$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3130332e31382e32382e302f32322d3234203d3e203435373036.roa File: 3130332e31382e32382e302f32322d3234203d3e203435373036.roa (raw, json) Hash identifier: W5YLdWhnOdLeAXEY1MixBlpWbhGhQrghXBcYMuYDx9E= Subject key identifier: 8D:4C:14:E0:83:05:A4:1B:21:43:B8:74:A1:83:C4:23:5B:EB:4A:BC Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 4C8A25445E41C03DE248769C1AE6B44F8893D45C Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3130332e31382e32382e302f32322d3234203d3e203435373036.roa Signing time: Fri 05 Jul 2024 03:00:00 +0000 ROA not before: Fri 05 Jul 2024 02:55:00 +0000 ROA not after: Fri 04 Jul 2025 03:00:00 +0000 asID: 45706 IP address blocks: 103.18.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:8a:25:44:5e:41:c0:3d:e2:48:76:9c:1a:e6:b4:4f:88:93:d4:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Jul 5 02:55:00 2024 GMT Not After : Jul 4 03:00:00 2025 GMT Subject: CN=8D4C14E08305A41B2143B874A183C4235BEB4ABC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:51:c2:5f:2a:9c:c9:8b:0b:09:ce:6f:41: eb:61:9e:e8:e3:ca:65:8e:ce:3c:63:e4:ad:18:06: 18:33:a0:80:db:d9:55:e5:14:1e:c6:db:cf:2b:7c: b9:c0:f7:24:b1:e7:df:2c:bc:09:e8:45:f7:29:ba: 46:5f:60:2b:31:cf:ac:4a:9b:3d:de:1c:c3:a9:88: 83:21:87:02:62:58:44:01:44:07:36:a4:a2:0a:de: a9:c1:46:14:6d:c7:1f:82:02:aa:a2:b0:36:62:b9: e5:5f:05:e2:08:a3:7b:69:4f:04:9f:24:72:49:67: f6:7f:b3:15:dd:d6:4d:15:ef:8e:eb:b7:5b:90:92: d1:92:3c:5f:32:d3:a0:85:b5:d2:9a:be:43:40:1c: 61:8a:bf:3f:95:cc:d2:5c:bd:b3:b3:ca:b7:43:bb: 78:b1:87:60:e0:84:3d:0d:77:4a:be:dd:16:52:29: 14:bd:3d:fe:9c:f2:d3:91:4c:57:d1:7a:be:24:c5: 59:bc:d4:7f:2c:af:77:29:00:09:d3:d3:49:ba:2b: c4:67:57:4e:65:31:fd:62:58:55:9d:79:85:04:d1: 66:c7:97:71:89:ed:23:62:2e:d1:18:5a:e4:a9:a9: 76:bd:84:a7:99:ab:9a:01:26:b5:72:30:81:18:3b: b2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4C:14:E0:83:05:A4:1B:21:43:B8:74:A1:83:C4:23:5B:EB:4A:BC X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3130332e31382e32382e302f32322d3234203d3e203435373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.28.0/22 Signature Algorithm: sha256WithRSAEncryption 44:7f:cd:8a:b6:9e:00:19:37:f8:0e:ef:2b:e0:ea:d1:ff:cc: 5f:ca:a5:fb:ea:d1:3e:a7:d0:47:56:cf:3f:77:23:9b:05:75: 71:bc:98:e9:de:86:f1:18:9b:72:48:0e:2e:b6:9f:07:66:16: 0c:54:28:66:de:d5:bf:d2:b7:18:10:5f:e3:f8:57:20:36:ea: 8e:0d:d1:1e:10:a9:6b:78:0b:43:4a:ee:cc:55:c1:43:b8:80: 3b:cc:9b:35:f1:0a:70:7b:37:28:fa:dd:60:6a:37:f6:91:13: b7:14:da:3e:8a:33:3e:0f:7d:f5:81:c2:c1:b7:80:14:7c:c6: 58:c8:ba:99:d5:44:c3:e1:88:92:8d:84:d9:16:0e:2b:99:90: 75:10:1c:32:e6:cb:c3:54:cb:98:ca:03:51:2a:70:71:3f:3a: 04:d1:fa:31:ef:7b:70:8a:3c:48:d7:30:34:58:ee:ac:56:b9: d9:d9:21:fe:83:85:e2:69:5a:b2:85:98:e0:5d:d9:ee:72:b0: b6:2c:ce:19:bc:b0:88:82:2d:5e:1c:08:59:52:a3:fb:46:b8: 6e:8a:5e:2d:ea:1a:41:4e:b3:5d:20:0d:a5:a0:43:5e:0c:9f: 3e:56:4a:4d:b6:8d:b4:09:33:c2:30:46:8f:55:0b:bc:28:83: 74:9c:d3:3f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTIolRF5BwD3iSHacGua0T4iT1FwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yNDA3MDUwMjU1MDBaFw0yNTA3MDQwMzAwMDBaMDMxMTAvBgNV BAMTKDhENEMxNEUwODMwNUE0MUIyMTQzQjg3NEExODNDNDIzNUJFQjRBQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGEFHCXyqcyYsLCc5vQethnujj ymWOzjxj5K0YBhgzoIDb2VXlFB7G288rfLnA9ySx598svAnoRfcpukZfYCsxz6xK mz3eHMOpiIMhhwJiWEQBRAc2pKIK3qnBRhRtxx+CAqqisDZiueVfBeIIo3tpTwSf JHJJZ/Z/sxXd1k0V747rt1uQktGSPF8y06CFtdKavkNAHGGKvz+VzNJcvbOzyrdD u3ixh2DghD0Nd0q+3RZSKRS9Pf6c8tORTFfRer4kxVm81H8sr3cpAAnT00m6K8Rn V05lMf1iWFWdeYUE0WbHl3GJ7SNiLtEYWuSpqXa9hKeZq5oBJrVyMIEYO7JnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjUwU4IMFpBshQ7h0oYPEI1vrSrwwHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMxMzAzMzJlMzEzODJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnEhwwDQYJKoZIhvcN AQELBQADggEBAER/zYq2ngAZN/gO7yvg6tH/zF/Kpfvq0T6n0EdWzz93I5sFdXG8 mOnehvEYm3JIDi62nwdmFgxUKGbe1b/StxgQX+P4VyA26o4N0R4QqWt4C0NK7sxV wUO4gDvMmzXxCnB7Nyj63WBqN/aRE7cU2j6KMz4PffWBwsG3gBR8xljIupnVRMPh iJKNhNkWDiuZkHUQHDLmy8NUy5jKA1EqcHE/OgTR+jHve3CKPEjXMDRY7qxWudnZ If6DheJpWrKFmOBd2e5ysLYszhm8sIiCLV4cCFlSo/tGuG6KXi3qGkFOs10gDaWg Q14Mnz5WSk22jbQJM8IwRo9VC7wog3Sc0z8= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org