$ rpki-client -vvf repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa File: 3130332e38382e39302e302f32332d3234203d3e20313530323232.roa (raw, json) Hash identifier: mgCVjomXQMnFAcUzEYIqhnBEpG3Ap0N94FFecN/bKB0= Subject key identifier: C2:1D:10:4E:DE:55:A9:CC:F0:A2:54:3E:D6:64:56:E4:46:0E:A7:57 Certificate issuer: /CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Certificate serial: 351599E7EB12D7565881FEC3CD7629B6F247CA41 Authority key identifier: 04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa Signing time: Mon 12 Aug 2024 15:00:01 +0000 ROA not before: Mon 12 Aug 2024 14:55:01 +0000 ROA not after: Mon 11 Aug 2025 15:00:01 +0000 asID: 150222 IP address blocks: 103.88.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:15:99:e7:eb:12:d7:56:58:81:fe:c3:cd:76:29:b6:f2:47:ca:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Validity Not Before: Aug 12 14:55:01 2024 GMT Not After : Aug 11 15:00:01 2025 GMT Subject: CN=C21D104EDE55A9CCF0A2543ED66456E4460EA757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:97:5e:90:54:65:3a:60:87:ba:96:10:07:5e: 24:9c:55:a0:13:6b:cc:7e:9d:d8:8d:9e:ac:dd:27: 91:b6:a5:17:cc:a5:7a:5a:7a:7e:92:6a:54:c7:63: c2:c0:61:10:96:99:a5:23:fc:bc:3d:ce:92:0c:fc: 8f:66:0c:80:6f:87:de:3f:07:45:39:dc:d2:dd:c9: e1:98:71:f7:53:66:80:c7:09:2c:46:d5:bd:22:ce: 9d:80:c1:84:89:c4:8d:7c:dd:67:52:74:d5:d5:dd: cd:c7:a9:2c:36:09:b2:6b:b6:29:65:c0:38:fd:20: 8c:68:a7:57:fb:13:0e:a1:15:9b:fb:c4:08:12:15: 04:7a:ee:ee:ce:a0:e0:ac:8f:1c:f4:d8:3b:a6:19: d5:55:57:76:34:ac:39:e0:3a:93:09:fb:23:e8:a7: d3:72:06:34:7f:ee:1e:13:ef:bb:4c:a9:76:40:09: 8c:41:67:32:91:c5:69:73:db:34:bb:5d:70:5b:82: 75:0d:e1:07:9f:bc:9e:8f:8e:4e:fc:ba:53:b0:de: 45:b5:2b:f0:23:89:cd:e7:21:77:63:c5:e2:f6:0b: 43:3d:d2:e1:92:df:e8:1a:85:2d:a6:56:5f:9c:9e: 74:3b:de:81:e6:16:09:7f:25:04:d2:6d:25:59:7e: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1D:10:4E:DE:55:A9:CC:F0:A2:54:3E:D6:64:56:E4:46:0E:A7:57 X509v3 Authority Key Identifier: keyid:04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32332d3234203d3e20313530323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.90.0/23 Signature Algorithm: sha256WithRSAEncryption 98:4f:7f:92:eb:eb:1e:0f:b4:f5:b4:a0:b9:8a:fb:69:c9:79: 18:11:c3:27:b9:97:d0:ec:31:fc:74:fc:69:50:75:7d:11:88: ef:e5:87:95:a9:c5:7b:ea:e1:ac:c5:06:94:b1:d1:fb:41:b6: 7a:68:c1:ba:5c:cb:ca:38:1e:cd:c4:1f:f0:ad:1a:31:79:92: e1:33:55:84:51:68:d1:ed:9e:9c:48:e0:c3:c7:1d:19:7b:e3: 31:de:e8:db:a4:b6:64:ad:06:0f:4d:0a:00:21:17:1b:38:73: d8:30:1e:4d:a7:3a:81:86:ff:d2:ef:b0:a8:9f:2c:9b:c8:d7: ae:61:5d:6f:5f:47:33:af:74:8a:0d:1f:a7:3f:35:98:d9:d5: 61:51:aa:13:24:d7:5f:af:27:cf:26:be:1d:da:12:9e:7f:be: e7:61:de:1d:86:2a:f7:18:f5:e5:a5:f0:44:73:4f:b5:52:61: b7:09:e1:0a:4d:be:74:8c:90:e5:fb:9c:2f:66:9c:54:b3:fa: 98:82:a9:7d:92:03:06:1e:77:94:29:82:b6:c7:8b:20:1f:0c: 92:a4:2c:ef:e1:35:86:2d:51:6c:66:4f:c8:15:d4:fc:ca:3a: c5:b5:35:0b:ac:b5:93:49:3c:31:59:e3:9a:2e:d6:62:bc:c9: 18:25:63:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNRWZ5+sS11ZYgf7DzXYptvJHykEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYx MUNDRjBEQjAeFw0yNDA4MTIxNDU1MDFaFw0yNTA4MTExNTAwMDFaMDMxMTAvBgNV BAMTKEMyMUQxMDRFREU1NUE5Q0NGMEEyNTQzRUQ2NjQ1NkU0NDYwRUE3NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCml16QVGU6YIe6lhAHXiScVaAT a8x+ndiNnqzdJ5G2pRfMpXpaen6SalTHY8LAYRCWmaUj/Lw9zpIM/I9mDIBvh94/ B0U53NLdyeGYcfdTZoDHCSxG1b0izp2AwYSJxI183WdSdNXV3c3HqSw2CbJrtill wDj9IIxop1f7Ew6hFZv7xAgSFQR67u7OoOCsjxz02DumGdVVV3Y0rDngOpMJ+yPo p9NyBjR/7h4T77tMqXZACYxBZzKRxWlz2zS7XXBbgnUN4QefvJ6Pjk78ulOw3kW1 K/Ajic3nIXdjxeL2C0M90uGS3+gahS2mVl+cnnQ73oHmFgl/JQTSbSVZfn97AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwh0QTt5VqczwolQ+1mRW5EYOp1cwHwYDVR0j BBgwFoAUBO47w2kXMuBp3w2dKd42BhHM8NswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTkxODA5ZS1kZDQ5LTRjNTItYjExZi0yYTUxOGMzYWE4NTYvMC8wNEVFM0JDMzY5 MTczMkUwNjlERjBEOUQyOURFMzYwNjExQ0NGMERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYxMUND RjBEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOTE4MDllLWRkNDktNGM1Mi1i MTFmLTJhNTE4YzNhYTg1Ni8wLzMxMzAzMzJlMzgzODJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdYWjANBgkqhkiG 9w0BAQsFAAOCAQEAmE9/kuvrHg+09bSguYr7acl5GBHDJ7mX0Owx/HT8aVB1fRGI 7+WHlanFe+rhrMUGlLHR+0G2emjBulzLyjgezcQf8K0aMXmS4TNVhFFo0e2enEjg w8cdGXvjMd7o26S2ZK0GD00KACEXGzhz2DAeTac6gYb/0u+wqJ8sm8jXrmFdb19H M690ig0fpz81mNnVYVGqEyTXX68nzya+HdoSnn++52HeHYYq9xj15aXwRHNPtVJh twnhCk2+dIyQ5fucL2acVLP6mIKpfZIDBh53lCmCtseLIB8MkqQs7+E1hi1RbGZP yBXU/Mo6xbU1C6y1k0k8MVnjmi7WYrzJGCVjew== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org