$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa File: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: A6MeiC5iYEUgfCxOlrP4tgy4Dgl5PsOFZcNkusDqHVo= Subject key identifier: D5:BC:41:7B:D1:BA:E3:06:68:F1:D1:C5:9B:E4:C0:14:A9:2E:82:7B Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 5E40463BFF36203A9E0317CC29ACACE8EEDD13EE Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa Signing time: Mon 01 Jul 2024 01:05:45 +0000 ROA not before: Mon 01 Jul 2024 01:00:45 +0000 ROA not after: Mon 30 Jun 2025 01:05:45 +0000 asID: 24532 IP address blocks: 103.245.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:40:46:3b:ff:36:20:3a:9e:03:17:cc:29:ac:ac:e8:ee:dd:13:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 1 01:00:45 2024 GMT Not After : Jun 30 01:05:45 2025 GMT Subject: CN=D5BC417BD1BAE30668F1D1C59BE4C014A92E827B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:51:73:ab:91:04:b8:e5:75:e5:52:df:81: 6b:fc:21:03:00:0a:5d:30:e6:d9:b9:17:f0:ae:b3: 6c:2e:5c:72:51:fa:04:47:9c:e0:4f:78:77:3e:04: be:4d:41:7c:0e:fd:75:24:4e:81:82:ea:0f:76:9c: 69:16:f8:ee:11:42:88:03:44:26:02:8a:62:b6:73: 27:5c:72:d4:82:0a:62:5d:d7:fc:15:61:92:68:95: d1:a6:76:d1:c1:11:59:7d:8c:3c:cd:3a:a3:3b:53: 12:08:7a:ba:5b:fa:65:35:f2:b9:ca:92:9f:3e:ba: e7:43:86:f2:da:d1:3f:90:b3:85:5f:2f:70:b9:4f: 71:5e:1b:18:44:e6:c2:3b:75:b4:3a:82:a7:9f:85: ab:7c:62:1d:0f:29:38:ce:ae:62:47:14:e3:fc:27: ed:5f:79:b4:b2:a4:fe:ec:62:2e:1f:45:70:f8:03: 39:ce:26:f5:b2:e5:fb:bc:8d:fc:42:cf:67:23:b1: d1:75:4d:8a:97:78:ab:e2:42:47:fc:65:7c:8d:6d: f5:ed:98:b6:0b:5a:bc:1b:a8:17:09:0c:18:17:a6: c5:7b:b6:bc:36:72:9e:dd:b3:d6:2c:6d:f2:e0:15: c6:b6:b9:51:84:85:02:f2:1e:e7:96:33:d6:18:31: 53:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BC:41:7B:D1:BA:E3:06:68:F1:D1:C5:9B:E4:C0:14:A9:2E:82:7B X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.180.0/22 Signature Algorithm: sha256WithRSAEncryption ca:6a:57:64:a7:ac:03:05:a2:44:b1:ba:af:da:85:6c:42:59: b5:95:ca:16:d8:bd:53:92:dc:71:0b:e7:5f:bd:00:8f:f8:30: 9d:99:5d:00:56:bc:2e:f7:9c:1b:bb:1e:8f:a6:23:81:02:6e: 80:de:91:bb:7e:cb:a8:34:64:20:d0:87:ac:81:a7:fe:bf:35: 1e:06:8b:bc:ca:a0:cf:5f:25:cb:73:bb:8f:c0:ca:08:01:26: 0e:b6:90:0a:c4:90:4e:3c:79:7a:08:85:4c:c1:80:ed:75:46: c0:9d:de:6f:13:34:7e:17:7f:41:c1:26:3e:e2:2d:65:19:3b: ab:6b:94:51:33:f4:5f:a7:3e:77:7d:00:98:c1:93:8e:ba:0a: c3:e1:bd:fa:24:43:dc:88:c8:9b:58:4f:af:73:85:c8:2e:33: 47:59:77:02:e5:1e:8b:51:e3:37:c2:ca:2c:44:d4:92:8e:46: 46:1f:92:45:d9:8b:92:50:60:1b:ce:1a:8d:f5:11:8d:55:21: 4a:97:c8:1d:ea:38:ab:2a:81:83:7d:a3:41:ce:aa:cc:8f:e8: 04:b0:b7:fe:2f:ee:47:a5:a2:55:b5:b6:11:57:a4:a9:e6:71: d5:90:31:2d:bf:ca:92:c2:8d:3c:e0:c1:d4:81:f0:09:ca:75: a9:11:90:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXkBGO/82IDqeAxfMKays6O7dE+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDA3MDEwMTAwNDVaFw0yNTA2MzAwMTA1NDVaMDMxMTAvBgNV BAMTKEQ1QkM0MTdCRDFCQUUzMDY2OEYxRDFDNTlCRTRDMDE0QTkyRTgyN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28VFzq5EEuOV15VLfgWv8IQMA Cl0w5tm5F/Cus2wuXHJR+gRHnOBPeHc+BL5NQXwO/XUkToGC6g92nGkW+O4RQogD RCYCimK2cydcctSCCmJd1/wVYZJoldGmdtHBEVl9jDzNOqM7UxIIerpb+mU18rnK kp8+uudDhvLa0T+Qs4VfL3C5T3FeGxhE5sI7dbQ6gqefhat8Yh0PKTjOrmJHFOP8 J+1febSypP7sYi4fRXD4AznOJvWy5fu8jfxCz2cjsdF1TYqXeKviQkf8ZXyNbfXt mLYLWrwbqBcJDBgXpsV7trw2cp7ds9YsbfLgFca2uVGEhQLyHueWM9YYMVNxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1bxBe9G64wZo8dHFm+TAFKkugnswHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM4MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzUzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/W0MA0GCSqG SIb3DQEBCwUAA4IBAQDKaldkp6wDBaJEsbqv2oVsQlm1lcoW2L1TktxxC+dfvQCP +DCdmV0AVrwu95wbux6PpiOBAm6A3pG7fsuoNGQg0Iesgaf+vzUeBou8yqDPXyXL c7uPwMoIASYOtpAKxJBOPHl6CIVMwYDtdUbAnd5vEzR+F39BwSY+4i1lGTura5RR M/Rfpz53fQCYwZOOugrD4b36JEPciMibWE+vc4XILjNHWXcC5R6LUeM3wsosRNSS jkZGH5JF2YuSUGAbzhqN9RGNVSFKl8gd6jirKoGDfaNBzqrMj+gEsLf+L+5HpaJV tbYRV6Sp5nHVkDEtv8qSwo084MHUgfAJynWpEZDk -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org