$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa File: 3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa (raw, json) Hash identifier: NqnaoUff0mb/PaAApaFd35D+2QLuh2rweUqESvnuR9w= Subject key identifier: 49:CC:AC:3E:BA:10:B4:E0:5E:F9:AD:22:44:73:50:3B:63:84:29:0A Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 5ACA685BE86E011C8DC4F922B8B8B0B4AAA93540 Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa Signing time: Sun 16 Jun 2024 00:39:42 +0000 ROA not before: Sun 16 Jun 2024 00:34:42 +0000 ROA not after: Sun 15 Jun 2025 00:39:42 +0000 asID: 140417 IP address blocks: 103.151.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ca:68:5b:e8:6e:01:1c:8d:c4:f9:22:b8:b8:b0:b4:aa:a9:35:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: Jun 16 00:34:42 2024 GMT Not After : Jun 15 00:39:42 2025 GMT Subject: CN=49CCAC3EBA10B4E05EF9AD224473503B6384290A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:9f:35:8d:4b:7a:db:6f:8b:e4:9a:a8:58: 14:a1:95:90:dc:cb:70:04:c1:78:e6:c9:7f:25:44: 51:a7:54:c6:8a:dd:b3:76:4d:eb:02:28:f4:53:63: 2a:6d:9a:4f:e5:0b:d1:98:c6:27:43:53:38:69:66: 69:23:57:80:67:03:b9:26:20:11:b4:96:72:47:95: 15:0f:d5:60:33:95:82:ca:a0:fd:ba:5e:31:e4:10: 3e:1e:bb:28:0f:a4:ef:7b:ad:f5:f2:27:2d:7e:a3: 5b:cd:36:36:9f:34:f7:b1:08:20:41:46:2f:e4:f4: 46:4b:7f:83:ba:7f:b7:0b:da:74:9e:57:39:be:b6: f9:5f:b7:03:d0:ad:2e:09:68:65:19:bd:84:4b:10: 51:33:c2:e9:e8:7f:21:dd:57:8a:27:8d:77:13:73: 98:ef:67:5c:14:33:f8:17:18:41:63:2c:9a:26:f1: 80:f2:5f:05:38:0d:7d:46:c0:bd:c4:11:92:79:07: aa:69:14:eb:c5:b9:46:21:04:8b:82:e3:d1:83:38: 0b:a6:90:2c:de:6b:c4:5c:28:84:c9:d8:05:b2:df: fa:51:e0:82:ef:ca:a9:b6:c2:ba:e0:1b:59:57:d1: 14:7a:f7:6a:36:13:41:22:47:02:ef:29:89:71:27: 61:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CC:AC:3E:BA:10:B4:E0:5E:F9:AD:22:44:73:50:3B:63:84:29:0A X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/23 Signature Algorithm: sha256WithRSAEncryption 20:14:83:38:61:07:4c:e6:d8:24:14:f0:94:63:b5:e9:cd:85: 0b:38:f6:54:62:7e:ef:40:08:6a:52:aa:5f:56:a9:b4:38:67: a3:1d:5e:1e:fe:26:ff:43:06:0a:c4:c5:f3:c4:38:6b:3e:37: 0e:85:7a:0b:5e:e5:97:67:88:90:55:ea:4c:49:20:63:89:a6: e6:5d:6e:13:ce:d6:87:82:b2:4e:a0:bf:b1:9b:60:32:cc:37: 9d:69:dd:62:eb:16:79:d1:fa:8d:90:d2:17:ae:f6:f1:e4:39: ae:f8:01:3d:08:a2:d8:41:b3:4d:3c:a2:7e:2d:3a:65:47:80: f0:e3:f6:58:d2:df:73:a3:b2:ef:d8:f2:ef:71:d0:76:d9:b5: 45:b4:89:96:23:8c:1b:c5:d9:a3:c1:e9:7c:ec:dc:2a:d2:33: 39:bf:b6:0f:50:6d:55:ab:c1:e6:07:0d:c6:40:a6:bb:3b:4c: c9:41:5c:db:d6:b7:f5:e9:31:b0:91:c8:65:25:6c:25:60:0f: d9:67:54:a6:44:47:d5:93:d6:91:f0:6e:99:ef:2e:86:2d:63: 76:70:1e:e8:4d:86:c5:ad:1c:81:d8:bf:c7:30:40:67:ce:5c: be:80:9b:3c:4a:66:25:f6:c6:99:45:86:32:4c:5d:64:fb:08: 81:0b:19:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWspoW+huARyNxPkiuLiwtKqpNUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yNDA2MTYwMDM0NDJaFw0yNTA2MTUwMDM5NDJaMDMxMTAvBgNV BAMTKDQ5Q0NBQzNFQkExMEI0RTA1RUY5QUQyMjQ0NzM1MDNCNjM4NDI5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3b581jUt622+L5JqoWBShlZDc y3AEwXjmyX8lRFGnVMaK3bN2TesCKPRTYyptmk/lC9GYxidDUzhpZmkjV4BnA7km IBG0lnJHlRUP1WAzlYLKoP26XjHkED4euygPpO97rfXyJy1+o1vNNjafNPexCCBB Ri/k9EZLf4O6f7cL2nSeVzm+tvlftwPQrS4JaGUZvYRLEFEzwunofyHdV4onjXcT c5jvZ1wUM/gXGEFjLJom8YDyXwU4DX1GwL3EEZJ5B6ppFOvFuUYhBIuC49GDOAum kCzea8RcKITJ2AWy3/pR4ILvyqm2wrrgG1lX0RR692o2E0EiRwLvKYlxJ2ErAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUScysProQtOBe+a0iRHNQO2OEKQowHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnl4wwDQYJ KoZIhvcNAQELBQADggEBACAUgzhhB0zm2CQU8JRjtenNhQs49lRifu9ACGpSql9W qbQ4Z6MdXh7+Jv9DBgrExfPEOGs+Nw6Fegte5ZdniJBV6kxJIGOJpuZdbhPO1oeC sk6gv7GbYDLMN51p3WLrFnnR+o2Q0heu9vHkOa74AT0IothBs008on4tOmVHgPDj 9ljS33Ojsu/Y8u9x0HbZtUW0iZYjjBvF2aPB6Xzs3CrSMzm/tg9QbVWrweYHDcZA prs7TMlBXNvWt/XpMbCRyGUlbCVgD9lnVKZER9WT1pHwbpnvLoYtY3ZwHuhNhsWt HIHYv8cwQGfOXL6AmzxKZiX2xplFhjJMXWT7CIELGcA= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org