$ rpki-client -vvf repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa File: 3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa (raw, json) Hash identifier: hXkfYf+nz9ZnfdREym/fTXbtiX2Nu0w5Ce/fSSjfGRo= Subject key identifier: 16:E6:CF:3F:E9:3A:0B:1D:D1:2A:E3:B1:93:00:8E:F4:08:9C:26:91 Certificate issuer: /CN=52F21143C125B54D950A82C78B375D1FEFC27145 Certificate serial: 589E6729563CE143BF116C499BFE48E5332EB743 Authority key identifier: 52:F2:11:43:C1:25:B5:4D:95:0A:82:C7:8B:37:5D:1F:EF:C2:71:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa Signing time: Mon 05 Aug 2024 04:00:02 +0000 ROA not before: Mon 05 Aug 2024 03:55:02 +0000 ROA not after: Mon 04 Aug 2025 04:00:02 +0000 asID: 151006 IP address blocks: 103.217.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.crl rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9e:67:29:56:3c:e1:43:bf:11:6c:49:9b:fe:48:e5:33:2e:b7:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52F21143C125B54D950A82C78B375D1FEFC27145 Validity Not Before: Aug 5 03:55:02 2024 GMT Not After : Aug 4 04:00:02 2025 GMT Subject: CN=16E6CF3FE93A0B1DD12AE3B193008EF4089C2691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ed:ef:2c:88:9f:53:bf:d7:9b:0d:b9:0a:80: 6c:32:2b:b4:1c:5e:0d:b6:06:46:f5:f6:30:85:d8: 5e:f1:d6:95:cd:c5:3b:11:55:72:26:30:26:12:c4: b4:9d:33:77:e8:84:b9:22:31:ba:98:fd:5f:84:ff: df:08:65:00:db:17:fa:ad:21:e3:93:dc:08:d3:db: f2:ac:64:e0:1e:a6:c0:2e:92:4b:aa:fe:b0:76:81: 6b:7f:da:d3:e9:2b:6f:a9:26:7b:57:40:3a:ae:af: 24:39:b4:88:fe:f3:d1:0d:1c:25:e8:5a:5d:db:dd: de:18:2d:d9:b9:87:b0:45:fb:ec:b4:45:e1:de:a3: f5:f8:04:94:39:1c:16:dc:05:50:3e:24:17:4c:40: 5a:24:68:c9:63:7b:e3:68:ba:46:c4:96:85:9e:5c: d0:96:fc:41:a6:74:f7:7e:7c:ac:f9:c6:9d:1c:79: ce:4f:c8:bc:31:c2:a2:62:01:45:b6:3f:bc:99:82: be:27:4c:81:95:ee:5d:0e:f0:10:13:04:a5:1a:cf: 4e:4c:f6:cc:70:4d:9c:ae:6f:c5:c3:29:4c:cb:36: 0a:86:0d:95:25:49:4f:91:44:6e:74:11:51:2e:92: 11:ed:a9:fd:04:b3:b0:0e:2f:4c:a4:e9:53:71:86: 3d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E6:CF:3F:E9:3A:0B:1D:D1:2A:E3:B1:93:00:8E:F4:08:9C:26:91 X509v3 Authority Key Identifier: keyid:52:F2:11:43:C1:25:B5:4D:95:0A:82:C7:8B:37:5D:1F:EF:C2:71:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/52F21143C125B54D950A82C78B375D1FEFC27145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52F21143C125B54D950A82C78B375D1FEFC27145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bec553b6-9e57-40bd-8d96-a9fdadadd7be/0/3130332e3231372e3232342e302f32342d3234203d3e20313531303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:31:2f:69:57:a7:4f:ce:d1:8d:9d:61:b0:02:09:27:c3:cc: 18:76:b8:3b:a2:d0:06:09:6b:f2:b4:eb:6d:d2:e6:df:42:b5: 08:17:ee:ec:26:6e:82:29:57:78:97:13:95:be:3e:8f:ff:22: 8f:59:fc:3a:3d:6e:86:e9:2d:12:15:50:e2:29:b1:df:52:43: ef:7d:a8:f0:41:56:85:be:7d:ca:cb:14:2c:2e:32:8b:7c:03: 75:a9:bb:5f:47:b8:4a:12:2d:cb:1b:68:a7:10:07:53:d1:bc: 44:80:cc:09:ec:3e:7f:d2:d6:92:9d:84:6b:ed:b8:52:58:c5: de:b2:10:85:a7:f0:5e:a1:4a:74:36:cd:36:b6:12:bc:02:10: e4:b8:c2:0b:1c:b1:cd:57:ef:e0:dd:9d:ca:dc:a7:38:b4:71: c2:ac:2f:fe:ac:5a:87:bf:eb:fb:17:7a:67:04:61:fb:78:8f: cc:93:1a:a0:87:92:dc:76:6d:75:bc:8d:e3:19:ab:02:03:3c: d7:47:d2:33:5e:a7:40:a6:1a:3a:a4:1e:84:6e:6e:55:6e:b9: 83:f6:f6:d1:8c:b5:0a:48:77:c3:3b:70:d5:db:78:41:f1:d8: de:59:4b:0a:2c:a7:61:b0:e4:ef:92:1d:fd:63:9a:18:4d:52: 34:15:ff:8f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWJ5nKVY84UO/EWxJm/5I5TMut0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJGMjExNDNDMTI1QjU0RDk1MEE4MkM3OEIzNzVEMUZF RkMyNzE0NTAeFw0yNDA4MDUwMzU1MDJaFw0yNTA4MDQwNDAwMDJaMDMxMTAvBgNV BAMTKDE2RTZDRjNGRTkzQTBCMUREMTJBRTNCMTkzMDA4RUY0MDg5QzI2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT7e8siJ9Tv9ebDbkKgGwyK7Qc Xg22Bkb19jCF2F7x1pXNxTsRVXImMCYSxLSdM3fohLkiMbqY/V+E/98IZQDbF/qt IeOT3AjT2/KsZOAepsAukkuq/rB2gWt/2tPpK2+pJntXQDquryQ5tIj+89ENHCXo Wl3b3d4YLdm5h7BF++y0ReHeo/X4BJQ5HBbcBVA+JBdMQFokaMlje+NoukbEloWe XNCW/EGmdPd+fKz5xp0cec5PyLwxwqJiAUW2P7yZgr4nTIGV7l0O8BATBKUaz05M 9sxwTZyub8XDKUzLNgqGDZUlSU+RRG50EVEukhHtqf0Es7AOL0yk6VNxhj31AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFubPP+k6Cx3RKuOxkwCO9AicJpEwHwYDVR0j BBgwFoAUUvIRQ8EltU2VCoLHizddH+/CcUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZWM1NTNiNi05ZTU3LTQwYmQtOGQ5Ni1hOWZkYWRhZGQ3YmUvMC81MkYyMTE0M0Mx MjVCNTREOTUwQTgyQzc4QjM3NUQxRkVGQzI3MTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJGMjExNDNDMTI1QjU0RDk1MEE4MkM3OEIzNzVEMUZFRkMy NzE0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlYzU1M2I2LTllNTctNDBiZC04 ZDk2LWE5ZmRhZGFkZDdiZS8wLzMxMzAzMzJlMzIzMTM3MmUzMjMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2eAwDQYJ KoZIhvcNAQELBQADggEBABwxL2lXp0/O0Y2dYbACCSfDzBh2uDui0AYJa/K0623S 5t9CtQgX7uwmboIpV3iXE5W+Po//Io9Z/Do9bobpLRIVUOIpsd9SQ+99qPBBVoW+ fcrLFCwuMot8A3Wpu19HuEoSLcsbaKcQB1PRvESAzAnsPn/S1pKdhGvtuFJYxd6y EIWn8F6hSnQ2zTa2ErwCEOS4wgscsc1X7+Ddncrcpzi0ccKsL/6sWoe/6/sXemcE Yft4j8yTGqCHktx2bXW8jeMZqwIDPNdH0jNep0CmGjqkHoRublVuuYP29tGMtQpI d8M7cNXbeEHx2N5ZSwosp2Gw5O+SHf1jmhhNUjQV/48= -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org