$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa File: 3130332e32382e31322e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: gi0af/cQbabaV6AiHGMfP/9tqFkO/i715nyDNUjuW74= Subject key identifier: 58:5C:6B:F3:A0:53:14:00:02:60:D7:13:9E:26:90:5C:31:96:05:1B Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 36512418F11A7ADAD154E2F9E48ED0D12DF7FE05 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa Signing time: Fri 26 Apr 2024 02:00:01 +0000 ROA not before: Fri 26 Apr 2024 01:55:01 +0000 ROA not after: Fri 25 Apr 2025 02:00:01 +0000 asID: 58404 IP address blocks: 103.28.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:51:24:18:f1:1a:7a:da:d1:54:e2:f9:e4:8e:d0:d1:2d:f7:fe:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Apr 26 01:55:01 2024 GMT Not After : Apr 25 02:00:01 2025 GMT Subject: CN=585C6BF3A05314000260D7139E26905C3196051B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:76:12:f4:42:79:7a:ac:4c:1b:11:92:ab:4d: 2d:52:75:fa:2e:6b:7c:7b:61:a3:ef:ce:d5:9a:25: 6b:8e:0e:08:6f:80:2b:ca:11:34:9f:69:fb:45:ff: 95:05:42:c6:12:e6:dc:1f:18:0a:64:69:9e:51:d9: 29:a7:ca:6a:36:54:4f:a9:bd:de:41:c4:0d:50:41: 60:de:6e:d6:9c:a3:53:50:3b:eb:c7:a8:85:2d:2d: 16:b5:31:97:6e:4b:7e:63:76:ca:5a:db:5e:1c:6e: 5c:23:6f:3a:d5:b8:6a:b4:e2:11:a4:0c:85:92:e3: f4:63:e4:fa:19:1e:de:6b:ee:c2:11:b9:27:7a:bf: 6d:62:25:e3:48:2e:3a:5b:0c:76:8f:d0:5e:e1:1c: a3:36:12:a8:69:aa:32:83:0a:62:0e:c6:84:c4:76: 21:06:15:71:39:12:b0:e1:68:c3:97:4a:e6:11:da: 2e:52:8c:f9:7e:59:ae:4b:2d:35:2c:44:22:23:09: 79:3d:36:a6:f2:90:fd:86:31:0b:23:10:56:8c:a5: c8:91:cf:fa:a8:00:3f:e7:38:1a:39:51:3e:16:a7: 9c:db:62:08:82:5a:b2:c3:0d:7b:14:d2:69:7c:75: aa:63:f1:92:c4:55:a5:76:88:92:d5:1b:7f:6f:e9: 36:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5C:6B:F3:A0:53:14:00:02:60:D7:13:9E:26:90:5C:31:96:05:1B X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.12.0/23 Signature Algorithm: sha256WithRSAEncryption 34:ef:e7:70:46:15:a5:71:3b:8d:0f:37:ff:0c:6e:bc:1b:ab: b2:d3:43:4d:dc:e2:45:a6:00:eb:f4:33:1e:8d:c3:86:64:a1: c0:61:43:53:a1:46:83:ac:45:1f:90:27:0b:d9:4c:3a:97:d3: e3:1b:a9:ce:c4:f5:6a:e8:61:b2:93:89:2d:55:63:d6:8f:e9: 79:8a:32:b3:5e:4d:66:1e:8c:79:95:2d:ea:16:7e:e8:96:94: 8b:83:98:ff:05:6e:7b:fa:95:ba:2f:4a:79:aa:f7:b9:97:c0: 7c:57:68:bb:06:cb:c5:56:b2:6d:0c:69:dd:7e:32:01:59:81: 79:6b:92:d5:04:4c:e9:fd:81:ba:e9:18:90:d3:fd:0e:ac:5d: 8b:5d:b4:04:82:10:25:8b:48:57:89:ff:f6:47:95:c0:63:6e: d2:5d:65:d3:cb:a4:9e:43:82:23:3f:fd:4f:88:b9:a0:8d:01: b7:3d:bb:ca:5e:4d:6f:18:18:e4:2d:23:d9:3e:5c:65:3e:b9: d4:6f:df:f7:75:5f:10:cf:c0:9a:90:11:e8:c9:22:d8:4e:af: 5c:4c:5a:b3:4f:16:36:bd:11:cc:9a:0d:d9:ea:3a:23:c4:67: bc:b0:69:c2:dc:7c:30:e3:f7:06:f0:28:5f:18:ed:a6:81:53: d0:d2:42:82 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNlEkGPEaetrRVOL55I7Q0S33/gUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDA0MjYwMTU1MDFaFw0yNTA0MjUwMjAwMDFaMDMxMTAvBgNV BAMTKDU4NUM2QkYzQTA1MzE0MDAwMjYwRDcxMzlFMjY5MDVDMzE5NjA1MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUdhL0Qnl6rEwbEZKrTS1Sdfou a3x7YaPvztWaJWuODghvgCvKETSfaftF/5UFQsYS5twfGApkaZ5R2Smnymo2VE+p vd5BxA1QQWDebtaco1NQO+vHqIUtLRa1MZduS35jdspa214cblwjbzrVuGq04hGk DIWS4/Rj5PoZHt5r7sIRuSd6v21iJeNILjpbDHaP0F7hHKM2EqhpqjKDCmIOxoTE diEGFXE5ErDhaMOXSuYR2i5SjPl+Wa5LLTUsRCIjCXk9NqbykP2GMQsjEFaMpciR z/qoAD/nOBo5UT4Wp5zbYgiCWrLDDXsU0ml8dapj8ZLEVaV2iJLVG39v6TZHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUWFxr86BTFAACYNcTniaQXDGWBRswHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMxMzAzMzJlMzIzODJlMzEzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHAwwDQYJKoZIhvcN AQELBQADggEBADTv53BGFaVxO40PN/8Mbrwbq7LTQ03c4kWmAOv0Mx6Nw4ZkocBh Q1OhRoOsRR+QJwvZTDqX0+Mbqc7E9WroYbKTiS1VY9aP6XmKMrNeTWYejHmVLeoW fuiWlIuDmP8Fbnv6lbovSnmq97mXwHxXaLsGy8VWsm0Mad1+MgFZgXlrktUETOn9 gbrpGJDT/Q6sXYtdtASCECWLSFeJ//ZHlcBjbtJdZdPLpJ5DgiM//U+IuaCNAbc9 u8peTW8YGOQtI9k+XGU+udRv3/d1XxDPwJqQEejJIthOr1xMWrNPFja9EcyaDdnq OiPEZ7ywacLcfDDj9wbwKF8Y7aaBU9DSQoI= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:19 2024 by rpki-client on console-fra.rpki-client.org