$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa File: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (raw, json) Hash identifier: NGJ06HPZPnasggQ7SzYoKC32u86oginffTyP/A+SYes= Subject key identifier: 15:99:2B:24:9C:09:DC:AA:EB:A4:AE:DB:09:86:4E:CA:8F:1E:4C:79 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 040C5FF6F7ACDE0A10467004D6ADC5745F3B4431 Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa Signing time: Wed 24 Jul 2024 13:41:17 +0000 ROA not before: Wed 24 Jul 2024 13:36:17 +0000 ROA not after: Wed 23 Jul 2025 13:41:17 +0000 asID: 132639 IP address blocks: 103.129.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0c:5f:f6:f7:ac:de:0a:10:46:70:04:d6:ad:c5:74:5f:3b:44:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Jul 24 13:36:17 2024 GMT Not After : Jul 23 13:41:17 2025 GMT Subject: CN=15992B249C09DCAAEBA4AEDB09864ECA8F1E4C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:10:52:df:54:dd:ac:69:28:35:8e:63:24:07: df:cd:bf:03:07:7d:ab:61:20:11:4a:b5:d8:5e:bd: 8c:25:11:4c:60:b3:62:dd:70:4a:6a:75:e6:48:6d: de:42:e2:22:ca:9c:5e:9b:d8:f6:c4:8a:05:ae:94: 6e:df:b2:c6:b2:da:79:51:53:e9:16:ac:68:b4:ca: b2:8e:c9:82:55:ca:ac:59:27:99:0e:a1:d7:71:2d: 3e:d1:28:58:e5:c2:2a:8a:86:20:64:d2:94:85:b4: 34:77:ff:0d:fd:6a:96:f3:d6:17:82:ea:46:50:47: 13:c7:68:1c:81:de:34:77:4d:8c:ed:4e:48:68:77: e0:ba:89:90:c5:fa:72:fd:3f:d0:14:d5:81:47:3c: 17:7e:51:bc:e4:43:ce:b3:b1:79:10:af:54:82:72: 05:a3:46:06:44:6e:d0:c8:e5:47:ed:3b:1d:9c:2f: 46:b0:23:83:53:1f:ab:d5:37:cc:59:39:e8:b8:c5: e4:79:26:e8:50:44:c9:5b:9d:80:73:e6:df:ec:93: 83:67:bc:38:f0:05:b2:41:3b:3f:26:51:8e:af:e4: 95:c9:f9:22:ce:ac:0a:d8:45:5a:0e:07:b8:da:66: da:bf:91:18:ae:eb:0c:c9:17:da:c6:ac:08:29:13: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:99:2B:24:9C:09:DC:AA:EB:A4:AE:DB:09:86:4E:CA:8F:1E:4C:79 X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.230.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:79:70:05:04:46:36:72:ed:b7:34:ae:d0:10:ef:a1:28:55: 01:2e:a4:af:d1:f6:15:76:d7:dd:08:b5:74:ce:dd:b0:3f:21: e9:5f:a4:7f:f4:a6:fe:94:bc:92:8d:b8:fd:3e:92:78:99:e7: b7:d5:31:93:e8:5c:68:cb:16:c6:a5:5e:78:de:09:eb:6f:b6: f0:55:ab:18:16:cb:fd:19:23:ee:d7:20:f8:bd:46:47:72:04: ad:37:d5:4c:67:35:63:17:18:32:d3:dd:00:ef:13:e3:80:e6: 6d:c0:65:1e:8c:66:df:9c:b1:62:59:2f:cd:97:2d:00:9a:f1: 74:9c:bb:c9:d0:5d:14:19:4e:db:11:ff:ec:e9:65:ad:89:32: 59:a0:e4:09:02:d6:92:6a:f3:2b:e0:9b:5f:f8:19:41:76:93: a6:17:db:10:47:13:c2:00:b8:c6:8b:a4:6c:f2:82:07:84:da: b6:74:ae:4d:d1:83:96:b0:06:0e:43:1e:74:a5:42:fa:57:d1: bf:89:3d:da:f2:11:c4:74:e9:7c:90:90:f6:cf:31:6d:49:c1: d1:f3:e7:f7:05:b1:41:dd:77:5e:a3:23:6d:d5:7a:8e:fe:47: 29:19:d3:94:ca:27:1f:88:5a:14:f7:47:f7:52:6c:c0:0d:ac: d0:0b:2f:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBAxf9ves3goQRnAE1q3FdF87RDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNDA3MjQxMzM2MTdaFw0yNTA3MjMxMzQxMTdaMDMxMTAvBgNV BAMTKDE1OTkyQjI0OUMwOURDQUFFQkE0QUVEQjA5ODY0RUNBOEYxRTRDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTEFLfVN2saSg1jmMkB9/NvwMH fathIBFKtdhevYwlEUxgs2LdcEpqdeZIbd5C4iLKnF6b2PbEigWulG7fssay2nlR U+kWrGi0yrKOyYJVyqxZJ5kOoddxLT7RKFjlwiqKhiBk0pSFtDR3/w39apbz1heC 6kZQRxPHaByB3jR3TYztTkhod+C6iZDF+nL9P9AU1YFHPBd+UbzkQ86zsXkQr1SC cgWjRgZEbtDI5UftOx2cL0awI4NTH6vVN8xZOei4xeR5JuhQRMlbnYBz5t/sk4Nn vDjwBbJBOz8mUY6v5JXJ+SLOrArYRVoOB7jaZtq/kRiu6wzJF9rGrAgpExXPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFZkrJJwJ3KrrpK7bCYZOyo8eTHkwHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzMjM5MmUzMjMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFngeYwDQYJ KoZIhvcNAQELBQADggEBACt5cAUERjZy7bc0rtAQ76EoVQEupK/R9hV2190ItXTO 3bA/IelfpH/0pv6UvJKNuP0+kniZ57fVMZPoXGjLFsalXnjeCetvtvBVqxgWy/0Z I+7XIPi9RkdyBK031UxnNWMXGDLT3QDvE+OA5m3AZR6MZt+csWJZL82XLQCa8XSc u8nQXRQZTtsR/+zpZa2JMlmg5AkC1pJq8yvgm1/4GUF2k6YX2xBHE8IAuMaLpGzy ggeE2rZ0rk3Rg5awBg5DHnSlQvpX0b+JPdryEcR06XyQkPbPMW1JwdHz5/cFsUHd d16jI23Veo7+RykZ05TKJx+IWhT3R/dSbMANrNALL/w= -----END CERTIFICATE-----Generated at Sun Nov 24 09:08:48 2024 by rpki-client on console-fra.rpki-client.org