$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa File: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (raw, json) Hash identifier: IgfjgKMY3XCpPST6kax6ANVIRUFC9yDuOzV+TPxNu+4= Subject key identifier: 88:AB:55:09:6F:34:9F:FC:C8:C7:D4:ED:45:58:DE:38:D9:41:DC:DA Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 157138BFA9D37CAC97FE27228AD8DCCC5B5F21D6 Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa Signing time: Mon 01 Jul 2024 15:00:02 +0000 ROA not before: Mon 01 Jul 2024 14:55:02 +0000 ROA not after: Mon 30 Jun 2025 15:00:02 +0000 asID: 141093 IP address blocks: 103.156.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:71:38:bf:a9:d3:7c:ac:97:fe:27:22:8a:d8:dc:cc:5b:5f:21:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Jul 1 14:55:02 2024 GMT Not After : Jun 30 15:00:02 2025 GMT Subject: CN=88AB55096F349FFCC8C7D4ED4558DE38D941DCDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:79:37:2a:44:9a:82:0d:88:0b:4a:85:ba: 12:3c:ba:9c:6b:b0:6d:b3:71:c9:a1:3f:33:05:a9: 9a:3e:43:08:63:7b:cf:cc:1e:70:ed:62:2e:88:35: d0:52:43:e8:87:53:14:2f:49:06:8a:5f:7f:bc:0d: f2:11:c6:92:e3:22:cc:3a:ec:20:3f:4e:31:0f:28: 2c:a1:c9:54:eb:6c:c1:2b:60:47:e7:3a:27:fa:cb: 62:e5:1d:89:82:76:68:78:7d:12:df:5d:21:d4:6e: b2:ad:dd:a4:f4:c5:aa:d1:08:7a:c4:c3:df:2c:ce: c1:4d:5a:88:a8:2d:88:9f:ba:8b:b3:30:a7:61:a8: 59:ca:66:80:d3:a5:17:3b:fa:ff:49:26:78:bd:c9: 2a:ad:c0:bb:d1:1e:ea:06:7c:7b:fd:7b:1a:6d:f2: 99:9b:9f:c1:63:f3:7e:44:7e:8e:07:79:7d:9b:12: b7:0a:58:ff:7f:f9:79:1c:cf:60:b3:94:ef:bb:c9: a3:61:0e:1b:2b:7f:e8:ae:51:e6:90:26:6f:8d:c8: 9a:c6:e6:b9:e3:6f:b5:86:38:72:60:cb:48:c0:0f: d0:7a:ae:e8:1d:ca:ae:28:0c:2b:99:c5:3f:52:2c: d7:05:fe:c3:04:cc:83:c1:f1:29:5a:c4:ac:4b:12: 0b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AB:55:09:6F:34:9F:FC:C8:C7:D4:ED:45:58:DE:38:D9:41:DC:DA X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.146.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:46:3f:cd:9e:2b:ec:57:f0:67:d4:ad:3f:90:87:77:34:87: a9:de:3b:74:f6:61:12:3c:98:dc:ce:c1:9c:db:06:39:dd:77: 98:9a:c2:83:2f:f7:07:ea:29:9d:81:75:fd:0a:48:b5:ec:1b: 91:39:8b:2c:a9:0b:27:5b:f3:b9:c3:dd:87:31:02:eb:19:63: 60:27:57:59:ab:21:db:1d:24:c6:6a:39:dc:e7:f8:2a:fd:86: 95:0c:7e:d2:a1:ba:6c:66:30:b7:56:f9:70:62:10:b1:cd:eb: 92:c3:32:de:4a:a0:8c:b1:e5:7d:d1:c6:16:43:aa:0b:aa:88: c9:95:9b:dd:e6:b0:1e:6b:6f:32:fd:e8:a1:dd:12:f3:9c:33: 9e:f9:90:4a:16:48:7b:81:1c:61:a3:de:ae:47:b6:e4:f2:38: f5:d9:22:26:59:99:ef:dd:0f:42:de:af:58:b0:ba:da:b0:78: 15:08:73:d4:58:52:fe:be:eb:d4:17:ba:a4:07:3a:db:2c:39: 23:dc:19:20:76:ca:6b:91:9c:ba:e2:29:d9:b8:c7:37:6f:ac: e9:e2:f1:d6:4a:f2:f1:ec:55:18:be:b9:ea:82:c8:26:45:75: 88:0d:65:fb:65:4a:80:e7:9d:17:d8:1c:88:b6:72:cb:b5:c1: 90:1b:32:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFXE4v6nTfKyX/iciitjczFtfIdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNDA3MDExNDU1MDJaFw0yNTA2MzAxNTAwMDJaMDMxMTAvBgNV BAMTKDg4QUI1NTA5NkYzNDlGRkNDOEM3RDRFRDQ1NThERTM4RDk0MURDREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9gnk3KkSagg2IC0qFuhI8upxr sG2zccmhPzMFqZo+Qwhje8/MHnDtYi6INdBSQ+iHUxQvSQaKX3+8DfIRxpLjIsw6 7CA/TjEPKCyhyVTrbMErYEfnOif6y2LlHYmCdmh4fRLfXSHUbrKt3aT0xarRCHrE w98szsFNWoioLYifuouzMKdhqFnKZoDTpRc7+v9JJni9ySqtwLvRHuoGfHv9expt 8pmbn8Fj835Efo4HeX2bErcKWP9/+Xkcz2CzlO+7yaNhDhsrf+iuUeaQJm+NyJrG 5rnjb7WGOHJgy0jAD9B6rugdyq4oDCuZxT9SLNcF/sMEzIPB8SlaxKxLEguBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiKtVCW80n/zIx9TtRVjeONlB3NowHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTlhMTViLWQ1YWUtNDVlYy04 MDEyLWE2Y2FhYjNkZDg4Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnJIwDQYJ KoZIhvcNAQELBQADggEBAE5GP82eK+xX8GfUrT+Qh3c0h6neO3T2YRI8mNzOwZzb Bjndd5iawoMv9wfqKZ2Bdf0KSLXsG5E5iyypCydb87nD3YcxAusZY2AnV1mrIdsd JMZqOdzn+Cr9hpUMftKhumxmMLdW+XBiELHN65LDMt5KoIyx5X3RxhZDqguqiMmV m93msB5rbzL96KHdEvOcM575kEoWSHuBHGGj3q5HtuTyOPXZIiZZme/dD0Ler1iw utqweBUIc9RYUv6+69QXuqQHOtssOSPcGSB2ymuRnLriKdm4xzdvrOni8dZK8vHs VRi+ueqCyCZFdYgNZftlSoDnnRfYHIi2csu1wZAbMiA= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org