$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa File: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: 6KCjwhIMaBoSnWdYTAfbyiG4caN7x9gbB7jQ004mrGI= Subject key identifier: 35:8A:7F:FF:7E:27:4A:2D:B9:2B:1A:D6:6F:B0:56:5F:65:03:7C:32 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 47C36DBD093C6CB4364CA69C37773A22A6E8A7C1 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa Signing time: Sat 20 Jan 2024 08:00:00 +0000 ROA not before: Sat 20 Jan 2024 07:55:00 +0000 ROA not after: Sat 18 Jan 2025 08:00:00 +0000 asID: 58821 IP address blocks: 103.156.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c3:6d:bd:09:3c:6c:b4:36:4c:a6:9c:37:77:3a:22:a6:e8:a7:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Jan 20 07:55:00 2024 GMT Not After : Jan 18 08:00:00 2025 GMT Subject: CN=358A7FFF7E274A2DB92B1AD66FB0565F65037C32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:27:06:94:43:cf:08:96:81:ca:1a:87:0b:08: a9:35:d0:0b:39:85:24:13:c0:2c:81:75:9c:69:09: db:b7:4b:56:db:12:f3:52:c6:15:5d:d1:70:26:7f: 3c:01:45:df:c5:b1:5f:fa:8a:99:f7:fb:c3:5c:ba: f1:19:a8:81:16:4d:91:7d:12:f6:cf:9e:98:8f:38: 11:46:3e:4f:d2:04:8a:dd:00:eb:93:6f:9b:0e:ae: 41:32:8c:4d:9e:97:2f:56:78:d1:61:ef:53:1d:f3: df:79:3f:39:b1:4e:71:96:a2:89:f2:37:b3:20:44: ed:7a:26:f4:d7:6d:41:d5:d0:80:cf:c1:44:52:eb: d6:ef:a3:61:75:fd:03:7b:83:e0:c3:81:7e:6d:38: 52:f3:f6:5b:21:31:dd:56:7b:5a:3a:67:e1:8a:21: 5f:11:c1:65:5c:52:78:e9:a9:87:62:0c:21:2a:1e: db:44:e3:3b:0e:41:c6:c8:f7:0e:fd:1f:1a:3d:b9: f1:87:1f:ed:22:04:da:bb:33:61:ef:bc:0d:e1:ba: b0:cb:2e:39:f3:3f:c2:be:7d:30:2e:28:2c:82:39: 5a:89:b4:1f:4a:c4:a4:bc:d3:98:15:0e:56:0e:de: 3f:03:bc:31:54:1b:4d:bb:79:67:aa:bc:25:d7:2d: a1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:8A:7F:FF:7E:27:4A:2D:B9:2B:1A:D6:6F:B0:56:5F:65:03:7C:32 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.14.0/23 Signature Algorithm: sha256WithRSAEncryption 99:99:b0:89:a3:e3:99:cc:1b:8f:58:6d:ee:f3:69:56:3c:88: 9a:39:3f:87:a4:25:38:bf:6f:73:62:8f:b1:f6:18:b1:0e:cb: 56:43:96:57:dd:66:5f:4f:bc:12:09:6b:5d:58:90:86:0f:ba: 80:21:d5:fe:68:8f:a2:eb:6b:d4:3c:ef:a8:c8:cf:65:57:e4: c6:fe:69:0f:ac:09:f8:48:d6:5c:d7:30:a0:0a:e8:97:ff:e4: ff:1f:c4:b9:f2:01:36:79:f3:39:2b:40:e0:c9:e0:33:22:70: b9:42:ef:81:4e:30:f9:9b:d4:bd:0f:3f:7e:63:60:5d:c8:cc: 4b:c8:55:0d:b0:1c:2c:c3:52:4a:be:53:2e:c2:dd:09:88:8e: aa:7f:82:4f:8b:41:f4:6e:62:d7:b8:d9:84:f4:66:78:e8:ef: f9:23:f2:91:d6:92:2c:e2:2a:d9:45:ec:06:ca:0c:d9:04:7e: b6:8a:c0:6f:cc:09:63:a0:ce:dc:23:91:3b:4c:6b:bc:46:85: fe:1f:58:5b:20:fe:83:93:b5:ff:75:f2:6c:cb:c8:06:52:56: 65:4c:08:9e:dc:50:75:09:25:fe:de:93:21:c5:d4:ea:61:4e: 4d:21:6e:5f:a7:75:a9:38:af:54:f1:d2:d6:db:fc:80:ff:12: 02:f5:7c:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR8NtvQk8bLQ2TKacN3c6Iqbop8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNDAxMjAwNzU1MDBaFw0yNTAxMTgwODAwMDBaMDMxMTAvBgNV BAMTKDM1OEE3RkZGN0UyNzRBMkRCOTJCMUFENjZGQjA1NjVGNjUwMzdDMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5JwaUQ88IloHKGocLCKk10As5 hSQTwCyBdZxpCdu3S1bbEvNSxhVd0XAmfzwBRd/FsV/6ipn3+8NcuvEZqIEWTZF9 EvbPnpiPOBFGPk/SBIrdAOuTb5sOrkEyjE2ely9WeNFh71Md8995PzmxTnGWoony N7MgRO16JvTXbUHV0IDPwURS69bvo2F1/QN7g+DDgX5tOFLz9lshMd1We1o6Z+GK IV8RwWVcUnjpqYdiDCEqHttE4zsOQcbI9w79Hxo9ufGHH+0iBNq7M2HvvA3hurDL LjnzP8K+fTAuKCyCOVqJtB9KxKS805gVDlYO3j8DvDFUG027eWeqvCXXLaGVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNYp//34nSi25KxrWb7BWX2UDfDIwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEzLWFjNmUtNGE1Zi1i M2ViLWQ1MzUyY2FmNDg2Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWecDjANBgkqhkiG 9w0BAQsFAAOCAQEAmZmwiaPjmcwbj1ht7vNpVjyImjk/h6QlOL9vc2KPsfYYsQ7L VkOWV91mX0+8EglrXViQhg+6gCHV/miPoutr1DzvqMjPZVfkxv5pD6wJ+EjWXNcw oArol//k/x/EufIBNnnzOStA4MngMyJwuULvgU4w+ZvUvQ8/fmNgXcjMS8hVDbAc LMNSSr5TLsLdCYiOqn+CT4tB9G5i17jZhPRmeOjv+SPykdaSLOIq2UXsBsoM2QR+ torAb8wJY6DO3CORO0xrvEaF/h9YWyD+g5O1/3XybMvIBlJWZUwIntxQdQkl/t6T IcXU6mFOTSFuX6d1qTivVPHS1tv8gP8SAvV88w== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org