$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa File: 3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: lnxOKEd+PewMsG44qj3HVvV3WG1qaRgIi/Wp6zXG+ZE= Subject key identifier: 63:9C:F7:E6:20:4D:35:40:E5:60:14:B8:65:17:63:DD:A5:FA:BC:A3 Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Certificate serial: 57B2F02C880B32E6A589CFFB35516D93E89614B6 Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa Signing time: Thu 04 Jul 2024 04:02:06 +0000 ROA not before: Thu 04 Jul 2024 03:57:06 +0000 ROA not after: Thu 03 Jul 2025 04:02:06 +0000 asID: 141126 IP address blocks: 103.158.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 22:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b2:f0:2c:88:0b:32:e6:a5:89:cf:fb:35:51:6d:93:e8:96:14:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Validity Not Before: Jul 4 03:57:06 2024 GMT Not After : Jul 3 04:02:06 2025 GMT Subject: CN=639CF7E6204D3540E56014B8651763DDA5FABCA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:f7:30:48:79:13:3f:67:a4:82:2f:da:87: 46:30:e6:0f:a9:78:7c:1d:d0:df:e1:49:c2:2f:01: d1:d8:42:2a:11:75:f6:93:7c:3a:46:7c:c6:16:25: 05:aa:9e:cd:a9:9f:56:e9:8e:2d:47:60:6e:79:10: 43:e9:13:0b:08:1d:e8:28:bf:84:1a:28:97:c3:3b: 72:fd:d8:8f:7d:ac:f0:86:e6:a8:bd:23:9b:82:e3: ec:5a:e2:12:48:d2:bd:ce:3a:d0:ca:41:43:4c:16: 40:80:9a:a7:49:f8:da:1e:c4:60:33:4b:73:ee:bd: 1e:aa:37:40:67:3f:02:3e:1e:49:81:cb:36:c8:40: 89:76:a4:b0:47:22:6f:ee:99:d5:67:19:89:ba:d6: 18:89:b4:b8:ca:78:e6:ce:b7:bc:14:c3:7d:d9:bc: 32:3b:ee:14:bf:1f:9d:fb:75:36:0d:49:7f:52:3b: d9:a2:af:cc:13:f1:25:e5:19:d3:85:ec:0f:fa:ad: 63:08:64:0e:73:36:d5:4f:7d:6f:9a:90:ef:ef:72: b2:e6:6d:ef:a4:c1:50:2e:13:a1:74:90:85:79:7e: da:f4:ac:db:72:1b:ae:17:27:49:82:86:eb:b7:8e: 1e:02:d7:06:01:bb:73:ae:41:b2:10:e1:3a:8c:ef: dd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9C:F7:E6:20:4D:35:40:E5:60:14:B8:65:17:63:DD:A5:FA:BC:A3 X509v3 Authority Key Identifier: keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.155.0/24 Signature Algorithm: sha256WithRSAEncryption 36:25:f1:59:87:f4:a5:7c:66:2d:c8:f3:b1:67:69:cf:bf:b9: ce:c4:69:15:25:ca:f0:ba:59:51:55:c4:4f:2a:07:7b:18:3b: 87:bd:be:17:c6:75:bc:9f:a5:3e:e4:62:48:99:99:7f:b4:8a: 7b:4d:9c:ae:19:10:b2:5d:de:c2:8d:77:ae:03:dc:61:52:01: 20:af:f6:04:61:ff:f2:89:71:e6:7b:ff:13:28:e0:d3:11:31: 22:49:4e:ef:06:27:27:5c:b7:59:bb:a2:36:c6:01:ab:07:14: 42:4c:ea:f0:d2:56:c9:a9:77:0c:8e:70:43:c0:e5:96:44:6b: 07:b9:ec:9e:b5:a0:9e:35:11:7e:de:f5:7b:6a:6d:8b:a2:c0: a3:6f:39:e3:d8:04:87:3c:c6:fd:66:f9:a1:67:d0:9e:b4:ed: ee:78:22:99:46:f2:95:72:92:63:65:d3:48:19:62:f1:f0:f2: 65:77:41:0e:86:bc:03:70:71:f1:9f:79:9e:87:60:9a:58:56: ef:6d:4a:05:5c:c9:13:36:82:c1:9d:1e:ae:19:1a:e6:66:bf: 97:59:50:51:85:1a:37:5e:a8:4a:d4:2f:3c:07:df:b6:89:77: a7:c8:ce:80:62:ca:ac:81:6e:53:c2:f9:b2:f1:b9:ed:5a:c2: 8e:e8:77:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV7LwLIgLMualic/7NVFtk+iWFLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2 Q0QyMkYxMzAeFw0yNDA3MDQwMzU3MDZaFw0yNTA3MDMwNDAyMDZaMDMxMTAvBgNV BAMTKDYzOUNGN0U2MjA0RDM1NDBFNTYwMTRCODY1MTc2M0REQTVGQUJDQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHvcwSHkTP2ekgi/ah0Yw5g+p eHwd0N/hScIvAdHYQioRdfaTfDpGfMYWJQWqns2pn1bpji1HYG55EEPpEwsIHego v4QaKJfDO3L92I99rPCG5qi9I5uC4+xa4hJI0r3OOtDKQUNMFkCAmqdJ+NoexGAz S3PuvR6qN0BnPwI+HkmByzbIQIl2pLBHIm/umdVnGYm61hiJtLjKeObOt7wUw33Z vDI77hS/H537dTYNSX9SO9mir8wT8SXlGdOF7A/6rWMIZA5zNtVPfW+akO/vcrLm be+kwVAuE6F0kIV5ftr0rNtyG64XJ0mChuu3jh4C1wYBu3OuQbIQ4TqM790PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUY5z35iBNNUDlYBS4ZRdj3aX6vKMwHwYDVR0j BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0 Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04 M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpswDQYJ KoZIhvcNAQELBQADggEBADYl8VmH9KV8Zi3I87Fnac+/uc7EaRUlyvC6WVFVxE8q B3sYO4e9vhfGdbyfpT7kYkiZmX+0intNnK4ZELJd3sKNd64D3GFSASCv9gRh//KJ ceZ7/xMo4NMRMSJJTu8GJydct1m7ojbGAasHFEJM6vDSVsmpdwyOcEPA5ZZEawe5 7J61oJ41EX7e9XtqbYuiwKNvOePYBIc8xv1m+aFn0J607e54IplG8pVykmNl00gZ YvHw8mV3QQ6GvANwcfGfeZ6HYJpYVu9tSgVcyRM2gsGdHq4ZGuZmv5dZUFGFGjde qErULzwH37aJd6fIzoBiyqyBblPC+bLxue1awo7od8M= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org