$ rpki-client -vvf repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32332d3233203d3e20313530393830.roa File: 3130332e37302e3132322e302f32332d3233203d3e20313530393830.roa (raw, json) Hash identifier: 9NdE9Yt64lHcZmHfcp/BPdUY3C5A8B6IZ0IM6khU6pM= Subject key identifier: 88:5E:4A:CB:91:C5:A7:AC:A5:05:0F:17:BB:A2:FC:01:B0:6B:AB:7A Certificate issuer: /CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Certificate serial: 0AAEF8BD974B30FFF7023F7EECB042FBC7FAEFAE Authority key identifier: DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32332d3233203d3e20313530393830.roa Signing time: Wed 09 Oct 2024 16:00:00 +0000 ROA not before: Wed 09 Oct 2024 15:55:00 +0000 ROA not after: Wed 08 Oct 2025 16:00:00 +0000 asID: 150980 IP address blocks: 103.70.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ae:f8:bd:97:4b:30:ff:f7:02:3f:7e:ec:b0:42:fb:c7:fa:ef:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Validity Not Before: Oct 9 15:55:00 2024 GMT Not After : Oct 8 16:00:00 2025 GMT Subject: CN=885E4ACB91C5A7ACA5050F17BBA2FC01B06BAB7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ed:76:09:0c:24:5e:b5:2e:02:8a:5b:b2:0c: 40:81:70:46:77:35:26:9e:9d:fa:fc:92:fa:6b:0f: 0d:72:b6:f1:fb:49:66:37:95:b2:aa:73:75:b2:4e: 9d:22:13:9a:77:44:5c:cc:43:1a:58:3c:8f:4c:1f: ec:86:55:a5:9d:8f:3f:7d:4f:76:39:b4:85:2c:2e: 57:3c:5e:47:f4:ae:9f:5f:f7:1c:07:82:43:04:af: d4:78:0c:bd:ce:c0:f4:2b:f5:20:3b:43:43:1b:3f: 66:79:ab:ef:a3:02:38:f3:b6:54:e3:19:2f:4c:64: d0:c4:26:d5:b4:6f:bc:c8:e3:ff:ce:bb:94:fd:32: d8:fe:7b:23:c8:06:bc:c7:c0:b2:1a:39:b9:c9:b2: 19:53:b6:c8:4e:11:52:d3:d6:e6:96:03:6a:07:85: 2b:69:67:75:db:3e:3c:cb:ee:29:bd:c5:39:c5:18: 6a:ca:5e:31:db:72:6b:7d:73:84:e1:6d:66:fb:bc: e9:21:83:ec:82:0a:9b:13:58:dd:38:b9:d7:22:2a: ce:a4:91:3c:1b:9e:3e:a0:13:8b:7e:63:d2:44:da: 61:2f:58:99:ae:1c:ea:9a:f5:e9:bb:91:c5:a2:7e: 0d:14:9f:c1:b8:59:f5:55:58:04:51:cb:f5:7b:31: 49:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5E:4A:CB:91:C5:A7:AC:A5:05:0F:17:BB:A2:FC:01:B0:6B:AB:7A X509v3 Authority Key Identifier: keyid:DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32332d3233203d3e20313530393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.122.0/23 Signature Algorithm: sha256WithRSAEncryption 90:00:25:f9:57:6c:a3:11:3c:ce:3f:b8:6a:e5:f5:f0:e7:79: d4:42:18:24:bb:5a:26:e0:33:25:65:f0:d0:74:47:7a:30:c1: 02:8d:c3:d5:cb:fd:aa:6b:bc:b0:d6:b6:28:07:f5:ed:cd:1e: 66:89:66:52:04:1a:30:4a:c1:1a:c8:0a:15:5a:29:9a:e1:24: 83:ba:ca:3c:66:2a:24:89:d2:0c:23:eb:08:3e:49:c2:ea:45: 36:67:c3:a3:1a:b5:ae:e8:90:53:0f:78:ac:1f:e4:03:62:1c: d1:6d:08:74:40:d5:39:5b:ca:8c:3f:07:83:60:79:79:d8:30: cd:1f:a3:7d:e2:8c:61:e7:b3:7b:14:55:ee:b1:af:a0:10:df: 3f:fd:6d:78:bd:77:97:5d:89:b2:8f:db:d7:c6:b1:9e:1c:46: 84:09:fd:b3:ae:56:c8:a0:b6:6a:d1:f9:ee:36:14:0e:8f:af: 15:e1:ac:3c:09:65:79:03:ca:83:98:eb:9c:df:c5:a5:c7:a4: a7:fe:cc:00:58:d7:de:25:63:91:33:46:aa:bd:1f:74:6e:6f: 0c:13:20:34:d2:48:29:8c:87:e6:17:e3:d8:8a:3d:5b:be:fa: cf:8e:03:0c:0b:6b:a8:c7:2e:61:d2:47:ef:ad:74:87:c2:05: 2d:7a:bf:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCq74vZdLMP/3Aj9+7LBC+8f6764wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3 QzlBRkExNjAeFw0yNDEwMDkxNTU1MDBaFw0yNTEwMDgxNjAwMDBaMDMxMTAvBgNV BAMTKDg4NUU0QUNCOTFDNUE3QUNBNTA1MEYxN0JCQTJGQzAxQjA2QkFCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7XYJDCRetS4CiluyDECBcEZ3 NSaenfr8kvprDw1ytvH7SWY3lbKqc3WyTp0iE5p3RFzMQxpYPI9MH+yGVaWdjz99 T3Y5tIUsLlc8Xkf0rp9f9xwHgkMEr9R4DL3OwPQr9SA7Q0MbP2Z5q++jAjjztlTj GS9MZNDEJtW0b7zI4//Ou5T9Mtj+eyPIBrzHwLIaObnJshlTtshOEVLT1uaWA2oH hStpZ3XbPjzL7im9xTnFGGrKXjHbcmt9c4ThbWb7vOkhg+yCCpsTWN04udciKs6k kTwbnj6gE4t+Y9JE2mEvWJmuHOqa9em7kcWifg0Un8G4WfVVWARRy/V7MUlZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiF5Ky5HFp6ylBQ8Xu6L8AbBrq3owHwYDVR0j BBgwFoAU3VrNwLLQkVReGF6x+oDAAHya+hYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzI1MDY2Mi0zZWVmLTRhYTktOWVkZS01NjI5ZDViNmVhOTUvMC9ERDVBQ0RDMEIy RDA5MTU0NUUxODVFQjFGQTgwQzAwMDdDOUFGQTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3QzlB RkExNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzMjUwNjYyLTNlZWYtNGFhOS05 ZWRlLTU2MjlkNWI2ZWE5NS8wLzMxMzAzMzJlMzczMDJlMzEzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0Z6MA0GCSqG SIb3DQEBCwUAA4IBAQCQACX5V2yjETzOP7hq5fXw53nUQhgku1om4DMlZfDQdEd6 MMECjcPVy/2qa7yw1rYoB/XtzR5miWZSBBowSsEayAoVWima4SSDuso8ZiokidIM I+sIPknC6kU2Z8OjGrWu6JBTD3isH+QDYhzRbQh0QNU5W8qMPweDYHl52DDNH6N9 4oxh57N7FFXusa+gEN8//W14vXeXXYmyj9vXxrGeHEaECf2zrlbIoLZq0fnuNhQO j68V4aw8CWV5A8qDmOuc38Wlx6Sn/swAWNfeJWORM0aqvR90bm8MEyA00kgpjIfm F+PYij1bvvrPjgMMC2uoxy5h0kfvrXSHwgUter87 -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org