$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json) Hash identifier: /A9HXd13I0+DkmsbISwlDHjrM6YvxlLYkQQcEaMVLGM= Subject key identifier: 72:6E:76:07:0D:3C:D7:2D:E0:79:77:E7:85:68:AC:8F:11:03:4F:67 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 52D49F73E88519B6CDD667608C162B2D13445461 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa Signing time: Thu 03 Oct 2024 04:01:07 +0000 ROA not before: Thu 03 Oct 2024 03:56:07 +0000 ROA not after: Thu 02 Oct 2025 04:01:07 +0000 asID: 151556 IP address blocks: 103.250.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d4:9f:73:e8:85:19:b6:cd:d6:67:60:8c:16:2b:2d:13:44:54:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Oct 3 03:56:07 2024 GMT Not After : Oct 2 04:01:07 2025 GMT Subject: CN=726E76070D3CD72DE07977E78568AC8F11034F67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2b:d9:89:54:a4:cb:50:05:69:6f:e4:01:64: 4a:96:52:aa:ad:f1:0c:55:29:ca:a3:ac:04:ee:af: 51:ed:30:7b:66:46:5f:34:5c:e0:d7:a6:b9:80:2a: 79:91:d4:f5:9a:ff:94:9f:ca:01:76:33:9b:52:e8: 16:00:0b:95:e6:bd:63:47:96:5c:97:3f:c2:a1:31: 26:8f:82:44:20:32:fa:b8:58:6d:47:5d:04:47:60: 30:9d:8f:58:c3:d4:62:d0:7a:91:d0:03:5e:99:0f: 12:12:a7:6b:2a:72:b3:ff:6b:21:a0:92:98:a2:41: 00:37:d3:8a:1a:d7:a9:5e:b7:c1:ad:2a:8e:10:03: f0:fc:98:13:82:3d:38:a6:b8:89:9e:bf:eb:f5:81: 56:c5:2e:3c:7a:1b:11:a2:1d:e0:98:fc:2f:4c:e2: 61:61:84:f5:76:e4:7f:6d:74:01:07:16:79:80:d5: 7c:2c:3a:14:6a:88:99:75:c0:6f:87:a1:4d:d5:bb: aa:a6:c9:0c:a5:2b:e3:aa:12:d7:10:e3:27:87:fe: a6:59:de:c8:0c:fd:df:54:e4:64:0e:48:86:ff:cb: c0:f5:82:cb:5f:fc:9c:10:d8:1e:62:d9:b4:65:cc: 43:19:7c:92:50:98:a3:0a:c2:6e:75:96:88:32:30: e6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6E:76:07:0D:3C:D7:2D:E0:79:77:E7:85:68:AC:8F:11:03:4F:67 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 44:fc:59:73:2e:53:ab:5c:63:38:94:0a:1e:69:0d:11:9b:72: cf:f5:c6:aa:b0:d8:ae:fb:68:89:01:22:c4:47:6d:6a:0c:03: 97:86:a8:5b:cd:5b:8b:68:54:ea:8e:8b:65:8c:4d:cc:d8:d9: 5b:66:60:d9:cd:d0:30:44:3f:57:77:86:a6:68:74:66:4c:34: 5b:bb:36:11:ab:df:d3:9f:09:65:e8:5f:6c:4c:11:77:7d:b9: 8d:97:54:30:7a:20:5a:e1:06:2f:98:4f:87:24:09:2b:32:9f: 59:00:ec:bf:14:c2:7e:db:d9:e7:37:f4:4c:fc:d1:4f:f7:49: 9c:40:bc:f5:a5:1c:2b:30:20:5b:e5:b5:eb:ab:84:e9:3a:e6: e3:a8:a4:ba:e0:87:a9:f8:63:9f:99:f1:33:7b:53:79:0a:d7: 49:ad:c4:fb:fc:be:c0:b5:e1:df:bb:37:ae:3b:19:e5:8c:6b: 3a:17:c0:ea:23:f8:70:51:5c:5e:2d:8d:9c:bd:ed:8b:e2:ad: d9:0d:10:75:aa:93:ae:23:45:62:cc:8e:e5:30:b0:c6:88:0b: 6a:a6:4d:33:b8:22:4e:d4:76:da:86:e2:16:a0:45:0d:4d:a0: 2f:9a:0e:68:02:04:18:36:aa:c9:d6:57:bd:b3:a5:ad:fb:ce: 0d:fb:e9:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUtSfc+iFGbbN1mdgjBYrLRNEVGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNDEwMDMwMzU2MDdaFw0yNTEwMDIwNDAxMDdaMDMxMTAvBgNV BAMTKDcyNkU3NjA3MEQzQ0Q3MkRFMDc5NzdFNzg1NjhBQzhGMTEwMzRGNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwK9mJVKTLUAVpb+QBZEqWUqqt 8QxVKcqjrATur1HtMHtmRl80XODXprmAKnmR1PWa/5SfygF2M5tS6BYAC5XmvWNH llyXP8KhMSaPgkQgMvq4WG1HXQRHYDCdj1jD1GLQepHQA16ZDxISp2sqcrP/ayGg kpiiQQA304oa16let8GtKo4QA/D8mBOCPTimuImev+v1gVbFLjx6GxGiHeCY/C9M 4mFhhPV25H9tdAEHFnmA1XwsOhRqiJl1wG+HoU3Vu6qmyQylK+OqEtcQ4yeH/qZZ 3sgM/d9U5GQOSIb/y8D1gstf/JwQ2B5i2bRlzEMZfJJQmKMKwm51logyMOa1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcm52Bw081y3geXfnhWisjxEDT2cwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMWQ5YWJjLTQ5ODctNGRiYy05 NzZkLTNmMzJiMjkxNzE1ZC8wLzMxMzAzMzJlMzIzNTMwMmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+oEwDQYJ KoZIhvcNAQELBQADggEBAET8WXMuU6tcYziUCh5pDRGbcs/1xqqw2K77aIkBIsRH bWoMA5eGqFvNW4toVOqOi2WMTczY2VtmYNnN0DBEP1d3hqZodGZMNFu7NhGr39Of CWXoX2xMEXd9uY2XVDB6IFrhBi+YT4ckCSsyn1kA7L8Uwn7b2ec39Ez80U/3SZxA vPWlHCswIFvlteurhOk65uOopLrgh6n4Y5+Z8TN7U3kK10mtxPv8vsC14d+7N647 GeWMazoXwOoj+HBRXF4tjZy97YvirdkNEHWqk64jRWLMjuUwsMaIC2qmTTO4Ik7U dtqG4hagRQ1NoC+aDmgCBBg2qsnWV72zpa37zg376dw= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org