$ rpki-client -vvf repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa File: 3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa (raw, json) Hash identifier: MdltFhho1Ym2XoUl46T8HciteMsn+e5IxxuU/IkRfIc= Subject key identifier: 9E:32:CF:B1:8F:D1:D8:A2:01:B4:B5:4C:21:5C:E5:F9:21:DC:2D:A9 Certificate issuer: /CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Certificate serial: 239C279396FE398D35D48E605D8F488BEF436B99 Authority key identifier: 50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa Signing time: Sun 14 Jan 2024 08:00:02 +0000 ROA not before: Sun 14 Jan 2024 07:55:02 +0000 ROA not after: Sun 12 Jan 2025 08:00:02 +0000 asID: 139424 IP address blocks: 103.144.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 09:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9c:27:93:96:fe:39:8d:35:d4:8e:60:5d:8f:48:8b:ef:43:6b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Validity Not Before: Jan 14 07:55:02 2024 GMT Not After : Jan 12 08:00:02 2025 GMT Subject: CN=9E32CFB18FD1D8A201B4B54C215CE5F921DC2DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:46:91:24:7b:7f:d0:e9:c7:81:0a:0f:8b:dc: ad:b7:80:77:0c:72:f0:60:d1:10:c3:23:fd:ab:68: f7:05:50:17:79:e8:4b:c6:eb:29:c5:67:27:92:d9: 5a:d3:2b:21:1a:01:36:ba:c2:78:a2:88:b4:03:97: 49:90:49:da:63:b4:8e:61:0d:a3:df:68:21:35:3c: ea:39:d3:c1:15:cf:1a:e1:4a:a5:e1:29:8b:b9:06: 3c:95:4c:14:73:d2:3e:43:94:63:9f:7d:5a:a0:e7: 2e:24:49:a2:9f:86:2c:96:4d:d4:3b:c2:7e:df:6c: 1f:1e:07:a6:8c:39:7c:58:c5:d6:c2:8b:fb:38:cd: 3d:55:a2:f7:f0:45:76:c0:e0:d7:3c:23:d2:e0:c8: 59:94:b2:1d:b2:94:35:e9:a2:82:57:0c:4a:58:a3: d0:3c:e3:dd:2c:81:17:84:11:63:d0:7b:d8:a8:d8: 87:cf:46:95:f1:9b:fc:02:33:2e:35:d5:1b:b8:51: f0:02:ad:e9:99:be:3b:a8:ef:0d:58:3e:36:6c:f3: 8b:1c:fb:29:04:7a:26:52:02:3c:4c:e4:ea:6e:47: 32:53:96:63:21:74:a1:34:99:39:6f:5e:6e:53:ef: 70:c9:8b:25:32:d1:5b:60:03:6d:08:a5:b1:78:59: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:32:CF:B1:8F:D1:D8:A2:01:B4:B5:4C:21:5C:E5:F9:21:DC:2D:A9 X509v3 Authority Key Identifier: keyid:50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.39.0/24 Signature Algorithm: sha256WithRSAEncryption 52:fe:43:ff:f6:99:aa:09:36:f2:f7:7f:89:6f:41:9f:06:22: cb:de:85:2d:d2:d1:1c:f0:8f:97:e9:5b:d9:a5:1c:c8:ab:cd: 16:2e:46:8e:56:3c:00:cd:35:56:62:56:37:ac:8a:aa:2e:dc: 46:ce:fe:56:c0:78:bd:8f:ad:46:55:09:4a:77:50:3c:b0:d6: c3:f1:7f:e6:cc:68:39:ec:65:1e:33:d2:91:86:37:4e:fb:3c: aa:0c:59:fa:42:24:80:0a:48:fc:77:dd:0a:0e:ec:24:21:55: 3a:31:ce:08:7b:2e:df:81:86:a1:b1:46:b4:74:64:67:8e:16: 2f:37:42:20:f9:6a:c8:34:98:e7:4a:d2:f1:e4:e7:6b:b6:ad: 95:a9:bd:42:7c:66:19:fe:85:1b:81:f9:e3:6e:8c:78:95:ec: a3:fd:84:b4:12:1b:08:f7:44:10:7f:60:66:15:cf:e4:82:00: 1f:c1:9b:e4:ae:ed:78:42:a6:ad:ae:88:c3:50:02:2c:18:99: 08:ac:60:82:87:8e:f8:6d:33:c4:f8:2c:b7:37:a2:41:1b:76: e0:8e:f1:24:ec:43:09:6a:ac:59:11:2f:52:06:99:83:a3:8f: 5a:ab:4c:1a:2a:d4:44:90:c3:3d:35:4f:4b:5e:92:1b:e2:29: ac:5f:4f:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI5wnk5b+OY011I5gXY9Ii+9Da5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMw Mzc3MDExQTAeFw0yNDAxMTQwNzU1MDJaFw0yNTAxMTIwODAwMDJaMDMxMTAvBgNV BAMTKDlFMzJDRkIxOEZEMUQ4QTIwMUI0QjU0QzIxNUNFNUY5MjFEQzJEQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsRpEke3/Q6ceBCg+L3K23gHcM cvBg0RDDI/2raPcFUBd56EvG6ynFZyeS2VrTKyEaATa6wniiiLQDl0mQSdpjtI5h DaPfaCE1POo508EVzxrhSqXhKYu5BjyVTBRz0j5DlGOffVqg5y4kSaKfhiyWTdQ7 wn7fbB8eB6aMOXxYxdbCi/s4zT1VovfwRXbA4Nc8I9LgyFmUsh2ylDXpooJXDEpY o9A8490sgReEEWPQe9io2IfPRpXxm/wCMy411Ru4UfACremZvjuo7w1YPjZs84sc +ykEeiZSAjxM5OpuRzJTlmMhdKE0mTlvXm5T73DJiyUy0VtgA20IpbF4WZvxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnjLPsY/R2KIBtLVMIVzl+SHcLakwHwYDVR0j BBgwFoAUUH284N5zw4w+6XWuI/t8DAN3ARowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWIwYTU5YS02MWJhLTQ2MmUtYTgyYS1hMjAyYjdmYjgwZjAvMC81MDdEQkNFMERF NzNDMzhDM0VFOTc1QUUyM0ZCN0MwQzAzNzcwMTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMwMzc3 MDExQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYjBhNTlhLTYxYmEtNDYyZS1h ODJhLWEyMDJiN2ZiODBmMC8wLzMxMzAzMzJlMzEzNDM0MmUzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AnMA0GCSqG SIb3DQEBCwUAA4IBAQBS/kP/9pmqCTby93+Jb0GfBiLL3oUt0tEc8I+X6VvZpRzI q80WLkaOVjwAzTVWYlY3rIqqLtxGzv5WwHi9j61GVQlKd1A8sNbD8X/mzGg57GUe M9KRhjdO+zyqDFn6QiSACkj8d90KDuwkIVU6Mc4Iey7fgYahsUa0dGRnjhYvN0Ig +WrINJjnStLx5Odrtq2Vqb1CfGYZ/oUbgfnjbox4leyj/YS0EhsI90QQf2BmFc/k ggAfwZvkru14QqatrojDUAIsGJkIrGCCh474bTPE+Cy3N6JBG3bgjvEk7EMJaqxZ ES9SBpmDo49aq0waKtREkMM9NU9LXpIb4imsX08x -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:38 2024 by rpki-client on console-ams.rpki-client.org