$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: NOw/NEm3PMCbXTGqxWPDqyT8dJkjuZuy6Yh+EG0lwcQ= Subject key identifier: 85:C8:67:40:46:28:D9:12:85:DF:9B:C3:DF:4B:BE:D8:7C:BE:45:33 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 6C4F4BB37EE044651C2E86759323C28CF42FE3B3 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa Signing time: Wed 21 Aug 2024 06:00:00 +0000 ROA not before: Wed 21 Aug 2024 05:55:00 +0000 ROA not after: Wed 20 Aug 2025 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:4f:4b:b3:7e:e0:44:65:1c:2e:86:75:93:23:c2:8c:f4:2f:e3:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Aug 21 05:55:00 2024 GMT Not After : Aug 20 06:00:00 2025 GMT Subject: CN=85C867404628D91285DF9BC3DF4BBED87CBE4533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:c5:4b:29:c5:08:1e:47:19:4b:d0:b6:61: 69:80:7d:79:1f:91:31:f7:1c:d6:32:21:5f:81:64: 00:0b:8f:3e:bd:0c:71:f0:4b:7a:c6:f7:8f:09:5d: fc:83:45:8f:7a:e4:04:22:f4:8c:95:dd:7b:c1:c2: e0:c9:fd:63:92:31:50:3a:e2:bf:83:34:85:06:3e: f3:81:f7:5e:c2:83:b6:f6:e3:82:3c:3b:de:c9:5b: ed:57:3e:64:9f:79:22:a5:19:5c:92:0d:da:88:d9: c2:6e:1b:39:03:c1:1b:1c:ff:64:27:4b:d1:9e:e4: 18:20:88:b1:bd:2e:fd:89:31:e1:9c:2c:08:32:58: a1:7e:b7:51:fa:39:c8:82:31:b4:d7:46:53:08:1f: aa:6f:e1:0a:24:0b:2d:8b:ce:eb:e0:c3:d2:6f:32: 84:36:90:90:dd:b3:ca:2d:d4:e5:03:b4:63:19:d9: e0:87:f8:02:81:be:2d:ea:2a:81:63:80:85:ac:1b: cf:d8:02:87:59:c7:a7:6f:d0:33:50:c3:79:8b:4d: a6:91:ae:a7:03:a1:8b:00:94:e0:e9:1c:3a:83:2b: 00:7f:e7:88:4e:da:0b:19:be:52:e6:a7:e9:41:b5: e3:71:a5:75:70:5e:74:ff:0f:3d:d4:f6:36:9a:3e: 33:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:67:40:46:28:D9:12:85:DF:9B:C3:DF:4B:BE:D8:7C:BE:45:33 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/23 Signature Algorithm: sha256WithRSAEncryption 01:64:b8:00:02:53:50:fc:b8:f4:3e:53:d0:15:5a:37:95:30: 53:5c:a0:d1:46:ce:8a:c5:65:59:45:88:fa:6d:66:51:3e:7d: 5a:a3:93:2b:ac:a6:0c:3c:38:5c:9e:b5:5e:53:ac:f7:14:10: dd:e9:9a:bf:54:70:6c:3c:5a:74:cc:a0:a1:ac:ea:59:ea:42: 38:54:f7:3c:14:53:b9:15:8f:cb:ec:60:1b:38:bf:88:b9:80: 20:e3:24:fb:ab:2d:cd:4a:5b:fc:5d:a6:cb:5e:f7:6c:6d:30: bb:90:ea:a1:23:15:dc:c5:f5:51:18:db:19:d3:51:25:91:7c: 46:2f:e1:42:10:f9:ba:07:51:65:c5:af:69:66:30:9d:73:a8: b7:d7:53:8e:a6:1b:02:cb:d1:bc:29:54:aa:6e:c5:8c:3b:c0: 97:66:5c:c3:fb:1c:6c:a3:32:35:00:0f:4d:f0:42:bb:bb:ba: 33:f3:22:56:27:c8:43:a8:eb:c9:ca:10:b0:a7:91:3d:e5:7e: 0e:ff:bc:68:ac:16:84:82:28:63:c5:dc:52:7a:d8:9c:9a:aa: 8d:d3:72:ef:87:43:74:59:03:80:18:71:05:a3:05:76:67:de: bf:28:83:7c:b2:45:99:8b:1c:3b:6f:89:09:36:ee:bf:b8:55: 5b:b3:14:dd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbE9Ls37gRGUcLoZ1kyPCjPQv47MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDA4MjEwNTU1MDBaFw0yNTA4MjAwNjAwMDBaMDMxMTAvBgNV BAMTKDg1Qzg2NzQwNDYyOEQ5MTI4NURGOUJDM0RGNEJCRUQ4N0NCRTQ1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC98VLKcUIHkcZS9C2YWmAfXkf kTH3HNYyIV+BZAALjz69DHHwS3rG948JXfyDRY965AQi9IyV3XvBwuDJ/WOSMVA6 4r+DNIUGPvOB917Cg7b244I8O97JW+1XPmSfeSKlGVySDdqI2cJuGzkDwRsc/2Qn S9Ge5BggiLG9Lv2JMeGcLAgyWKF+t1H6OciCMbTXRlMIH6pv4QokCy2Lzuvgw9Jv MoQ2kJDds8ot1OUDtGMZ2eCH+AKBvi3qKoFjgIWsG8/YAodZx6dv0DNQw3mLTaaR rqcDoYsAlODpHDqDKwB/54hO2gsZvlLmp+lBteNxpXVwXnT/Dz3U9jaaPjMVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhchnQEYo2RKF35vD30u+2Hy+RTMwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepgwDQYJ KoZIhvcNAQELBQADggEBAAFkuAACU1D8uPQ+U9AVWjeVMFNcoNFGzorFZVlFiPpt ZlE+fVqjkyuspgw8OFyetV5TrPcUEN3pmr9UcGw8WnTMoKGs6lnqQjhU9zwUU7kV j8vsYBs4v4i5gCDjJPurLc1KW/xdpste92xtMLuQ6qEjFdzF9VEY2xnTUSWRfEYv 4UIQ+boHUWXFr2lmMJ1zqLfXU46mGwLL0bwpVKpuxYw7wJdmXMP7HGyjMjUAD03w Qru7ujPzIlYnyEOo68nKELCnkT3lfg7/vGisFoSCKGPF3FJ62Jyaqo3Tcu+HQ3RZ A4AYcQWjBXZn3r8og3yyRZmLHDtviQk27r+4VVuzFN0= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org