$ rpki-client -vvf repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa File: 3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa (raw, json) Hash identifier: QCOaBBVzpa42mT38Fixqh7X5nbx8tSxYV/cqVDiVcuo= Subject key identifier: 26:1F:73:B4:86:63:48:C6:EB:0B:58:DA:46:A2:C2:3E:7E:40:14:ED Certificate issuer: /CN=B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7 Certificate serial: 58A7F614FB9258977806DB6F362491B3B7EEA8A8 Authority key identifier: B5:91:05:9B:6A:F2:F5:D6:6E:BB:D1:40:31:DA:23:E5:AA:FC:64:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa Signing time: Mon 01 Jul 2024 01:04:57 +0000 ROA not before: Mon 01 Jul 2024 00:59:57 +0000 ROA not after: Mon 30 Jun 2025 01:04:57 +0000 asID: 140452 IP address blocks: 103.153.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.crl rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a7:f6:14:fb:92:58:97:78:06:db:6f:36:24:91:b3:b7:ee:a8:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7 Validity Not Before: Jul 1 00:59:57 2024 GMT Not After : Jun 30 01:04:57 2025 GMT Subject: CN=261F73B4866348C6EB0B58DA46A2C23E7E4014ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:a2:c5:5f:b6:78:8d:92:b8:f4:e3:03:2a: 5c:22:14:4b:e4:c7:e9:07:41:b3:2c:eb:cd:11:89: 8a:45:c2:51:78:cb:63:3d:c3:1d:94:34:cf:07:18: 7d:d8:67:79:8c:62:8c:e9:a4:fb:92:4c:1d:57:18: 2d:f3:d2:dd:57:04:88:be:3b:bf:06:18:33:dc:34: 45:75:7c:9f:1f:4d:c5:cb:96:c8:d5:59:ff:c8:90: c8:4d:df:41:74:bb:4c:17:d9:49:cf:4b:85:e9:a2: 94:76:81:d8:bb:b1:f7:f3:c0:9a:43:43:3a:99:ad: 9a:bb:55:ea:f5:b9:c3:a4:ed:8c:65:78:65:e0:19: 8a:4c:21:27:76:41:ad:b9:2a:f0:ea:16:73:0d:19: 89:77:f3:f7:2f:54:36:10:52:fe:8e:85:8e:06:32: 44:aa:ee:61:f3:37:87:5a:d9:6a:9c:02:9c:4d:5d: 8d:c2:a2:99:01:b7:dd:12:c0:94:d6:92:b0:eb:ea: 98:16:94:76:00:e6:60:32:ed:b8:a8:4c:bd:66:17: cf:f0:04:66:32:cb:6b:46:20:5b:14:55:a3:4d:27: 37:ef:d7:88:61:84:61:e8:00:66:46:5a:19:bf:49: 14:28:73:5a:e7:da:64:27:a2:a7:47:01:cc:f9:02: 7c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1F:73:B4:86:63:48:C6:EB:0B:58:DA:46:A2:C2:3E:7E:40:14:ED X509v3 Authority Key Identifier: keyid:B5:91:05:9B:6A:F2:F5:D6:6E:BB:D1:40:31:DA:23:E5:AA:FC:64:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.34.0/24 Signature Algorithm: sha256WithRSAEncryption 42:76:fa:77:75:d6:ba:5d:37:28:71:93:e3:9a:fb:f6:3c:63: 2e:38:ff:c3:86:c6:8c:7f:93:6c:b1:ec:d0:ea:07:2f:3e:ef: 62:a3:66:22:d2:b1:50:74:5c:08:c4:f0:f4:6c:b0:0c:c2:10: e0:7b:d9:9f:3e:0a:2f:9f:7c:6b:72:bb:82:31:42:14:97:90: 4f:86:e9:02:d4:04:5f:f6:a3:06:a1:03:32:a4:67:c3:81:be: 84:14:91:2b:46:0d:60:3a:e7:df:24:67:f7:2e:82:73:7e:89: 72:fc:44:2c:8e:4e:3f:21:24:71:c6:31:02:73:f8:d8:34:57: fe:88:da:80:0c:28:6c:c1:ba:14:b5:8c:1d:d5:b7:6b:de:68: 29:c4:94:07:dd:db:ec:75:00:a5:20:55:dc:ee:53:82:d4:8c: 3d:23:ae:07:71:d8:d2:bf:c9:c3:50:f1:a6:6c:4d:43:3a:18: f7:44:2a:b2:c2:38:c6:56:93:b8:17:66:a7:3a:a3:40:a5:f3: 55:26:c9:7e:a3:45:2d:e1:cd:5b:9b:f4:ff:ed:56:dd:3a:d2: 3e:98:58:e9:a9:67:ac:77:d8:3d:20:48:8f:98:1b:84:c0:cb: 8e:83:bd:e6:12:ba:c6:a3:00:0c:16:a9:7f:de:cd:3b:18:47: b3:fe:d7:cd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWKf2FPuSWJd4BttvNiSRs7fuqKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU5MTA1OUI2QUYyRjVENjZFQkJEMTQwMzFEQTIzRTVB QUZDNjRGNzAeFw0yNDA3MDEwMDU5NTdaFw0yNTA2MzAwMTA0NTdaMDMxMTAvBgNV BAMTKDI2MUY3M0I0ODY2MzQ4QzZFQjBCNThEQTQ2QTJDMjNFN0U0MDE0RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD2KLFX7Z4jZK49OMDKlwiFEvk x+kHQbMs680RiYpFwlF4y2M9wx2UNM8HGH3YZ3mMYozppPuSTB1XGC3z0t1XBIi+ O78GGDPcNEV1fJ8fTcXLlsjVWf/IkMhN30F0u0wX2UnPS4XpopR2gdi7sffzwJpD QzqZrZq7Ver1ucOk7YxleGXgGYpMISd2Qa25KvDqFnMNGYl38/cvVDYQUv6OhY4G MkSq7mHzN4da2WqcApxNXY3CopkBt90SwJTWkrDr6pgWlHYA5mAy7bioTL1mF8/w BGYyy2tGIFsUVaNNJzfv14hhhGHoAGZGWhm/SRQoc1rn2mQnoqdHAcz5Anz/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJh9ztIZjSMbrC1jaRqLCPn5AFO0wHwYDVR0j BBgwFoAUtZEFm2ry9dZuu9FAMdoj5ar8ZPcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGM0MWMxYS1lMDg4LTRlZjYtOWQyOC04MTRjNjE0NTZkMzAvMC9CNTkxMDU5QjZB RjJGNUQ2NkVCQkQxNDAzMURBMjNFNUFBRkM2NEY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU5MTA1OUI2QUYyRjVENjZFQkJEMTQwMzFEQTIzRTVBQUZD NjRGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYzQxYzFhLWUwODgtNGVmNi05 ZDI4LTgxNGM2MTQ1NmQzMC8wLzMxMzAzMzJlMzEzNTMzMmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5kiMA0GCSqG SIb3DQEBCwUAA4IBAQBCdvp3dda6XTcocZPjmvv2PGMuOP/DhsaMf5NssezQ6gcv Pu9io2Yi0rFQdFwIxPD0bLAMwhDge9mfPgovn3xrcruCMUIUl5BPhukC1ARf9qMG oQMypGfDgb6EFJErRg1gOuffJGf3LoJzfoly/EQsjk4/ISRxxjECc/jYNFf+iNqA DChswboUtYwd1bdr3mgpxJQH3dvsdQClIFXc7lOC1Iw9I64HcdjSv8nDUPGmbE1D Ohj3RCqywjjGVpO4F2anOqNApfNVJsl+o0Ut4c1bm/T/7VbdOtI+mFjpqWesd9g9 IEiPmBuEwMuOg73mErrGowAMFql/3s07GEez/tfN -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org