$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa File: 3130332e35362e3134382e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: nbLUx0zwNCy6aQ8A3kpODZGK75+GGwm1EraoXswUfb0= Subject key identifier: 51:61:4C:A3:65:FB:79:08:1F:80:C3:AE:E3:CF:80:F0:C0:84:23:55 Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 7A95B221D8E48DAF8BFDB13B7140AB5CD83502FF Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa Signing time: Mon 01 Jul 2024 01:02:41 +0000 ROA not before: Mon 01 Jul 2024 00:57:41 +0000 ROA not after: Mon 30 Jun 2025 01:02:41 +0000 asID: 55688 IP address blocks: 103.56.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:95:b2:21:d8:e4:8d:af:8b:fd:b1:3b:71:40:ab:5c:d8:35:02:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jul 1 00:57:41 2024 GMT Not After : Jun 30 01:02:41 2025 GMT Subject: CN=51614CA365FB79081F80C3AEE3CF80F0C0842355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:30:a8:26:cc:55:99:65:da:83:a2:c7:15: 06:0c:42:78:2d:3e:fd:21:d0:6b:72:be:d8:81:c4: 0c:8c:c6:05:43:12:47:cf:35:59:d5:85:59:71:4b: e9:37:06:9f:88:e5:26:f3:9e:40:25:36:f1:2e:6b: 2b:3c:8d:36:ae:6e:ef:2b:ae:c8:6d:58:85:b7:a6: ed:38:b8:e3:2a:c5:20:8b:7f:07:0e:1d:c2:59:b2: 08:a3:58:fb:8b:5a:d4:29:f5:66:f8:44:23:11:a4: 4b:aa:90:f9:1f:a1:f8:17:54:22:05:66:25:db:f5: 36:3d:a0:9f:9f:35:10:ce:18:12:e0:05:b8:f9:00: 39:35:8d:0d:6e:11:d0:62:08:e9:22:91:e7:fc:ee: 65:3f:57:af:30:23:82:44:98:82:c9:78:22:11:5f: ee:c0:e5:95:be:af:8f:df:da:ec:03:bb:1e:70:d3: 67:e5:d1:5f:bf:a2:e0:ed:59:7e:2a:17:4a:1a:fc: 24:04:60:23:83:83:2a:4e:29:e1:6e:57:d2:b7:8a: fc:a9:69:79:de:c9:83:48:55:da:0c:f9:ad:78:58: 5f:13:8f:9a:5a:d5:74:1b:2f:56:cb:e3:25:9b:86: da:7f:e9:9f:66:69:94:55:42:80:6e:c9:ff:95:cb: cb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:61:4C:A3:65:FB:79:08:1F:80:C3:AE:E3:CF:80:F0:C0:84:23:55 X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/3130332e35362e3134382e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.148.0/23 Signature Algorithm: sha256WithRSAEncryption ca:c0:fe:48:ec:7e:0c:40:8a:73:39:b3:49:3d:e8:fa:70:b3: be:12:4e:4b:6d:5d:6d:77:75:b6:0b:9a:9d:74:02:f9:2a:32: 8f:b9:5b:0c:db:6b:01:82:54:88:26:29:d6:47:e9:c4:e4:a6: e6:a8:b2:6f:ac:38:b5:44:21:d5:ef:98:c3:d5:f4:ea:f2:9b: a3:bb:1f:69:58:70:b7:49:bb:63:78:ea:b4:7f:27:a3:13:b3: 05:6d:a1:c8:9e:a4:61:f6:a2:de:ec:08:74:70:f9:32:ca:a5: fb:56:12:f4:94:ef:a9:b6:77:24:02:46:20:88:e2:59:a5:22: 32:ae:3d:fe:0d:4c:28:ab:68:65:d5:61:f8:40:00:7c:f8:bd: 91:00:62:89:17:1c:2a:27:db:97:db:a4:85:0a:c4:07:65:7c: 4b:8b:ca:3a:6a:42:77:45:68:5e:59:a2:d4:52:46:c5:3f:39: 60:e0:9e:bc:7a:9d:41:ee:77:e2:a2:2a:4f:d9:08:26:17:28: 62:f3:42:d3:58:06:08:92:fb:98:05:c8:7d:2b:38:df:1c:47: 24:e8:81:bf:ff:ca:aa:20:7b:2b:2d:2e:7e:73:a6:06:33:d8: f5:c7:91:fc:e0:ad:37:b4:ed:30:ae:d3:85:d5:d3:20:6b:c0: 80:2e:87:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUepWyIdjkja+L/bE7cUCrXNg1Av8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNDA3MDEwMDU3NDFaFw0yNTA2MzAwMTAyNDFaMDMxMTAvBgNV BAMTKDUxNjE0Q0EzNjVGQjc5MDgxRjgwQzNBRUUzQ0Y4MEYwQzA4NDIzNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWRzCoJsxVmWXag6LHFQYMQngt Pv0h0GtyvtiBxAyMxgVDEkfPNVnVhVlxS+k3Bp+I5SbznkAlNvEuays8jTaubu8r rshtWIW3pu04uOMqxSCLfwcOHcJZsgijWPuLWtQp9Wb4RCMRpEuqkPkfofgXVCIF ZiXb9TY9oJ+fNRDOGBLgBbj5ADk1jQ1uEdBiCOkikef87mU/V68wI4JEmILJeCIR X+7A5ZW+r4/f2uwDux5w02fl0V+/ouDtWX4qF0oa/CQEYCODgypOKeFuV9K3ivyp aXneyYNIVdoM+a14WF8Tj5pa1XQbL1bL4yWbhtp/6Z9maZRVQoBuyf+Vy8vBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUWFMo2X7eQgfgMOu48+A8MCEI1UwHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3NThjODBlLWEzMjgtNGY4Yy1h MDNmLTkxYzNjMjYyMTRhMi8wLzMxMzAzMzJlMzUzNjJlMzEzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc4lDANBgkqhkiG 9w0BAQsFAAOCAQEAysD+SOx+DECKczmzST3o+nCzvhJOS21dbXd1tguanXQC+Soy j7lbDNtrAYJUiCYp1kfpxOSm5qiyb6w4tUQh1e+Yw9X06vKbo7sfaVhwt0m7Y3jq tH8noxOzBW2hyJ6kYfai3uwIdHD5Msql+1YS9JTvqbZ3JAJGIIjiWaUiMq49/g1M KKtoZdVh+EAAfPi9kQBiiRccKifbl9ukhQrEB2V8S4vKOmpCd0VoXlmi1FJGxT85 YOCevHqdQe534qIqT9kIJhcoYvNC01gGCJL7mAXIfSs43xxHJOiBv//KqiB7Ky0u fnOmBjPY9ceR/OCtN7TtMK7ThdXTIGvAgC6HNg== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org