$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa File: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: u8Au9LMYXcHGihCwMXA0rXB8fgKyjCiixCQrB4ejbv0= Subject key identifier: D7:7D:2D:A1:8D:6C:0F:AB:DD:4D:60:2F:0E:4D:85:7D:2E:51:D4:6B Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 217572D2564587787C5D5A8D17F1A8BF0A792B01 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa Signing time: Tue 20 Aug 2024 06:00:05 +0000 ROA not before: Tue 20 Aug 2024 05:55:05 +0000 ROA not after: Tue 19 Aug 2025 06:00:05 +0000 asID: 136052 IP address blocks: 103.28.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:75:72:d2:56:45:87:78:7c:5d:5a:8d:17:f1:a8:bf:0a:79:2b:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Aug 20 05:55:05 2024 GMT Not After : Aug 19 06:00:05 2025 GMT Subject: CN=D77D2DA18D6C0FABDD4D602F0E4D857D2E51D46B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3e:21:d6:34:8f:7f:d2:16:45:81:8a:1a:9e: 46:5c:bf:82:1c:40:d7:86:4d:53:02:93:6b:52:17: fd:59:80:5c:60:fa:cd:c6:5b:87:a2:3e:69:b3:c6: 72:92:7c:98:b1:cc:7c:1b:0c:85:e6:a3:a1:e5:8e: df:55:95:8e:57:93:7d:04:0e:95:35:ae:d9:22:a5: dc:64:40:eb:42:c3:92:67:b5:53:d3:a3:ba:77:d7: 27:57:1e:79:94:dd:70:85:5b:8f:7f:dc:14:bc:57: 5d:ab:1a:04:91:52:32:ca:cb:ea:80:ff:c5:ff:6a: 76:33:ce:29:d9:5f:7f:25:e5:93:25:9e:0b:32:5b: 8e:d2:ef:39:2b:fb:7d:d7:96:a6:d8:7c:5b:a8:61: c5:ca:2c:f9:73:17:7a:cc:5c:84:cd:b6:c8:c1:38: 24:ad:61:93:ae:04:5d:e7:64:50:70:3c:f1:79:3c: 25:48:12:2c:bd:ec:f5:ae:8f:09:89:42:31:d1:9f: 21:dc:59:85:7e:66:72:e4:b9:aa:76:a3:5b:e0:0f: 35:ec:06:0b:e7:c2:02:0a:0b:b6:16:e6:20:05:6e: f6:1e:71:08:9f:bd:4c:f3:ab:81:0f:6c:d4:19:5f: 2c:7b:2f:c8:0c:a0:40:29:2c:1f:15:f5:a1:11:1f: c1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7D:2D:A1:8D:6C:0F:AB:DD:4D:60:2F:0E:4D:85:7D:2E:51:D4:6B X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.52.0/23 Signature Algorithm: sha256WithRSAEncryption 55:88:ec:79:19:e2:45:92:8b:54:db:78:f1:60:d1:97:f5:87: 2a:e1:46:5a:d7:b2:09:7f:df:3a:77:d7:70:dc:da:9a:c0:ef: b0:7e:91:db:25:ea:1c:a0:d2:cc:7c:55:36:e5:bc:97:fb:32: 75:c9:4c:cb:58:a7:11:b2:38:2b:a2:b7:21:67:7b:ed:08:da: 18:35:49:8e:5a:c1:87:f7:c5:aa:5f:5c:c7:eb:94:0f:12:3c: b1:63:22:7c:2d:23:1c:39:03:a4:4e:a7:db:27:df:d8:7c:fd: ad:3d:69:bf:b3:84:72:82:f1:a1:69:ce:8c:4c:08:0d:64:14: 14:4d:68:df:a5:ac:3c:1c:78:dc:23:80:35:31:42:c8:bf:ac: e0:4f:e9:bd:37:82:27:cb:34:1f:4c:dd:16:60:29:98:e1:d3: 23:75:df:e5:aa:06:ed:36:58:7d:9b:d3:04:ec:33:bc:97:b9: 7e:48:3b:f8:49:5c:8e:95:40:8a:67:44:fe:60:af:12:73:db: 89:08:d8:fe:dc:7b:db:7c:cd:20:4e:77:1a:22:c2:4e:5f:54: 3f:8d:3e:98:6f:af:db:d4:64:c3:20:6c:9a:dd:1f:db:2f:5b: 49:99:09:f6:c8:2f:51:75:fd:00:9a:79:97:40:99:10:42:bc: 22:d6:f2:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIXVy0lZFh3h8XVqNF/Govwp5KwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNDA4MjAwNTU1MDVaFw0yNTA4MTkwNjAwMDVaMDMxMTAvBgNV BAMTKEQ3N0QyREExOEQ2QzBGQUJERDRENjAyRjBFNEQ4NTdEMkU1MUQ0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJPiHWNI9/0hZFgYoankZcv4Ic QNeGTVMCk2tSF/1ZgFxg+s3GW4eiPmmzxnKSfJixzHwbDIXmo6Hljt9VlY5Xk30E DpU1rtkipdxkQOtCw5JntVPTo7p31ydXHnmU3XCFW49/3BS8V12rGgSRUjLKy+qA /8X/anYzzinZX38l5ZMlngsyW47S7zkr+33XlqbYfFuoYcXKLPlzF3rMXITNtsjB OCStYZOuBF3nZFBwPPF5PCVIEiy97PWujwmJQjHRnyHcWYV+ZnLkuap2o1vgDzXs BgvnwgIKC7YW5iAFbvYecQifvUzzq4EPbNQZXyx7L8gMoEApLB8V9aERH8E3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU130toY1sD6vdTWAvDk2FfS5R1GswHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMxMzAzMzJlMzIzODJlMzUzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWccNDANBgkqhkiG 9w0BAQsFAAOCAQEAVYjseRniRZKLVNt48WDRl/WHKuFGWteyCX/fOnfXcNzamsDv sH6R2yXqHKDSzHxVNuW8l/sydclMy1inEbI4K6K3IWd77QjaGDVJjlrBh/fFql9c x+uUDxI8sWMifC0jHDkDpE6n2yff2Hz9rT1pv7OEcoLxoWnOjEwIDWQUFE1o36Ws PBx43COANTFCyL+s4E/pvTeCJ8s0H0zdFmApmOHTI3Xf5aoG7TZYfZvTBOwzvJe5 fkg7+ElcjpVAimdE/mCvEnPbiQjY/tx723zNIE53GiLCTl9UP40+mG+v29RkwyBs mt0f2y9bSZkJ9sgvUXX9AJp5l0CZEEK8ItbyTA== -----END CERTIFICATE-----Generated at Mon Nov 25 02:45:36 2024 by rpki-client on console-ams.rpki-client.org