$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa File: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: gdiZ+9B8KYHztol8GGjqhlAvnuN313/tNDfyNie4eG4= Subject key identifier: 90:10:F8:3B:60:51:5C:4F:ED:43:6E:F1:26:58:00:29:C4:43:E3:44 Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 3F8E5BD85803A72F867ABB2A0CA4F3AB094D9DA4 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa Signing time: Tue 20 Aug 2024 06:00:05 +0000 ROA not before: Tue 20 Aug 2024 05:55:05 +0000 ROA not after: Tue 19 Aug 2025 06:00:05 +0000 asID: 136052 IP address blocks: 103.236.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8e:5b:d8:58:03:a7:2f:86:7a:bb:2a:0c:a4:f3:ab:09:4d:9d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Aug 20 05:55:05 2024 GMT Not After : Aug 19 06:00:05 2025 GMT Subject: CN=9010F83B60515C4FED436EF126580029C443E344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:c2:53:e9:f9:e6:4a:20:ba:37:cd:0e:7c: 8a:5a:71:35:a8:22:bb:24:ae:03:a6:87:5a:1d:87: d1:ea:c2:f8:19:87:bc:f1:c2:7f:f6:d5:fe:96:23: c6:d6:98:7e:0d:e4:e9:2a:76:7d:5f:7e:8a:25:99: 92:28:a0:8a:98:d0:f8:b3:97:d9:fe:92:24:a3:14: ee:fd:42:89:fb:60:1a:05:f2:5e:34:f3:ae:a1:02: a4:84:fe:f9:cb:a0:29:ae:98:aa:5d:a8:57:13:22: 04:a2:73:63:6d:12:09:1e:eb:a3:81:8d:ba:06:2b: f3:38:d5:a3:0f:d6:d4:34:8e:d7:b3:a8:e0:af:6c: 67:14:ca:01:5a:c1:f6:02:51:c7:4a:14:58:c7:6f: 6c:42:72:41:83:47:84:89:cc:74:85:7d:3d:03:0f: 72:e9:f8:f9:a6:a2:6e:aa:76:23:76:78:33:6b:b6: f5:a4:dc:41:51:c7:b5:ec:77:39:d3:0c:60:8f:cc: dc:f4:b5:72:bb:37:af:e9:38:9e:d7:35:d6:e9:6e: 6e:a8:48:e4:45:ae:fc:1a:c6:89:10:02:4e:cb:6a: 48:3c:7c:3b:62:5b:e0:b9:35:3d:02:c0:22:35:38: d9:3e:40:f5:1f:e5:ae:73:c1:74:75:2e:c1:05:c0: 64:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:10:F8:3B:60:51:5C:4F:ED:43:6E:F1:26:58:00:29:C4:43:E3:44 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.201.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:8c:a7:a1:97:00:e8:5d:2f:26:b1:b8:82:fb:d1:fa:d6:54: c8:02:7e:23:37:a2:ba:48:0e:9b:a2:ba:b8:ce:45:4f:c6:1f: a5:95:95:b5:b0:47:00:93:5c:8c:41:45:94:9e:60:cd:b9:b5: 99:f6:c9:8f:6a:2b:39:b7:0a:13:02:ac:7b:60:35:65:b1:0f: ba:aa:72:d4:31:45:93:2c:b3:92:32:8b:8e:2d:0f:f7:60:58: 61:0c:5f:18:5f:c8:1f:a7:4c:cf:fb:2c:e3:81:4b:b5:0a:84: 6b:81:59:92:b5:5a:aa:92:d8:08:5e:e7:4f:78:1d:6c:1a:2e: 61:56:61:e9:c5:98:6c:00:61:90:09:de:10:17:f3:b1:59:27: 1d:aa:b5:1f:89:17:b2:31:e4:db:72:20:61:33:30:27:e2:46: 13:c5:27:8a:5e:bc:85:ba:b3:98:df:44:3b:f1:c2:11:b2:75: f3:d4:d7:9e:6d:69:ca:78:a4:cb:6f:87:e2:09:75:7e:29:af: df:4e:dd:bc:0d:77:6c:ad:a9:25:66:d6:22:99:d2:f9:48:30: 96:b3:33:be:b4:a9:ff:d0:d5:0e:0a:eb:de:96:e6:5c:03:1b: a1:35:dd:c9:3d:b6:2a:96:cd:60:81:87:bd:5f:b3:8a:d7:e2: 74:c9:42:0a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP45b2FgDpy+GersqDKTzqwlNnaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNDA4MjAwNTU1MDVaFw0yNTA4MTkwNjAwMDVaMDMxMTAvBgNV BAMTKDkwMTBGODNCNjA1MTVDNEZFRDQzNkVGMTI2NTgwMDI5QzQ0M0UzNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXMJT6fnmSiC6N80OfIpacTWo IrskrgOmh1odh9HqwvgZh7zxwn/21f6WI8bWmH4N5Okqdn1ffoolmZIooIqY0Piz l9n+kiSjFO79Qon7YBoF8l40866hAqSE/vnLoCmumKpdqFcTIgSic2NtEgke66OB jboGK/M41aMP1tQ0jtezqOCvbGcUygFawfYCUcdKFFjHb2xCckGDR4SJzHSFfT0D D3Lp+Pmmom6qdiN2eDNrtvWk3EFRx7XsdznTDGCPzNz0tXK7N6/pOJ7XNdbpbm6o SORFrvwaxokQAk7Lakg8fDtiW+C5NT0CwCI1ONk+QPUf5a5zwXR1LsEFwGTlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkBD4O2BRXE/tQ27xJlgAKcRD40QwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzMzM2MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn7MkwDQYJ KoZIhvcNAQELBQADggEBAD+Mp6GXAOhdLyaxuIL70frWVMgCfiM3orpIDpuiurjO RU/GH6WVlbWwRwCTXIxBRZSeYM25tZn2yY9qKzm3ChMCrHtgNWWxD7qqctQxRZMs s5Iyi44tD/dgWGEMXxhfyB+nTM/7LOOBS7UKhGuBWZK1WqqS2Ahe5094HWwaLmFW YenFmGwAYZAJ3hAX87FZJx2qtR+JF7Ix5NtyIGEzMCfiRhPFJ4pevIW6s5jfRDvx whGydfPU155tacp4pMtvh+IJdX4pr99O3bwNd2ytqSVm1iKZ0vlIMJazM760qf/Q 1Q4K696W5lwDG6E13ck9tiqWzWCBh71fs4rX4nTJQgo= -----END CERTIFICATE-----Generated at Mon Nov 25 02:56:53 2024 by rpki-client on console-fra.rpki-client.org