$ rpki-client -vvf repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa File: 3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa (raw, json) Hash identifier: Stn5I7RDPRMI03TmuoeCAeds6by3O6C+/bo2ByhHcFs= Subject key identifier: 71:A4:C8:72:18:A0:F9:0A:A7:67:0D:85:8F:C6:57:6C:43:C2:EB:4A Certificate issuer: /CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Certificate serial: 5FA29273A285D75AF92229B08E2859D981694944 Authority key identifier: 9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa Signing time: Mon 15 Jan 2024 12:28:18 +0000 ROA not before: Mon 15 Jan 2024 12:23:18 +0000 ROA not after: Mon 13 Jan 2025 12:28:18 +0000 asID: 132663 IP address blocks: 103.26.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a2:92:73:a2:85:d7:5a:f9:22:29:b0:8e:28:59:d9:81:69:49:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Validity Not Before: Jan 15 12:23:18 2024 GMT Not After : Jan 13 12:28:18 2025 GMT Subject: CN=71A4C87218A0F90AA7670D858FC6576C43C2EB4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:7d:fe:98:08:e2:aa:55:4b:4b:86:42:f5: be:93:8a:e3:2a:9d:f0:1c:cd:36:de:40:2c:52:11: cb:d2:2f:98:c6:c0:88:be:47:f3:a9:fa:2c:80:9d: 28:42:18:28:0c:86:d8:4e:ad:27:6d:6f:07:c6:0e: 18:67:10:9c:0e:ae:69:ce:00:c3:81:d9:fb:39:77: 5c:44:e6:53:d9:ec:32:7a:9d:78:b6:1a:48:ec:3f: a8:32:9a:35:93:88:95:ef:dc:97:6b:d4:35:70:f0: 84:81:f5:34:4a:20:d3:f3:7e:c2:f3:17:d6:db:28: 45:07:88:53:9d:9c:df:48:27:03:5c:4d:ed:93:8d: dd:61:0a:6f:d2:04:c7:56:d5:c2:ef:ce:d2:3e:9e: 12:68:78:13:1a:48:a1:e7:96:f6:81:58:cd:02:6f: 96:03:cd:69:01:25:62:b2:a1:a4:01:e7:8b:24:04: 07:45:86:5f:0d:99:68:5f:1c:cb:8f:47:e0:35:fe: e8:82:df:94:0d:ec:bc:ba:64:2a:80:de:7f:e8:e6: 44:c1:c1:9d:54:4c:e1:8e:c7:62:3e:4f:d7:bc:85: b6:79:bd:32:7b:dd:7c:42:ff:f8:bc:14:7f:77:b8: ab:09:a0:27:6b:a1:f4:e0:de:11:cd:5f:b0:b8:ac: 42:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A4:C8:72:18:A0:F9:0A:A7:67:0D:85:8F:C6:57:6C:43:C2:EB:4A X509v3 Authority Key Identifier: keyid:9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.130.0/24 Signature Algorithm: sha256WithRSAEncryption 63:b1:31:60:16:e8:04:19:b7:d4:13:88:38:03:5b:73:e6:a0: 24:f5:d0:11:1d:cb:66:72:37:66:06:43:44:6a:f8:78:4c:fa: 7c:c3:55:7e:b1:aa:de:ef:ec:63:11:f7:99:ee:23:86:75:a7: 53:3a:4a:3e:f2:4f:58:86:9f:da:01:31:b8:10:ae:26:e8:a0: 74:41:f2:82:ee:9b:2e:17:2f:e0:77:11:93:d4:7a:a4:c7:4b: 8a:fc:16:b8:a5:ad:f4:06:a0:4b:39:dd:a3:97:99:39:06:ee: 41:58:3e:8d:58:f2:45:84:f1:29:ea:8b:49:96:5a:ed:3a:48: 52:4e:49:82:72:1c:e3:d3:ff:52:36:f2:e2:67:b6:2f:66:6a: 46:25:17:84:a4:aa:41:e6:2a:fb:bd:ff:ac:cc:10:e2:a1:dc: 1b:85:8f:eb:db:a9:38:02:d3:42:06:9b:b0:00:4d:d1:ff:0b: 39:a1:75:fb:02:d2:b5:a3:79:90:08:02:8e:2d:7a:1d:4a:5f: 12:66:21:ab:cf:68:db:94:76:00:ba:da:2a:0f:d9:bb:95:b1: b6:2e:41:66:25:4d:68:ef:2f:36:ca:06:66:67:e4:01:de:9f: 2d:bf:e7:bc:5d:c7:34:39:15:32:bc:9c:cc:31:e4:9e:09:e4: ba:2b:28:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX6KSc6KF11r5IimwjihZ2YFpSUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZG QjY0QTRERjAeFw0yNDAxMTUxMjIzMThaFw0yNTAxMTMxMjI4MThaMDMxMTAvBgNV BAMTKDcxQTRDODcyMThBMEY5MEFBNzY3MEQ4NThGQzY1NzZDNDNDMkVCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+WH3+mAjiqlVLS4ZC9b6TiuMq nfAczTbeQCxSEcvSL5jGwIi+R/Op+iyAnShCGCgMhthOrSdtbwfGDhhnEJwOrmnO AMOB2fs5d1xE5lPZ7DJ6nXi2GkjsP6gymjWTiJXv3Jdr1DVw8ISB9TRKINPzfsLz F9bbKEUHiFOdnN9IJwNcTe2Tjd1hCm/SBMdW1cLvztI+nhJoeBMaSKHnlvaBWM0C b5YDzWkBJWKyoaQB54skBAdFhl8NmWhfHMuPR+A1/uiC35QN7Ly6ZCqA3n/o5kTB wZ1UTOGOx2I+T9e8hbZ5vTJ73XxC//i8FH93uKsJoCdrofTg3hHNX7C4rEJ5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcaTIchig+QqnZw2Fj8ZXbEPC60owHwYDVR0j BBgwFoAUmmNdQidDqowxyoLH9QO5X/tkpN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZGEzMjk2Ny1kNTU4LTRhMzQtYmU4ZS02NGVmNGNmYzA0ZTMvMC85QTYzNUQ0MjI3 NDNBQThDMzFDQTgyQzdGNTAzQjk1RkZCNjRBNERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZGQjY0 QTRERi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkYTMyOTY3LWQ1NTgtNGEzNC1i ZThlLTY0ZWY0Y2ZjMDRlMy8wLzMxMzAzMzJlMzIzNjJlMzEzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxqCMA0GCSqG SIb3DQEBCwUAA4IBAQBjsTFgFugEGbfUE4g4A1tz5qAk9dARHctmcjdmBkNEavh4 TPp8w1V+sare7+xjEfeZ7iOGdadTOko+8k9Yhp/aATG4EK4m6KB0QfKC7psuFy/g dxGT1Hqkx0uK/Ba4pa30BqBLOd2jl5k5Bu5BWD6NWPJFhPEp6otJllrtOkhSTkmC chzj0/9SNvLiZ7YvZmpGJReEpKpB5ir7vf+szBDiodwbhY/r26k4AtNCBpuwAE3R /ws5oXX7AtK1o3mQCAKOLXodSl8SZiGrz2jblHYAutoqD9m7lbG2LkFmJU1o7y82 ygZmZ+QB3p8tv+e8Xcc0ORUyvJzMMeSeCeS6KygW -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org