$ rpki-client -vvf repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa File: 3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa (raw, json) Hash identifier: tlsdUY6ybvJN2IEtejfkmeue+5jDkByHMqeZv2dLGKI= Subject key identifier: 49:C8:D0:1E:FE:C5:4E:FF:44:15:5A:B5:FD:AA:42:92:39:B9:2B:32 Certificate issuer: /CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Certificate serial: 18E4909BF594A616FEF6227C2C1FA0A9BE88048C Authority key identifier: 9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa Signing time: Wed 07 Feb 2024 07:38:19 +0000 ROA not before: Wed 07 Feb 2024 07:33:19 +0000 ROA not after: Wed 05 Feb 2025 07:38:19 +0000 asID: 141664 IP address blocks: 103.26.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e4:90:9b:f5:94:a6:16:fe:f6:22:7c:2c:1f:a0:a9:be:88:04:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Validity Not Before: Feb 7 07:33:19 2024 GMT Not After : Feb 5 07:38:19 2025 GMT Subject: CN=49C8D01EFEC54EFF44155AB5FDAA429239B92B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:fb:37:5d:d5:0d:d9:59:09:e2:f0:65:7c: 8d:58:bf:b2:d9:c3:54:54:5c:ed:a0:93:40:c0:6a: 6e:c3:3c:6c:9b:3e:24:d7:b1:d4:62:6b:31:55:93: 5d:10:12:dc:3f:4e:43:eb:da:96:5d:77:1c:5e:f1: 03:70:18:f7:c8:76:9c:ec:ca:62:da:d1:98:d8:c8: 56:29:d5:39:32:08:8a:31:23:55:56:dd:a3:50:3d: 85:05:9a:f2:00:d5:67:3c:9f:bf:e0:03:3a:ec:40: 57:29:0c:ea:a5:53:37:65:9d:3a:f6:d5:ef:e1:f1: af:8d:99:91:f5:6c:06:18:6d:4c:d9:1c:0f:a9:66: bb:e6:56:bc:8f:0e:a8:07:31:3d:95:90:fc:a9:2b: b1:d0:51:26:bf:4a:86:ec:60:54:1f:0a:e4:88:7c: 72:1d:fd:62:40:2f:ae:0c:fe:4e:20:8e:43:71:4c: 45:c4:3d:4f:e3:bd:38:c3:a8:63:bf:f8:5e:fa:52: ac:e9:85:13:86:55:6d:94:c9:26:60:36:f2:43:a3: 51:ab:23:7d:c8:e8:a8:0d:7f:71:56:91:6c:6c:88: 31:f5:0d:a6:11:ac:8c:fb:92:8f:b3:88:e2:bd:7e: 3b:a5:ed:7a:23:36:4c:1f:89:16:0c:b7:c2:76:e6: c1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C8:D0:1E:FE:C5:4E:FF:44:15:5A:B5:FD:AA:42:92:39:B9:2B:32 X509v3 Authority Key Identifier: keyid:9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.128.0/24 Signature Algorithm: sha256WithRSAEncryption 35:72:65:a9:85:7e:e7:4f:5d:b2:55:f1:bf:0b:5d:b5:b7:6c: f5:58:da:10:d1:df:41:b5:4b:e1:95:8b:00:92:a2:23:92:38: 4e:80:fc:b7:3b:bc:bf:5e:c9:4d:3d:ec:4f:d3:5c:74:83:0e: e7:a1:88:31:13:97:9b:e0:29:43:31:f3:b8:c8:a6:66:9a:e8: 51:38:72:5a:0a:43:71:02:16:ee:83:a4:78:8e:90:a7:b0:bd: 82:cf:b9:d7:aa:93:0c:74:97:13:80:f6:c9:32:08:93:e8:6c: 64:0c:00:52:0e:46:2b:87:97:12:e5:a5:88:0f:c8:a9:ee:3a: 39:71:e9:30:f9:54:86:30:7d:ec:76:6c:ad:77:74:69:c3:58: 65:5a:f7:b5:a2:4e:92:0d:91:18:49:23:d3:a3:2f:b9:fb:28: bd:2a:89:38:db:30:6a:c5:46:81:ac:a4:48:db:99:22:0f:aa: 1c:55:9a:fd:18:9e:26:33:49:02:f2:d0:4a:23:02:4a:28:db: aa:b1:65:e3:80:b7:95:62:ad:f1:1f:c2:4a:6f:14:68:a2:1b: 7e:b5:84:9e:ba:6f:20:76:b8:0a:d3:15:19:67:67:19:b0:58: c6:50:7d:48:ef:40:c2:6f:b0:61:ae:d7:dc:87:a5:dc:b9:f7: c1:be:8c:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGOSQm/WUphb+9iJ8LB+gqb6IBIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZG QjY0QTRERjAeFw0yNDAyMDcwNzMzMTlaFw0yNTAyMDUwNzM4MTlaMDMxMTAvBgNV BAMTKDQ5QzhEMDFFRkVDNTRFRkY0NDE1NUFCNUZEQUE0MjkyMzlCOTJCMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6h/s3XdUN2VkJ4vBlfI1Yv7LZ w1RUXO2gk0DAam7DPGybPiTXsdRiazFVk10QEtw/TkPr2pZddxxe8QNwGPfIdpzs ymLa0ZjYyFYp1TkyCIoxI1VW3aNQPYUFmvIA1Wc8n7/gAzrsQFcpDOqlUzdlnTr2 1e/h8a+NmZH1bAYYbUzZHA+pZrvmVryPDqgHMT2VkPypK7HQUSa/SobsYFQfCuSI fHId/WJAL64M/k4gjkNxTEXEPU/jvTjDqGO/+F76UqzphROGVW2UySZgNvJDo1Gr I33I6KgNf3FWkWxsiDH1DaYRrIz7ko+ziOK9fjul7XojNkwfiRYMt8J25sGzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUScjQHv7FTv9EFVq1/apCkjm5KzIwHwYDVR0j BBgwFoAUmmNdQidDqowxyoLH9QO5X/tkpN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZGEzMjk2Ny1kNTU4LTRhMzQtYmU4ZS02NGVmNGNmYzA0ZTMvMC85QTYzNUQ0MjI3 NDNBQThDMzFDQTgyQzdGNTAzQjk1RkZCNjRBNERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZGQjY0 QTRERi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkYTMyOTY3LWQ1NTgtNGEzNC1i ZThlLTY0ZWY0Y2ZjMDRlMy8wLzMxMzAzMzJlMzIzNjJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxqAMA0GCSqG SIb3DQEBCwUAA4IBAQA1cmWphX7nT12yVfG/C121t2z1WNoQ0d9BtUvhlYsAkqIj kjhOgPy3O7y/XslNPexP01x0gw7noYgxE5eb4ClDMfO4yKZmmuhROHJaCkNxAhbu g6R4jpCnsL2Cz7nXqpMMdJcTgPbJMgiT6GxkDABSDkYrh5cS5aWID8ip7jo5cekw +VSGMH3sdmytd3Rpw1hlWve1ok6SDZEYSSPToy+5+yi9Kok42zBqxUaBrKRI25ki D6ocVZr9GJ4mM0kC8tBKIwJKKNuqsWXjgLeVYq3xH8JKbxRooht+tYSeum8gdrgK 0xUZZ2cZsFjGUH1I70DCb7Bhrtfch6XcuffBvowW -----END CERTIFICATE-----Generated at Tue Apr 30 21:36:09 2024 by rpki-client on console-fra.rpki-client.org