$ rpki-client -vvf repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa File: 3130332e34302e3132302e302f32322d3234203d3e203633353038.roa (raw, json) Hash identifier: LkKeG9ESZa/NLh7Xm3ZiP4uaI8GgGt5EDUDI9OkVd50= Subject key identifier: 10:54:BF:94:F9:58:34:06:CA:7E:26:72:61:0A:07:EB:FB:0A:CE:63 Certificate issuer: /CN=35526D55C5F4431129EA7CE9304705CE395693D9 Certificate serial: 27FF28B56415790BEF6025E4DCAC31407FCEB155 Authority key identifier: 35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa Signing time: Tue 20 Feb 2024 14:01:58 +0000 ROA not before: Tue 20 Feb 2024 13:56:58 +0000 ROA not after: Tue 18 Feb 2025 14:01:58 +0000 asID: 63508 IP address blocks: 103.40.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ff:28:b5:64:15:79:0b:ef:60:25:e4:dc:ac:31:40:7f:ce:b1:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35526D55C5F4431129EA7CE9304705CE395693D9 Validity Not Before: Feb 20 13:56:58 2024 GMT Not After : Feb 18 14:01:58 2025 GMT Subject: CN=1054BF94F9583406CA7E2672610A07EBFB0ACE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:6d:92:53:35:1a:ec:e9:e6:1a:a3:6d:01: 48:ea:52:1b:7b:f3:87:4a:0d:2f:f6:bb:d2:bc:3c: 9a:7d:b1:dc:4b:e7:92:1c:c0:96:4a:3a:83:a5:2e: 68:84:a8:9a:ed:ad:58:11:39:25:ea:a0:5a:a4:f3: 9c:ec:25:0a:bc:49:4f:03:ff:ca:03:43:0f:6f:9d: d5:5c:bb:5d:a0:2b:bb:12:15:72:ea:86:b7:2e:13: c4:67:e0:a6:4b:55:b3:97:6d:a5:e3:7a:3d:d1:e8: 2d:4e:32:2d:d5:8e:ef:c4:d8:43:b0:aa:86:52:54: cd:0f:ab:da:fa:26:4f:f8:62:e9:7b:41:f7:3b:b1: 97:f3:03:4b:db:e3:3c:69:ef:13:53:20:e8:fc:d9: 02:6c:7f:87:dc:17:95:40:75:03:1d:c0:09:91:4b: b4:92:02:e7:50:22:e6:45:2a:88:c7:b3:09:1c:59: 6b:37:4b:57:21:70:6f:af:4b:fd:c0:89:12:c0:c4: 98:a8:e4:d8:82:9a:0b:23:bd:8b:0d:25:be:f9:16: 01:eb:7a:4c:23:7a:ff:be:0a:c8:6f:34:60:b8:ea: cb:b8:70:3d:dc:b5:5f:27:3a:e9:e3:81:7f:25:df: 92:e5:39:32:c8:d4:d5:bb:a7:12:d4:a4:53:ad:84: 25:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:54:BF:94:F9:58:34:06:CA:7E:26:72:61:0A:07:EB:FB:0A:CE:63 X509v3 Authority Key Identifier: keyid:35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.40.120.0/22 Signature Algorithm: sha256WithRSAEncryption b4:0b:2b:b7:cb:54:35:50:8c:2c:15:a5:5f:51:4b:d6:07:7a: 11:f6:95:6f:10:20:bf:14:55:45:1a:3b:70:91:c7:b9:3c:e3: b4:ce:5b:a6:b0:45:ab:b7:4b:d1:6b:4c:83:f8:35:2c:b4:06: c4:e1:d9:03:23:4a:5b:28:22:4c:de:e4:8d:9e:ee:5c:e1:c1: b8:ce:a3:6c:6c:f1:3b:d0:0e:8e:bd:f3:73:c3:86:b4:f0:90: 64:4d:dc:be:4e:e5:dc:52:ee:15:5c:82:26:6b:9b:00:d9:61: e0:13:b4:63:3f:6c:87:4d:45:07:fa:ad:2a:63:09:7f:70:79: 68:70:37:36:9a:eb:76:1b:f0:84:c1:94:54:b4:7e:20:84:f2: a1:5a:ce:3f:99:ad:07:7c:5c:72:10:35:d6:bf:86:2e:3c:e5: 93:93:b8:89:79:8c:ee:9d:d1:98:64:a0:3c:7c:2b:27:10:f4: 96:65:92:34:52:58:b0:3c:68:b8:bb:61:3c:98:f9:a6:36:d9: fa:b4:fa:40:38:e6:f9:15:c2:8e:a2:64:64:24:ca:07:b3:5c: 01:5c:62:eb:20:52:27:99:fd:b7:e8:98:88:ca:7c:13:15:a1: 49:52:52:70:fa:58:18:e9:7c:b7:24:89:af:e4:58:31:db:81: 6a:d9:7c:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ/8otWQVeQvvYCXk3KwxQH/OsVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0Uz OTU2OTNEOTAeFw0yNDAyMjAxMzU2NThaFw0yNTAyMTgxNDAxNThaMDMxMTAvBgNV BAMTKDEwNTRCRjk0Rjk1ODM0MDZDQTdFMjY3MjYxMEEwN0VCRkIwQUNFNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/X22SUzUa7OnmGqNtAUjqUht7 84dKDS/2u9K8PJp9sdxL55IcwJZKOoOlLmiEqJrtrVgROSXqoFqk85zsJQq8SU8D /8oDQw9vndVcu12gK7sSFXLqhrcuE8Rn4KZLVbOXbaXjej3R6C1OMi3Vju/E2EOw qoZSVM0Pq9r6Jk/4Yul7Qfc7sZfzA0vb4zxp7xNTIOj82QJsf4fcF5VAdQMdwAmR S7SSAudQIuZFKojHswkcWWs3S1chcG+vS/3AiRLAxJio5NiCmgsjvYsNJb75FgHr ekwjev++CshvNGC46su4cD3ctV8nOunjgX8l35LlOTLI1NW7pxLUpFOthCXtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEFS/lPlYNAbKfiZyYQoH6/sKzmMwHwYDVR0j BBgwFoAUNVJtVcX0QxEp6nzpMEcFzjlWk9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGIwYmY1Yi00NTZkLTRlNjItOWY0OC02MTkyMTQ5ZDUyYzIvMC8zNTUyNkQ1NUM1 RjQ0MzExMjlFQTdDRTkzMDQ3MDVDRTM5NTY5M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0UzOTU2 OTNEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YjBiZjViLTQ1NmQtNGU2Mi05 ZjQ4LTYxOTIxNDlkNTJjMi8wLzMxMzAzMzJlMzQzMDJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcoeDANBgkqhkiG 9w0BAQsFAAOCAQEAtAsrt8tUNVCMLBWlX1FL1gd6EfaVbxAgvxRVRRo7cJHHuTzj tM5bprBFq7dL0WtMg/g1LLQGxOHZAyNKWygiTN7kjZ7uXOHBuM6jbGzxO9AOjr3z c8OGtPCQZE3cvk7l3FLuFVyCJmubANlh4BO0Yz9sh01FB/qtKmMJf3B5aHA3Nprr dhvwhMGUVLR+IITyoVrOP5mtB3xcchA11r+GLjzlk5O4iXmM7p3RmGSgPHwrJxD0 lmWSNFJYsDxouLthPJj5pjbZ+rT6QDjm+RXCjqJkZCTKB7NcAVxi6yBSJ5n9t+iY iMp8ExWhSVJScPpYGOl8tySJr+RYMduBatl8aw== -----END CERTIFICATE-----Generated at Sun Nov 24 00:14:31 2024 by rpki-client on console-ams.rpki-client.org