$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: fcf0jbm+HiTLpxvLBZNvyWHDVsx0os5wA9bQgitMn5g= Subject key identifier: 49:2E:25:65:9E:B9:1F:4E:40:E9:67:89:49:92:67:14:8F:25:6C:FB Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 0BEB266E4674FFE8BA3B5C7E007A2ECF36F17CD0 Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa Signing time: Thu 04 Jul 2024 04:02:06 +0000 ROA not before: Thu 04 Jul 2024 03:57:06 +0000 ROA not after: Thu 03 Jul 2025 04:02:06 +0000 asID: 141126 IP address blocks: 103.158.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 22:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:eb:26:6e:46:74:ff:e8:ba:3b:5c:7e:00:7a:2e:cf:36:f1:7c:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jul 4 03:57:06 2024 GMT Not After : Jul 3 04:02:06 2025 GMT Subject: CN=492E25659EB91F4E40E96789499267148F256CFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7e:b2:9a:4c:f7:2c:57:87:a9:21:2c:3c:55: a0:f6:c4:7b:0f:53:48:17:7b:b6:1a:40:7e:7c:21: 1d:68:b3:a9:44:95:8a:30:06:d9:54:ec:82:b5:a0: 16:4b:f3:1a:68:5e:be:71:11:bf:4e:82:42:f6:ef: f5:49:5b:f6:30:b9:f6:90:c8:30:54:b4:a8:f5:8e: 51:54:f5:70:f1:a9:9b:79:9d:5e:f1:6d:76:49:50: e8:6e:65:b0:b1:af:b9:92:c6:9e:ce:a2:63:14:c4: 7a:94:ee:47:5a:9b:fe:72:57:cd:0a:1d:18:e3:3b: 21:20:20:4e:33:04:25:a1:0f:8e:a4:e6:c0:d6:d9: 29:91:78:f7:23:84:0f:a1:8e:7c:7c:b7:c1:ce:04: a4:50:46:42:10:df:7c:98:b7:f7:17:1d:72:c2:c6: 02:d0:8e:c9:c8:77:11:aa:f5:05:19:01:21:f3:3e: e9:49:bb:c3:07:d5:17:15:e1:2f:f8:08:96:49:c8: 8d:b0:cb:2c:5c:35:14:75:ec:0f:06:7e:c8:15:90: a5:8e:c7:46:e8:b5:4f:a9:06:0d:92:b7:4e:95:68: c9:47:3f:04:ff:d5:05:96:0e:61:f9:20:c0:05:2d: 21:b7:f6:69:65:18:8e:5b:37:80:28:db:50:a7:e3: 2c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2E:25:65:9E:B9:1F:4E:40:E9:67:89:49:92:67:14:8F:25:6C:FB X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135342e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/24 Signature Algorithm: sha256WithRSAEncryption 53:32:c0:2b:d0:2d:2f:5c:dc:44:86:5d:5a:ee:5e:fd:20:81: c5:09:97:27:20:75:d3:c1:9c:72:b8:1c:0b:69:4f:e5:54:ff: 49:18:ac:0f:54:ab:36:b9:b9:e8:2b:43:63:92:9c:a1:33:95: a4:78:c0:29:c1:fd:e1:c3:20:23:e5:d4:d4:2b:e5:70:d4:8d: 79:06:15:99:bc:b5:be:b3:72:e8:9b:1c:47:7f:8c:96:25:79: b4:7f:7d:87:ee:01:22:20:da:83:fe:a6:29:45:2d:60:c9:8f: d6:10:4f:a1:4b:69:95:8f:7d:e7:02:cc:b4:b1:50:f4:4d:6a: 03:b6:4f:c3:d6:f6:99:9e:a6:d5:65:54:ce:b5:84:a0:50:df: f6:a0:e5:8a:e1:7d:4f:99:3f:73:2b:fd:3d:69:1d:17:a4:ab: 17:e1:1c:24:0a:72:b4:ed:00:8d:4b:0f:98:17:2f:14:dd:e4: 29:92:c6:75:40:5d:3b:96:0f:65:8c:bc:e4:24:8f:25:bc:21: 19:f1:10:d0:86:e7:90:95:e4:8d:b6:79:19:dc:fd:b3:b3:5c: e5:68:0b:a2:8c:a1:5d:2c:28:51:e3:90:73:cc:33:e8:90:68: ed:ce:64:25:cb:8b:8a:dd:2e:78:b5:95:55:15:8a:65:9b:e9: 01:d8:4a:11 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC+smbkZ0/+i6O1x+AHouzzbxfNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNDA3MDQwMzU3MDZaFw0yNTA3MDMwNDAyMDZaMDMxMTAvBgNV BAMTKDQ5MkUyNTY1OUVCOTFGNEU0MEU5Njc4OTQ5OTI2NzE0OEYyNTZDRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfrKaTPcsV4epISw8VaD2xHsP U0gXe7YaQH58IR1os6lElYowBtlU7IK1oBZL8xpoXr5xEb9OgkL27/VJW/YwufaQ yDBUtKj1jlFU9XDxqZt5nV7xbXZJUOhuZbCxr7mSxp7OomMUxHqU7kdam/5yV80K HRjjOyEgIE4zBCWhD46k5sDW2SmRePcjhA+hjnx8t8HOBKRQRkIQ33yYt/cXHXLC xgLQjsnIdxGq9QUZASHzPulJu8MH1RcV4S/4CJZJyI2wyyxcNRR17A8GfsgVkKWO x0botU+pBg2St06VaMlHPwT/1QWWDmH5IMAFLSG39mllGI5bN4Ao21Cn4yylAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSS4lZZ65H05A6WeJSZJnFI8lbPswHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpowDQYJ KoZIhvcNAQELBQADggEBAFMywCvQLS9c3ESGXVruXv0ggcUJlycgddPBnHK4HAtp T+VU/0kYrA9Uqza5uegrQ2OSnKEzlaR4wCnB/eHDICPl1NQr5XDUjXkGFZm8tb6z cuibHEd/jJYlebR/fYfuASIg2oP+pilFLWDJj9YQT6FLaZWPfecCzLSxUPRNagO2 T8PW9pmeptVlVM61hKBQ3/ag5YrhfU+ZP3Mr/T1pHRekqxfhHCQKcrTtAI1LD5gX LxTd5CmSxnVAXTuWD2WMvOQkjyW8IRnxENCG55CV5I22eRnc/bOzXOVoC6KMoV0s KFHjkHPMM+iQaO3OZCXLi4rdLni1lVUVimWb6QHYShE= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org