$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa (raw, json) Hash identifier: MQLOXLE7kItbI3VqEvN4se62a6lNzHSlzAIOByXQI/0= Subject key identifier: 3A:C1:1B:DE:94:30:D0:00:B0:70:22:86:B1:FE:19:7E:4F:91:B0:7A Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 3D525786CFCE2BC55BAE04BAD2EFB56EB792CC0D Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa Signing time: Thu 04 Jul 2024 04:02:06 +0000 ROA not before: Thu 04 Jul 2024 03:57:06 +0000 ROA not after: Thu 03 Jul 2025 04:02:06 +0000 asID: 141126 IP address blocks: 103.158.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 22:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:52:57:86:cf:ce:2b:c5:5b:ae:04:ba:d2:ef:b5:6e:b7:92:cc:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jul 4 03:57:06 2024 GMT Not After : Jul 3 04:02:06 2025 GMT Subject: CN=3AC11BDE9430D000B0702286B1FE197E4F91B07A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:6a:f7:76:cf:91:2e:6d:84:b0:11:4c:37: a3:43:1d:f5:63:3f:f2:0f:3b:18:57:06:98:bf:31: af:d5:4c:da:97:41:00:ee:23:f3:ba:53:33:de:77: 7d:20:d9:6d:d0:98:48:a4:d2:9c:1d:50:51:88:fb: c4:1a:70:a6:18:f7:10:1e:16:09:00:45:75:50:1a: d4:70:6e:4f:a1:f5:02:43:10:4e:8d:96:04:11:64: 79:60:48:7c:62:dd:b2:f8:2b:fe:7a:dd:97:60:95: e9:f6:9f:67:6b:d4:61:54:1e:cc:0b:6c:50:80:89: 2b:3e:e2:60:6b:83:6e:dd:80:7d:0e:bc:1c:3f:f1: 1b:d4:e5:d6:83:0d:37:15:66:66:f2:79:98:21:fd: 61:a4:b1:1d:bf:ed:6b:76:19:c5:34:84:06:e7:dd: 3b:12:4b:a1:8f:ab:00:c6:73:53:9c:45:f8:d1:3e: cb:65:ab:5b:41:54:4e:47:96:9c:60:f1:20:5e:f4: 48:1f:a0:45:28:82:f7:ec:5b:d5:48:1d:57:df:b2: 8a:26:52:1c:dc:b2:50:4e:f5:61:c0:96:18:1c:22: 03:e9:97:54:86:a2:f7:fa:15:75:f0:b9:c9:69:16: c0:e6:72:d6:07:d0:3a:0c:f3:8c:78:2c:f2:c7:3f: cf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C1:1B:DE:94:30:D0:00:B0:70:22:86:B1:FE:19:7E:4F:91:B0:7A X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32332d3233203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/23 Signature Algorithm: sha256WithRSAEncryption a8:5c:a2:b1:62:34:0b:8a:02:86:d4:35:71:d4:a2:24:5c:66: d0:69:fa:81:31:17:d7:61:6c:50:d3:92:3e:79:b1:9c:07:7f: 7b:a0:cf:b3:94:43:25:aa:37:dc:a4:8c:ba:65:34:e3:a5:b1: 01:be:bd:99:c7:43:74:03:6f:d1:1c:2d:fa:0f:89:3f:fc:49: a5:8f:d1:aa:ce:0a:e5:ff:d7:2c:c4:65:24:4e:99:12:eb:f2: 46:9b:85:17:cc:5f:4e:dc:00:e5:c8:35:e8:07:04:1e:3d:82: ee:15:a5:a3:33:b9:2b:8b:d2:88:13:b5:5e:0b:c1:be:bb:f4: 37:93:59:34:da:c0:6e:5e:18:73:b1:ec:31:56:9a:88:ca:0a: e7:d8:9d:dd:b1:fc:a4:d1:49:cd:c5:0b:04:cf:5a:6f:29:24: bc:f5:e8:a3:fc:89:7a:19:3a:c9:e2:0f:b3:22:cf:c7:f4:dc: 21:9e:d7:3e:38:d9:2f:a1:05:40:5a:91:5a:1d:44:7f:31:36: 30:84:50:ba:23:69:6b:e1:0d:a5:0c:e2:c4:0e:db:87:ae:dc: 5c:b6:05:66:0c:ba:60:d6:55:c5:73:50:05:31:32:a8:4e:a2: 43:ac:6c:03:c7:de:fa:82:d1:a4:97:8a:ba:a0:3e:38:ff:31: b5:3d:47:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPVJXhs/OK8VbrgS60u+1breSzA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNDA3MDQwMzU3MDZaFw0yNTA3MDMwNDAyMDZaMDMxMTAvBgNV BAMTKDNBQzExQkRFOTQzMEQwMDBCMDcwMjI4NkIxRkUxOTdFNEY5MUIwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdKmr3ds+RLm2EsBFMN6NDHfVj P/IPOxhXBpi/Ma/VTNqXQQDuI/O6UzPed30g2W3QmEik0pwdUFGI+8QacKYY9xAe FgkARXVQGtRwbk+h9QJDEE6NlgQRZHlgSHxi3bL4K/563Zdglen2n2dr1GFUHswL bFCAiSs+4mBrg27dgH0OvBw/8RvU5daDDTcVZmbyeZgh/WGksR2/7Wt2GcU0hAbn 3TsSS6GPqwDGc1OcRfjRPstlq1tBVE5Hlpxg8SBe9EgfoEUogvfsW9VIHVffsoom UhzcslBO9WHAlhgcIgPpl1SGovf6FXXwuclpFsDmctYH0DoM84x4LPLHP8/lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOsEb3pQw0ACwcCKGsf4Zfk+RsHowHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnpowDQYJ KoZIhvcNAQELBQADggEBAKhcorFiNAuKAobUNXHUoiRcZtBp+oExF9dhbFDTkj55 sZwHf3ugz7OUQyWqN9ykjLplNOOlsQG+vZnHQ3QDb9EcLfoPiT/8SaWP0arOCuX/ 1yzEZSROmRLr8kabhRfMX07cAOXINegHBB49gu4VpaMzuSuL0ogTtV4Lwb679DeT WTTawG5eGHOx7DFWmojKCufYnd2x/KTRSc3FCwTPWm8pJLz16KP8iXoZOsniD7Mi z8f03CGe1z442S+hBUBakVodRH8xNjCEULojaWvhDaUM4sQO24eu3Fy2BWYMumDW VcVzUAUxMqhOokOsbAPH3vqC0aSXirqgPjj/MbU9R8A= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org