:dc:49:69:e7:f2:75:ed:c1:43:1b:46:ea: c2:ba:0e:34:36:56:51:64:02:3c:a2:86:e8:24:40: 43:1e:e0:26:0a:9c:ef:81:b5:3f:f5:f5:c3:91:46: 15:78:fa:88:56:af:1e:35:14:68:1e:51:aa:dd:34: 61:07:ee:fe:20:d1:2b:0b:5e:ce:1c:1d:df:ec:f9: 34:0e:2e:c5:51:15:eb:a8:5d:21:8c:30:42:5f:25: 0d:0a:81:7a:fc:59:f4:4d:25:81:a0:90:ff:b4:bb: c1:97:51:82:17:24:2b:a2:05:f5:8c:67:09:a3:78: 2a:07:39:64:80:74:25:a7:14:0b:25:2c:d1:1d:0d: 94:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:19:CA:D4:21:F5:02:34:A7:2F:F4:61:C8:1F:4C:E1:6C:D7:E7:24 X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32322e302f32342d3234203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.22.0/24 Signature Algorithm: sha256WithRSAEncryption a5:42:ca:4c:56:9a:20:29:5e:3a:ef:66:17:7b:33:a0:ae:83: 9d:f3:7e:c0:86:d4:99:7e:f8:41:72:31:38:7a:9e:e3:a0:a5: 55:1e:f5:87:b8:7a:91:39:84:9f:bb:6a:09:b0:65:46:be:53: 41:9a:76:58:2d:af:83:bd:37:00:79:ce:b8:82:f0:e5:f1:45: 4d:50:68:b6:72:05:69:30:d0:8b:f7:2e:fc:37:42:a7:24:2f: 9e:45:17:dc:80:6c:cf:65:65:cd:69:bf:a9:b4:7d:49:06:fe: dc:bd:23:72:e6:f1:c6:40:77:39:c1:ea:8c:0f:27:cf:b7:bf: 49:b6:b4:8b:b1:c3:c8:45:5f:4b:31:09:c1:67:b7:07:c5:ef: ad:43:99:5e:10:42:68:e6:a6:db:82:23:d7:eb:42:d0:3e:87: 02:d3:8d:62:ad:d7:8c:46:e6:6c:de:fe:3c:c1:10:0c:f0:df: e0:5c:96:ad:02:2a:ed:0a:37:38:0b:dd:6b:5c:13:88:e7:18: b1:ed:c2:6a:f7:5f:de:c6:96:f7:35:f3:10:bc:28:d3:0b:21: 2b:36:0f:8b:a7:18:df:5e:c4:04:da:c8:63:78:d8:73:6c:86: f6:6c:04:37:f2:eb:9d:1d:e2:3e:04:35:16:d9:56:23:7f:6e: 2c:cf:73:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbuyFjlkOq0pSC8rIDhIjKGj065owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yNDA3MDEwMDU4NTBaFw0yNTA2MzAwMTAzNTBaMDMxMTAvBgNV BAMTKDBEMTlDQUQ0MjFGNTAyMzRBNzJGRjQ2MUM4MUY0Q0UxNkNEN0U3MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgO0whhbv7c+ZAVR99hPSVcsS+ n5QJOJPGVJRwggKEjPZ1Yr5RGkIyWl+Vg5Kn+4PQfdJLl3YX61VTVnx8X4nAxpxX T8B92rtwRHoVxpdW+MJCOpY1Z0G0fJCz2A+clODlR2mEvOqRy0bZCeLkT6Zt3LVL 5Ars9M7UadxJaefyde3BQxtG6sK6DjQ2VlFkAjyihugkQEMe4CYKnO+BtT/19cOR RhV4+ohWrx41FGgeUardNGEH7v4g0SsLXs4cHd/s+TQOLsVRFeuoXSGMMEJfJQ0K gXr8WfRNJYGgkP+0u8GXUYIXJCuiBfWMZwmjeCoHOWSAdCWnFAslLNEdDZSFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDRnK1CH1AjSnL/RhyB9M4WzX5yQwHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cWMA0GCSqG SIb3DQEBCwUAA4IBAQClQspMVpogKV4672YXezOgroOd837AhtSZfvhBcjE4ep7j oKVVHvWHuHqROYSfu2oJsGVGvlNBmnZYLa+DvTcAec64gvDl8UVNUGi2cgVpMNCL 9y78N0KnJC+eRRfcgGzPZWXNab+ptH1JBv7cvSNy5vHGQHc5weqMDyfPt79JtrSL scPIRV9LMQnBZ7cHxe+tQ5leEEJo5qbbgiPX60LQPocC041irdeMRuZs3v48wRAM 8N/gXJatAirtCjc4C91rXBOI5xix7cJq91/expb3NfMQvCjTCyErNg+LpxjfXsQE 2shjeNhzbIb2bAQ38uudHeI+BDUW2VYjf24sz3NE -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org