$ rpki-client -vvf repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa File: 3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa (raw, json) Hash identifier: hS9W5zhiPMoA5xFQ7ZKaftiZbmY4HQaJ34cbk5T3AvA= Subject key identifier: 1D:72:DD:DB:D2:46:E0:56:C5:81:C5:27:CE:88:7B:17:A2:D7:11:AD Certificate issuer: /CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Certificate serial: 5BBD4E184C9423D15AE23136CB8B7804F11B82CB Authority key identifier: DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa Signing time: Thu 25 Apr 2024 15:00:00 +0000 ROA not before: Thu 25 Apr 2024 14:55:00 +0000 ROA not after: Thu 24 Apr 2025 15:00:00 +0000 asID: 150980 IP address blocks: 103.70.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bd:4e:18:4c:94:23:d1:5a:e2:31:36:cb:8b:78:04:f1:1b:82:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16 Validity Not Before: Apr 25 14:55:00 2024 GMT Not After : Apr 24 15:00:00 2025 GMT Subject: CN=1D72DDDBD246E056C581C527CE887B17A2D711AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:69:35:0b:39:65:b6:7f:43:34:fd:46:55:cd: 89:fc:6d:4d:b2:f6:1a:b9:c6:a7:3a:39:26:3e:bb: 9b:98:21:10:ac:2f:93:bd:f2:4f:44:c3:80:9a:50: 9d:08:6c:3c:6b:93:bb:1c:ef:59:c6:a1:c6:c4:a3: 41:50:b2:1f:85:5a:21:d9:b7:b6:4f:1f:14:bf:b5: df:3d:91:4d:28:5a:e4:6b:b1:d2:90:10:bb:0d:39: 22:92:e5:fa:25:e0:34:47:07:5a:ca:35:c0:84:cd: 4d:2b:d3:18:48:80:7b:2c:91:cf:02:40:71:41:5b: e9:76:02:4d:3f:a1:bd:aa:31:58:fe:c3:d8:a9:52: 03:8d:d5:d2:8a:13:e1:a9:d3:1a:4d:b1:a5:48:a4: 85:2c:67:b6:7d:cd:70:fd:d6:ea:be:1f:75:dc:2b: 51:b6:22:60:43:85:e0:4d:4b:1e:c7:96:fc:bb:fa: 44:70:62:32:e2:d3:09:8c:3c:5c:fa:38:ae:65:13: 4e:ca:ca:f0:0d:45:0f:31:58:c5:5c:b7:39:ea:f6: e6:0a:04:29:6a:b8:18:51:a7:c5:e4:c9:e4:c7:6e: e6:d1:d2:59:61:bd:b8:b6:a6:f6:c1:34:65:ed:4d: 6c:7f:b0:02:e9:80:91:2c:f3:19:af:7c:35:1f:da: 52:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:72:DD:DB:D2:46:E0:56:C5:81:C5:27:CE:88:7B:17:A2:D7:11:AD X509v3 Authority Key Identifier: keyid:DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.122.0/24 Signature Algorithm: sha256WithRSAEncryption 94:71:c3:52:91:d9:d5:7a:4a:4f:b5:37:c5:10:ad:a7:4f:f5: 91:5e:c4:84:44:3f:d8:49:c5:88:f7:18:b4:52:da:22:07:cb: 28:3b:d0:90:69:91:49:a1:39:6e:51:67:d8:a3:bb:82:a4:39: b8:6e:30:39:6d:7f:8d:da:ca:d3:7a:70:e7:bc:6b:66:77:79: 59:3d:8b:94:77:f1:70:10:65:19:82:45:d4:44:5f:ea:34:99: fb:ca:e3:da:93:63:bf:4d:7e:c7:97:22:11:b5:64:bc:e6:5e: bb:83:8a:e9:3a:48:b6:9d:56:3a:2f:33:0b:4e:fd:08:4e:77: 50:f4:1f:69:3d:f5:22:42:66:5f:ee:f0:20:78:e1:dc:a4:7f: 48:fa:a2:26:e9:81:47:68:bc:ea:3e:57:3e:fb:78:70:c1:06: 69:76:92:19:f4:c3:fb:18:02:0c:9e:ef:31:c0:c3:52:89:70: 0c:c2:18:96:f0:fd:bf:cd:ed:86:c1:de:ae:97:5a:9a:04:3a: 4a:b1:7a:06:21:fc:3d:c9:f2:0c:6b:ad:e7:9b:6c:e4:e6:3f: 40:60:57:22:9f:7a:19:5e:71:3f:b9:41:6c:72:60:6d:56:2e: ef:ea:c8:3a:45:2a:21:49:02:bb:aa:1b:72:5b:c0:1d:bb:96: f8:a8:d9:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW71OGEyUI9Fa4jE2y4t4BPEbgsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3 QzlBRkExNjAeFw0yNDA0MjUxNDU1MDBaFw0yNTA0MjQxNTAwMDBaMDMxMTAvBgNV BAMTKDFENzJERERCRDI0NkUwNTZDNTgxQzUyN0NFODg3QjE3QTJENzExQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9aTULOWW2f0M0/UZVzYn8bU2y 9hq5xqc6OSY+u5uYIRCsL5O98k9Ew4CaUJ0IbDxrk7sc71nGocbEo0FQsh+FWiHZ t7ZPHxS/td89kU0oWuRrsdKQELsNOSKS5fol4DRHB1rKNcCEzU0r0xhIgHsskc8C QHFBW+l2Ak0/ob2qMVj+w9ipUgON1dKKE+Gp0xpNsaVIpIUsZ7Z9zXD91uq+H3Xc K1G2ImBDheBNSx7Hlvy7+kRwYjLi0wmMPFz6OK5lE07KyvANRQ8xWMVctznq9uYK BClquBhRp8XkyeTHbubR0llhvbi2pvbBNGXtTWx/sALpgJEs8xmvfDUf2lKZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHXLd29JG4FbFgcUnzoh7F6LXEa0wHwYDVR0j BBgwFoAU3VrNwLLQkVReGF6x+oDAAHya+hYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzI1MDY2Mi0zZWVmLTRhYTktOWVkZS01NjI5ZDViNmVhOTUvMC9ERDVBQ0RDMEIy RDA5MTU0NUUxODVFQjFGQTgwQzAwMDdDOUFGQTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ1QUNEQzBCMkQwOTE1NDVFMTg1RUIxRkE4MEMwMDA3QzlB RkExNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzMjUwNjYyLTNlZWYtNGFhOS05 ZWRlLTU2MjlkNWI2ZWE5NS8wLzMxMzAzMzJlMzczMDJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0Z6MA0GCSqG SIb3DQEBCwUAA4IBAQCUccNSkdnVekpPtTfFEK2nT/WRXsSERD/YScWI9xi0Utoi B8soO9CQaZFJoTluUWfYo7uCpDm4bjA5bX+N2srTenDnvGtmd3lZPYuUd/FwEGUZ gkXURF/qNJn7yuPak2O/TX7HlyIRtWS85l67g4rpOki2nVY6LzMLTv0ITndQ9B9p PfUiQmZf7vAgeOHcpH9I+qIm6YFHaLzqPlc++3hwwQZpdpIZ9MP7GAIMnu8xwMNS iXAMwhiW8P2/ze2Gwd6ul1qaBDpKsXoGIfw9yfIMa63nm2zk5j9AYFcin3oZXnE/ uUFscmBtVi7v6sg6RSohSQK7qhtyW8Adu5b4qNmD -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org