$ rpki-client -vvf repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa File: 3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa (raw, json) Hash identifier: mtc2oIoUsi8PFqACj+erg/KtNN0JQLBf9QsGDPXh/DM= Subject key identifier: 35:6D:8F:FF:99:C7:44:0F:B6:90:BA:A2:E8:B1:D0:32:20:6A:80:A3 Certificate issuer: /CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Certificate serial: 4F967BCB0EC3A909E2461A2134A3DE5E86939AE6 Authority key identifier: 56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa Signing time: Thu 26 Sep 2024 12:00:00 +0000 ROA not before: Thu 26 Sep 2024 11:55:00 +0000 ROA not after: Thu 25 Sep 2025 12:00:00 +0000 asID: 141052 IP address blocks: 103.152.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 08:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:96:7b:cb:0e:c3:a9:09:e2:46:1a:21:34:a3:de:5e:86:93:9a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Validity Not Before: Sep 26 11:55:00 2024 GMT Not After : Sep 25 12:00:00 2025 GMT Subject: CN=356D8FFF99C7440FB690BAA2E8B1D032206A80A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:e2:bb:3b:c8:8a:ce:e2:1c:b4:6e:96:60: cb:6d:38:08:c8:60:30:67:5b:b1:d8:d8:04:84:f7: cf:86:66:01:b8:b1:16:c9:22:11:42:b2:d0:e4:8c: d1:a6:bd:7e:bc:77:be:82:45:3b:a2:b3:aa:86:84: ac:8b:51:57:e2:9a:3d:71:29:95:e2:03:9e:5c:d6: 20:6e:5c:69:5c:31:e5:36:9f:88:d0:1b:7c:61:c8: c5:a4:c0:39:f9:a4:20:9d:08:a4:a7:20:75:7e:02: bc:6a:bd:2f:dc:4f:37:ff:71:3a:81:b2:c5:ee:ca: 69:d2:92:04:9e:ad:fc:2b:5b:35:16:83:63:6a:1d: cf:95:e3:aa:7c:be:a7:ff:45:63:8a:fc:28:8f:37: 44:1d:0f:47:82:87:31:86:76:bd:29:3b:55:95:a1: 84:0c:68:6f:63:90:68:e2:a9:df:ae:e2:31:89:c0: c9:cf:82:ae:6d:65:d5:30:c3:bf:66:22:83:5f:10: ff:df:d9:a5:5f:58:d1:bd:0b:b5:68:25:5c:22:61: 8f:54:08:cb:bf:8d:d4:d6:e6:62:a5:c5:4f:9c:1d: 32:81:dc:41:62:78:64:c9:56:1f:29:e8:67:ba:7c: 70:58:00:bb:b5:2d:34:17:c9:61:5e:1d:e4:6e:5c: 36:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6D:8F:FF:99:C7:44:0F:B6:90:BA:A2:E8:B1:D0:32:20:6A:80:A3 X509v3 Authority Key Identifier: keyid:56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/3130332e3135322e35322e302f32342d3234203d3e20313431303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.52.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:32:56:fc:32:6f:db:8e:d1:e7:b9:51:95:13:26:24:49:19: b3:52:72:92:53:a0:14:7d:12:54:e1:f5:33:4e:bf:70:b1:80: 98:95:df:73:4e:27:f9:da:76:1a:4c:f1:6e:ca:a2:38:c2:10: 28:06:52:98:47:cc:f3:a8:ad:b5:6a:0b:90:a8:31:1b:27:ce: 94:a0:0b:e5:b7:ab:8c:e3:b7:67:aa:52:91:fc:3c:3f:8e:5e: f4:93:04:12:6a:23:ed:ea:67:b5:93:0d:55:42:10:24:dd:12: 71:21:74:5a:c8:bb:27:90:5e:24:12:38:25:b2:61:cd:3a:45: d2:f1:74:18:e0:50:d1:8d:3e:b9:9e:c2:56:90:bd:f3:d2:73: b3:54:fd:1f:e6:61:a3:6b:e5:95:8f:f8:bf:a7:21:37:7b:54: 5f:2d:db:28:1c:44:97:57:b9:b9:45:48:14:94:2c:7e:f9:0e: bd:f1:6f:29:cd:41:ca:15:74:41:30:a5:dd:e5:40:db:c4:99: 5e:04:16:5e:6d:8d:5f:61:e9:14:27:ab:f9:b5:f4:53:d5:b0: dc:9f:90:ea:af:61:df:3a:dc:c7:73:74:b3:ec:ad:43:e4:f4: bd:c2:4c:69:fe:32:b7:32:cf:c6:94:2d:bc:de:aa:85:4b:33: 47:6d:14:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT5Z7yw7DqQniRhohNKPeXoaTmuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2 QzQ2MzkzNDAeFw0yNDA5MjYxMTU1MDBaFw0yNTA5MjUxMjAwMDBaMDMxMTAvBgNV BAMTKDM1NkQ4RkZGOTlDNzQ0MEZCNjkwQkFBMkU4QjFEMDMyMjA2QTgwQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv7OK7O8iKzuIctG6WYMttOAjI YDBnW7HY2ASE98+GZgG4sRbJIhFCstDkjNGmvX68d76CRTuis6qGhKyLUVfimj1x KZXiA55c1iBuXGlcMeU2n4jQG3xhyMWkwDn5pCCdCKSnIHV+ArxqvS/cTzf/cTqB ssXuymnSkgSerfwrWzUWg2NqHc+V46p8vqf/RWOK/CiPN0QdD0eChzGGdr0pO1WV oYQMaG9jkGjiqd+u4jGJwMnPgq5tZdUww79mIoNfEP/f2aVfWNG9C7VoJVwiYY9U CMu/jdTW5mKlxU+cHTKB3EFieGTJVh8p6Ge6fHBYALu1LTQXyWFeHeRuXDZ/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNW2P/5nHRA+2kLqi6LHQMiBqgKMwHwYDVR0j BBgwFoAUVgkcEGdgHuk9PE0lzaBx3GxGOTQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ0ZTFiMi05M2M2LTQ4YWUtOTZjYy1lZDgzODI5ZjVhMjAvMC81NjA5MUMxMDY3 NjAxRUU5M0QzQzREMjVDREEwNzFEQzZDNDYzOTM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2QzQ2 MzkzNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDRlMWIyLTkzYzYtNDhhZS05 NmNjLWVkODM4MjlmNWEyMC8wLzMxMzAzMzJlMzEzNTMyMmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5g0MA0GCSqG SIb3DQEBCwUAA4IBAQCdMlb8Mm/bjtHnuVGVEyYkSRmzUnKSU6AUfRJU4fUzTr9w sYCYld9zTif52nYaTPFuyqI4whAoBlKYR8zzqK21aguQqDEbJ86UoAvlt6uM47dn qlKR/Dw/jl70kwQSaiPt6me1kw1VQhAk3RJxIXRayLsnkF4kEjglsmHNOkXS8XQY 4FDRjT65nsJWkL3z0nOzVP0f5mGja+WVj/i/pyE3e1RfLdsoHESXV7m5RUgUlCx+ +Q698W8pzUHKFXRBMKXd5UDbxJleBBZebY1fYekUJ6v5tfRT1bDcn5Dqr2HfOtzH c3Sz7K1D5PS9wkxp/jK3Ms/GlC283qqFSzNHbRTK -----END CERTIFICATE-----Generated at Fri Feb 21 11:03:10 2025 by rpki-client