$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa File: 3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: rpd32ZUdwQpFXx4Nv2RhdtnfkJHyyuemJCQ3vprxsb0= Subject key identifier: 43:2D:A0:5A:9E:3F:09:94:93:61:8F:FA:4A:F9:25:8F:CB:C2:C4:98 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 1D48E7413939CF8422782C8A79A457E6B89F295F Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:44 +0000 ROA not before: Mon 01 Jul 2024 00:57:44 +0000 ROA not after: Mon 30 Jun 2025 01:02:44 +0000 asID: 131717 IP address blocks: 103.25.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:48:e7:41:39:39:cf:84:22:78:2c:8a:79:a4:57:e6:b8:9f:29:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:44 2024 GMT Not After : Jun 30 01:02:44 2025 GMT Subject: CN=432DA05A9E3F099493618FFA4AF9258FCBC2C498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:59:09:14:14:68:c4:a4:98:a8:59:6d:a4: d9:a8:5d:c7:1f:ba:36:cf:bc:39:06:f0:de:04:c6: 6e:78:4a:80:6d:82:37:44:cd:30:85:72:28:23:5d: 0e:43:3e:0e:bb:c8:ea:96:18:cc:3b:10:e8:a4:52: b4:f2:7d:57:c8:da:a4:c4:49:94:47:42:46:1d:cb: 2e:94:13:7f:48:38:16:d6:5d:9d:6b:35:f3:09:b6: 4a:3b:fe:b1:cf:90:d3:82:21:9c:9f:13:8a:4f:eb: 66:ef:f6:20:7b:19:94:f9:9c:e0:ed:88:70:d0:52: 28:20:4a:b9:82:c6:68:db:b6:d3:9c:7f:1d:98:85: 07:ed:61:ab:56:e8:d4:b3:24:a6:f1:3f:c3:09:af: 43:97:93:84:2f:c1:80:e6:1a:85:cd:01:2d:58:a9: cd:aa:7f:cd:2b:31:19:f8:ae:bd:7f:a0:17:b2:cb: 69:c5:6f:d4:3d:ae:11:95:8d:22:8e:6e:dd:c9:76: 48:36:28:91:50:28:27:de:80:a2:9e:18:8c:99:23: f5:20:40:92:ac:93:03:17:7b:d0:59:d8:0d:50:02: 4c:48:c0:e3:96:7a:9b:59:00:45:70:a1:e2:f2:51: b4:4a:8b:9f:08:82:84:7e:9c:59:b1:a1:83:2e:29: ee:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2D:A0:5A:9E:3F:09:94:93:61:8F:FA:4A:F9:25:8F:CB:C2:C4:98 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:2b:16:00:3e:23:85:0f:d4:7b:d2:6c:e8:b8:fd:1f:42:d9: 14:ba:2b:61:61:ea:7f:64:92:f6:ae:f5:cb:ea:04:2d:a9:92: 69:2c:b2:a7:74:e1:80:81:a7:52:89:e4:82:58:1f:33:96:5a: 01:4c:2e:b7:ba:4a:86:fc:c0:38:67:75:4f:82:70:69:be:34: bf:ce:8c:d9:6c:7f:d8:4f:0e:a5:9e:95:96:73:47:29:c7:e0: 59:7e:ee:ae:9c:e3:50:58:b8:bb:5c:53:d6:1f:21:cf:f0:ad: 97:dc:bc:06:4b:61:be:80:b7:32:97:a7:61:2e:08:37:09:f5: b1:0f:80:36:80:2b:2b:95:37:82:f9:6f:b2:c6:5d:96:e3:a6: ef:fa:8f:31:6a:c3:16:47:88:85:80:57:5e:79:3b:af:d1:cb: af:f5:60:d7:25:4a:40:ff:67:9f:2c:0c:78:81:3c:e2:6b:6f: 2f:b5:1f:fb:21:9c:b9:c4:b6:4f:dd:3b:22:a9:d8:9c:47:26: 6f:a1:ac:26:b1:71:77:b2:bc:fc:cc:7d:b2:b8:a9:22:35:3f: f7:a4:38:66:79:d0:62:49:cd:20:c2:16:25:c1:3a:1a:58:f4: 4b:09:3d:10:d1:ea:8f:83:61:b8:51:a7:f5:66:98:7b:95:ff: 16:29:e4:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHUjnQTk5z4QieCyKeaRX5rifKV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDRaFw0yNTA2MzAwMTAyNDRaMDMxMTAvBgNV BAMTKDQzMkRBMDVBOUUzRjA5OTQ5MzYxOEZGQTRBRjkyNThGQ0JDMkM0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOoFkJFBRoxKSYqFltpNmoXccf ujbPvDkG8N4Exm54SoBtgjdEzTCFcigjXQ5DPg67yOqWGMw7EOikUrTyfVfI2qTE SZRHQkYdyy6UE39IOBbWXZ1rNfMJtko7/rHPkNOCIZyfE4pP62bv9iB7GZT5nODt iHDQUiggSrmCxmjbttOcfx2YhQftYatW6NSzJKbxP8MJr0OXk4QvwYDmGoXNAS1Y qc2qf80rMRn4rr1/oBeyy2nFb9Q9rhGVjSKObt3Jdkg2KJFQKCfegKKeGIyZI/Ug QJKskwMXe9BZ2A1QAkxIwOOWeptZAEVwoeLyUbRKi58IgoR+nFmxoYMuKe6/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQy2gWp4/CZSTYY/6Svklj8vCxJgwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQAaKxYAPiOFD9R70mzouP0fQtkUuithYep/ZJL2rvXL6gQt qZJpLLKndOGAgadSieSCWB8zlloBTC63ukqG/MA4Z3VPgnBpvjS/zozZbH/YTw6l npWWc0cpx+BZfu6unONQWLi7XFPWHyHP8K2X3LwGS2G+gLcyl6dhLgg3CfWxD4A2 gCsrlTeC+W+yxl2W46bv+o8xasMWR4iFgFdeeTuv0cuv9WDXJUpA/2efLAx4gTzi a28vtR/7IZy5xLZP3TsiqdicRyZvoawmsXF3srz8zH2yuKkiNT/3pDhmedBiSc0g whYlwToaWPRLCT0Q0eqPg2G4Uaf1Zph7lf8WKeQj -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org