$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa File: 3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa (raw, json) Hash identifier: ZpUdgd22teSEI1p667o3L+/2ft4r54SswO41gX+4Vb0= Subject key identifier: 3B:90:82:8A:1D:8B:92:52:48:C9:86:DF:3F:06:82:9F:BF:33:E7:C5 Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Certificate serial: 4B96BB9640C4CF4EB49E25C75F9C1EBEAF8A3F12 Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa Signing time: Tue 27 Feb 2024 09:02:01 +0000 ROA not before: Tue 27 Feb 2024 08:57:01 +0000 ROA not after: Tue 25 Feb 2025 09:02:01 +0000 asID: 136854 IP address blocks: 103.102.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:96:bb:96:40:c4:cf:4e:b4:9e:25:c7:5f:9c:1e:be:af:8a:3f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Validity Not Before: Feb 27 08:57:01 2024 GMT Not After : Feb 25 09:02:01 2025 GMT Subject: CN=3B90828A1D8B925248C986DF3F06829FBF33E7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:8a:56:2f:83:7e:8f:ab:2e:8d:ca:c5:b1: 4f:a0:b2:38:f3:4a:6e:2b:ed:71:54:de:8a:f5:aa: 40:59:f6:db:25:c9:1b:d9:85:d0:9d:36:ef:7a:67: 58:a8:1f:df:1a:07:b5:92:c5:58:f7:be:ed:53:b1: 19:de:65:b6:d0:ed:a9:4a:e3:6a:ca:d7:5e:fb:ac: 29:cb:02:4f:18:b9:95:59:8a:97:bc:ac:28:cb:77: a8:92:04:aa:91:9b:0e:08:59:9c:fc:df:03:ca:d0: 87:ab:7c:d6:ed:f4:77:6b:58:5f:ec:7d:ea:2c:b8: ab:2b:52:84:fb:a7:a8:ac:2a:cd:ef:51:53:6c:6d: 64:29:39:1f:9a:a9:fa:1f:4f:8e:e2:0f:4f:5f:db: 9f:a8:12:0c:55:de:a2:98:87:a4:4f:dc:3e:ea:44: 16:cd:5c:92:0c:3b:88:12:e3:68:35:5f:ec:b0:e7: 74:33:0e:5f:d8:67:ee:5b:8e:2d:4f:83:2e:e9:35: e0:1d:31:41:05:c8:bb:2a:67:f0:d2:ff:e3:27:94: a0:b3:ba:91:42:b0:26:a4:43:69:a3:3c:5c:52:44: fb:16:9e:c2:e6:94:6c:3c:66:f2:aa:17:83:48:21: bf:2b:2a:fd:21:57:1f:20:f9:9e:a3:2e:fd:c2:73: 87:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:90:82:8A:1D:8B:92:52:48:C9:86:DF:3F:06:82:9F:BF:33:E7:C5 X509v3 Authority Key Identifier: keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134302e302f32322d3232203d3e20313336383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.140.0/22 Signature Algorithm: sha256WithRSAEncryption 52:5b:8a:a6:0d:ce:4c:45:ce:1c:84:7e:c2:fd:09:15:9a:b6: 27:4a:20:fe:fc:51:06:42:92:b2:00:97:00:ea:fb:b0:9d:3c: 4f:bc:6d:0a:f2:de:9a:46:0b:0f:3d:41:f4:2d:8f:98:42:b2: f4:19:fc:dc:06:de:0d:d9:9e:c2:9f:2f:13:cf:bb:4f:df:e6: 16:f5:d8:e0:5e:bd:e1:f9:d9:f4:7f:09:e1:f9:53:fd:7e:2a: b5:4d:9f:57:db:f7:92:26:0b:32:6c:93:02:f1:d4:8a:0e:be: e9:bb:05:4d:61:dc:df:ed:99:af:b2:18:58:58:e9:e2:0e:9b: ae:db:5e:40:dc:0c:6b:d5:bf:10:02:11:c0:72:94:7f:17:16: cb:8b:bd:65:87:4f:4f:ce:a2:e1:78:ce:aa:c2:63:87:dc:e3: 8e:48:f0:52:fc:e0:46:eb:cf:0c:75:b1:23:0b:80:b3:83:4b: f4:9f:76:66:64:3d:c0:d2:cd:cd:e4:90:fd:44:a1:d7:7d:88: c3:31:45:8d:ff:67:52:65:fb:a3:77:0b:eb:53:4f:40:c9:f1: da:98:7a:64:b7:af:65:97:e1:fe:03:ff:dc:bd:ad:13:1c:85: a6:12:ff:e8:2a:a5:d7:d4:22:fa:16:89:10:41:a1:d7:2b:02: 93:f4:10:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS5a7lkDEz060niXHX5wevq+KPxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdB RjUwRDc1NDAeFw0yNDAyMjcwODU3MDFaFw0yNTAyMjUwOTAyMDFaMDMxMTAvBgNV BAMTKDNCOTA4MjhBMUQ4QjkyNTI0OEM5ODZERjNGMDY4MjlGQkYzM0U3QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP34pWL4N+j6sujcrFsU+gsjjz Sm4r7XFU3or1qkBZ9tslyRvZhdCdNu96Z1ioH98aB7WSxVj3vu1TsRneZbbQ7alK 42rK1177rCnLAk8YuZVZipe8rCjLd6iSBKqRmw4IWZz83wPK0IerfNbt9HdrWF/s feosuKsrUoT7p6isKs3vUVNsbWQpOR+aqfofT47iD09f25+oEgxV3qKYh6RP3D7q RBbNXJIMO4gS42g1X+yw53QzDl/YZ+5bji1Pgy7pNeAdMUEFyLsqZ/DS/+MnlKCz upFCsCakQ2mjPFxSRPsWnsLmlGw8ZvKqF4NIIb8rKv0hVx8g+Z6jLv3Cc4flAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUO5CCih2LklJIyYbfPwaCn78z58UwHwYDVR0j BBgwFoAUHWABpPRlSLN+2HHKXPCI969Q11QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTYzMmQ5OS0zMmIyLTQ2N2ItYjdmZS0wZDI1Zjg1M2JmYTYvMC8xRDYwMDFBNEY0 NjU0OEIzN0VEODcxQ0E1Q0YwODhGN0FGNTBENzU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdBRjUw RDc1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NjMyZDk5LTMyYjItNDY3Yi1i N2ZlLTBkMjVmODUzYmZhNi8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZowwDQYJ KoZIhvcNAQELBQADggEBAFJbiqYNzkxFzhyEfsL9CRWatidKIP78UQZCkrIAlwDq +7CdPE+8bQry3ppGCw89QfQtj5hCsvQZ/NwG3g3ZnsKfLxPPu0/f5hb12OBeveH5 2fR/CeH5U/1+KrVNn1fb95ImCzJskwLx1IoOvum7BU1h3N/tma+yGFhY6eIOm67b XkDcDGvVvxACEcBylH8XFsuLvWWHT0/OouF4zqrCY4fc445I8FL84Ebrzwx1sSML gLODS/SfdmZkPcDSzc3kkP1Eodd9iMMxRY3/Z1Jl+6N3C+tTT0DJ8dqYemS3r2WX 4f4D/9y9rRMchaYS/+gqpdfUIvoWiRBBodcrApP0EAI= -----END CERTIFICATE-----Generated at Sun Nov 24 14:55:03 2024 by rpki-client on console-fra.rpki-client.org