$ rpki-client -vvf repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa File: 3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa (raw, json) Hash identifier: Y829XAFE9eed0nOm5EtB2BBwNWI1JEh8T8LUzNvjd88= Subject key identifier: D5:DA:14:FD:72:7B:7C:E3:5F:33:67:44:1B:D9:0C:C0:B2:20:CF:90 Certificate issuer: /CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Certificate serial: 7F41A86AEDCE5E6F69008E6FAFCA9F56E2577B39 Authority key identifier: 42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa Signing time: Tue 06 Aug 2024 03:00:01 +0000 ROA not before: Tue 06 Aug 2024 02:55:01 +0000 ROA not after: Tue 05 Aug 2025 03:00:01 +0000 asID: 141130 IP address blocks: 103.158.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:41:a8:6a:ed:ce:5e:6f:69:00:8e:6f:af:ca:9f:56:e2:57:7b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Validity Not Before: Aug 6 02:55:01 2024 GMT Not After : Aug 5 03:00:01 2025 GMT Subject: CN=D5DA14FD727B7CE35F3367441BD90CC0B220CF90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:4e:de:52:65:12:7f:d2:58:5f:ac:58:37: 98:cb:2c:44:98:0a:32:e0:c8:2d:8f:df:4c:0a:47: 1d:20:82:60:a1:81:c7:2d:43:0b:13:be:d3:b6:0f: cc:b3:46:0d:74:c4:99:2e:93:a3:f1:f9:aa:4c:52: 0f:d5:60:40:19:5e:75:27:50:cf:13:85:d8:04:79: 74:ab:17:e6:04:f6:22:d5:3a:c3:58:01:21:2a:c9: 60:7b:f2:4e:c0:fc:d6:63:02:c3:cf:1e:40:4c:8f: 89:4b:1a:68:42:97:91:2e:0a:33:f5:3b:30:56:24: a2:5e:5a:37:44:0c:07:96:75:30:a1:63:ec:78:19: 2c:4c:44:9b:a4:84:b5:92:e8:ab:1e:d6:76:c5:2a: 8f:09:08:fe:24:50:16:53:d4:bc:d9:09:f4:7c:c5: f0:a3:68:65:66:ef:b8:8c:d0:b7:1f:e3:b0:34:4f: d8:7d:cf:df:6e:1f:dd:6a:23:8d:ad:0e:9f:13:dc: 00:e9:91:62:dd:e6:e0:ba:25:3a:ec:a5:5e:95:2a: 5b:06:72:fc:9d:10:78:15:bf:5a:ad:0d:01:51:fb: 1c:21:28:dd:52:4b:d9:ea:3a:43:6d:7f:9b:1d:62: ec:1c:66:8e:48:94:39:17:9a:21:ef:fc:37:8d:77: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DA:14:FD:72:7B:7C:E3:5F:33:67:44:1B:D9:0C:C0:B2:20:CF:90 X509v3 Authority Key Identifier: keyid:42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39372e302f32342d3234203d3e20313431313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.97.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c8:1f:af:97:8a:3e:47:c4:c6:0c:93:59:21:53:ee:48:87: cf:7f:f4:10:1d:77:00:e6:02:e0:96:5f:85:44:27:4e:de:6d: 1f:ed:19:88:ee:63:50:3c:b9:63:d4:c4:1b:61:6f:df:e1:b5: d9:14:5b:86:b3:08:6b:36:ba:93:41:1b:07:fc:95:b1:52:4a: 8a:71:cf:91:bf:a2:30:58:47:1b:b6:d1:64:0d:f5:42:f5:2e: 8c:a1:e2:93:8e:b3:4f:f4:06:bd:7c:14:3e:1b:1e:c2:ef:b1: 67:d5:57:a7:cc:97:8e:9e:fb:92:93:85:a2:f5:55:b8:b7:b3: f1:d0:2d:83:f5:cb:87:c6:ba:6a:7c:3b:e0:46:3c:4c:5f:6b: 4f:63:b8:b2:01:79:e3:77:83:55:83:aa:56:dc:72:71:94:89: 34:24:80:fc:b4:ef:a9:1e:56:61:41:43:5d:71:c1:be:ea:84: 0f:17:28:ff:0f:94:e0:74:51:24:c8:8c:f1:e9:41:ae:26:8e: fc:40:bc:97:7f:24:43:d2:25:fe:50:7f:4e:03:d5:4b:13:1b: 6d:cd:b7:2f:ca:1c:6b:b7:66:ae:5f:1a:5b:07:a6:76:cd:e7: 7e:cd:d5:fd:45:af:2f:ad:d4:c2:a7:79:4f:93:db:11:d0:6d: c8:4d:af:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf0Goau3OXm9pAI5vr8qfVuJXezkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhB REVBRTg1MDAeFw0yNDA4MDYwMjU1MDFaFw0yNTA4MDUwMzAwMDFaMDMxMTAvBgNV BAMTKEQ1REExNEZENzI3QjdDRTM1RjMzNjc0NDFCRDkwQ0MwQjIyMENGOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfh07eUmUSf9JYX6xYN5jLLESY CjLgyC2P30wKRx0ggmChgcctQwsTvtO2D8yzRg10xJkuk6Px+apMUg/VYEAZXnUn UM8ThdgEeXSrF+YE9iLVOsNYASEqyWB78k7A/NZjAsPPHkBMj4lLGmhCl5EuCjP1 OzBWJKJeWjdEDAeWdTChY+x4GSxMRJukhLWS6Kse1nbFKo8JCP4kUBZT1LzZCfR8 xfCjaGVm77iM0Lcf47A0T9h9z99uH91qI42tDp8T3ADpkWLd5uC6JTrspV6VKlsG cvydEHgVv1qtDQFR+xwhKN1SS9nqOkNtf5sdYuwcZo5IlDkXmiHv/DeNdzZPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1doU/XJ7fONfM2dEG9kMwLIgz5AwHwYDVR0j BBgwFoAUQs04v3leAJm9PhQ92Dg3eK3q6FAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTI5MjkxMS1kYTdkLTQ2MzYtYjE1My0wMmE0YjY2MjA1YjUvMC80MkNEMzhCRjc5 NUUwMDk5QkQzRTE0M0REODM4Mzc3OEFERUFFODUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhBREVB RTg1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjkyOTExLWRhN2QtNDYzNi1i MTUzLTAyYTRiNjYyMDViNS8wLzMxMzAzMzJlMzEzNTM4MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ55hMA0GCSqG SIb3DQEBCwUAA4IBAQA6yB+vl4o+R8TGDJNZIVPuSIfPf/QQHXcA5gLgll+FRCdO 3m0f7RmI7mNQPLlj1MQbYW/f4bXZFFuGswhrNrqTQRsH/JWxUkqKcc+Rv6IwWEcb ttFkDfVC9S6MoeKTjrNP9Aa9fBQ+Gx7C77Fn1VenzJeOnvuSk4Wi9VW4t7Px0C2D 9cuHxrpqfDvgRjxMX2tPY7iyAXnjd4NVg6pW3HJxlIk0JID8tO+pHlZhQUNdccG+ 6oQPFyj/D5TgdFEkyIzx6UGuJo78QLyXfyRD0iX+UH9OA9VLExttzbcvyhxrt2au XxpbB6Z2zed+zdX9Ra8vrdTCp3lPk9sR0G3ITa95 -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org