$ rpki-client -vvf repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa File: 3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa (raw, json) Hash identifier: ezVOn179eSSzdMIbHBTL6Z7EGoMIHMWT9eiNWQFwF8M= Subject key identifier: 4D:D8:DC:1C:AE:7B:B6:5F:3E:30:35:60:14:95:48:39:72:6A:BE:9E Certificate issuer: /CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Certificate serial: 08D25BEACCBF7666B746E62747FCC99741FA3FC0 Authority key identifier: 50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa Signing time: Sun 14 Jan 2024 08:00:02 +0000 ROA not before: Sun 14 Jan 2024 07:55:02 +0000 ROA not after: Sun 12 Jan 2025 08:00:02 +0000 asID: 139424 IP address blocks: 103.144.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 01:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d2:5b:ea:cc:bf:76:66:b7:46:e6:27:47:fc:c9:97:41:fa:3f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Validity Not Before: Jan 14 07:55:02 2024 GMT Not After : Jan 12 08:00:02 2025 GMT Subject: CN=4DD8DC1CAE7BB65F3E30356014954839726ABE9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0f:cf:87:56:60:4c:bf:a2:68:18:f7:46:4a: f9:02:af:b6:3b:8b:99:77:7f:41:4b:3e:d4:16:1b: f8:44:6d:69:23:f1:66:52:ad:4a:cb:3d:6b:27:73: 91:c4:e9:dd:9f:3b:b7:90:55:bb:9d:53:ab:d5:d7: de:51:40:09:c4:df:5d:ed:ab:6b:e0:98:59:32:d4: 40:d6:ac:79:3d:ab:6b:86:aa:91:5d:9a:7a:04:70: 27:54:d7:93:7c:e4:97:97:3e:5e:cf:b0:b4:72:6e: e4:3c:99:54:d5:9c:71:84:c7:0d:61:28:54:16:34: f9:9f:ad:bb:71:cb:4e:54:22:d6:fa:81:96:dc:91: 9b:95:e4:57:7c:45:30:c9:4d:ac:3a:7b:ea:0d:4e: d1:76:18:b4:4a:7f:56:92:19:ed:f2:fe:2a:e1:1d: 5f:f6:d9:4c:57:98:79:13:1c:fa:4e:33:74:18:71: 98:90:59:d9:37:ac:16:b5:ac:c2:b8:2e:da:c5:fb: 27:5e:19:a4:ef:8d:bc:e3:ed:15:b0:0a:e4:a2:07: 1e:42:9d:fb:9d:b1:47:6c:a2:38:bf:76:37:c2:54: e5:df:da:fb:13:2e:f6:94:83:35:6d:61:20:d4:2c: f2:95:1b:90:52:60:45:db:be:c6:f9:88:12:d9:34: df:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D8:DC:1C:AE:7B:B6:5F:3E:30:35:60:14:95:48:39:72:6A:BE:9E X509v3 Authority Key Identifier: keyid:50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.38.0/24 Signature Algorithm: sha256WithRSAEncryption 31:be:bf:fc:ae:93:76:fc:62:63:cc:bc:40:c3:8b:f3:69:84: 27:90:c1:3b:6d:a7:48:4b:cc:ab:99:d9:2f:02:fb:66:87:34: 0f:a2:ef:8b:2c:e4:26:cf:2f:02:f4:72:db:48:12:4b:52:4c: 50:15:99:f4:f8:be:fa:6d:3e:79:99:9c:13:2c:b5:7e:3f:aa: 62:ab:ad:15:e4:02:48:f5:8e:a4:e3:fc:a0:bf:6c:50:55:1f: a7:db:f8:bf:3b:42:ce:36:4c:38:59:48:b5:a7:10:4e:2a:4f: 1d:09:dd:20:98:e5:d2:75:e9:4d:65:c0:24:8e:d4:5b:4e:93: f9:8b:e7:63:5e:cc:7a:ba:51:3b:79:1a:78:8a:c4:91:6b:a2: 74:7b:83:d2:4b:ba:70:64:69:98:9c:8c:1b:65:55:66:4a:2b: bb:ef:12:08:b6:22:d5:22:f9:c2:1e:6c:18:50:d0:4f:c1:37: d0:ce:1b:bc:54:80:31:27:e1:d7:9e:bd:df:d6:14:9e:ca:10: 6b:33:a5:7b:a9:69:e4:08:5b:9d:d9:35:f6:e8:15:10:fa:6c: 74:b3:8f:38:f1:33:60:97:fb:9f:e4:dd:12:a1:47:d9:02:e2: af:37:ef:27:1b:f0:7b:8b:dc:95:6b:ab:36:49:c1:f0:a8:47: 2b:c5:0e:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCNJb6sy/dma3RuYnR/zJl0H6P8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMw Mzc3MDExQTAeFw0yNDAxMTQwNzU1MDJaFw0yNTAxMTIwODAwMDJaMDMxMTAvBgNV BAMTKDRERDhEQzFDQUU3QkI2NUYzRTMwMzU2MDE0OTU0ODM5NzI2QUJFOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuD8+HVmBMv6JoGPdGSvkCr7Y7 i5l3f0FLPtQWG/hEbWkj8WZSrUrLPWsnc5HE6d2fO7eQVbudU6vV195RQAnE313t q2vgmFky1EDWrHk9q2uGqpFdmnoEcCdU15N85JeXPl7PsLRybuQ8mVTVnHGExw1h KFQWNPmfrbtxy05UItb6gZbckZuV5Fd8RTDJTaw6e+oNTtF2GLRKf1aSGe3y/irh HV/22UxXmHkTHPpOM3QYcZiQWdk3rBa1rMK4LtrF+ydeGaTvjbzj7RWwCuSiBx5C nfudsUdsoji/djfCVOXf2vsTLvaUgzVtYSDULPKVG5BSYEXbvsb5iBLZNN9FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTdjcHK57tl8+MDVgFJVIOXJqvp4wHwYDVR0j BBgwFoAUUH284N5zw4w+6XWuI/t8DAN3ARowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWIwYTU5YS02MWJhLTQ2MmUtYTgyYS1hMjAyYjdmYjgwZjAvMC81MDdEQkNFMERF NzNDMzhDM0VFOTc1QUUyM0ZCN0MwQzAzNzcwMTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMwMzc3 MDExQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYjBhNTlhLTYxYmEtNDYyZS1h ODJhLWEyMDJiN2ZiODBmMC8wLzMxMzAzMzJlMzEzNDM0MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AmMA0GCSqG SIb3DQEBCwUAA4IBAQAxvr/8rpN2/GJjzLxAw4vzaYQnkME7badIS8yrmdkvAvtm hzQPou+LLOQmzy8C9HLbSBJLUkxQFZn0+L76bT55mZwTLLV+P6piq60V5AJI9Y6k 4/ygv2xQVR+n2/i/O0LONkw4WUi1pxBOKk8dCd0gmOXSdelNZcAkjtRbTpP5i+dj Xsx6ulE7eRp4isSRa6J0e4PSS7pwZGmYnIwbZVVmSiu77xIItiLVIvnCHmwYUNBP wTfQzhu8VIAxJ+HXnr3f1hSeyhBrM6V7qWnkCFud2TX26BUQ+mx0s4848TNgl/uf 5N0SoUfZAuKvN+8nG/B7i9yVa6s2ScHwqEcrxQ7v -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org