$ rpki-client -vvf repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32332d3233203d3e20313430303238.roa File: 3130332e3134362e3132382e302f32332d3233203d3e20313430303238.roa (raw, json) Hash identifier: 77mfnCgSnucw48UKGT/imJpoab+aR/Q7MW67xLB0DdM= Subject key identifier: F5:94:14:6F:37:E0:EE:9A:5C:4E:63:81:36:40:C2:74:8F:5E:34:A8 Certificate issuer: /CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Certificate serial: 65E1F4796AAB2EE158E6B3FD9CFCD37B62B78F7C Authority key identifier: D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32332d3233203d3e20313430303238.roa Signing time: Thu 22 Aug 2024 08:00:00 +0000 ROA not before: Thu 22 Aug 2024 07:55:00 +0000 ROA not after: Thu 21 Aug 2025 08:00:00 +0000 asID: 140028 IP address blocks: 103.146.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e1:f4:79:6a:ab:2e:e1:58:e6:b3:fd:9c:fc:d3:7b:62:b7:8f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Validity Not Before: Aug 22 07:55:00 2024 GMT Not After : Aug 21 08:00:00 2025 GMT Subject: CN=F594146F37E0EE9A5C4E63813640C2748F5E34A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a5:48:d2:06:fa:df:f3:52:9f:12:19:c8:d8: e0:f5:2a:b3:2d:99:f4:a6:fc:2f:a1:5e:0d:6b:4d: 9c:74:9a:5f:66:60:2f:24:e8:15:e8:15:0d:1e:0c: e7:8f:b6:08:34:6e:93:64:d0:3b:0f:a2:db:a7:68: 6d:49:30:04:1c:64:a6:19:78:c6:1e:b4:6c:5d:c0: 5c:f4:7e:ef:fc:dd:38:b1:16:24:7e:75:42:47:67: 88:2e:5d:a8:6b:26:2f:fd:7e:af:4d:68:b5:a1:cd: f4:1e:ea:ac:3c:05:a4:5e:c2:2b:1d:ac:ca:33:04: 18:08:84:c7:99:52:35:13:3f:ff:77:3b:20:a8:84: 81:d2:2c:98:a2:b1:da:39:ae:5a:ab:0f:9b:64:57: e4:64:5d:fd:21:b3:0f:b3:57:e6:cc:6a:16:13:c6: 1d:ec:37:a8:1f:d3:15:e4:70:cb:5a:55:ed:87:51: d6:b0:3d:1d:10:31:54:c9:e0:84:50:5f:7a:f2:a0: d5:b7:0a:d5:69:17:9e:4f:7c:4e:ad:89:56:6e:19: ac:9a:73:e8:bd:57:b8:a9:30:81:2c:f8:00:4f:15: 9f:b9:be:0a:c0:ba:0a:a1:9a:e1:89:29:66:77:a7: 3b:f7:4d:8c:07:a8:b6:f4:a6:89:5a:71:c9:12:c7: c2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:94:14:6F:37:E0:EE:9A:5C:4E:63:81:36:40:C2:74:8F:5E:34:A8 X509v3 Authority Key Identifier: keyid:D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32332d3233203d3e20313430303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.128.0/23 Signature Algorithm: sha256WithRSAEncryption 94:c2:fe:dc:a2:4d:29:d3:e6:17:11:08:73:6d:eb:34:2d:a6: 4b:e9:ae:85:3c:0b:7c:3c:91:9c:b4:c3:41:e2:fd:a6:27:a4: 31:f7:e3:dc:32:37:1e:61:93:55:db:8b:3b:ec:f8:07:00:e7: 8e:27:b6:44:db:74:6b:1f:96:00:68:c6:8f:2a:0a:68:d4:49: cf:61:1a:04:aa:e7:46:e7:c4:6a:a1:8f:42:42:d1:90:2b:d6: b1:b2:e1:9f:c9:b6:19:05:3c:d8:87:19:b7:d2:3f:4d:af:a5: 37:63:a9:2d:65:40:64:9d:35:5c:2c:b6:ac:71:a8:25:ca:86: bd:63:bf:7b:82:9e:5d:7f:7b:32:55:b0:5c:89:43:88:d5:57: de:33:14:f0:f5:e3:2f:7a:6b:2c:e0:e4:d7:53:0a:7d:f5:cc: 1a:d2:b3:39:3e:8d:06:4c:26:69:23:60:1f:af:d2:07:fb:25: 72:0f:ef:63:89:73:35:f6:bd:d0:a3:94:90:13:5a:a3:7d:99: d1:49:82:0f:9e:c8:e2:c2:45:df:43:2a:88:ae:1b:f3:03:cd: 9c:e4:61:80:c6:83:e0:6a:3b:95:05:cf:92:c6:61:d5:c0:94: 9c:48:ca:72:5b:83:4c:8f:80:a1:9b:81:fb:fa:d7:1a:f7:83: 0b:8a:cb:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZeH0eWqrLuFY5rP9nPzTe2K3j3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5 MjVFQ0Y5MTAeFw0yNDA4MjIwNzU1MDBaFw0yNTA4MjEwODAwMDBaMDMxMTAvBgNV BAMTKEY1OTQxNDZGMzdFMEVFOUE1QzRFNjM4MTM2NDBDMjc0OEY1RTM0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbpUjSBvrf81KfEhnI2OD1KrMt mfSm/C+hXg1rTZx0ml9mYC8k6BXoFQ0eDOePtgg0bpNk0DsPotunaG1JMAQcZKYZ eMYetGxdwFz0fu/83TixFiR+dUJHZ4guXahrJi/9fq9NaLWhzfQe6qw8BaRewisd rMozBBgIhMeZUjUTP/93OyCohIHSLJiisdo5rlqrD5tkV+RkXf0hsw+zV+bMahYT xh3sN6gf0xXkcMtaVe2HUdawPR0QMVTJ4IRQX3ryoNW3CtVpF55PfE6tiVZuGaya c+i9V7ipMIEs+ABPFZ+5vgrAugqhmuGJKWZ3pzv3TYwHqLb0polacckSx8LVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9ZQUbzfg7ppcTmOBNkDCdI9eNKgwHwYDVR0j BBgwFoAU1RznsbkZbvc7/2UxhFMJXJJez5EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDJhYTBhOS00NTg4LTRmODctYWI4OS1mM2I5ZGM2MTA3YjYvMC9ENTFDRTdCMUI5 MTk2RUY3M0JGRjY1MzE4NDUzMDk1QzkyNUVDRjkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5MjVF Q0Y5MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0MmFhMGE5LTQ1ODgtNGY4Ny1h Yjg5LWYzYjlkYzYxMDdiNi8wLzMxMzAzMzJlMzEzNDM2MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkoAwDQYJ KoZIhvcNAQELBQADggEBAJTC/tyiTSnT5hcRCHNt6zQtpkvproU8C3w8kZy0w0Hi /aYnpDH349wyNx5hk1Xbizvs+AcA544ntkTbdGsflgBoxo8qCmjUSc9hGgSq50bn xGqhj0JC0ZAr1rGy4Z/JthkFPNiHGbfSP02vpTdjqS1lQGSdNVwstqxxqCXKhr1j v3uCnl1/ezJVsFyJQ4jVV94zFPD14y96ayzg5NdTCn31zBrSszk+jQZMJmkjYB+v 0gf7JXIP72OJczX2vdCjlJATWqN9mdFJgg+eyOLCRd9DKoiuG/MDzZzkYYDGg+Bq O5UFz5LGYdXAlJxIynJbg0yPgKGbgfv61xr3gwuKy8A= -----END CERTIFICATE-----Generated at Sun Nov 24 15:29:10 2024 by rpki-client on console-ams.rpki-client.org