$ rpki-client -vvf repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38322e302f32342d3234203d3e20313430343539.roa File: 3130332e3135332e38322e302f32342d3234203d3e20313430343539.roa (raw, json) Hash identifier: wqjblhIuvAMPwPaIwFtObEssF7KIl5fdywAhszOgrIw= Subject key identifier: 7B:63:EC:E3:F6:5F:45:4C:F8:78:C0:88:39:FF:80:DE:A5:2C:5F:2C Certificate issuer: /CN=AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2 Certificate serial: 5C5896FDF9CBDF6DF58A0B131C673045E2A4081B Authority key identifier: AD:9B:CA:DB:23:5B:6D:EE:6C:AD:4E:B4:C5:3A:A8:B3:BA:73:FE:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38322e302f32342d3234203d3e20313430343539.roa Signing time: Sun 11 Feb 2024 04:00:00 +0000 ROA not before: Sun 11 Feb 2024 03:55:00 +0000 ROA not after: Sun 09 Feb 2025 04:00:00 +0000 asID: 140459 IP address blocks: 103.153.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.crl rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:58:96:fd:f9:cb:df:6d:f5:8a:0b:13:1c:67:30:45:e2:a4:08:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2 Validity Not Before: Feb 11 03:55:00 2024 GMT Not After : Feb 9 04:00:00 2025 GMT Subject: CN=7B63ECE3F65F454CF878C08839FF80DEA52C5F2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a1:41:1c:d2:ca:aa:2a:d6:56:87:6b:ca:3f: 59:d7:bf:13:53:ef:bf:f5:f9:01:fb:d4:6b:fc:17: 5b:99:5c:38:c5:44:01:90:24:d1:12:c8:ff:2c:1d: 2d:b4:d5:6e:7a:70:79:58:c0:99:00:4c:47:db:42: 4c:70:b8:ab:d9:a9:54:fa:65:b5:fa:96:fa:b8:c2: 18:38:8d:91:c8:3c:53:1d:cc:01:e6:c0:09:91:e0: 6d:59:86:48:1b:ef:c1:4a:79:f7:76:fc:9f:01:1d: 81:11:2e:95:1d:76:c9:6a:ba:c8:21:5b:ff:e1:2a: 1b:21:f4:a3:06:d1:09:eb:bf:0b:8e:71:71:a4:47: 37:22:a0:71:54:3c:54:2a:69:ee:f8:e9:65:0a:36: 4d:bf:3e:ce:35:0c:17:55:bc:9b:eb:b4:c8:6e:68: e7:7e:7e:91:be:04:bb:b8:f0:05:2c:a1:ad:36:13: e2:39:5c:95:f4:4f:75:e8:02:f4:0a:4a:d1:af:13: 67:fb:0f:b7:88:a4:da:3a:ba:88:e0:b5:7e:01:da: 1d:18:c8:89:d1:dd:1e:64:92:ab:9d:3d:65:cb:91: 1a:7d:78:f1:2f:31:1a:53:ae:40:f1:2b:2b:21:d7: fc:a5:15:7d:38:35:85:22:27:0b:11:17:35:f7:c4: 84:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:63:EC:E3:F6:5F:45:4C:F8:78:C0:88:39:FF:80:DE:A5:2C:5F:2C X509v3 Authority Key Identifier: keyid:AD:9B:CA:DB:23:5B:6D:EE:6C:AD:4E:B4:C5:3A:A8:B3:BA:73:FE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38322e302f32342d3234203d3e20313430343539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.82.0/24 Signature Algorithm: sha256WithRSAEncryption 48:4c:4f:0b:a2:21:c1:2e:56:54:c4:af:6f:9d:08:48:57:d3: e5:4b:ca:fd:65:9f:a5:e2:da:2f:bd:3b:02:7a:ca:8c:4f:7b: 82:f7:c3:e0:eb:72:a6:5c:fc:fb:a7:8f:f4:3c:27:26:d4:8a: ba:41:9b:79:00:bf:76:55:b7:83:45:1c:c8:0b:24:4f:d8:d7: 44:6f:65:8f:e2:0e:4f:a1:a6:0a:44:5f:bd:ec:bf:3b:50:47: 90:95:77:40:db:ff:21:da:15:45:38:80:23:83:22:1a:ac:7d: 57:ba:0b:c9:dc:76:f5:4c:89:8c:1c:57:1e:67:3e:a5:52:60: 2a:5c:7a:1b:52:03:19:c5:99:44:8c:79:1c:9b:6c:0b:82:e6: 9a:f0:75:bc:cb:37:25:eb:2d:b8:ba:d0:70:d9:51:bb:f0:3a: 0e:a5:5c:4d:57:eb:16:23:7a:4c:90:b4:74:8c:1f:ff:b3:4a: 5c:c5:6c:10:b8:67:cc:44:39:9e:d1:d1:1c:84:f8:06:3b:a1: 69:6f:3c:5a:42:03:d4:39:44:03:1c:36:bf:4d:3b:c2:73:0d: 1b:9c:ed:b2:2f:98:6c:02:45:6b:70:6f:12:7d:8c:a3:93:2e: 11:d4:c0:50:51:21:c7:7a:a1:79:76:ac:79:67:79:3a:3f:26: 76:c6:8e:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXFiW/fnL3231igsTHGcwReKkCBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ5QkNBREIyMzVCNkRFRTZDQUQ0RUI0QzUzQUE4QjNC QTczRkVGMjAeFw0yNDAyMTEwMzU1MDBaFw0yNTAyMDkwNDAwMDBaMDMxMTAvBgNV BAMTKDdCNjNFQ0UzRjY1RjQ1NENGODc4QzA4ODM5RkY4MERFQTUyQzVGMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDToUEc0sqqKtZWh2vKP1nXvxNT 77/1+QH71Gv8F1uZXDjFRAGQJNESyP8sHS201W56cHlYwJkATEfbQkxwuKvZqVT6 ZbX6lvq4whg4jZHIPFMdzAHmwAmR4G1Zhkgb78FKefd2/J8BHYERLpUddslqusgh W//hKhsh9KMG0QnrvwuOcXGkRzcioHFUPFQqae746WUKNk2/Ps41DBdVvJvrtMhu aOd+fpG+BLu48AUsoa02E+I5XJX0T3XoAvQKStGvE2f7D7eIpNo6uojgtX4B2h0Y yInR3R5kkqudPWXLkRp9ePEvMRpTrkDxKysh1/ylFX04NYUiJwsRFzX3xIQVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe2Ps4/ZfRUz4eMCIOf+A3qUsXywwHwYDVR0j BBgwFoAUrZvK2yNbbe5srU60xTqos7pz/vIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTc2ZGIxZS1iZjlhLTQ5YTgtYmY3Ni05ZjMxNGU3ZDFkOGUvMC9BRDlCQ0FEQjIz NUI2REVFNkNBRDRFQjRDNTNBQThCM0JBNzNGRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ5QkNBREIyMzVCNkRFRTZDQUQ0RUI0QzUzQUE4QjNCQTcz RkVGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNzZkYjFlLWJmOWEtNDlhOC1i Zjc2LTlmMzE0ZTdkMWQ4ZS8wLzMxMzAzMzJlMzEzNTMzMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5lSMA0GCSqG SIb3DQEBCwUAA4IBAQBITE8LoiHBLlZUxK9vnQhIV9PlS8r9ZZ+l4tovvTsCesqM T3uC98Pg63KmXPz7p4/0PCcm1Iq6QZt5AL92VbeDRRzICyRP2NdEb2WP4g5PoaYK RF+97L87UEeQlXdA2/8h2hVFOIAjgyIarH1XugvJ3Hb1TImMHFceZz6lUmAqXHob UgMZxZlEjHkcm2wLguaa8HW8yzcl6y24utBw2VG78DoOpVxNV+sWI3pMkLR0jB// s0pcxWwQuGfMRDme0dEchPgGO6FpbzxaQgPUOUQDHDa/TTvCcw0bnO2yL5hsAkVr cG8SfYyjky4R1MBQUSHHeqF5dqx5Z3k6PyZ2xo7e -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org