$ rpki-client -vvf repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa File: 3130332e38352e35322e302f32332d3233203d3e20313530353535.roa (raw, json) Hash identifier: NceE1Gl9KqhiR2YQFfS5n58/EXQ01C8EDe6Rkx8w4+4= Subject key identifier: 9E:08:68:D8:1C:C7:D0:AF:65:83:CA:5C:7C:6B:88:C1:44:CB:80:1B Certificate issuer: /CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3 Certificate serial: 02C97AB100AF64F1AEEECBC9B60D0CAC99EBAF03 Authority key identifier: EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa Signing time: Thu 11 Jul 2024 04:00:00 +0000 ROA not before: Thu 11 Jul 2024 03:55:00 +0000 ROA not after: Thu 10 Jul 2025 04:00:00 +0000 asID: 150555 IP address blocks: 103.85.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.crl rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c9:7a:b1:00:af:64:f1:ae:ee:cb:c9:b6:0d:0c:ac:99:eb:af:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3 Validity Not Before: Jul 11 03:55:00 2024 GMT Not After : Jul 10 04:00:00 2025 GMT Subject: CN=9E0868D81CC7D0AF6583CA5C7C6B88C144CB801B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:21:87:55:93:ec:a5:71:5c:a1:d6:4f:c6:1d: 6b:21:ee:ea:c3:d3:68:53:4f:80:b6:88:f7:00:06: d6:52:a9:6a:2a:ac:36:89:e3:db:76:98:15:af:35: 59:e3:38:92:23:fa:0b:52:46:b6:f4:db:55:1a:83: 50:d2:67:89:2c:6c:c6:27:bf:ef:b8:fd:59:08:51: 25:9f:a1:26:42:d8:12:e8:1c:5a:d4:ee:7f:8b:a2: d7:22:c1:7f:fb:88:49:0b:13:19:54:08:d2:6d:5a: a8:30:bf:f3:1d:5e:61:72:5b:67:6e:5e:ef:7d:e5: 89:78:5a:b0:c0:57:38:be:97:9c:9a:42:9f:dd:b3: 29:e1:2a:a1:b6:43:eb:03:38:ca:dc:79:e9:4d:2d: 31:17:c9:7b:18:b4:5f:30:b7:0e:e0:76:c8:d8:d4: 5f:af:0b:e7:bf:55:1b:ad:29:cd:5c:73:c1:51:88: 50:68:9c:5f:92:08:cf:cd:bf:e9:fe:96:af:61:17: c3:8e:eb:05:c3:db:1c:b1:7c:63:3d:59:43:e8:66: 68:07:ea:a3:da:18:ed:b7:0b:2c:6b:28:1f:c5:99: b1:70:53:8e:7d:08:cc:54:4a:a7:d8:9e:88:69:b3: de:dc:27:0d:5d:9f:83:64:e9:04:3e:5f:e2:af:31: 70:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:08:68:D8:1C:C7:D0:AF:65:83:CA:5C:7C:6B:88:C1:44:CB:80:1B X509v3 Authority Key Identifier: keyid:EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.85.52.0/23 Signature Algorithm: sha256WithRSAEncryption a5:18:ee:c7:51:48:b7:5b:11:ce:e4:5c:be:52:42:e2:e8:7e: db:74:97:1c:ef:92:a6:93:13:76:bc:93:4d:d2:ad:15:02:97: 08:e6:b8:2a:60:ea:4e:c0:98:9f:10:df:30:d9:ee:e9:5d:33: 8b:ee:ce:81:a4:9e:e2:9d:81:29:61:bc:64:b8:d0:22:56:26: 3b:63:54:8e:59:c3:bd:2c:70:8d:e0:ec:a3:fb:ab:3c:30:49: 5b:27:46:36:9e:23:20:f9:21:4d:64:4d:a2:5c:0d:bd:39:44: 0e:52:cb:a7:f0:be:d0:ae:7a:15:60:8d:89:56:cd:2e:cc:da: 27:35:5d:47:9b:ed:57:42:79:4f:cb:90:13:86:d8:08:0e:36: 6d:5a:91:94:a1:47:b2:19:cc:15:9b:e4:5a:2d:ff:51:e8:8d: 3d:9e:28:a6:ff:92:3b:e0:3c:2c:74:fb:61:b9:a1:93:06:e0: df:3c:45:ec:3b:cf:80:3b:39:b5:6d:f7:f3:84:d0:c0:02:94: b7:6f:07:72:db:c6:20:a3:7b:12:87:5d:81:0a:e1:77:54:be: 6b:20:c4:f5:42:e7:44:37:1e:07:a0:90:c6:98:c0:58:ce:f0: 04:cb:df:23:13:f9:9f:15:5e:c3:5e:f3:67:09:96:b8:6f:7f: 94:b1:e9:b8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAsl6sQCvZPGu7svJtg0MrJnrrwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUxMkYxNzlBNUQxRjUyRUMwMzM2NzcyODJBRTdFMkU3 MkUwRjJDMzAeFw0yNDA3MTEwMzU1MDBaFw0yNTA3MTAwNDAwMDBaMDMxMTAvBgNV BAMTKDlFMDg2OEQ4MUNDN0QwQUY2NTgzQ0E1QzdDNkI4OEMxNDRDQjgwMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIIYdVk+ylcVyh1k/GHWsh7urD 02hTT4C2iPcABtZSqWoqrDaJ49t2mBWvNVnjOJIj+gtSRrb021Uag1DSZ4ksbMYn v++4/VkIUSWfoSZC2BLoHFrU7n+LotciwX/7iEkLExlUCNJtWqgwv/MdXmFyW2du Xu995Yl4WrDAVzi+l5yaQp/dsynhKqG2Q+sDOMrceelNLTEXyXsYtF8wtw7gdsjY 1F+vC+e/VRutKc1cc8FRiFBonF+SCM/Nv+n+lq9hF8OO6wXD2xyxfGM9WUPoZmgH 6qPaGO23CyxrKB/FmbFwU459CMxUSqfYnohps97cJw1dn4Nk6QQ+X+KvMXD7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUngho2BzH0K9lg8pcfGuIwUTLgBswHwYDVR0j BBgwFoAU7hLxeaXR9S7AM2dygq5+LnLg8sMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGQxZjRjZS0xNjliLTQzMWEtODI4Ni1jNWYzYTA3YmJiZTMvMC9FRTEyRjE3OUE1 RDFGNTJFQzAzMzY3NzI4MkFFN0UyRTcyRTBGMkMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUxMkYxNzlBNUQxRjUyRUMwMzM2NzcyODJBRTdFMkU3MkUw RjJDMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwZDFmNGNlLTE2OWItNDMxYS04 Mjg2LWM1ZjNhMDdiYmJlMy8wLzMxMzAzMzJlMzgzNTJlMzUzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM1MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdVNDANBgkqhkiG 9w0BAQsFAAOCAQEApRjux1FIt1sRzuRcvlJC4uh+23SXHO+SppMTdryTTdKtFQKX COa4KmDqTsCYnxDfMNnu6V0zi+7OgaSe4p2BKWG8ZLjQIlYmO2NUjlnDvSxwjeDs o/urPDBJWydGNp4jIPkhTWRNolwNvTlEDlLLp/C+0K56FWCNiVbNLszaJzVdR5vt V0J5T8uQE4bYCA42bVqRlKFHshnMFZvkWi3/UeiNPZ4opv+SO+A8LHT7Ybmhkwbg 3zxF7DvPgDs5tW3384TQwAKUt28HctvGIKN7EoddgQrhd1S+ayDE9ULnRDceB6CQ xpjAWM7wBMvfIxP5nxVew17zZwmWuG9/lLHpuA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org