$ rpki-client -vvf repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32332d3233203d3e20313437303930.roa File: 3130332e3137332e3134322e302f32332d3233203d3e20313437303930.roa (raw, json) Hash identifier: VBnUMK0yqSvP7dkAq8c2A5wq5sBcShp/Ap1+vfzh8Yg= Subject key identifier: D4:7D:E4:DB:92:DC:AD:A5:04:BB:5B:7D:44:46:A9:0F:2B:D2:92:D6 Certificate issuer: /CN=4515472806DD01B59715410103D51C05E4F28B96 Certificate serial: 5983CC29C552070BC1400CCA37CBD16CA4505272 Authority key identifier: 45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32332d3233203d3e20313437303930.roa Signing time: Thu 22 Feb 2024 02:00:00 +0000 ROA not before: Thu 22 Feb 2024 01:55:00 +0000 ROA not after: Thu 20 Feb 2025 02:00:00 +0000 asID: 147090 IP address blocks: 103.173.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:83:cc:29:c5:52:07:0b:c1:40:0c:ca:37:cb:d1:6c:a4:50:52:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4515472806DD01B59715410103D51C05E4F28B96 Validity Not Before: Feb 22 01:55:00 2024 GMT Not After : Feb 20 02:00:00 2025 GMT Subject: CN=D47DE4DB92DCADA504BB5B7D4446A90F2BD292D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:36:24:f4:b5:6b:70:ab:3b:ff:1e:38:b6:fd: 25:ea:5d:58:d0:db:c9:1e:72:8c:47:ea:4c:47:25: 2b:4a:22:66:20:23:b2:d6:88:11:a3:0c:1e:ee:2f: 3b:79:6a:93:66:30:44:ef:26:95:36:98:d5:0b:fb: 9e:fe:56:c2:41:81:1b:5e:84:eb:c9:0c:01:72:b0: 1a:db:e2:48:36:68:0e:d7:0d:ed:f4:9a:0c:57:9f: dc:a3:98:54:ab:a2:a1:48:05:32:f1:06:59:f4:f4: 69:5a:cc:de:ff:0f:86:84:82:cb:2e:41:90:58:a2: a6:71:be:5f:86:63:7a:15:8d:e7:a9:0f:50:5f:40: 8f:e3:ac:01:20:99:57:ff:d9:84:42:f9:09:39:28: 80:27:e6:6f:8e:e7:bb:f3:a3:df:ea:70:92:ab:03: 89:cc:b3:4c:d5:c6:60:38:56:32:c4:05:00:a8:b4: fb:ab:78:ad:07:84:10:b1:63:28:f2:da:fb:e3:3c: f9:81:1b:f1:5e:28:d9:6e:39:0b:73:43:77:82:24: 0d:f6:dc:36:05:64:bf:72:38:20:fd:89:78:64:b1: 20:52:90:65:45:43:49:9d:8d:1b:fb:bf:5b:80:10: 74:09:e2:51:ce:5f:3b:8e:16:e3:d0:c8:e1:9d:a2: c1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:7D:E4:DB:92:DC:AD:A5:04:BB:5B:7D:44:46:A9:0F:2B:D2:92:D6 X509v3 Authority Key Identifier: keyid:45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32332d3233203d3e20313437303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.142.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:8d:b6:eb:6f:57:e3:1a:2e:79:1d:a5:2c:72:e7:b2:e9:bf: 07:3e:6c:98:ee:54:a0:0a:fb:4b:62:31:fb:5f:1c:ef:78:53: 0a:a7:06:ec:d2:43:ca:24:a9:28:67:f5:43:a0:74:d3:b3:b4: b7:49:de:9f:0d:79:0f:03:7d:90:96:86:57:dd:24:18:70:9b: b2:65:83:4f:1a:b0:d9:ec:ab:cc:77:b3:01:c2:1d:77:fc:4f: 70:72:d4:cb:e8:ab:78:a8:c7:53:ea:2c:0c:1a:e8:52:44:90: aa:27:14:f6:4b:cc:c4:23:94:7d:f2:e9:b3:0b:5d:6b:89:a0: 4b:cc:6c:d9:1a:b0:ed:a5:63:88:4b:d5:9a:30:35:2f:06:55: 2c:bf:be:3b:e5:f2:b6:2a:c7:f0:6e:c6:65:62:86:41:1a:cc: 80:d5:c2:21:ae:4d:67:94:e4:84:61:b6:20:b2:94:0c:af:0f: b2:6e:2d:e8:86:1e:8d:a0:f7:31:b4:3a:26:ed:7a:b8:80:28: 24:a4:fc:bc:66:a4:dd:44:22:74:30:7a:8d:fe:5c:9a:c6:8a: c0:6c:74:aa:3e:cc:e0:b8:a5:98:da:4e:68:9e:99:63:1a:e6: 74:d8:a1:58:fe:ef:99:2c:6d:08:94:85:94:27:b5:c9:90:47: cd:eb:cd:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWYPMKcVSBwvBQAzKN8vRbKRQUnIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVF NEYyOEI5NjAeFw0yNDAyMjIwMTU1MDBaFw0yNTAyMjAwMjAwMDBaMDMxMTAvBgNV BAMTKEQ0N0RFNERCOTJEQ0FEQTUwNEJCNUI3RDQ0NDZBOTBGMkJEMjkyRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUNiT0tWtwqzv/Hji2/SXqXVjQ 28kecoxH6kxHJStKImYgI7LWiBGjDB7uLzt5apNmMETvJpU2mNUL+57+VsJBgRte hOvJDAFysBrb4kg2aA7XDe30mgxXn9yjmFSroqFIBTLxBln09GlazN7/D4aEgssu QZBYoqZxvl+GY3oVjeepD1BfQI/jrAEgmVf/2YRC+Qk5KIAn5m+O57vzo9/qcJKr A4nMs0zVxmA4VjLEBQCotPureK0HhBCxYyjy2vvjPPmBG/FeKNluOQtzQ3eCJA32 3DYFZL9yOCD9iXhksSBSkGVFQ0mdjRv7v1uAEHQJ4lHOXzuOFuPQyOGdosEXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1H3k25LcraUEu1t9REapDyvSktYwHwYDVR0j BBgwFoAURRVHKAbdAbWXFUEBA9UcBeTyi5YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NGYxMzcyYy00M2E2LTRmZGEtYjUwZS1kMDFlYjQyYzY4OWYvMC80NTE1NDcyODA2 REQwMUI1OTcxNTQxMDEwM0Q1MUMwNUU0RjI4Qjk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVFNEYy OEI5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0ZjEzNzJjLTQzYTYtNGZkYS1i NTBlLWQwMWViNDJjNjg5Zi8wLzMxMzAzMzJlMzEzNzMzMmUzMTM0MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrY4wDQYJ KoZIhvcNAQELBQADggEBAHuNtutvV+MaLnkdpSxy57Lpvwc+bJjuVKAK+0tiMftf HO94UwqnBuzSQ8okqShn9UOgdNOztLdJ3p8NeQ8DfZCWhlfdJBhwm7Jlg08asNns q8x3swHCHXf8T3By1Mvoq3iox1PqLAwa6FJEkKonFPZLzMQjlH3y6bMLXWuJoEvM bNkasO2lY4hL1ZowNS8GVSy/vjvl8rYqx/BuxmVihkEazIDVwiGuTWeU5IRhtiCy lAyvD7JuLeiGHo2g9zG0OibteriAKCSk/LxmpN1EInQweo3+XJrGisBsdKo+zOC4 pZjaTmiemWMa5nTYoVj+75ksbQiUhZQntcmQR83rzZo= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org