$ rpki-client -vvf repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/3130332e3135372e37382e302f32332d3234203d3e20313431313134.roa File: 3130332e3135372e37382e302f32332d3234203d3e20313431313134.roa (raw, json) Hash identifier: MOwE9NdjkbMsjqSArgWX/DHZff75hmj3QBsAYiIXqhs= Subject key identifier: 98:61:70:B8:37:0F:98:77:93:E7:F6:37:A3:E5:1E:2C:E0:7D:F8:93 Certificate issuer: /CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Certificate serial: 2D2F1BED1D060E106CDC29AEC697D416D048E5BB Authority key identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/3130332e3135372e37382e302f32332d3234203d3e20313431313134.roa Signing time: Wed 21 Aug 2024 11:01:15 +0000 ROA not before: Wed 21 Aug 2024 10:56:15 +0000 ROA not after: Wed 20 Aug 2025 11:01:15 +0000 asID: 141114 IP address blocks: 103.157.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:2f:1b:ed:1d:06:0e:10:6c:dc:29:ae:c6:97:d4:16:d0:48:e5:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Validity Not Before: Aug 21 10:56:15 2024 GMT Not After : Aug 20 11:01:15 2025 GMT Subject: CN=986170B8370F987793E7F637A3E51E2CE07DF893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c6:d9:a8:2c:5d:22:6e:1b:ef:8a:51:ae:9a: b5:ea:16:f1:6f:96:48:30:ec:58:f2:ec:7a:dd:f5: 32:1a:c7:87:70:46:58:7e:43:37:2a:f0:c6:75:16: 12:32:a3:bd:b1:e2:2c:77:1e:7e:98:c4:95:a5:a2: 68:c6:b6:f0:70:b7:65:eb:f4:36:e3:2a:18:b2:8a: 74:4f:6d:0d:a7:91:64:27:42:2f:af:1a:65:0d:8d: 51:a5:cf:2b:87:33:cc:dc:60:e1:5c:f7:6d:29:89: fa:19:54:b0:54:e2:a4:83:70:87:b7:84:37:a1:bf: 61:e4:27:ca:13:1f:35:3a:89:3e:03:3e:5f:46:88: b2:c1:61:69:12:7a:2f:3b:22:6f:ad:0f:5c:94:a8: dc:66:b0:6f:67:e4:34:1a:16:57:ab:e7:e0:06:e4: d8:8f:d1:7a:a9:bb:f7:fe:0f:e6:22:ef:42:55:59: a7:42:59:a0:b3:d6:09:d4:76:ed:f0:ff:3e:cd:8b: 4c:e3:8f:d9:15:db:f5:80:c1:0f:3f:95:2a:be:f7: ae:4e:34:4e:fa:a4:e8:22:ed:30:21:35:3a:a1:39: 5b:71:32:62:eb:e5:89:9a:bc:4d:13:a5:7f:ba:5d: fd:c4:28:bc:e9:88:55:8a:85:8e:46:1e:ae:fb:e1: b2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:61:70:B8:37:0F:98:77:93:E7:F6:37:A3:E5:1E:2C:E0:7D:F8:93 X509v3 Authority Key Identifier: keyid:52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/3130332e3135372e37382e302f32332d3234203d3e20313431313134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.78.0/23 Signature Algorithm: sha256WithRSAEncryption 11:ed:b6:c6:d2:cc:08:75:07:9f:e7:89:d4:24:28:83:38:36: c3:a7:f1:57:fe:4b:82:cf:b4:71:03:cd:eb:58:fd:a3:9c:bc: b2:4d:82:c0:2b:01:27:a3:ed:b0:d3:4a:73:af:bd:bd:9f:23: 58:5e:90:49:80:79:84:55:19:bc:de:cd:ae:5a:42:a1:21:f7: fe:52:4d:09:7c:3f:9f:32:b6:21:51:5b:cb:ed:ea:cc:b2:6a: 70:e2:a4:2a:e7:47:43:06:a3:4c:35:68:56:a6:fe:a5:a3:d6: 0e:75:ac:12:29:1a:1f:f1:af:b3:35:43:8d:2a:59:40:65:1b: 7b:41:1c:6f:7f:52:58:c3:c3:5d:0f:55:8e:1f:af:dd:25:6c: 79:09:86:05:a0:ac:e5:26:16:cb:90:2a:df:af:c8:3d:52:d7: 29:e5:f9:c3:fc:35:43:be:f3:96:92:d5:9b:b1:f3:b3:41:35: 4b:c6:f8:b8:36:ba:89:2c:86:27:51:96:13:e6:95:ba:ea:79: db:5d:2f:a1:7f:06:60:4d:a5:0c:2f:33:a7:d4:d7:8a:47:75: 74:65:68:11:82:2f:22:1d:ce:d0:e3:ea:3e:1e:e3:15:89:03: f4:50:81:f9:eb:78:d2:5c:78:40:99:ce:ca:3b:75:ae:e5:09: 74:15:93:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULS8b7R0GDhBs3CmuxpfUFtBI5bswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFD NjFGOUY4NjAeFw0yNDA4MjExMDU2MTVaFw0yNTA4MjAxMTAxMTVaMDMxMTAvBgNV BAMTKDk4NjE3MEI4MzcwRjk4Nzc5M0U3RjYzN0EzRTUxRTJDRTA3REY4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChxtmoLF0ibhvvilGumrXqFvFv lkgw7Fjy7Hrd9TIax4dwRlh+Qzcq8MZ1FhIyo72x4ix3Hn6YxJWlomjGtvBwt2Xr 9DbjKhiyinRPbQ2nkWQnQi+vGmUNjVGlzyuHM8zcYOFc920pifoZVLBU4qSDcIe3 hDehv2HkJ8oTHzU6iT4DPl9GiLLBYWkSei87Im+tD1yUqNxmsG9n5DQaFler5+AG 5NiP0Xqpu/f+D+Yi70JVWadCWaCz1gnUdu3w/z7Ni0zjj9kV2/WAwQ8/lSq+965O NE76pOgi7TAhNTqhOVtxMmLr5YmavE0TpX+6Xf3EKLzpiFWKhY5GHq774bLxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmGFwuDcPmHeT5/Y3o+UeLOB9+JMwHwYDVR0j BBgwFoAUUhRRg7W+GmY/vFwigQJUGsYfn4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTdlODllOC01M2FhLTQ0ZjYtYjZkOC01ODc5MDc4YmY2NjQvMC81MjE0NTE4M0I1 QkUxQTY2M0ZCQzVDMjI4MTAyNTQxQUM2MUY5Rjg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFDNjFG OUY4Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2U4OWU4LTUzYWEtNDRmNi1i NmQ4LTU4NzkwNzhiZjY2NC8wLzMxMzAzMzJlMzEzNTM3MmUzNzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ51OMA0GCSqG SIb3DQEBCwUAA4IBAQAR7bbG0swIdQef54nUJCiDODbDp/FX/kuCz7RxA83rWP2j nLyyTYLAKwEno+2w00pzr729nyNYXpBJgHmEVRm83s2uWkKhIff+Uk0JfD+fMrYh UVvL7erMsmpw4qQq50dDBqNMNWhWpv6lo9YOdawSKRof8a+zNUONKllAZRt7QRxv f1JYw8NdD1WOH6/dJWx5CYYFoKzlJhbLkCrfr8g9Utcp5fnD/DVDvvOWktWbsfOz QTVLxvi4NrqJLIYnUZYT5pW66nnbXS+hfwZgTaUMLzOn1NeKR3V0ZWgRgi8iHc7Q 4+o+HuMViQP0UIH563jSXHhAmc7KO3Wu5Ql0FZMF -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org