$ rpki-client -vvf repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa File: 3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa (raw, json) Hash identifier: NqUq2XyAeB0lSnJLYEVZb40ubddRS40CGCfnHqTCKvg= Subject key identifier: DD:6F:90:73:A3:23:89:80:1F:5B:1E:50:1B:63:90:33:30:B5:F1:34 Certificate issuer: /CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Certificate serial: 5A3A4223D903C69688EC662E9BEEDF64671D558C Authority key identifier: BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa Signing time: Mon 01 Jul 2024 01:03:50 +0000 ROA not before: Mon 01 Jul 2024 00:58:50 +0000 ROA not after: Mon 30 Jun 2025 01:03:50 +0000 asID: 140404 IP address blocks: 103.151.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3a:42:23:d9:03:c6:96:88:ec:66:2e:9b:ee:df:64:67:1d:55:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BEB3B35BA1C3DACA59C6C525EA9823FF902AF998 Validity Not Before: Jul 1 00:58:50 2024 GMT Not After : Jun 30 01:03:50 2025 GMT Subject: CN=DD6F9073A32389801F5B1E501B63903330B5F134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:40:aa:ee:e2:06:1b:b7:70:d3:d2:14:d0:ef: 14:39:38:f9:56:56:db:da:50:2b:14:62:49:5a:43: 41:d6:f5:58:e4:48:94:2e:5c:bc:c4:8c:8d:95:99: ee:18:f8:85:eb:1b:d4:e1:6c:d9:de:77:c7:88:98: c0:31:ee:29:a2:00:a6:2c:be:82:d0:3e:59:54:5e: 6e:03:19:af:ef:97:5e:5a:c9:21:d6:2b:7f:fc:88: eb:d0:a8:96:bd:f8:10:dc:7d:62:9d:0d:b0:91:ce: 7b:5a:d3:c6:3a:1b:23:d9:8d:0f:d5:b8:8f:9b:60: b6:e6:22:78:cc:7a:09:2a:cc:9e:d4:47:e8:59:26: 0d:16:26:c9:8d:ed:85:2c:b0:97:2b:67:89:4c:20: 14:e8:38:72:1d:99:ab:3e:83:1f:d5:fb:6c:11:80: ef:ee:ee:7e:4d:a9:2a:b9:f8:82:19:2e:2f:94:b0: db:00:20:db:83:06:1b:93:12:88:d1:cf:f2:0a:86: b9:bb:d4:11:10:13:0e:96:9a:ce:c9:ae:a2:1e:77: 47:ce:f6:12:cb:86:ed:60:32:be:3a:fb:16:8c:41: 6d:16:0a:5f:9f:de:fc:26:ae:3d:66:55:e0:da:b6: 66:f4:da:5a:5c:af:f9:f0:eb:6f:20:39:68:5f:da: 02:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6F:90:73:A3:23:89:80:1F:5B:1E:50:1B:63:90:33:30:B5:F1:34 X509v3 Authority Key Identifier: keyid:BE:B3:B3:5B:A1:C3:DA:CA:59:C6:C5:25:EA:98:23:FF:90:2A:F9:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BEB3B35BA1C3DACA59C6C525EA9823FF902AF998.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50cb5c9b-f383-4e81-812c-0e227ad46b1b/0/3130332e3135312e32332e302f32342d3234203d3e20313430343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.23.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:8d:74:8c:b5:94:99:22:55:9a:83:4d:58:2d:98:b4:e0:90: 92:ae:a2:7e:eb:a4:ed:95:1b:e0:fe:c8:00:7c:9e:42:78:29: af:8e:e3:ab:3e:d6:b6:12:18:4d:51:59:dd:57:d5:17:cc:a4: 93:f2:d1:bb:c5:ad:df:d9:39:2c:22:11:db:0a:55:fa:ec:e5: f0:39:49:d8:49:09:b3:c1:cb:d2:28:86:93:f2:05:ca:1b:66: 7c:eb:74:20:8e:cb:e7:a1:9b:5d:e2:19:58:6b:b6:c0:2b:e1: cb:4e:0b:82:33:fa:2e:db:cd:69:cd:c2:cc:b8:5a:7e:cf:8b: 56:4e:37:9e:7b:f8:93:45:3f:eb:04:c6:77:5c:33:17:8b:0c: 7b:91:c2:ce:26:89:a4:40:56:4f:02:1b:91:06:bf:c6:21:bb: e0:e6:66:a3:8d:ee:e2:2c:71:0e:d7:3a:d5:7f:0a:b3:66:43: 1d:2c:7f:ad:6f:0f:07:04:ea:50:20:8a:d0:57:07:a4:97:5e: ef:ba:ee:e8:48:2c:96:75:c8:c2:54:ac:05:78:d0:38:9d:79: 97:06:c6:43:05:b6:e2:47:23:13:b3:24:57:e1:fa:e3:f6:88: ae:fe:59:be:78:5a:ca:29:02:b1:83:83:ca:63:9e:be:71:57: 13:6d:3d:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWjpCI9kDxpaI7GYum+7fZGcdVYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5 MDJBRjk5ODAeFw0yNDA3MDEwMDU4NTBaFw0yNTA2MzAwMTAzNTBaMDMxMTAvBgNV BAMTKERENkY5MDczQTMyMzg5ODAxRjVCMUU1MDFCNjM5MDMzMzBCNUYxMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+QKru4gYbt3DT0hTQ7xQ5OPlW VtvaUCsUYklaQ0HW9VjkSJQuXLzEjI2Vme4Y+IXrG9ThbNned8eImMAx7imiAKYs voLQPllUXm4DGa/vl15aySHWK3/8iOvQqJa9+BDcfWKdDbCRznta08Y6GyPZjQ/V uI+bYLbmInjMegkqzJ7UR+hZJg0WJsmN7YUssJcrZ4lMIBToOHIdmas+gx/V+2wR gO/u7n5NqSq5+IIZLi+UsNsAINuDBhuTEojRz/IKhrm71BEQEw6Wms7JrqIed0fO 9hLLhu1gMr46+xaMQW0WCl+f3vwmrj1mVeDatmb02lpcr/nw628gOWhf2gL/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3W+Qc6MjiYAfWx5QG2OQMzC18TQwHwYDVR0j BBgwFoAUvrOzW6HD2spZxsUl6pgj/5Aq+ZgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGNiNWM5Yi1mMzgzLTRlODEtODEyYy0wZTIyN2FkNDZiMWIvMC9CRUIzQjM1QkEx QzNEQUNBNTlDNkM1MjVFQTk4MjNGRjkwMkFGOTk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkVCM0IzNUJBMUMzREFDQTU5QzZDNTI1RUE5ODIzRkY5MDJB Rjk5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwY2I1YzliLWYzODMtNGU4MS04 MTJjLTBlMjI3YWQ0NmIxYi8wLzMxMzAzMzJlMzEzNTMxMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cXMA0GCSqG SIb3DQEBCwUAA4IBAQAKjXSMtZSZIlWag01YLZi04JCSrqJ+66TtlRvg/sgAfJ5C eCmvjuOrPta2EhhNUVndV9UXzKST8tG7xa3f2TksIhHbClX67OXwOUnYSQmzwcvS KIaT8gXKG2Z863QgjsvnoZtd4hlYa7bAK+HLTguCM/ou281pzcLMuFp+z4tWTjee e/iTRT/rBMZ3XDMXiwx7kcLOJomkQFZPAhuRBr/GIbvg5majje7iLHEO1zrVfwqz ZkMdLH+tbw8HBOpQIIrQVwekl17vuu7oSCyWdcjCVKwFeNA4nXmXBsZDBbbiRyMT syRX4frj9oiu/lm+eFrKKQKxg4PKY56+cVcTbT3k -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org