$ rpki-client -vvf repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa File: 3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: Cdoe848p1j178Aczw83QbCaqqIPRsWPcAoPKSfZRqMg= Subject key identifier: 7A:42:0B:A0:6A:AA:4D:4B:76:36:FB:4C:68:66:A0:E9:4C:A9:AC:15 Certificate issuer: /CN=ED47540CA812870D4CDBD150F71BACF636BC000E Certificate serial: 572DA2BF534AB90E829E04FCED82AB52A21EE593 Authority key identifier: ED:47:54:0C:A8:12:87:0D:4C:DB:D1:50:F7:1B:AC:F6:36:BC:00:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa Signing time: Thu 16 May 2024 04:00:00 +0000 ROA not before: Thu 16 May 2024 03:55:00 +0000 ROA not after: Thu 15 May 2025 04:00:00 +0000 asID: 38320 IP address blocks: 103.159.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.crl rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:2d:a2:bf:53:4a:b9:0e:82:9e:04:fc:ed:82:ab:52:a2:1e:e5:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED47540CA812870D4CDBD150F71BACF636BC000E Validity Not Before: May 16 03:55:00 2024 GMT Not After : May 15 04:00:00 2025 GMT Subject: CN=7A420BA06AAA4D4B7636FB4C6866A0E94CA9AC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:29:45:34:89:86:b6:93:7f:ad:fa:14:48:f5: 6e:ca:7f:79:0a:e1:78:14:75:15:f8:bf:a5:56:7f: 4c:28:90:89:ae:1a:99:17:b0:dc:05:78:2a:89:6d: 2c:be:2a:29:62:39:96:23:ee:13:ad:b8:ba:c2:f3: eb:30:4b:ba:c6:a2:53:e2:c6:fd:8f:89:e9:77:be: bc:ee:f2:c8:8d:1d:46:4d:f2:2f:a1:1c:3b:c4:fa: 2b:3a:0b:97:12:dd:54:0c:7a:1d:3f:6c:c4:cf:4f: 19:bf:67:91:10:ab:f3:c4:02:5c:6b:00:df:b8:c5: 59:64:a0:5c:5a:dc:bd:ca:8d:bf:ce:5e:6a:f1:0e: c7:3b:48:b4:87:44:6e:f1:76:f3:32:2a:12:25:b8: b1:68:e8:fe:6c:51:fe:48:53:b4:34:fb:bc:e2:2f: 4e:c9:66:6a:75:97:64:8c:50:c8:a3:61:77:78:e5: b6:29:2f:51:22:a6:b4:43:8c:53:00:dc:88:69:33: c1:90:11:71:39:c9:94:72:47:81:a4:61:34:cd:48: 0d:56:fa:ee:86:70:53:92:82:8a:e8:13:7f:76:07: 05:f8:c5:92:32:94:df:2f:43:f4:35:6e:74:57:b4: e4:3d:e5:96:1f:4e:a0:c5:ac:a4:02:f8:87:db:12: bc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:42:0B:A0:6A:AA:4D:4B:76:36:FB:4C:68:66:A0:E9:4C:A9:AC:15 X509v3 Authority Key Identifier: keyid:ED:47:54:0C:A8:12:87:0D:4C:DB:D1:50:F7:1B:AC:F6:36:BC:00:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.116.0/23 Signature Algorithm: sha256WithRSAEncryption 10:7f:ea:7a:b0:6f:48:74:b1:03:99:4f:27:2c:4a:37:8d:d7: e8:56:29:bc:1e:e5:f8:fe:ae:75:5f:43:5a:bb:91:e6:7f:09: 19:cb:db:ec:01:b5:3d:71:f9:50:2b:a4:33:90:84:65:f9:5e: 66:da:a8:bc:d0:a2:09:4e:f6:a9:0a:9d:ea:66:4b:c8:4a:d4: 7a:b4:7a:e8:16:73:d6:a3:8a:fa:c9:3d:22:7e:b2:1d:6d:13: 83:a3:4b:a3:5c:28:6b:65:5b:9a:9c:18:21:0a:32:07:fd:29: 89:c3:a4:6e:e6:f3:ae:46:bf:0c:3e:57:88:23:b0:f0:b8:58: 18:be:91:e8:17:59:51:ba:32:ae:4c:a4:84:f9:c4:43:e0:7d: 29:c6:d1:3d:34:d7:ce:c4:33:6d:4e:9d:73:31:44:f8:a4:55: a1:01:dc:75:f2:fb:aa:af:72:56:be:2e:1c:1b:52:2e:19:17: 51:65:e3:7f:19:ca:83:93:45:09:2f:be:29:da:cc:2c:89:40: 9f:b2:4f:d4:3e:81:a4:60:43:50:38:da:89:d9:28:60:01:9c: a5:ae:1d:1e:ab:0c:43:2c:4b:66:4e:41:54:06:1a:e5:9b:de: 7c:38:90:24:b2:99:1f:29:65:ff:30:63:ad:ad:8b:6a:f0:9c: c6:d3:fa:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVy2iv1NKuQ6CngT87YKrUqIe5ZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0NzU0MENBODEyODcwRDRDREJEMTUwRjcxQkFDRjYz NkJDMDAwRTAeFw0yNDA1MTYwMzU1MDBaFw0yNTA1MTUwNDAwMDBaMDMxMTAvBgNV BAMTKDdBNDIwQkEwNkFBQTRENEI3NjM2RkI0QzY4NjZBMEU5NENBOUFDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyKUU0iYa2k3+t+hRI9W7Kf3kK 4XgUdRX4v6VWf0wokImuGpkXsNwFeCqJbSy+KiliOZYj7hOtuLrC8+swS7rGolPi xv2Piel3vrzu8siNHUZN8i+hHDvE+is6C5cS3VQMeh0/bMTPTxm/Z5EQq/PEAlxr AN+4xVlkoFxa3L3Kjb/OXmrxDsc7SLSHRG7xdvMyKhIluLFo6P5sUf5IU7Q0+7zi L07JZmp1l2SMUMijYXd45bYpL1EiprRDjFMA3IhpM8GQEXE5yZRyR4GkYTTNSA1W +u6GcFOSgoroE392BwX4xZIylN8vQ/Q1bnRXtOQ95ZYfTqDFrKQC+IfbErz5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUekILoGqqTUt2NvtMaGag6UyprBUwHwYDVR0j BBgwFoAU7UdUDKgShw1M29FQ9xus9ja8AA4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzVmMTVjOS01ODQzLTQ3MDUtYjY5NC1mZTVlN2NlMTk4MDgvMC9FRDQ3NTQwQ0E4 MTI4NzBENENEQkQxNTBGNzFCQUNGNjM2QkMwMDBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQ0NzU0MENBODEyODcwRDRDREJEMTUwRjcxQkFDRjYzNkJD MDAwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWYxNWM5LTU4NDMtNDcwNS1i Njk0LWZlNWU3Y2UxOTgwOC8wLzMxMzAzMzJlMzEzNTM5MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ590MA0GCSqG SIb3DQEBCwUAA4IBAQAQf+p6sG9IdLEDmU8nLEo3jdfoVim8HuX4/q51X0Nau5Hm fwkZy9vsAbU9cflQK6QzkIRl+V5m2qi80KIJTvapCp3qZkvIStR6tHroFnPWo4r6 yT0ifrIdbRODo0ujXChrZVuanBghCjIH/SmJw6Ru5vOuRr8MPleII7DwuFgYvpHo F1lRujKuTKSE+cRD4H0pxtE9NNfOxDNtTp1zMUT4pFWhAdx18vuqr3JWvi4cG1Iu GRdRZeN/GcqDk0UJL74p2swsiUCfsk/UPoGkYENQONqJ2ShgAZylrh0eqwxDLEtm TkFUBhrlm958OJAkspkfKWX/MGOtrYtq8JzG0/qN -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org