$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: 1P2ogrnijw2MvpVLks2hrGbS/RxvIv2H3EW9osb1JfQ= Subject key identifier: 45:AB:D4:9D:C0:EB:C0:B4:11:72:72:B0:72:90:97:12:73:ED:82:0D Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 509D463C58BE5C6F5600FA590DD2C90A00B6AD35 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa Signing time: Wed 21 Aug 2024 06:00:00 +0000 ROA not before: Wed 21 Aug 2024 05:55:00 +0000 ROA not after: Wed 20 Aug 2025 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9d:46:3c:58:be:5c:6f:56:00:fa:59:0d:d2:c9:0a:00:b6:ad:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Aug 21 05:55:00 2024 GMT Not After : Aug 20 06:00:00 2025 GMT Subject: CN=45ABD49DC0EBC0B4117272B07290971273ED820D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:20:a1:59:aa:47:ae:93:6f:2e:19:5b:c7: 49:0e:a9:09:ce:a5:ae:c4:2c:59:ce:66:fb:da:c1: 15:13:10:e2:4b:07:5a:1c:03:dd:2f:98:fd:15:ce: 5b:ab:82:ac:0c:3d:1a:33:69:28:b1:d8:f0:bb:e2: dc:8c:e4:05:57:1c:24:1e:f2:41:00:58:ee:00:ac: 6d:a2:f9:5e:6a:6d:d6:47:c2:22:be:24:25:8a:4a: cc:4d:9e:16:2b:07:bd:a9:5a:e4:04:f2:3e:f8:03: 20:e1:a3:6f:ee:f1:31:e8:cb:d4:34:21:ab:7a:8a: b9:a4:ff:4e:f9:9b:c1:6b:e7:92:73:1a:42:51:fd: 4b:f3:b4:59:42:3a:7d:7e:c0:f0:69:4b:e8:2b:58: 50:f3:c6:ce:ef:ec:54:b1:79:4b:1e:9a:8a:8a:3b: ae:06:42:22:48:23:d8:a1:41:4b:e0:63:bd:eb:16: 6e:03:d5:bb:36:32:41:9f:36:c4:60:aa:6e:b9:f4: 7d:7a:37:76:a5:67:49:55:e2:57:ca:f1:0e:65:bb: 35:03:03:aa:44:39:ed:00:6e:51:72:1e:c0:ce:27: 15:b1:22:34:0a:15:ff:aa:e9:3a:0e:1e:0e:75:d6: 99:e1:64:39:61:79:ea:6d:fd:5b:05:9a:30:8b:68: ec:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AB:D4:9D:C0:EB:C0:B4:11:72:72:B0:72:90:97:12:73:ED:82:0D X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/24 Signature Algorithm: sha256WithRSAEncryption 99:23:ec:5f:8e:c8:9b:af:23:92:10:a7:2b:8e:f8:69:87:9b: a3:ee:01:68:d4:ca:73:49:c9:d7:67:82:d1:80:2e:bd:c9:c9: 13:8d:09:5a:6d:02:8a:45:c0:36:b7:52:86:cf:0b:1a:09:2a: ad:93:e5:cf:aa:8b:4e:5e:9b:29:89:d4:fe:9c:55:1b:46:b7: e7:ba:40:fc:43:0d:9c:6b:f4:6b:86:c9:c3:40:d6:28:ed:aa: b2:87:66:25:ee:e3:15:2f:a3:6d:6f:80:11:95:d4:89:78:f3: e7:13:09:72:bd:71:0f:f3:1b:3d:7d:05:1b:19:f9:73:64:7a: bf:8e:d2:4e:fb:04:00:64:6d:04:fe:df:97:0e:a0:ec:45:5f: 8a:be:78:b5:28:93:12:ef:46:71:ec:29:86:49:a1:46:c1:70: d8:3c:68:b3:0f:1b:88:1c:1a:5e:f7:c0:b9:2a:b3:dd:3b:90: ff:0b:ce:9c:30:ea:5e:bb:86:89:64:e7:fe:56:4a:9f:d1:6c: ff:af:76:6e:b8:33:cf:cd:fc:49:e4:5a:bd:55:59:b5:07:31: 8a:73:d6:bd:6a:b4:8e:6e:d4:a1:a9:4b:23:a1:a7:1b:ea:3b: 4e:cc:18:e5:37:69:66:bb:00:e1:9f:c8:02:e8:c9:1f:84:02: 5f:31:02:1c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUJ1GPFi+XG9WAPpZDdLJCgC2rTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDA4MjEwNTU1MDBaFw0yNTA4MjAwNjAwMDBaMDMxMTAvBgNV BAMTKDQ1QUJENDlEQzBFQkMwQjQxMTcyNzJCMDcyOTA5NzEyNzNFRDgyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2jyChWapHrpNvLhlbx0kOqQnO pa7ELFnOZvvawRUTEOJLB1ocA90vmP0VzlurgqwMPRozaSix2PC74tyM5AVXHCQe 8kEAWO4ArG2i+V5qbdZHwiK+JCWKSsxNnhYrB72pWuQE8j74AyDho2/u8THoy9Q0 Iat6irmk/075m8Fr55JzGkJR/UvztFlCOn1+wPBpS+grWFDzxs7v7FSxeUsemoqK O64GQiJII9ihQUvgY73rFm4D1bs2MkGfNsRgqm659H16N3alZ0lV4lfK8Q5luzUD A6pEOe0AblFyHsDOJxWxIjQKFf+q6ToOHg511pnhZDlheept/VsFmjCLaOwdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURavUncDrwLQRcnKwcpCXEnPtgg0wHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepgwDQYJ KoZIhvcNAQELBQADggEBAJkj7F+OyJuvI5IQpyuO+GmHm6PuAWjUynNJyddngtGA Lr3JyRONCVptAopFwDa3UobPCxoJKq2T5c+qi05emymJ1P6cVRtGt+e6QPxDDZxr 9GuGycNA1ijtqrKHZiXu4xUvo21vgBGV1Il48+cTCXK9cQ/zGz19BRsZ+XNker+O 0k77BABkbQT+35cOoOxFX4q+eLUokxLvRnHsKYZJoUbBcNg8aLMPG4gcGl73wLkq s907kP8Lzpww6l67holk5/5WSp/RbP+vdm64M8/N/EnkWr1VWbUHMYpz1r1qtI5u 1KGpSyOhpxvqO07MGOU3aWa7AOGfyALoyR+EAl8xAhw= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org