$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa File: 3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: rvVfeVhsLZ7fWwhIJc3Pd2GqdWdss3UfF7UYtrrPnKo= Subject key identifier: 0D:E9:05:23:1C:E2:D9:CD:99:47:1D:50:D8:53:CF:C1:09:A0:F3:30 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 52701D653AF9D3DEAB416C7C91D0912A3EF32BC5 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa Signing time: Wed 21 Aug 2024 06:00:00 +0000 ROA not before: Wed 21 Aug 2024 05:55:00 +0000 ROA not after: Wed 20 Aug 2025 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:70:1d:65:3a:f9:d3:de:ab:41:6c:7c:91:d0:91:2a:3e:f3:2b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Aug 21 05:55:00 2024 GMT Not After : Aug 20 06:00:00 2025 GMT Subject: CN=0DE905231CE2D9CD99471D50D853CFC109A0F330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:0c:b1:9d:5f:ce:c4:98:10:3c:2f:42:64: fd:1c:e3:24:34:17:14:2b:14:7b:0e:1b:90:1b:4f: 6b:e6:d0:91:02:6c:07:02:2d:6d:46:d1:2c:a7:78: 47:8b:72:e0:e1:32:00:ef:e1:33:be:d9:e5:96:3b: 41:d3:54:bf:61:fe:35:f0:d5:72:d2:41:ce:60:c7: 2e:6b:5f:b6:c2:39:ff:01:53:37:61:6a:f2:5e:f7: d1:05:9c:1c:b8:52:98:89:16:14:f1:3a:c2:4e:86: 24:2f:04:7c:8d:28:5b:7e:4f:3c:44:f2:41:8a:cb: 50:96:ea:57:12:52:b2:cb:22:89:70:87:2f:9d:31: 46:d8:ca:4f:6b:4a:e5:bc:0d:c9:54:9e:2f:bd:81: 61:e2:33:5f:62:46:b6:bd:42:66:67:fd:77:4a:c0: 0b:df:73:fa:49:be:04:7d:6f:d5:1e:ab:42:39:e9: 20:38:cb:26:ad:7f:dc:56:89:19:9b:67:33:2f:bb: 67:fc:b9:4d:00:6a:ed:75:64:eb:7e:9b:d9:20:19: 3b:46:84:58:9d:64:35:da:8b:2a:51:7a:0d:4c:10: fd:fc:a2:a5:22:6e:3e:95:e9:ce:e8:62:34:69:b5: 53:37:1b:2e:9c:c3:25:1d:e3:56:11:02:79:ad:e8: 6c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E9:05:23:1C:E2:D9:CD:99:47:1D:50:D8:53:CF:C1:09:A0:F3:30 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.154.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:0c:98:5d:95:21:e4:c1:f0:df:a4:44:9a:45:e0:b7:0d:c3: fa:cd:b6:7d:50:da:9a:c2:de:d9:83:ff:6b:f0:9a:17:93:75: 10:67:7b:2f:f1:20:3e:b3:74:ea:fb:4d:cf:e8:f4:5c:5b:bd: 71:02:c0:2d:b9:0e:87:68:f4:ae:4d:e2:68:ea:cf:73:10:f6: a6:36:a7:ba:8b:55:7c:01:f9:bc:e2:88:ba:7c:7a:d3:8c:0b: bd:8a:01:c9:cf:d2:45:44:39:14:ed:72:78:c7:5c:2d:1a:c1: c3:62:36:08:4f:8e:0a:96:97:56:13:21:67:2b:5f:b2:f9:71: e1:f0:a9:b4:89:6e:77:63:b2:dc:41:ed:64:d9:25:fc:b0:be: 17:10:e7:e7:dc:1b:56:82:11:bc:ec:67:12:4c:5b:40:37:5d: 45:ba:c9:61:53:24:7e:92:c0:00:99:54:df:fa:56:df:ee:fb: 0b:ab:4b:4f:77:26:40:e5:b9:9c:ec:19:17:21:a9:1f:62:90: 67:c9:c6:4c:aa:73:71:86:9f:da:2e:b4:4b:78:81:89:4e:54: 1d:cc:43:4c:f8:e1:d0:6d:5c:06:e0:80:05:2b:16:e0:c0:9d: 82:03:db:a1:c1:8a:3c:0d:f1:90:49:8d:d3:10:db:af:c8:61: 89:9c:e0:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUnAdZTr5096rQWx8kdCRKj7zK8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDA4MjEwNTU1MDBaFw0yNTA4MjAwNjAwMDBaMDMxMTAvBgNV BAMTKDBERTkwNTIzMUNFMkQ5Q0Q5OTQ3MUQ1MEQ4NTNDRkMxMDlBMEYzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqaQyxnV/OxJgQPC9CZP0c4yQ0 FxQrFHsOG5AbT2vm0JECbAcCLW1G0SyneEeLcuDhMgDv4TO+2eWWO0HTVL9h/jXw 1XLSQc5gxy5rX7bCOf8BUzdhavJe99EFnBy4UpiJFhTxOsJOhiQvBHyNKFt+TzxE 8kGKy1CW6lcSUrLLIolwhy+dMUbYyk9rSuW8DclUni+9gWHiM19iRra9QmZn/XdK wAvfc/pJvgR9b9Ueq0I56SA4yyatf9xWiRmbZzMvu2f8uU0Aau11ZOt+m9kgGTtG hFidZDXaiypReg1MEP38oqUibj6V6c7oYjRptVM3Gy6cwyUd41YRAnmt6GyvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDekFIxzi2c2ZRx1Q2FPPwQmg8zAwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnepowDQYJ KoZIhvcNAQELBQADggEBACwMmF2VIeTB8N+kRJpF4LcNw/rNtn1Q2prC3tmD/2vw mheTdRBney/xID6zdOr7Tc/o9FxbvXECwC25Dodo9K5N4mjqz3MQ9qY2p7qLVXwB +bziiLp8etOMC72KAcnP0kVEORTtcnjHXC0awcNiNghPjgqWl1YTIWcrX7L5ceHw qbSJbndjstxB7WTZJfywvhcQ5+fcG1aCEbzsZxJMW0A3XUW6yWFTJH6SwACZVN/6 Vt/u+wurS093JkDluZzsGRchqR9ikGfJxkyqc3GGn9outEt4gYlOVB3MQ0z44dBt XAbggAUrFuDAnYID26HBijwN8ZBJjdMQ26/IYYmc4EM= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org