$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa File: 3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa (raw, json) Hash identifier: GZnZAohaby/RVoCXnAijUDCNEuiMFpbsA1ftR6a9Zc4= Subject key identifier: A6:58:20:D4:51:81:DD:89:2F:81:41:9B:28:B4:46:E8:F0:20:5E:31 Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Certificate serial: 0DC97B46A031CB7691EB7150059D8B42132570B8 Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa Signing time: Thu 25 Jan 2024 16:00:02 +0000 ROA not before: Thu 25 Jan 2024 15:55:02 +0000 ROA not after: Thu 23 Jan 2025 16:00:02 +0000 asID: 141122 IP address blocks: 103.157.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c9:7b:46:a0:31:cb:76:91:eb:71:50:05:9d:8b:42:13:25:70:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Validity Not Before: Jan 25 15:55:02 2024 GMT Not After : Jan 23 16:00:02 2025 GMT Subject: CN=A65820D45181DD892F81419B28B446E8F0205E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:54:4c:d5:b7:cf:73:22:a4:a1:e4:01:0f: 60:60:96:30:ac:02:2c:cc:0f:e0:c8:b2:0c:26:3d: f3:75:06:02:15:9b:0a:73:b2:07:e7:83:4b:cb:9d: 11:12:35:1f:a5:24:42:60:1d:80:3e:fa:2c:be:06: d0:64:fc:5a:d2:a5:04:02:31:6b:51:e0:22:12:c1: 98:86:79:aa:32:ee:dd:d9:8e:f1:7a:6e:ce:ca:15: 0c:e0:5d:73:6c:8b:57:f5:a8:46:18:b4:ea:1e:86: 90:3f:2c:e3:00:75:45:da:f6:11:5c:fc:6a:48:80: 60:e3:18:98:72:a3:09:aa:ce:92:1a:1a:78:ec:eb: 0a:c4:00:3f:7e:5f:e4:e3:dd:e8:18:d5:4c:26:22: 5e:1e:f6:8e:a5:b1:14:36:49:0c:fd:64:e1:da:bf: 59:77:59:ba:10:90:1e:c4:a1:5a:0d:7d:dd:f5:a3: 0b:d2:43:ba:ba:79:4e:31:3d:3d:0f:79:db:b3:3d: 1f:34:b1:8e:38:c9:b8:97:45:5a:77:81:d6:28:be: fa:1c:37:13:10:ea:c9:f9:ef:2d:ce:bf:7b:c7:12: 5d:06:4c:c9:ee:9d:ab:38:8c:b8:b0:ea:d9:eb:10: ea:89:44:58:32:e0:6b:f0:84:c3:55:8c:db:2f:22: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:58:20:D4:51:81:DD:89:2F:81:41:9B:28:B4:46:E8:F0:20:5E:31 X509v3 Authority Key Identifier: keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.192.0/23 Signature Algorithm: sha256WithRSAEncryption e2:0b:51:a3:37:bd:03:a3:fe:4d:52:bd:88:b6:c3:ba:21:0a: a8:0e:38:7b:66:3a:c3:21:7f:f8:a9:89:25:22:e1:8f:7c:7a: e6:6b:91:36:6e:25:d5:00:30:8b:af:2d:89:6c:48:a7:5a:82: 6d:61:2c:30:d5:c7:86:bb:3f:28:7a:cb:5c:0e:43:68:6f:1a: 78:ca:a3:95:ac:df:66:5f:31:fb:42:a0:cd:61:fc:b7:17:1f: 11:97:a4:46:29:d4:73:0e:e8:8f:5c:df:fa:10:35:26:77:2e: 8c:7f:72:b2:fa:df:a0:4b:b1:71:77:5f:4d:c0:3b:0a:d4:b7: f1:c8:d1:b6:29:c6:25:dc:77:48:a7:d0:3c:3a:8c:22:c0:9a: 42:1c:d1:f9:69:b9:ae:df:d3:6f:a5:96:4e:03:0d:21:94:ad: 39:30:0b:9b:8a:80:e1:66:9f:5a:5c:22:e8:73:f7:94:d3:40: 62:31:db:bf:fd:cd:da:25:25:85:11:02:e2:3e:87:68:fe:10: 7d:3f:7f:79:3c:e6:79:bd:6c:f2:40:1b:e1:d2:05:9a:25:e7: 10:f9:ba:48:7a:c4:04:89:4c:55:ca:60:3e:82:e4:70:74:d0: 90:96:d8:0e:2e:ae:db:1c:f2:5a:3b:f7:bd:a0:fd:d4:fa:a0: 1b:80:e0:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDcl7RqAxy3aR63FQBZ2LQhMlcLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBC NDQ5MTM2RDAeFw0yNDAxMjUxNTU1MDJaFw0yNTAxMjMxNjAwMDJaMDMxMTAvBgNV BAMTKEE2NTgyMEQ0NTE4MUREODkyRjgxNDE5QjI4QjQ0NkU4RjAyMDVFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKs1RM1bfPcyKkoeQBD2BgljCs AizMD+DIsgwmPfN1BgIVmwpzsgfng0vLnRESNR+lJEJgHYA++iy+BtBk/FrSpQQC MWtR4CISwZiGeaoy7t3ZjvF6bs7KFQzgXXNsi1f1qEYYtOoehpA/LOMAdUXa9hFc /GpIgGDjGJhyowmqzpIaGnjs6wrEAD9+X+Tj3egY1UwmIl4e9o6lsRQ2SQz9ZOHa v1l3WboQkB7EoVoNfd31owvSQ7q6eU4xPT0PeduzPR80sY44ybiXRVp3gdYovvoc NxMQ6sn57y3Ov3vHEl0GTMnunas4jLiw6tnrEOqJRFgy4GvwhMNVjNsvIhWtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUplgg1FGB3YkvgUGbKLRG6PAgXjEwHwYDVR0j BBgwFoAUA1rWqbcSxPp2t+gjp59kELRJE20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZmNWNlNy1iMzZiLTQ3M2QtYTViZS05YzAzNTBkMWYzODIvMC8wMzVBRDZBOUI3 MTJDNEZBNzZCN0U4MjNBNzlGNjQxMEI0NDkxMzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBCNDQ5 MTM2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnncAwDQYJ KoZIhvcNAQELBQADggEBAOILUaM3vQOj/k1SvYi2w7ohCqgOOHtmOsMhf/ipiSUi 4Y98euZrkTZuJdUAMIuvLYlsSKdagm1hLDDVx4a7Pyh6y1wOQ2hvGnjKo5Ws32Zf MftCoM1h/LcXHxGXpEYp1HMO6I9c3/oQNSZ3Lox/crL636BLsXF3X03AOwrUt/HI 0bYpxiXcd0in0Dw6jCLAmkIc0flpua7f02+llk4DDSGUrTkwC5uKgOFmn1pcIuhz 95TTQGIx27/9zdolJYURAuI+h2j+EH0/f3k85nm9bPJAG+HSBZol5xD5ukh6xASJ TFXKYD6C5HB00JCW2A4urtsc8lo7972g/dT6oBuA4PY= -----END CERTIFICATE-----Generated at Sun Nov 24 03:16:16 2024 by rpki-client on console-ams.rpki-client.org