$ rpki-client -vvf repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa File: 3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa (raw, json) Hash identifier: 1FmXh7W09/OTIcJvMfRljgsvCancXCUmnVr2pCm23n0= Subject key identifier: D4:B5:F2:D4:30:CD:61:EF:DD:23:0F:57:98:F3:E6:31:A5:53:72:83 Certificate issuer: /CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF Certificate serial: 242D0C05C6E7DD63FAFFDE7D6D2A93CD4D119C36 Authority key identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa Signing time: Mon 12 Feb 2024 01:00:02 +0000 ROA not before: Mon 12 Feb 2024 00:55:02 +0000 ROA not after: Mon 10 Feb 2025 01:00:02 +0000 asID: 141134 IP address blocks: 103.158.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.crl rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2d:0c:05:c6:e7:dd:63:fa:ff:de:7d:6d:2a:93:cd:4d:11:9c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF Validity Not Before: Feb 12 00:55:02 2024 GMT Not After : Feb 10 01:00:02 2025 GMT Subject: CN=D4B5F2D430CD61EFDD230F5798F3E631A5537283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ad:8f:5d:1a:26:d0:37:3b:55:79:e0:57:5f: e4:52:32:55:0f:f7:d9:ce:97:10:14:25:c6:0e:06: a8:24:cb:54:72:09:fa:5f:63:3a:2a:ce:bd:cf:03: ae:7e:ec:e2:43:c2:e3:57:70:87:e7:ad:5b:c2:5e: 66:bf:fa:42:8b:fa:b0:4d:8b:ea:f1:bf:6b:c9:13: 55:fb:a9:e5:b4:75:5b:c2:55:22:14:94:6a:ea:c0: 20:c3:3d:eb:1e:c0:9e:1e:53:3f:b8:81:63:69:f0: b7:99:27:8b:86:65:12:10:b0:a7:69:4e:e3:99:05: fb:73:ee:4e:44:d6:c6:fe:26:06:37:38:98:d9:08: b6:ad:62:0d:21:fa:7d:52:90:6e:9e:7e:94:d5:ff: d0:34:60:4c:bb:0a:4f:33:73:c2:08:c5:32:9a:45: ed:5d:c8:79:53:4b:84:4e:54:07:c7:e8:1f:3c:6f: b3:5f:61:f3:65:cf:d9:13:fd:2a:dd:82:ee:06:ec: ea:28:68:3d:45:03:21:d0:b2:42:d2:4a:9e:27:7e: d1:e2:83:d3:e7:fc:ad:27:d9:5e:1c:b9:dd:24:3e: 7c:ea:9c:2e:f5:47:f2:c7:96:c7:e6:5a:04:bc:89: 94:61:77:10:06:ad:97:4e:fd:c3:29:9e:15:6c:12: 8e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B5:F2:D4:30:CD:61:EF:DD:23:0F:57:98:F3:E6:31:A5:53:72:83 X509v3 Authority Key Identifier: keyid:C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.250.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:db:4a:41:8e:f7:19:52:0c:8e:e1:b8:7f:37:ea:c2:35:03: ad:77:f0:34:f4:cd:6d:55:e9:6f:bb:f6:5d:36:33:24:6a:7a: 0c:e4:90:78:a1:65:e4:65:1f:87:70:d4:4f:fc:2e:2d:42:e9: cb:55:ae:50:f5:0b:f2:44:63:9d:d5:23:30:dc:95:9b:d4:8a: 59:b2:87:01:aa:60:75:f9:d9:df:ad:93:f6:a1:22:b0:da:b3: a7:41:33:ed:c3:2c:34:0c:29:b8:51:aa:ef:6f:60:39:eb:e4: 8a:fa:2d:4e:06:88:68:ec:d8:ff:92:fa:f6:ad:8e:98:ef:c5: 9d:71:c6:f7:81:b5:23:40:3b:63:b7:74:63:59:28:06:08:a8: 0a:a4:c6:dc:6c:71:64:85:df:47:49:b9:e8:9b:c4:ee:03:db: 70:1a:5e:b8:3e:c6:cb:61:c6:ee:a6:68:44:74:f7:09:85:d8: 1d:50:ff:9b:52:e2:85:66:9b:93:83:3a:a5:96:a1:ac:3f:af: 47:d9:0d:2e:9c:e1:5f:9d:8e:18:ff:47:e3:88:9f:8b:b3:ec: b3:5e:59:09:d8:0b:1d:fa:48:b5:8e:e3:bc:d1:99:e6:cc:75: f3:b8:1c:75:70:e6:1e:60:3b:17:75:f2:83:5b:1d:cb:42:76: 5a:48:aa:ed -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJC0MBcbn3WP6/959bSqTzU0RnDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzU1NEU4OTFDNTgzQ0UyQUJGMkRCNURFRTgyMUY2QjYz MEJGRjVERjAeFw0yNDAyMTIwMDU1MDJaFw0yNTAyMTAwMTAwMDJaMDMxMTAvBgNV BAMTKEQ0QjVGMkQ0MzBDRDYxRUZERDIzMEY1Nzk4RjNFNjMxQTU1MzcyODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4rY9dGibQNztVeeBXX+RSMlUP 99nOlxAUJcYOBqgky1RyCfpfYzoqzr3PA65+7OJDwuNXcIfnrVvCXma/+kKL+rBN i+rxv2vJE1X7qeW0dVvCVSIUlGrqwCDDPesewJ4eUz+4gWNp8LeZJ4uGZRIQsKdp TuOZBftz7k5E1sb+JgY3OJjZCLatYg0h+n1SkG6efpTV/9A0YEy7Ck8zc8IIxTKa Re1dyHlTS4ROVAfH6B88b7NfYfNlz9kT/Srdgu4G7OooaD1FAyHQskLSSp4nftHi g9Pn/K0n2V4cud0kPnzqnC71R/LHlsfmWgS8iZRhdxAGrZdO/cMpnhVsEo7VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1LXy1DDNYe/dIw9XmPPmMaVTcoMwHwYDVR0j BBgwFoAUxVTokcWDziq/LbXe6CH2tjC/9d8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZDdjN2FjMi01YTliLTQ5MmEtYTRjNS0xZjEzNTkwZGFlMDYvMC9DNTU0RTg5MUM1 ODNDRTJBQkYyREI1REVFODIxRjZCNjMwQkZGNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzU1NEU4OTFDNTgzQ0UyQUJGMkRCNURFRTgyMUY2QjYzMEJG RjVERi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkN2M3YWMyLTVhOWItNDkyYS1h NGM1LTFmMTM1OTBkYWUwNi8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnvowDQYJ KoZIhvcNAQELBQADggEBAGrbSkGO9xlSDI7huH836sI1A6138DT0zW1V6W+79l02 MyRqegzkkHihZeRlH4dw1E/8Li1C6ctVrlD1C/JEY53VIzDclZvUilmyhwGqYHX5 2d+tk/ahIrDas6dBM+3DLDQMKbhRqu9vYDnr5Ir6LU4GiGjs2P+S+vatjpjvxZ1x xveBtSNAO2O3dGNZKAYIqAqkxtxscWSF30dJueibxO4D23AaXrg+xsthxu6maER0 9wmF2B1Q/5tS4oVmm5ODOqWWoaw/r0fZDS6c4V+djhj/R+OIn4uz7LNeWQnYCx36 SLWO47zRmebMdfO4HHVw5h5gOxd18oNbHctCdlpIqu0= -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:22 2024 by rpki-client on console-fra.rpki-client.org