$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa File: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (raw, json) Hash identifier: h0Ikm5xLILqHiZgjn6vJMZ/MDEgRmvD05eIzOebsCJ4= Subject key identifier: 5C:6E:9B:F6:6A:49:C4:07:FC:4B:D3:1A:7B:30:9B:C7:61:4F:86:4F Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 0C6DD4EDE23FCF0CFA706EA3319D490BF3307ED2 Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa Signing time: Wed 24 Jul 2024 13:30:38 +0000 ROA not before: Wed 24 Jul 2024 13:25:38 +0000 ROA not after: Wed 23 Jul 2025 13:30:38 +0000 asID: 132639 IP address blocks: 103.129.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:6d:d4:ed:e2:3f:cf:0c:fa:70:6e:a3:31:9d:49:0b:f3:30:7e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Jul 24 13:25:38 2024 GMT Not After : Jul 23 13:30:38 2025 GMT Subject: CN=5C6E9BF66A49C407FC4BD31A7B309BC7614F864F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:28:7a:34:29:c2:57:2d:70:89:60:2e:5b:e1: 28:96:64:fa:1f:f3:66:ae:af:78:43:ae:d5:23:b8: 5a:3b:9c:ae:d7:ae:74:5d:41:b4:f2:63:51:18:17: f1:83:39:50:b8:b7:4c:88:30:21:21:46:f1:87:f7: a3:66:21:86:60:90:d4:51:dd:a9:a2:36:8b:4e:44: f0:67:7d:7b:45:a7:65:19:61:90:7c:87:47:74:28: 54:db:15:6a:b3:7a:a3:d3:02:ff:1d:cd:d5:2d:d9: 84:5b:61:17:68:02:be:7f:46:52:88:e8:a8:4f:9b: 0f:d8:0e:b1:1a:56:f1:f2:44:a7:80:bf:c0:c5:f6: cf:28:07:25:a7:70:bb:b3:09:e5:f3:99:31:6c:b4: 10:d4:24:97:47:8a:53:af:c2:62:e7:dd:02:9e:67: 6f:8e:6f:7c:85:86:39:c7:89:97:b0:ef:f9:9b:32: 50:fa:fe:47:18:38:c1:cc:b2:d4:78:c7:bb:fc:16: 35:5a:6f:a0:6d:d0:ca:e3:ba:fc:03:63:87:47:10: 57:a0:94:d9:02:85:d5:81:b9:21:c4:13:73:29:0e: 16:20:84:57:ba:30:5a:18:87:1e:a5:d5:bb:4f:a7: b0:01:09:80:4b:38:b4:8d:04:4f:7f:11:d1:81:2c: f8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6E:9B:F6:6A:49:C4:07:FC:4B:D3:1A:7B:30:9B:C7:61:4F:86:4F X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.230.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:0e:94:de:85:67:24:3e:8c:8d:bf:3c:e9:4c:13:82:cb:ed: 4d:dd:00:41:0b:0d:b2:ba:7c:42:80:a5:c0:24:0a:7d:0b:9c: 56:a0:a2:ad:a6:33:b3:2c:26:5f:c0:6f:8e:de:af:1f:9c:e5: e7:e0:98:f1:33:bf:75:0b:04:d3:0b:ef:86:a1:dd:90:e3:af: 7c:c4:96:18:03:21:a9:e0:c1:05:de:7b:17:f4:e2:57:c9:df: 2e:97:f3:0a:38:16:7a:b4:ad:20:58:2d:35:fd:9a:bb:9c:d3: 12:d8:cd:31:86:16:ec:cf:57:4b:8c:9a:83:82:d8:37:47:92: a9:11:95:44:23:46:f2:77:e9:2e:80:1e:37:e3:d3:3c:b5:5f: 9b:3e:2d:65:c8:7e:da:df:32:0b:82:12:87:a3:5b:08:46:3c: 83:6b:54:84:f9:8e:b0:10:1a:61:e4:76:9b:5e:54:e0:59:62: 6d:65:5c:46:b4:07:ee:30:bf:12:f0:e1:71:94:0c:a5:6f:29: d7:c0:84:15:88:03:b6:0a:e4:5d:88:08:4e:0d:81:5a:02:cf: 24:d9:09:13:35:18:63:dd:15:e3:52:f0:82:1c:80:85:b3:52: 19:99:bb:24:73:6a:73:e4:94:d1:4b:3f:c8:80:d5:5f:87:5a: fe:1b:a4:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDG3U7eI/zwz6cG6jMZ1JC/MwftIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNDA3MjQxMzI1MzhaFw0yNTA3MjMxMzMwMzhaMDMxMTAvBgNV BAMTKDVDNkU5QkY2NkE0OUM0MDdGQzRCRDMxQTdCMzA5QkM3NjE0Rjg2NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2KHo0KcJXLXCJYC5b4SiWZPof 82aur3hDrtUjuFo7nK7XrnRdQbTyY1EYF/GDOVC4t0yIMCEhRvGH96NmIYZgkNRR 3amiNotORPBnfXtFp2UZYZB8h0d0KFTbFWqzeqPTAv8dzdUt2YRbYRdoAr5/RlKI 6KhPmw/YDrEaVvHyRKeAv8DF9s8oByWncLuzCeXzmTFstBDUJJdHilOvwmLn3QKe Z2+Ob3yFhjnHiZew7/mbMlD6/kcYOMHMstR4x7v8FjVab6Bt0MrjuvwDY4dHEFeg lNkChdWBuSHEE3MpDhYghFe6MFoYhx6l1btPp7ABCYBLOLSNBE9/EdGBLPjTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXG6b9mpJxAf8S9MaezCbx2FPhk8wHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYTQyNzQyLTg5ZDItNDliYi04 YTNlLTI5NGMzNjg5NzFmNS8wLzMxMzAzMzJlMzEzMjM5MmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngeYwDQYJ KoZIhvcNAQELBQADggEBAH0OlN6FZyQ+jI2/POlME4LL7U3dAEELDbK6fEKApcAk Cn0LnFagoq2mM7MsJl/Ab47erx+c5efgmPEzv3ULBNML74ah3ZDjr3zElhgDIang wQXeexf04lfJ3y6X8wo4Fnq0rSBYLTX9mruc0xLYzTGGFuzPV0uMmoOC2DdHkqkR lUQjRvJ36S6AHjfj0zy1X5s+LWXIftrfMguCEoejWwhGPINrVIT5jrAQGmHkdpte VOBZYm1lXEa0B+4wvxLw4XGUDKVvKdfAhBWIA7YK5F2ICE4NgVoCzyTZCRM1GGPd FeNS8IIcgIWzUhmZuyRzanPklNFLP8iA1V+HWv4bpMo= -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:15 2024 by rpki-client on console-ams.rpki-client.org