$ rpki-client -vvf repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa File: 3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa (raw, json) Hash identifier: WZ4shpL3C8pc0Q1RN+DNNZqdwp4SqV96kPD82gjGY24= Subject key identifier: 44:60:87:9D:2B:BE:6B:4A:4B:5F:BE:6D:33:58:5D:1B:48:7F:D3:64 Certificate issuer: /CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Certificate serial: 5E404DA96A48A70B1F181EE5B3A0F4C549BB2FC5 Authority key identifier: D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa Signing time: Thu 22 Aug 2024 09:00:00 +0000 ROA not before: Thu 22 Aug 2024 08:55:00 +0000 ROA not after: Thu 21 Aug 2025 09:00:00 +0000 asID: 140028 IP address blocks: 103.146.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:40:4d:a9:6a:48:a7:0b:1f:18:1e:e5:b3:a0:f4:c5:49:bb:2f:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D51CE7B1B9196EF73BFF65318453095C925ECF91 Validity Not Before: Aug 22 08:55:00 2024 GMT Not After : Aug 21 09:00:00 2025 GMT Subject: CN=4460879D2BBE6B4A4B5FBE6D33585D1B487FD364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:15:b6:2f:70:a8:43:99:25:20:b3:de:b2:7b: 41:64:c9:8f:34:e0:70:ba:01:27:4d:7e:7b:96:3d: 69:cd:07:51:09:16:8d:b9:64:d1:fe:19:d1:36:4b: ce:1c:5f:6f:d4:60:42:2a:24:e0:95:14:44:8c:f0: 52:86:df:36:3a:4b:a6:30:27:03:a9:5a:2b:03:63: 1e:ce:ad:9a:73:1f:6c:7a:98:e2:95:bb:b8:f1:51: 82:87:2b:4f:8b:0a:a3:ee:1b:94:c0:ff:73:43:dd: da:92:d9:a2:92:e6:16:d4:03:71:34:61:3f:e7:79: 2d:12:6d:96:2b:c8:3d:c7:a8:67:bf:ca:9f:cb:c8: d9:1b:78:7d:35:38:d8:1f:c0:22:06:d5:f9:da:5a: 98:2f:7d:3b:f3:4a:01:17:ce:d8:17:dc:a7:c8:9c: 0a:e2:2e:a5:82:41:24:83:5e:90:29:f3:ae:42:b0: 52:31:f3:80:f5:2d:64:63:b6:51:1e:d0:5a:bc:a3: 76:ac:93:6e:86:28:c0:85:d2:3b:53:d2:bf:50:e9: 85:8b:b5:f6:8f:5a:ac:59:5c:5f:ef:3d:68:2f:65: ff:ff:35:60:cb:be:44:e5:ea:9e:8d:7d:16:c1:bf: 8c:87:75:89:21:fb:fc:12:76:4a:3f:79:26:8c:e3: 15:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:60:87:9D:2B:BE:6B:4A:4B:5F:BE:6D:33:58:5D:1B:48:7F:D3:64 X509v3 Authority Key Identifier: keyid:D5:1C:E7:B1:B9:19:6E:F7:3B:FF:65:31:84:53:09:5C:92:5E:CF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/D51CE7B1B9196EF73BFF65318453095C925ECF91.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D51CE7B1B9196EF73BFF65318453095C925ECF91.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b42aa0a9-4588-4f87-ab89-f3b9dc6107b6/0/3130332e3134362e3132382e302f32342d3234203d3e20313430303238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.128.0/24 Signature Algorithm: sha256WithRSAEncryption aa:de:cf:5b:39:ef:ab:a6:bf:da:c8:dd:41:c2:a6:a1:85:9e: 4a:67:4f:07:83:27:e7:97:1c:ee:5a:6d:c3:a3:70:ab:7d:61: c1:c4:35:a9:da:c3:36:7a:38:00:de:98:f5:51:02:db:c6:35: 79:b8:85:27:19:6d:81:8d:67:06:44:8a:49:31:47:01:f0:50: ef:b4:1a:cb:41:29:40:2b:1d:cb:7a:8a:4c:db:c3:09:01:fe: 19:3b:f2:2f:e5:58:6d:55:2a:c5:37:7e:8c:35:d7:0a:41:72: c1:fb:20:b1:5f:df:c7:72:20:a4:cd:ce:f7:49:91:de:c4:72: f2:9e:48:d6:8d:23:43:c2:71:b7:da:e0:35:9f:77:0a:59:b0: 75:78:d6:fe:51:a3:34:db:8c:21:90:75:99:82:0a:98:96:95: 6c:34:42:4c:4a:bc:55:1d:1e:c6:b2:5a:97:08:71:d3:72:58: 2c:df:df:6c:d4:ee:d5:89:fb:90:da:f4:f7:a4:2d:2d:c2:25: cb:92:6e:f3:c3:56:e4:46:29:40:22:08:6a:d0:25:66:6e:f0: e7:28:e6:ef:6f:9d:4b:91:25:0f:d6:5f:df:ea:5b:41:05:42: 24:6c:9b:15:07:1e:fd:5e:49:61:c7:92:5f:c3:7f:bf:63:4e: 2a:bd:c8:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXkBNqWpIpwsfGB7ls6D0xUm7L8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5 MjVFQ0Y5MTAeFw0yNDA4MjIwODU1MDBaFw0yNTA4MjEwOTAwMDBaMDMxMTAvBgNV BAMTKDQ0NjA4NzlEMkJCRTZCNEE0QjVGQkU2RDMzNTg1RDFCNDg3RkQzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUFbYvcKhDmSUgs96ye0FkyY80 4HC6ASdNfnuWPWnNB1EJFo25ZNH+GdE2S84cX2/UYEIqJOCVFESM8FKG3zY6S6Yw JwOpWisDYx7OrZpzH2x6mOKVu7jxUYKHK0+LCqPuG5TA/3ND3dqS2aKS5hbUA3E0 YT/neS0SbZYryD3HqGe/yp/LyNkbeH01ONgfwCIG1fnaWpgvfTvzSgEXztgX3KfI nAriLqWCQSSDXpAp865CsFIx84D1LWRjtlEe0Fq8o3ask26GKMCF0jtT0r9Q6YWL tfaPWqxZXF/vPWgvZf//NWDLvkTl6p6NfRbBv4yHdYkh+/wSdko/eSaM4xUHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURGCHnSu+a0pLX75tM1hdG0h/02QwHwYDVR0j BBgwFoAU1RznsbkZbvc7/2UxhFMJXJJez5EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDJhYTBhOS00NTg4LTRmODctYWI4OS1mM2I5ZGM2MTA3YjYvMC9ENTFDRTdCMUI5 MTk2RUY3M0JGRjY1MzE4NDUzMDk1QzkyNUVDRjkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDUxQ0U3QjFCOTE5NkVGNzNCRkY2NTMxODQ1MzA5NUM5MjVF Q0Y5MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0MmFhMGE5LTQ1ODgtNGY4Ny1h Yjg5LWYzYjlkYzYxMDdiNi8wLzMxMzAzMzJlMzEzNDM2MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkoAwDQYJ KoZIhvcNAQELBQADggEBAKrez1s576umv9rI3UHCpqGFnkpnTweDJ+eXHO5abcOj cKt9YcHENanawzZ6OADemPVRAtvGNXm4hScZbYGNZwZEikkxRwHwUO+0GstBKUAr Hct6ikzbwwkB/hk78i/lWG1VKsU3fow11wpBcsH7ILFf38dyIKTNzvdJkd7EcvKe SNaNI0PCcbfa4DWfdwpZsHV41v5RozTbjCGQdZmCCpiWlWw0QkxKvFUdHsayWpcI cdNyWCzf32zU7tWJ+5Da9PekLS3CJcuSbvPDVuRGKUAiCGrQJWZu8Oco5u9vnUuR JQ/WX9/qW0EFQiRsmxUHHv1eSWHHkl/Df79jTiq9yDo= -----END CERTIFICATE-----Generated at Sun Nov 24 17:17:41 2024 by rpki-client on console-fra.rpki-client.org