$ rpki-client -vvf repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa File: 3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: JqNOb/yyQWbTFNo879uxezvJAKFYdMc5vm9FwqAicdo= Subject key identifier: 2C:19:8D:95:BD:FF:A2:97:48:96:D9:47:58:44:70:61:47:13:22:F5 Certificate issuer: /CN=8F52E72816B856335390C4F4AFBAF207C21522F6 Certificate serial: 28318B571DCA412AC26C78E027024B177A04150F Authority key identifier: 8F:52:E7:28:16:B8:56:33:53:90:C4:F4:AF:BA:F2:07:C2:15:22:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F52E72816B856335390C4F4AFBAF207C21522F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa Signing time: Fri 19 Apr 2024 02:59:31 +0000 ROA not before: Fri 19 Apr 2024 02:54:31 +0000 ROA not after: Fri 18 Apr 2025 02:59:31 +0000 asID: 38320 IP address blocks: 103.158.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/8F52E72816B856335390C4F4AFBAF207C21522F6.crl rsync://repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/8F52E72816B856335390C4F4AFBAF207C21522F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F52E72816B856335390C4F4AFBAF207C21522F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:31:8b:57:1d:ca:41:2a:c2:6c:78:e0:27:02:4b:17:7a:04:15:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F52E72816B856335390C4F4AFBAF207C21522F6 Validity Not Before: Apr 19 02:54:31 2024 GMT Not After : Apr 18 02:59:31 2025 GMT Subject: CN=2C198D95BDFFA2974896D94758447061471322F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:31:cc:2a:d4:8c:e6:a5:f3:83:8b:7e:5f: 2c:35:af:c4:ca:3c:d6:b6:50:4f:8e:a7:0c:06:f2: 89:c7:b3:47:77:fb:65:ee:44:2d:97:eb:27:af:9c: 54:e7:8b:0c:7e:34:60:b0:7f:90:d5:37:a3:18:eb: fd:44:a3:06:dc:91:82:a9:d0:26:76:72:75:0a:c1: a3:b9:7d:9d:02:b5:83:9b:75:28:27:e0:2e:40:86: 49:77:be:30:8c:82:9d:a2:7d:a6:3d:d5:b6:e3:b5: c7:14:8a:21:67:39:aa:a5:77:58:6d:e4:c0:9a:c2: 47:b7:72:21:87:44:21:8f:dd:82:e3:cd:2c:15:e6: ec:03:9a:4b:71:14:e9:0d:83:06:2a:0f:70:86:21: 1f:2f:46:41:14:83:28:8e:16:05:bf:ca:aa:c5:6d: d3:0f:11:21:ca:8f:08:6e:fb:6d:53:02:1a:d8:06: bf:ee:f0:80:9e:7a:9d:ce:25:62:4d:46:fb:6f:48: ee:10:cc:75:b4:92:ee:08:f2:4c:07:51:96:e2:c2: 58:4c:f7:d9:f2:2a:7e:b0:e6:e3:bc:ed:b1:07:d6: c4:64:07:bd:fe:0a:a5:70:1f:35:f9:7e:f7:c2:bf: 2c:7a:86:f3:1d:7a:40:46:a1:0f:77:3c:cd:8e:f9: 6c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:19:8D:95:BD:FF:A2:97:48:96:D9:47:58:44:70:61:47:13:22:F5 X509v3 Authority Key Identifier: keyid:8F:52:E7:28:16:B8:56:33:53:90:C4:F4:AF:BA:F2:07:C2:15:22:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/8F52E72816B856335390C4F4AFBAF207C21522F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F52E72816B856335390C4F4AFBAF207C21522F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d44dfb5a-6e24-4a4d-8969-eb3cbe34e47e/0/3130332e3135382e3132362e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.126.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:19:0b:02:40:12:f0:17:12:22:87:49:61:90:c5:e7:33:f3: 41:86:3a:6f:5a:24:1c:cf:57:fb:73:ab:c1:f6:95:7c:c2:0d: 20:dc:fc:ff:e6:da:85:3b:4e:33:4b:1c:2f:4a:62:bc:6b:71: 24:13:78:d5:f2:1b:21:c5:20:72:9c:4f:96:67:be:9d:7b:0e: ad:d1:78:a2:37:1e:10:8e:8f:82:4c:ce:09:b9:3a:64:cb:c1: 28:c7:a8:bc:d5:a9:f3:62:6f:40:10:37:64:26:46:c5:b7:0c: 48:37:b3:c8:7a:16:35:14:5d:52:4f:64:19:e3:84:36:6b:f2: d4:8a:55:6e:b5:48:a9:c4:00:b9:be:57:10:6d:84:55:3f:d3: 17:40:66:a4:10:39:73:c9:6b:67:59:ff:e3:8b:86:12:6f:00: 06:d9:f3:a6:1b:d1:e9:ae:7b:1a:aa:70:50:2b:ed:e8:08:06: 87:12:e0:14:96:66:38:03:09:44:bd:20:01:c5:88:16:96:72: 3c:44:d1:1f:00:4b:65:bb:63:91:f7:1d:af:1a:09:62:95:0b: 71:c3:08:d2:e1:54:54:4a:cd:12:a4:81:11:1f:f5:7e:63:88: 46:b1:05:54:31:34:a6:8a:16:6f:29:e0:39:31:f0:47:07:12: 5b:72:5f:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKDGLVx3KQSrCbHjgJwJLF3oEFQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY1MkU3MjgxNkI4NTYzMzUzOTBDNEY0QUZCQUYyMDdD MjE1MjJGNjAeFw0yNDA0MTkwMjU0MzFaFw0yNTA0MTgwMjU5MzFaMDMxMTAvBgNV BAMTKDJDMTk4RDk1QkRGRkEyOTc0ODk2RDk0NzU4NDQ3MDYxNDcxMzIyRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClnTHMKtSM5qXzg4t+Xyw1r8TK PNa2UE+OpwwG8onHs0d3+2XuRC2X6yevnFTniwx+NGCwf5DVN6MY6/1EowbckYKp 0CZ2cnUKwaO5fZ0CtYObdSgn4C5Ahkl3vjCMgp2ifaY91bbjtccUiiFnOaqld1ht 5MCawke3ciGHRCGP3YLjzSwV5uwDmktxFOkNgwYqD3CGIR8vRkEUgyiOFgW/yqrF bdMPESHKjwhu+21TAhrYBr/u8ICeep3OJWJNRvtvSO4QzHW0ku4I8kwHUZbiwlhM 99nyKn6w5uO87bEH1sRkB73+CqVwHzX5fvfCvyx6hvMdekBGoQ93PM2O+WxNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULBmNlb3/opdIltlHWERwYUcTIvUwHwYDVR0j BBgwFoAUj1LnKBa4VjNTkMT0r7ryB8IVIvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDRkZmI1YS02ZTI0LTRhNGQtODk2OS1lYjNjYmUzNGU0N2UvMC84RjUyRTcyODE2 Qjg1NjMzNTM5MEM0RjRBRkJBRjIwN0MyMTUyMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY1MkU3MjgxNkI4NTYzMzUzOTBDNEY0QUZCQUYyMDdDMjE1 MjJGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NGRmYjVhLTZlMjQtNGE0ZC04 OTY5LWViM2NiZTM0ZTQ3ZS8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55+MA0GCSqG SIb3DQEBCwUAA4IBAQBdGQsCQBLwFxIih0lhkMXnM/NBhjpvWiQcz1f7c6vB9pV8 wg0g3Pz/5tqFO04zSxwvSmK8a3EkE3jV8hshxSBynE+WZ76dew6t0XiiNx4Qjo+C TM4JuTpky8Eox6i81anzYm9AEDdkJkbFtwxIN7PIehY1FF1ST2QZ44Q2a/LUilVu tUipxAC5vlcQbYRVP9MXQGakEDlzyWtnWf/ji4YSbwAG2fOmG9HprnsaqnBQK+3o CAaHEuAUlmY4AwlEvSABxYgWlnI8RNEfAEtlu2OR9x2vGglilQtxwwjS4VRUSs0S pIERH/V+Y4hGsQVUMTSmihZvKeA5MfBHBxJbcl/1 -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org