$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa File: 3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa (raw, json) Hash identifier: 6FLbYuy1S5qOt7tY0dfAZpELgfONO6cx6swxFm3099E= Subject key identifier: 5C:62:6B:4D:58:C2:44:1A:CB:E0:E5:6B:7D:30:F0:CF:49:40:76:95 Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 057250D3B8F4AB3341CCCBD7F07C3C31D7479B3F Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa Signing time: Wed 20 Nov 2024 19:00:02 +0000 ROA not before: Wed 20 Nov 2024 18:55:02 +0000 ROA not after: Wed 19 Nov 2025 19:00:02 +0000 asID: 139981 IP address blocks: 103.148.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 07:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:72:50:d3:b8:f4:ab:33:41:cc:cb:d7:f0:7c:3c:31:d7:47:9b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Nov 20 18:55:02 2024 GMT Not After : Nov 19 19:00:02 2025 GMT Subject: CN=5C626B4D58C2441ACBE0E56B7D30F0CF49407695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:eb:97:1f:e4:9e:df:b6:27:81:e8:d9:01:c5: 97:09:bb:f0:91:49:d6:4a:ec:b8:33:65:2b:8f:88: 6b:8e:69:7f:39:5f:46:33:87:64:e4:c9:b0:99:00: ef:58:7b:cc:7b:7b:3e:c6:3b:e3:a7:c3:e2:07:52: 98:83:a0:94:09:62:d0:54:ea:c9:be:f6:b8:95:b0: 14:d8:cc:3a:64:65:56:44:65:4a:be:ef:9c:02:f9: 2c:89:0c:fb:a3:5f:dd:d8:5c:53:08:c2:cb:3d:7f: 60:9d:c8:b6:82:21:cd:65:b3:1f:52:6c:2f:34:47: 39:7e:29:eb:88:2f:71:95:05:3f:fe:b0:e1:45:69: e3:9a:66:83:7d:44:f8:d3:02:91:9e:de:0c:dc:f2: 8c:54:6b:e2:b9:aa:3e:49:10:ad:aa:97:46:be:a9: c1:9d:7d:ff:33:7c:13:c8:92:52:a9:b3:ab:a4:e8: 6a:60:61:cc:50:f8:a6:88:fc:cd:01:5f:7b:df:f5: 6d:03:fe:7f:c8:b4:77:68:91:c3:4c:dd:9f:c9:d7: 52:7f:0b:a9:6f:4b:33:81:19:82:0f:fe:d1:ff:07: 60:ec:05:97:f6:20:cf:38:53:68:d1:29:82:ce:b5: a7:a6:b5:b0:60:cb:9a:52:14:46:3c:5f:af:73:09: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:62:6B:4D:58:C2:44:1A:CB:E0:E5:6B:7D:30:F0:CF:49:40:76:95 X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:fa:be:84:df:00:3d:3e:8c:a0:98:5f:9e:2f:9d:77:ff:43: 95:5c:2d:2d:20:4f:cc:83:a8:e6:8f:3d:af:f9:65:a6:11:34: 5e:27:20:bf:b0:80:16:53:d7:30:07:7f:f1:d1:e8:6e:c9:9c: 28:39:2b:e4:4a:70:79:31:b9:d1:a7:8f:8d:21:8b:74:67:48: 7c:5a:fa:b1:d1:a3:b9:f3:9b:31:55:d2:14:ed:6f:78:95:ab: b0:3c:27:7b:18:29:22:6c:77:71:bf:bf:b7:3c:0a:97:c0:4f: 6d:ed:2b:85:e1:33:40:cb:1b:2e:17:26:0b:90:dc:af:46:6a: ac:8b:53:5f:f9:ad:35:6c:89:67:9c:7a:77:12:ef:1e:68:a8: e4:34:a4:48:d6:5f:31:75:8f:42:c3:61:9c:fc:36:ef:81:76: 5f:35:65:5b:cb:e3:fb:fb:c4:2a:74:39:da:b6:7e:43:3f:54: c0:3c:6a:23:b8:47:f7:e2:16:0a:5c:77:1e:08:4f:a2:51:c7: 41:41:b7:7a:5d:7a:6e:4e:47:4e:ef:3f:14:67:22:c3:19:94: d3:d1:5c:ad:d3:48:12:55:12:fd:8e:15:1f:54:33:25:0b:f7: 61:45:d1:2c:f2:9d:9f:0d:14:90:05:06:7b:b9:08:a6:93:89: dd:04:aa:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBXJQ07j0qzNBzMvX8Hw8MddHmz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yNDExMjAxODU1MDJaFw0yNTExMTkxOTAwMDJaMDMxMTAvBgNV BAMTKDVDNjI2QjRENThDMjQ0MUFDQkUwRTU2QjdEMzBGMENGNDk0MDc2OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo65cf5J7ftieB6NkBxZcJu/CR SdZK7LgzZSuPiGuOaX85X0Yzh2TkybCZAO9Ye8x7ez7GO+Onw+IHUpiDoJQJYtBU 6sm+9riVsBTYzDpkZVZEZUq+75wC+SyJDPujX93YXFMIwss9f2CdyLaCIc1lsx9S bC80Rzl+KeuIL3GVBT/+sOFFaeOaZoN9RPjTApGe3gzc8oxUa+K5qj5JEK2ql0a+ qcGdff8zfBPIklKps6uk6GpgYcxQ+KaI/M0BX3vf9W0D/n/ItHdokcNM3Z/J11J/ C6lvSzOBGYIP/tH/B2DsBZf2IM84U2jRKYLOtaemtbBgy5pSFEY8X69zCfNpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXGJrTVjCRBrL4OVrfTDwz0lAdpUwHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMxMzAzMzJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5QYMA0GCSqG SIb3DQEBCwUAA4IBAQBP+r6E3wA9PoygmF+eL513/0OVXC0tIE/Mg6jmjz2v+WWm ETReJyC/sIAWU9cwB3/x0ehuyZwoOSvkSnB5MbnRp4+NIYt0Z0h8Wvqx0aO585sx VdIU7W94lauwPCd7GCkibHdxv7+3PAqXwE9t7SuF4TNAyxsuFyYLkNyvRmqsi1Nf +a01bIlnnHp3Eu8eaKjkNKRI1l8xdY9Cw2Gc/DbvgXZfNWVby+P7+8QqdDnatn5D P1TAPGojuEf34hYKXHceCE+iUcdBQbd6XXpuTkdO7z8UZyLDGZTT0Vyt00gSVRL9 jhUfVDMlC/dhRdEs8p2fDRSQBQZ7uQimk4ndBKrx -----END CERTIFICATE-----Generated at Mon Nov 25 06:03:03 2024 by rpki-client on console-fra.rpki-client.org