$ rpki-client -vvf repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233302e302f32342d3234203d3e203634333135.roa File: 3130332e3131392e3233302e302f32342d3234203d3e203634333135.roa (raw, json) Hash identifier: E5VrIwPMUJGpGOWBstudrK0mL8GWVlpLTgrf4pdK0FY= Subject key identifier: 5A:4F:7F:D2:B9:88:CE:AF:C3:B9:7C:D6:7A:AE:CC:F2:E0:A7:19:E6 Certificate issuer: /CN=90508FF980097E19CEF65ED72A856616A6F690AB Certificate serial: 5322D8F06E0FD3A1668A8891CE2E5A22A10F62D7 Authority key identifier: 90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233302e302f32342d3234203d3e203634333135.roa Signing time: Mon 01 Jul 2024 01:06:13 +0000 ROA not before: Mon 01 Jul 2024 01:01:13 +0000 ROA not after: Mon 30 Jun 2025 01:06:13 +0000 asID: 64315 IP address blocks: 103.119.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:22:d8:f0:6e:0f:d3:a1:66:8a:88:91:ce:2e:5a:22:a1:0f:62:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90508FF980097E19CEF65ED72A856616A6F690AB Validity Not Before: Jul 1 01:01:13 2024 GMT Not After : Jun 30 01:06:13 2025 GMT Subject: CN=5A4F7FD2B988CEAFC3B97CD67AAECCF2E0A719E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:0a:01:12:02:70:f0:b2:c2:91:32:66:ed: 40:8e:6e:f0:15:de:bc:4f:31:d7:7d:3d:30:88:7d: 14:5b:41:8c:39:48:c9:46:80:7e:96:24:a7:66:88: 1f:27:90:ba:4c:7a:44:da:f9:b3:c7:24:c6:bb:9a: f1:6d:37:da:f7:5d:ef:95:13:4f:36:c6:b2:ab:80: e7:b0:19:ba:d8:f6:d3:fb:56:06:59:95:d3:78:45: d0:5c:e9:e3:01:ec:50:cc:08:0d:1b:99:7f:b5:a9: 00:c8:55:3f:ca:06:9d:f5:77:4d:d0:5c:fd:21:a6: de:17:9a:a4:e6:39:d3:8c:90:5b:4b:eb:f2:ed:4c: 29:0e:5a:d7:73:8e:3b:a0:e8:b8:30:1d:6c:52:67: a0:42:f6:25:f6:21:f1:a9:7a:30:8f:49:9a:65:8a: 1d:7b:3c:da:3f:e5:74:14:b6:dd:e8:90:06:62:26: 74:b2:95:bc:e7:71:8b:6e:39:b6:79:d8:a7:62:c1: af:2e:9d:81:42:69:70:62:b4:bc:93:30:1c:31:90: a2:fb:11:be:d9:38:7c:b2:90:f8:9c:ec:67:77:f1: ed:85:e3:3d:23:80:95:14:71:f1:29:0d:cf:57:71: 7c:d0:6a:f9:34:45:c2:67:3b:ab:21:e3:29:d3:85: 12:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4F:7F:D2:B9:88:CE:AF:C3:B9:7C:D6:7A:AE:CC:F2:E0:A7:19:E6 X509v3 Authority Key Identifier: keyid:90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233302e302f32342d3234203d3e203634333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.230.0/24 Signature Algorithm: sha256WithRSAEncryption 38:b3:08:46:cc:c7:1b:c1:ec:5f:54:40:4f:c3:0c:e7:65:84: d3:66:c9:f8:57:c5:4d:10:0c:ab:19:d7:3d:1a:da:c1:a1:75: fc:fa:73:0c:9c:ea:32:cc:29:e7:b3:0e:c9:40:96:5f:27:2e: 12:93:29:62:17:8d:4a:93:8f:5d:54:b9:5d:37:8d:62:77:e1: 50:ef:24:20:39:6d:c1:45:28:c3:02:6e:b0:3d:e8:23:e1:7e: d1:7d:77:9c:c4:1a:2c:cf:db:d1:53:98:7d:54:84:f5:4d:d7: 6f:1b:02:d6:05:e7:27:ac:6e:42:73:db:e1:13:e8:d1:04:3c: 4b:47:2c:12:87:f0:87:e9:19:6f:64:ed:1e:71:03:ff:4c:5c: cb:a8:0e:68:71:cd:49:9b:25:7b:c3:fe:39:7e:79:db:ac:e7: 28:87:f6:b3:ad:5d:3e:9c:4e:01:16:65:53:11:bf:69:e1:22: 01:ed:a2:58:98:42:79:0b:0b:06:33:52:cc:97:7b:33:8f:1c: 12:dc:24:56:43:c8:b9:26:4f:09:95:f9:8b:e2:2f:0b:ef:09: 18:ec:d1:e0:ef:4b:5d:fc:a8:a8:77:7a:57:6f:36:62:47:29: 4b:86:69:3e:ee:2a:a6:e7:76:7b:17:54:c9:5a:a9:d8:47:e9: e2:4e:d2:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUyLY8G4P06FmioiRzi5aIqEPYtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZB NkY2OTBBQjAeFw0yNDA3MDEwMTAxMTNaFw0yNTA2MzAwMTA2MTNaMDMxMTAvBgNV BAMTKDVBNEY3RkQyQjk4OENFQUZDM0I5N0NENjdBQUVDQ0YyRTBBNzE5RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6fAoBEgJw8LLCkTJm7UCObvAV 3rxPMdd9PTCIfRRbQYw5SMlGgH6WJKdmiB8nkLpMekTa+bPHJMa7mvFtN9r3Xe+V E082xrKrgOewGbrY9tP7VgZZldN4RdBc6eMB7FDMCA0bmX+1qQDIVT/KBp31d03Q XP0hpt4XmqTmOdOMkFtL6/LtTCkOWtdzjjug6LgwHWxSZ6BC9iX2IfGpejCPSZpl ih17PNo/5XQUtt3okAZiJnSylbzncYtuObZ52Kdiwa8unYFCaXBitLyTMBwxkKL7 Eb7ZOHyykPic7Gd38e2F4z0jgJUUcfEpDc9XcXzQavk0RcJnO6sh4ynThRI9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWk9/0rmIzq/DuXzWeq7M8uCnGeYwHwYDVR0j BBgwFoAUkFCP+YAJfhnO9l7XKoVmFqb2kKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODgzZTNiZS01N2UyLTQxMjUtYTBjNS05YTllYTUwMWJmMDUvMC85MDUwOEZGOTgw MDk3RTE5Q0VGNjVFRDcyQTg1NjYxNkE2RjY5MEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZBNkY2 OTBBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ODNlM2JlLTU3ZTItNDEyNS1h MGM1LTlhOWVhNTAxYmYwNS8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3fmMA0GCSqG SIb3DQEBCwUAA4IBAQA4swhGzMcbwexfVEBPwwznZYTTZsn4V8VNEAyrGdc9GtrB oXX8+nMMnOoyzCnnsw7JQJZfJy4SkyliF41Kk49dVLldN41id+FQ7yQgOW3BRSjD Am6wPegj4X7RfXecxBosz9vRU5h9VIT1TddvGwLWBecnrG5Cc9vhE+jRBDxLRywS h/CH6RlvZO0ecQP/TFzLqA5occ1JmyV7w/45fnnbrOcoh/azrV0+nE4BFmVTEb9p 4SIB7aJYmEJ5CwsGM1LMl3szjxwS3CRWQ8i5Jk8JlfmL4i8L7wkY7NHg70td/Kio d3pXbzZiRylLhmk+7iqm53Z7F1TJWqnYR+niTtKg -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org