$ rpki-client -vvf repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa File: 3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa (raw, json) Hash identifier: j5+b2fGVJFjTpTcmkYQbyIGMWQtFDGmwdR4IaFaTuII= Subject key identifier: D2:9F:53:17:3D:4F:B1:C3:51:2D:C9:ED:A3:5A:4B:97:E0:5A:C0:87 Certificate issuer: /CN=F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B Certificate serial: 32489AACCD4C830298606DD299094373D79FE176 Authority key identifier: F5:CC:08:F1:CD:0B:94:57:9D:4F:77:3C:EE:5A:BF:BD:5E:8E:22:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa Signing time: Wed 03 Jan 2024 05:02:04 +0000 ROA not before: Wed 03 Jan 2024 04:57:04 +0000 ROA not after: Wed 01 Jan 2025 05:02:04 +0000 asID: 138143 IP address blocks: 103.134.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.crl rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:48:9a:ac:cd:4c:83:02:98:60:6d:d2:99:09:43:73:d7:9f:e1:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B Validity Not Before: Jan 3 04:57:04 2024 GMT Not After : Jan 1 05:02:04 2025 GMT Subject: CN=D29F53173D4FB1C3512DC9EDA35A4B97E05AC087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ed:11:5a:b0:c7:ac:0f:68:c1:06:7a:36:d2: 94:1c:02:29:2c:e0:0c:c8:72:6a:65:85:98:80:63: 1c:d2:0c:8e:d3:92:74:89:09:1b:e8:b6:65:4e:c8: d4:7e:be:2d:9f:28:ac:67:62:f4:a7:3a:f0:93:f1: 0e:4a:2b:dc:f9:79:a8:53:b2:52:f7:a8:9a:aa:3e: 8d:f4:17:bf:d4:e2:ca:c2:d6:0f:2b:c0:96:bd:5b: 49:a7:ff:cd:1c:09:be:82:19:ae:67:ee:63:9f:7e: a6:4c:8e:b4:4e:1b:d4:e7:22:d7:70:88:6d:ba:4f: 68:58:3f:f7:f1:8b:c8:48:ea:dd:91:25:31:5b:a0: 74:f6:e4:9d:d7:e6:50:3d:6c:f9:11:1c:87:64:7a: 4a:3b:e9:99:5e:c1:a9:d9:53:11:5e:5d:f7:2d:f4: 26:dd:98:e7:d5:fa:5d:9c:d4:8a:49:45:7c:0d:f6: 7e:69:16:69:5c:95:3e:50:c1:4b:33:72:42:a5:3b: e1:20:b0:85:d8:ac:7e:18:91:3b:c3:ac:aa:2e:52: d9:6f:b7:c6:13:87:86:16:59:94:a4:11:91:8e:55: da:ae:a6:09:65:04:0a:15:b9:df:55:03:03:87:55: 14:20:1d:87:ca:4d:e1:40:7e:28:f2:2a:79:a1:8a: 1a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:9F:53:17:3D:4F:B1:C3:51:2D:C9:ED:A3:5A:4B:97:E0:5A:C0:87 X509v3 Authority Key Identifier: keyid:F5:CC:08:F1:CD:0B:94:57:9D:4F:77:3C:EE:5A:BF:BD:5E:8E:22:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.76.0/24 Signature Algorithm: sha256WithRSAEncryption 33:c8:09:24:81:0f:a1:ed:69:08:df:07:aa:0a:bf:f0:b5:23: 7c:9d:d1:d9:84:dc:7c:f1:57:19:e1:55:45:b4:b0:8c:80:82: bb:76:1d:c9:c5:bd:e1:76:a1:ab:ad:df:61:68:ca:d2:8c:26: 17:b2:8c:2a:f3:27:d5:a2:6a:f2:78:b4:d2:ce:15:34:6b:9c: 02:8a:a4:69:22:18:1b:83:e8:6b:2f:f9:bc:78:09:23:b2:36: 69:39:cc:61:6a:ac:af:69:8e:9f:f1:d9:a6:df:5c:54:63:ee: 7f:27:58:36:94:a8:b6:8d:2a:34:81:7e:7f:e7:f7:4c:94:ad: fe:ff:8a:00:8c:52:23:3b:62:15:ca:12:9c:5a:e6:d4:84:99: f8:f7:53:6c:7f:82:25:f7:6b:c6:33:63:4f:da:98:a3:38:5c: a9:38:62:41:47:ea:34:f1:62:fa:3b:64:3d:8a:c3:d6:83:89: 04:1c:c2:0a:cc:ff:42:3b:3c:e3:a8:ee:39:45:37:46:6f:e8: 13:12:6a:ff:84:c0:dc:37:35:e3:3c:67:21:88:ec:cb:99:ac: ec:ac:50:90:4f:a7:12:20:f7:4c:67:6d:18:64:8c:19:33:6e: 53:6a:66:34:7d:e1:9c:d3:22:fd:3f:e3:c1:c3:c7:2d:a0:34: 48:23:40:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMkiarM1MgwKYYG3SmQlDc9ef4XYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVDQzA4RjFDRDBCOTQ1NzlENEY3NzNDRUU1QUJGQkQ1 RThFMjIwQjAeFw0yNDAxMDMwNDU3MDRaFw0yNTAxMDEwNTAyMDRaMDMxMTAvBgNV BAMTKEQyOUY1MzE3M0Q0RkIxQzM1MTJEQzlFREEzNUE0Qjk3RTA1QUMwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57RFasMesD2jBBno20pQcAiks 4AzIcmplhZiAYxzSDI7TknSJCRvotmVOyNR+vi2fKKxnYvSnOvCT8Q5KK9z5eahT slL3qJqqPo30F7/U4srC1g8rwJa9W0mn/80cCb6CGa5n7mOffqZMjrROG9TnItdw iG26T2hYP/fxi8hI6t2RJTFboHT25J3X5lA9bPkRHIdkeko76ZlewanZUxFeXfct 9CbdmOfV+l2c1IpJRXwN9n5pFmlclT5QwUszckKlO+EgsIXYrH4YkTvDrKouUtlv t8YTh4YWWZSkEZGOVdqupgllBAoVud9VAwOHVRQgHYfKTeFAfijyKnmhiho3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0p9TFz1PscNRLcnto1pLl+BawIcwHwYDVR0j BBgwFoAU9cwI8c0LlFedT3c87lq/vV6OIgswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDc5NGQzNi02OWY4LTQ0MDYtYmY5Zi0xMjJkZGQxN2Y0NTAvMC9GNUNDMDhGMUNE MEI5NDU3OUQ0Rjc3M0NFRTVBQkZCRDVFOEUyMjBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVDQzA4RjFDRDBCOTQ1NzlENEY3NzNDRUU1QUJGQkQ1RThF MjIwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkNzk0ZDM2LTY5ZjgtNDQwNi1i ZjlmLTEyMmRkZDE3ZjQ1MC8wLzMxMzAzMzJlMzEzMzM0MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4ZMMA0GCSqG SIb3DQEBCwUAA4IBAQAzyAkkgQ+h7WkI3weqCr/wtSN8ndHZhNx88VcZ4VVFtLCM gIK7dh3Jxb3hdqGrrd9haMrSjCYXsowq8yfVomryeLTSzhU0a5wCiqRpIhgbg+hr L/m8eAkjsjZpOcxhaqyvaY6f8dmm31xUY+5/J1g2lKi2jSo0gX5/5/dMlK3+/4oA jFIjO2IVyhKcWubUhJn491Nsf4Il92vGM2NP2pijOFypOGJBR+o08WL6O2Q9isPW g4kEHMIKzP9COzzjqO45RTdGb+gTEmr/hMDcNzXjPGchiOzLmazsrFCQT6cSIPdM Z20YZIwZM25TamY0feGc0yL9P+PBw8ctoDRII0B/ -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org