$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa File: 3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: FeqaP2txuOgRBx2G96zuc78OrFRr2szEz0GSYPgv878= Subject key identifier: 1A:C1:56:CE:9E:CB:5A:83:0A:7E:70:AF:3D:79:7A:87:CC:96:C6:59 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 18A1BE0BF2FB021D3431E2F1E2909E33A192A03F Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa Signing time: Wed 21 Aug 2024 06:00:00 +0000 ROA not before: Wed 21 Aug 2024 05:55:00 +0000 ROA not after: Wed 20 Aug 2025 06:00:00 +0000 asID: 140407 IP address blocks: 103.122.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a1:be:0b:f2:fb:02:1d:34:31:e2:f1:e2:90:9e:33:a1:92:a0:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Aug 21 05:55:00 2024 GMT Not After : Aug 20 06:00:00 2025 GMT Subject: CN=1AC156CE9ECB5A830A7E70AF3D797A87CC96C659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6c:41:ee:81:5f:3a:a1:72:d4:82:9d:d5:36: b8:f8:9d:f3:9c:3f:41:3d:7b:d3:d8:bd:20:e9:90: 2a:48:2c:8a:a9:85:ca:b8:77:2a:82:1c:f8:eb:8f: 44:11:67:2e:0c:d7:04:43:2a:ed:15:de:77:eb:ea: ec:7e:46:5a:e8:08:3f:66:74:ab:60:38:97:c9:f9: 1d:07:11:d1:8d:f2:0f:8c:65:d2:b4:fa:eb:b1:c2: f9:69:c5:89:0e:5b:ed:9c:93:2f:31:07:aa:98:c9: 23:a0:1e:c0:92:59:03:3d:d7:81:89:20:04:f5:14: bc:50:87:15:12:1d:9c:14:5f:43:98:ef:02:68:ec: 8d:97:e8:26:83:73:70:a7:3b:f9:51:e6:09:d6:f5: 3a:81:67:71:7b:93:c1:2a:80:de:04:28:82:6f:fe: a4:71:05:1f:1d:68:4c:c2:48:9d:e4:9b:ae:d7:28: f2:0c:36:2d:ba:f9:27:7d:4d:3c:6d:35:1a:ac:12: 1c:b1:27:39:48:39:ff:f5:97:75:94:bd:c7:ff:ef: 58:3d:e4:58:e0:c5:b7:56:d6:c0:bd:a0:7e:2c:eb: e9:6c:a9:7f:ea:eb:f6:4c:46:a2:1a:3e:9c:d8:d0: 7e:5e:d3:e8:5a:29:dd:36:cb:5d:b4:84:43:41:43: 19:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C1:56:CE:9E:CB:5A:83:0A:7E:70:AF:3D:79:7A:87:CC:96:C6:59 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/3130332e3132322e3135342e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.154.0/24 Signature Algorithm: sha256WithRSAEncryption 75:3b:97:16:8b:7c:de:f4:de:b0:cf:9a:f1:63:6e:34:21:95: 4b:f6:dc:d3:22:78:5e:3e:d0:9f:47:c9:54:7c:a5:f2:77:cb: 1f:ec:a3:d3:b4:a6:c0:38:50:b4:91:0b:d4:e5:c9:18:53:21: 6d:1e:d5:a0:46:4f:a3:58:95:04:84:eb:53:e5:13:dc:d3:57: 25:d2:00:f7:25:6c:b7:8e:c2:a5:1b:17:db:f0:da:4d:cd:fa: 49:d3:6a:65:80:3b:aa:a6:9e:62:ea:07:82:20:90:ea:39:ba: 57:b9:de:d5:e3:ca:3f:ad:ee:a3:b6:f3:b5:c5:a7:33:f6:33: ff:04:05:33:9f:d2:85:85:14:9e:aa:b3:ef:84:ba:5c:1f:b0: 45:d4:34:30:a7:a2:77:fb:db:79:14:e7:32:40:c7:2a:3e:3c: 6a:18:3b:7b:79:b2:15:bd:b3:6e:15:c2:bc:9a:fd:e8:18:98: 24:65:84:32:ef:da:98:16:ad:44:5c:73:5d:dd:da:37:b1:ec: 90:f1:57:c4:b3:58:6b:92:1a:17:9e:4e:30:ab:fb:00:ef:f7: 0a:37:0b:d1:72:8d:c2:31:cd:6a:d7:78:1a:4c:fb:bf:2e:5b: f8:0b:2c:d3:69:f8:e9:9e:b6:01:1d:2b:88:9b:de:cc:b4:c6: d5:6c:99:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGKG+C/L7Ah00MeLx4pCeM6GSoD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDA4MjEwNTU1MDBaFw0yNTA4MjAwNjAwMDBaMDMxMTAvBgNV BAMTKDFBQzE1NkNFOUVDQjVBODMwQTdFNzBBRjNENzk3QTg3Q0M5NkM2NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsbEHugV86oXLUgp3VNrj4nfOc P0E9e9PYvSDpkCpILIqphcq4dyqCHPjrj0QRZy4M1wRDKu0V3nfr6ux+RlroCD9m dKtgOJfJ+R0HEdGN8g+MZdK0+uuxwvlpxYkOW+2cky8xB6qYySOgHsCSWQM914GJ IAT1FLxQhxUSHZwUX0OY7wJo7I2X6CaDc3CnO/lR5gnW9TqBZ3F7k8EqgN4EKIJv /qRxBR8daEzCSJ3km67XKPIMNi26+Sd9TTxtNRqsEhyxJzlIOf/1l3WUvcf/71g9 5FjgxbdW1sC9oH4s6+lsqX/q6/ZMRqIaPpzY0H5e0+haKd02y120hENBQxkpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGsFWzp7LWoMKfnCvPXl6h8yWxlkwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMxMzAzMzJlMzEzMjMyMmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnepowDQYJ KoZIhvcNAQELBQADggEBAHU7lxaLfN703rDPmvFjbjQhlUv23NMieF4+0J9HyVR8 pfJ3yx/so9O0psA4ULSRC9TlyRhTIW0e1aBGT6NYlQSE61PlE9zTVyXSAPclbLeO wqUbF9vw2k3N+knTamWAO6qmnmLqB4IgkOo5ule53tXjyj+t7qO287XFpzP2M/8E BTOf0oWFFJ6qs++EulwfsEXUNDCnonf723kU5zJAxyo+PGoYO3t5shW9s24Vwrya /egYmCRlhDLv2pgWrURcc13d2jex7JDxV8SzWGuSGheeTjCr+wDv9wo3C9FyjcIx zWrXeBpM+78uW/gLLNNp+OmetgEdK4ib3sy0xtVsmag= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org