$ rpki-client -vvf repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa File: 3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa (raw, json) Hash identifier: 7xHl0+KUCsZIExTJxrLFivBTLLcx75z1wBdAQI6NTSo= Subject key identifier: 1A:DD:75:88:3A:63:12:37:1B:90:12:6A:10:4D:95:0A:BC:06:06:06 Certificate issuer: /CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Certificate serial: 4608F92726DDC695E218D0C80011ACC5B373DC25 Authority key identifier: 4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa Signing time: Thu 23 May 2024 17:00:00 +0000 ROA not before: Thu 23 May 2024 16:55:00 +0000 ROA not after: Thu 22 May 2025 17:00:00 +0000 asID: 136868 IP address blocks: 103.133.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:08:f9:27:26:dd:c6:95:e2:18:d0:c8:00:11:ac:c5:b3:73:dc:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Validity Not Before: May 23 16:55:00 2024 GMT Not After : May 22 17:00:00 2025 GMT Subject: CN=1ADD75883A6312371B90126A104D950ABC060606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d3:5f:48:93:e6:28:c6:7c:ff:28:52:ae:f3: af:13:83:81:67:58:77:22:f5:3a:3a:61:09:c2:74: a6:4f:ac:3a:59:2c:70:46:25:d0:5d:59:d3:01:9c: bc:86:c8:36:86:7c:9b:b7:24:78:ed:cc:3f:1e:14: cf:df:50:7d:1c:35:0e:b5:ab:3f:a6:9d:5a:24:e0: 9d:b3:e6:c8:f8:ce:68:82:ef:56:a1:b7:fd:12:35: c3:bd:52:5d:f0:41:f4:b5:11:b3:ae:58:da:1c:36: 08:27:59:7f:7f:6e:9d:a9:25:6e:16:dd:33:f7:47: dc:08:9d:86:35:fb:cc:1d:65:0a:0b:e3:23:88:e2: 8c:1c:9c:15:03:29:7e:c7:cb:91:81:1f:dc:af:d8: 4b:8d:fc:ba:42:fd:06:cf:5f:d7:8f:a4:15:c5:e0: 12:a2:6b:63:76:15:e6:9c:ca:46:03:ee:43:5a:a7: 4a:03:e4:b8:fe:b4:fa:c3:0d:ab:83:55:ce:45:04: 4e:d0:13:37:54:95:3c:3f:45:7d:97:43:77:b8:19: 5e:96:5f:03:8f:91:a1:63:e1:49:6a:f7:ca:ed:39: 41:87:29:fe:56:01:4b:65:08:49:ea:85:d7:d2:4a: 99:e9:4b:b5:42:ab:d1:14:8c:1d:4f:c1:c9:4c:a3: a1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DD:75:88:3A:63:12:37:1B:90:12:6A:10:4D:95:0A:BC:06:06:06 X509v3 Authority Key Identifier: keyid:4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.20.0/23 Signature Algorithm: sha256WithRSAEncryption 38:3d:7a:1b:43:ea:2b:59:c4:02:16:15:64:bb:93:a6:5a:bb: 5c:23:18:fe:8c:41:f2:25:34:b7:b4:6b:96:73:ff:74:5b:bf: d7:43:65:da:3c:d4:1e:39:22:59:f9:f6:53:a4:d9:63:99:72: c0:b3:76:11:ac:17:82:49:6c:58:da:92:28:61:6a:e7:9a:54: a3:5a:e4:8c:ec:fc:35:61:e2:ee:13:8b:be:29:af:3e:ff:df: d7:c8:3c:8f:76:39:d1:a1:e2:70:8e:3f:3e:7b:a3:06:2b:eb: 59:af:9d:c3:f4:38:1e:cd:0c:67:1a:89:ae:4b:f9:a6:d3:a6: f0:d6:4d:0b:9e:58:76:54:04:75:ff:73:5e:d5:5f:f9:08:ef: 05:03:82:aa:9d:05:fe:8c:dc:0d:90:f9:64:88:cd:4a:3d:15: e8:69:28:3c:d0:39:74:17:8c:ef:24:0f:b9:0b:71:2f:30:6f: ad:ae:2d:5b:ef:9f:c1:53:f3:3e:4c:af:5d:bf:f8:e6:e4:77: 31:9c:a9:f4:22:44:0c:21:22:4e:5c:df:51:2d:cc:18:35:e9: 86:bf:be:1e:a5:23:2c:9e:e7:44:77:bb:b7:0f:40:72:3d:f1: c4:e2:cc:90:76:25:6e:c3:e7:de:9b:e0:08:cd:6b:85:2f:9a: a2:d2:b7:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURgj5JybdxpXiGNDIABGsxbNz3CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQx QTc4M0UzNjAeFw0yNDA1MjMxNjU1MDBaFw0yNTA1MjIxNzAwMDBaMDMxMTAvBgNV BAMTKDFBREQ3NTg4M0E2MzEyMzcxQjkwMTI2QTEwNEQ5NTBBQkMwNjA2MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd019Ik+Yoxnz/KFKu868Tg4Fn WHci9To6YQnCdKZPrDpZLHBGJdBdWdMBnLyGyDaGfJu3JHjtzD8eFM/fUH0cNQ61 qz+mnVok4J2z5sj4zmiC71aht/0SNcO9Ul3wQfS1EbOuWNocNggnWX9/bp2pJW4W 3TP3R9wInYY1+8wdZQoL4yOI4owcnBUDKX7Hy5GBH9yv2EuN/LpC/QbPX9ePpBXF 4BKia2N2FeacykYD7kNap0oD5Lj+tPrDDauDVc5FBE7QEzdUlTw/RX2XQ3e4GV6W XwOPkaFj4Ulq98rtOUGHKf5WAUtlCEnqhdfSSpnpS7VCq9EUjB1PwclMo6GdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGt11iDpjEjcbkBJqEE2VCrwGBgYwHwYDVR0j BBgwFoAUTfQV0tt2DDmFWz89nPPORBp4PjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTI0YWE4Yy1kZWRjLTQzNzYtOTM4MS0wYTgxZTZiY2M1NjQvMC80REY0MTVEMkRC NzYwQzM5ODU1QjNGM0Q5Q0YzQ0U0NDFBNzgzRTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQxQTc4 M0UzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMjRhYThjLWRlZGMtNDM3Ni05 MzgxLTBhODFlNmJjYzU2NC8wLzMxMzAzMzJlMzEzMzMzMmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4UUMA0GCSqG SIb3DQEBCwUAA4IBAQA4PXobQ+orWcQCFhVku5OmWrtcIxj+jEHyJTS3tGuWc/90 W7/XQ2XaPNQeOSJZ+fZTpNljmXLAs3YRrBeCSWxY2pIoYWrnmlSjWuSM7Pw1YeLu E4u+Ka8+/9/XyDyPdjnRoeJwjj8+e6MGK+tZr53D9DgezQxnGomuS/mm06bw1k0L nlh2VAR1/3Ne1V/5CO8FA4KqnQX+jNwNkPlkiM1KPRXoaSg80Dl0F4zvJA+5C3Ev MG+tri1b75/BU/M+TK9dv/jm5HcxnKn0IkQMISJOXN9RLcwYNemGv74epSMsnudE d7u3D0ByPfHE4syQdiVuw+fem+AIzWuFL5qi0re7 -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org