$ rpki-client -vvf repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: UejcqXthU+xDYc57QX1uPj4KvmZun8dR+kYv7mUvD0Y= Subject key identifier: 3F:4C:79:36:A4:72:D4:6F:B3:92:5A:E2:FD:3F:2E:FE:F7:11:BF:DF Certificate issuer: /CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Certificate serial: 01B7061A2C97691C98872BD4153DCA7B60816D04 Authority key identifier: 51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:00:00 +0000 ROA not before: Wed 03 Jan 2024 08:55:00 +0000 ROA not after: Wed 01 Jan 2025 09:00:00 +0000 asID: 135478 IP address blocks: 103.129.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b7:06:1a:2c:97:69:1c:98:87:2b:d4:15:3d:ca:7b:60:81:6d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Validity Not Before: Jan 3 08:55:00 2024 GMT Not After : Jan 1 09:00:00 2025 GMT Subject: CN=3F4C7936A472D46FB3925AE2FD3F2EFEF711BFDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:de:06:50:9c:9d:e7:da:de:47:1f:c6:03:fc: 37:62:d8:34:0c:66:67:87:e7:0b:ab:28:81:62:33: 9b:7c:1f:ab:88:1a:65:28:5d:73:db:90:69:a1:4e: b7:47:c7:3d:3e:ab:fd:3e:1a:17:87:78:d8:67:23: bb:ef:6c:25:26:c8:5c:4d:de:5a:27:49:55:35:82: eb:bf:2e:a0:99:b8:47:9b:5a:d1:21:49:99:cf:6d: 8b:77:66:e6:4f:67:c3:cd:b4:0a:e5:7a:30:58:02: cf:b8:01:f7:ef:54:91:45:f7:dd:f0:2c:2a:5c:b5: 41:4a:d6:c2:14:2f:bd:95:65:d7:92:d2:fa:f3:ff: 07:ea:b1:b1:d6:13:93:7c:6d:da:d8:69:1a:be:88: 7c:b9:52:01:6e:29:28:b7:a4:8e:61:87:1b:9c:cf: 33:f6:ea:ab:8d:ca:2f:24:60:03:db:ea:cb:49:14: 6f:dc:ba:78:de:ab:3c:c1:ea:69:06:01:cf:f9:b9: fa:2b:15:9c:33:aa:2e:98:e7:ed:06:0a:0a:45:f7: 6d:26:58:91:0c:9b:ed:ea:25:45:62:fc:f0:ed:27: 03:38:46:e2:35:40:1a:dc:a0:8a:f8:25:19:83:8f: cc:6c:98:2a:9b:10:8b:e5:f8:f9:0a:6c:52:9e:67: c3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4C:79:36:A4:72:D4:6F:B3:92:5A:E2:FD:3F:2E:FE:F7:11:BF:DF X509v3 Authority Key Identifier: keyid:51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:e0:af:a0:08:40:c6:34:e6:c0:87:e7:6f:a1:2f:56:e3:08: 07:7f:7d:74:e4:9b:f7:54:52:79:48:9a:ce:9e:0a:d8:f0:ce: 70:82:e6:72:a5:1f:93:61:52:de:e2:51:8b:e8:3c:e2:e4:61: e2:b5:03:d4:e0:fe:32:44:1a:65:ef:8f:69:1b:ea:45:47:8f: 9f:5f:da:75:fa:c1:45:38:6c:c3:5b:9d:8d:b6:db:23:fe:ee: 41:a2:95:99:0b:b6:df:ce:1a:11:01:a5:ce:be:b3:8c:8a:da: a5:57:3c:e5:1f:fc:b9:61:a0:5d:33:21:b5:b1:5f:3a:72:5a: 4d:21:da:03:d8:87:35:33:a5:3b:ab:a7:e7:e5:f5:33:dd:40: df:94:3d:a9:df:4e:d9:07:32:05:ac:2e:97:37:7c:7d:81:16: 5c:ec:ab:67:fc:de:2e:ec:0c:dd:70:e0:bb:c6:32:7b:9c:5e: 0a:d1:8a:6f:ec:a0:6f:3d:54:95:61:ca:db:09:e3:fa:78:e7: 70:76:48:1c:54:ce:b0:54:32:36:fe:51:8e:0b:be:8d:81:62: 6b:b5:f1:05:3f:3c:d8:f3:60:8d:45:39:66:1b:73:8a:f3:7b: 56:52:37:da:e9:1e:c4:26:73:c8:10:98:d0:d2:2b:7b:57:ec: cf:1a:0f:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAbcGGiyXaRyYhyvUFT3Ke2CBbQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJF N0I0MTI5NzAeFw0yNDAxMDMwODU1MDBaFw0yNTAxMDEwOTAwMDBaMDMxMTAvBgNV BAMTKDNGNEM3OTM2QTQ3MkQ0NkZCMzkyNUFFMkZEM0YyRUZFRjcxMUJGREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ3gZQnJ3n2t5HH8YD/Ddi2DQM ZmeH5wurKIFiM5t8H6uIGmUoXXPbkGmhTrdHxz0+q/0+GheHeNhnI7vvbCUmyFxN 3lonSVU1guu/LqCZuEebWtEhSZnPbYt3ZuZPZ8PNtArlejBYAs+4AffvVJFF993w LCpctUFK1sIUL72VZdeS0vrz/wfqsbHWE5N8bdrYaRq+iHy5UgFuKSi3pI5hhxuc zzP26quNyi8kYAPb6stJFG/cunjeqzzB6mkGAc/5uforFZwzqi6Y5+0GCgpF920m WJEMm+3qJUVi/PDtJwM4RuI1QBrcoIr4JRmDj8xsmCqbEIvl+PkKbFKeZ8P9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP0x5NqRy1G+zklri/T8u/vcRv98wHwYDVR0j BBgwFoAUUZfip4u6HoyeuAjkWpndK+e0EpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NjU0MjgzOS0yODU4LTQ5ZjAtYWNkZi1mYTdkM2FiOWM1NTgvMC81MTk3RTJBNzhC QkExRThDOUVCODA4RTQ1QTk5REQyQkU3QjQxMjk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJFN0I0 MTI5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2NTQyODM5LTI4NTgtNDlmMC1h Y2RmLWZhN2QzYWI5YzU1OC8wLzMxMzAzMzJlMzEzMjM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EUMA0GCSqG SIb3DQEBCwUAA4IBAQBu4K+gCEDGNObAh+dvoS9W4wgHf3105Jv3VFJ5SJrOngrY 8M5wguZypR+TYVLe4lGL6Dzi5GHitQPU4P4yRBpl749pG+pFR4+fX9p1+sFFOGzD W52Nttsj/u5BopWZC7bfzhoRAaXOvrOMitqlVzzlH/y5YaBdMyG1sV86clpNIdoD 2Ic1M6U7q6fn5fUz3UDflD2p307ZBzIFrC6XN3x9gRZc7Ktn/N4u7AzdcOC7xjJ7 nF4K0Ypv7KBvPVSVYcrbCeP6eOdwdkgcVM6wVDI2/lGOC76NgWJrtfEFPzzY82CN RTlmG3OK83tWUjfa6R7EJnPIEJjQ0it7V+zPGg8+ -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org