$ rpki-client -vvf repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa File: 3130332e32332e3233342e302f32342d3234203d3e203536323531.roa (raw, json) Hash identifier: TnvRLVD9S+eH7vJLKdUS4+zjpGKBHvC1c1i8lw5v/WM= Subject key identifier: E1:69:DC:32:99:F4:97:06:70:3A:6F:86:0C:F3:DE:EC:6C:7F:2C:4A Certificate issuer: /CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Certificate serial: 5EA7C03FC4619F9C92A4441B94B3D95DC59E4015 Authority key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa Signing time: Tue 21 May 2024 10:00:00 +0000 ROA not before: Tue 21 May 2024 09:55:00 +0000 ROA not after: Tue 20 May 2025 10:00:00 +0000 asID: 56251 IP address blocks: 103.23.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a7:c0:3f:c4:61:9f:9c:92:a4:44:1b:94:b3:d9:5d:c5:9e:40:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Validity Not Before: May 21 09:55:00 2024 GMT Not After : May 20 10:00:00 2025 GMT Subject: CN=E169DC3299F49706703A6F860CF3DEEC6C7F2C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:dd:f4:83:b4:c7:c0:e1:78:f8:0c:f6:f3: 8f:18:4f:04:af:38:4d:e0:64:dc:a6:5f:bb:7b:81: 79:d9:e8:a0:7f:46:4a:33:41:19:6f:aa:16:a1:7d: f0:a6:d3:fe:b5:22:9b:f0:66:78:5b:37:d0:c7:81: a7:53:c9:55:2c:83:77:47:1c:0f:e7:4c:00:b5:1f: e6:fc:d7:f3:ba:5b:0e:36:95:2a:3a:a6:da:97:5b: d4:49:33:16:63:cb:f6:80:37:64:78:60:23:a8:4e: 3e:01:d4:9d:7a:22:07:77:7b:bb:49:01:29:73:fb: 98:94:a5:c8:8d:7f:e0:b6:c9:ed:84:8b:f6:a7:87: 17:9a:35:26:ca:c5:9e:73:cf:ed:52:df:13:e3:75: c4:e1:04:90:21:80:cb:72:36:73:fb:16:ce:cd:46: ca:41:a4:ae:1c:ec:4b:c9:ea:3f:f0:8e:36:55:b1: 24:96:38:bb:8f:1d:79:20:cf:12:f8:6b:2b:ec:41: 7c:49:b1:c4:d3:fb:08:c7:c1:79:86:d4:35:dd:dc: 83:cb:4c:cc:1a:37:77:05:d3:a8:db:84:c9:c3:49: 45:6c:f9:cb:f9:4e:e0:29:65:84:72:54:b7:e7:5d: f4:85:7f:46:ae:39:46:af:0c:e6:78:ba:7b:5b:ea: 0a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:69:DC:32:99:F4:97:06:70:3A:6F:86:0C:F3:DE:EC:6C:7F:2C:4A X509v3 Authority Key Identifier: keyid:CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/3130332e32332e3233342e302f32342d3234203d3e203536323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.234.0/24 Signature Algorithm: sha256WithRSAEncryption 48:6e:e3:d5:1b:e1:da:f0:f9:c6:26:0c:99:c5:f7:a5:71:0d: ce:ea:d2:18:42:6f:56:3c:44:77:86:78:bb:0e:ed:dd:17:fe: a8:e6:0d:10:f3:e7:a3:38:78:2f:04:9a:c1:08:cc:da:19:b7: 57:7e:22:3c:91:17:43:cc:f4:64:74:18:85:2c:b7:a9:e6:e1: 6e:78:f7:54:0b:75:bb:6d:a4:ab:7c:26:1e:45:04:f1:bd:16: 86:65:fb:45:a1:25:03:c9:99:66:49:49:2d:8e:41:0b:92:6b: 5f:b4:14:91:a6:d1:2c:ea:97:4e:d2:73:0c:55:f5:79:c7:78: 28:ea:5e:b8:bd:ce:c8:53:4e:20:03:12:d3:22:dc:9e:3e:47: 86:f7:50:96:6e:ad:65:84:f3:ed:22:52:33:e2:60:59:4a:ea: dc:80:b8:bb:2a:73:71:aa:ba:21:65:84:1f:d1:4e:7c:1e:7a: 1d:63:ee:05:57:8d:f4:cd:74:09:4b:84:e1:96:bf:3d:e8:17: b1:9f:70:2b:ea:70:9d:dc:aa:a9:6a:a2:16:08:fa:d7:e1:ac: 6f:7c:32:8c:3c:c0:ad:a9:47:00:f5:e0:f0:8a:9c:ea:ba:1a: 95:f5:2f:c3:10:76:23:56:90:11:0b:c3:b4:04:e2:cb:bf:ad: 06:d7:11:25 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXqfAP8Rhn5ySpEQblLPZXcWeQBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4 NDk1MDNCNTAeFw0yNDA1MjEwOTU1MDBaFw0yNTA1MjAxMDAwMDBaMDMxMTAvBgNV BAMTKEUxNjlEQzMyOTlGNDk3MDY3MDNBNkY4NjBDRjNERUVDNkM3RjJDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8gt30g7THwOF4+Az2848YTwSv OE3gZNymX7t7gXnZ6KB/RkozQRlvqhahffCm0/61IpvwZnhbN9DHgadTyVUsg3dH HA/nTAC1H+b81/O6Ww42lSo6ptqXW9RJMxZjy/aAN2R4YCOoTj4B1J16Igd3e7tJ ASlz+5iUpciNf+C2ye2Ei/anhxeaNSbKxZ5zz+1S3xPjdcThBJAhgMtyNnP7Fs7N RspBpK4c7EvJ6j/wjjZVsSSWOLuPHXkgzxL4ayvsQXxJscTT+wjHwXmG1DXd3IPL TMwaN3cF06jbhMnDSUVs+cv5TuApZYRyVLfnXfSFf0auOUavDOZ4untb6go1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4WncMpn0lwZwOm+GDPPe7Gx/LEowHwYDVR0j BBgwFoAUzA4MQcypVmiU0dNf3i1kJYSVA7UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMC9DQzBFMEM0MUND QTk1NjY4OTREMUQzNUZERTJENjQyNTg0OTUwM0I1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MwRTBDNDFDQ0E5NTY2ODk0RDFEMzVGREUyRDY0MjU4NDk1 MDNCNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3NjhiLTQyMTgtNGM1ZC04 OTNhLTBmZjY5NjUyNjYzOS8wLzMxMzAzMzJlMzIzMzJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcX6jANBgkqhkiG 9w0BAQsFAAOCAQEASG7j1Rvh2vD5xiYMmcX3pXENzurSGEJvVjxEd4Z4uw7t3Rf+ qOYNEPPnozh4LwSawQjM2hm3V34iPJEXQ8z0ZHQYhSy3qebhbnj3VAt1u22kq3wm HkUE8b0WhmX7RaElA8mZZklJLY5BC5JrX7QUkabRLOqXTtJzDFX1ecd4KOpeuL3O yFNOIAMS0yLcnj5HhvdQlm6tZYTz7SJSM+JgWUrq3IC4uypzcaq6IWWEH9FOfB56 HWPuBVeN9M10CUuE4Za/PegXsZ9wK+pwndyqqWqiFgj61+Gsb3wyjDzAralHAPXg 8Iqc6roalfUvwxB2I1aQEQvDtATiy7+tBtcRJQ== -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org