$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/3130332e32392e3134382e302f32322d3234203d3e203538333736.roa File: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (raw, json) Hash identifier: BdJaFao8B+TjAWAlyv2cIwAqEFZulu5t7ZhP4Qtv2fY= Subject key identifier: F1:5B:0C:1C:14:CD:40:D6:0A:AF:47:4D:BD:41:F9:47:77:C0:00:9C Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 5EDDAC5913E4FDA72CDE9B0D6D4FD361DAB76E51 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/3130332e32392e3134382e302f32322d3234203d3e203538333736.roa Signing time: Mon 01 Jul 2024 01:04:29 +0000 ROA not before: Mon 01 Jul 2024 00:59:29 +0000 ROA not after: Mon 30 Jun 2025 01:04:29 +0000 asID: 58376 IP address blocks: 103.29.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:dd:ac:59:13:e4:fd:a7:2c:de:9b:0d:6d:4f:d3:61:da:b7:6e:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jul 1 00:59:29 2024 GMT Not After : Jun 30 01:04:29 2025 GMT Subject: CN=F15B0C1C14CD40D60AAF474DBD41F94777C0009C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:c2:39:22:23:d6:69:58:b2:99:15:ba:76: dd:e5:c8:40:eb:1c:e2:a3:03:b2:60:5a:8e:a2:0a: 9f:4a:84:35:11:2d:39:26:7e:3b:3c:41:4d:04:2d: 16:82:ac:ec:ea:41:52:c3:a1:6b:a4:45:46:84:f0: 81:a5:d7:31:b5:b2:6d:39:1c:49:c3:dd:0e:b7:a7: 7b:ec:b4:60:49:ad:a5:ca:86:74:b6:a5:d6:d3:b3: b2:fd:40:5e:26:93:54:13:1c:88:8c:64:2b:fe:78: 90:4b:7a:80:2f:71:c4:77:b0:5b:5e:4b:7e:dc:08: c2:39:66:f7:71:5d:02:3b:69:84:67:5e:ec:42:b5: 45:e0:41:af:d4:1c:c1:91:0e:df:40:42:12:d6:22: 60:6e:a8:f9:1e:89:e9:ac:14:8f:f2:a0:ae:94:c4: c3:99:38:a6:56:d1:d6:5c:86:a1:c4:9d:30:8b:f4: 2a:f8:5d:76:97:86:0f:07:86:66:5d:97:f4:c7:b4: 1a:de:fa:05:f3:25:83:5a:0e:0d:51:e9:38:a0:6f: 1e:5f:5a:12:71:8d:80:a3:cc:53:02:f1:e2:76:a8: 93:5a:a1:66:42:27:7c:77:00:0d:2a:d9:ef:72:ac: 51:63:fa:92:eb:08:21:0e:f2:21:07:bd:63:16:f2: 41:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5B:0C:1C:14:CD:40:D6:0A:AF:47:4D:BD:41:F9:47:77:C0:00:9C X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/3130332e32392e3134382e302f32322d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.148.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:77:28:fb:36:9c:ae:9f:3c:64:38:64:bd:90:40:8e:f5:cc: 3e:19:0e:79:6a:6c:05:68:a0:6c:43:98:d7:af:e4:8e:87:1e: cd:cb:d1:8b:6f:3c:46:da:db:d8:7f:e2:c9:45:88:00:15:45: 6b:bb:cf:ba:50:28:5e:32:fb:3c:de:42:72:56:c2:51:02:87: 26:55:11:e3:f0:55:c3:2b:f5:06:62:ce:03:5e:ed:e6:94:e5: 16:f9:29:46:2e:fe:5d:44:1f:fd:0a:ca:0a:e0:2e:bb:47:5e: 61:73:00:5c:42:49:29:ad:da:f3:f0:8d:04:d2:15:56:94:48: 91:c1:b1:24:b1:4b:97:e6:74:9c:12:b3:36:6d:5b:e5:40:43: b3:df:04:3c:20:1b:db:6f:d7:75:5f:d1:9c:2e:38:f8:d6:5f: 1b:10:91:fb:46:70:cf:fd:27:24:76:6c:b6:37:7c:0e:aa:f5: a5:85:d4:fa:e1:c2:90:8a:65:f9:1c:24:6f:f2:7c:85:79:48: b0:c9:04:be:db:ca:8c:51:fb:fc:81:d4:9c:a9:25:21:3f:52: 4b:1e:8a:31:d1:0d:99:2c:58:4c:47:8f:d8:98:6e:76:0a:be: 65:f6:96:4b:5a:de:56:85:60:c4:0e:82:e9:81:ad:3c:34:2b: 67:20:bf:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXt2sWRPk/acs3psNbU/TYdq3blEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNDA3MDEwMDU5MjlaFw0yNTA2MzAwMTA0MjlaMDMxMTAvBgNV BAMTKEYxNUIwQzFDMTRDRDQwRDYwQUFGNDc0REJENDFGOTQ3NzdDMDAwOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtfsI5IiPWaViymRW6dt3lyEDr HOKjA7JgWo6iCp9KhDURLTkmfjs8QU0ELRaCrOzqQVLDoWukRUaE8IGl1zG1sm05 HEnD3Q63p3vstGBJraXKhnS2pdbTs7L9QF4mk1QTHIiMZCv+eJBLeoAvccR3sFte S37cCMI5ZvdxXQI7aYRnXuxCtUXgQa/UHMGRDt9AQhLWImBuqPkeiemsFI/yoK6U xMOZOKZW0dZchqHEnTCL9Cr4XXaXhg8HhmZdl/THtBre+gXzJYNaDg1R6Tigbx5f WhJxjYCjzFMC8eJ2qJNaoWZCJ3x3AA0q2e9yrFFj+pLrCCEO8iEHvWMW8kGXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8VsMHBTNQNYKr0dNvUH5R3fAAJwwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzMxMzAzMzJlMzIzOTJlMzEzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcdlDANBgkqhkiG 9w0BAQsFAAOCAQEAXHco+zacrp88ZDhkvZBAjvXMPhkOeWpsBWigbEOY16/kjoce zcvRi288Rtrb2H/iyUWIABVFa7vPulAoXjL7PN5CclbCUQKHJlUR4/BVwyv1BmLO A17t5pTlFvkpRi7+XUQf/QrKCuAuu0deYXMAXEJJKa3a8/CNBNIVVpRIkcGxJLFL l+Z0nBKzNm1b5UBDs98EPCAb22/XdV/RnC44+NZfGxCR+0Zwz/0nJHZstjd8Dqr1 pYXU+uHCkIpl+Rwkb/J8hXlIsMkEvtvKjFH7/IHUnKklIT9SSx6KMdENmSxYTEeP 2Jhudgq+ZfaWS1reVoVgxA6C6YGtPDQrZyC/xQ== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org