$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa File: 3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa (raw, json) Hash identifier: 9dwe4u5dNN8l/gcR9tXRlcNeoUn9e3uuC8c97xcclBA= Subject key identifier: 94:25:EC:48:A6:CD:FF:71:BD:AD:11:63:21:49:FA:D3:87:BB:3C:D2 Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Certificate serial: 155725979FD591BEB6AAE6D2661706A51ECF4D59 Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa Signing time: Thu 25 Jan 2024 16:00:01 +0000 ROA not before: Thu 25 Jan 2024 15:55:01 +0000 ROA not after: Thu 23 Jan 2025 16:00:01 +0000 asID: 141122 IP address blocks: 103.157.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:57:25:97:9f:d5:91:be:b6:aa:e6:d2:66:17:06:a5:1e:cf:4d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Validity Not Before: Jan 25 15:55:01 2024 GMT Not After : Jan 23 16:00:01 2025 GMT Subject: CN=9425EC48A6CDFF71BDAD11632149FAD387BB3CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:7d:36:76:ec:1b:4a:06:f9:b4:b9:26:15: 27:4a:80:c0:40:a4:fe:64:fe:3b:50:fb:f0:3d:aa: 06:9e:fa:c5:9d:2e:10:1f:87:46:1a:89:e6:90:d2: a9:e9:13:aa:a3:09:36:4d:32:a8:fa:75:12:07:ab: 24:6a:58:2d:69:bd:cd:05:80:30:57:7a:5a:73:7e: 6c:be:0e:55:48:1c:6b:af:01:c4:e7:b3:0a:80:ce: 8f:7e:28:57:a1:03:82:cc:92:88:a9:37:b8:bf:b7: e8:31:bd:c2:43:e6:cc:67:49:d6:0f:0f:39:ca:4c: 38:78:10:a1:c2:ec:40:20:79:8d:f3:6b:8a:46:04: d7:4a:18:30:01:de:b0:e3:e9:f1:f4:1c:df:33:1d: eb:14:55:07:69:c0:78:9d:41:1d:1b:92:54:9f:b8: ac:be:d0:33:c0:5c:fd:93:4c:ee:cd:7d:38:3f:e3: 25:50:51:40:95:e1:e7:42:1e:80:29:80:83:91:81: 5a:02:da:44:84:7a:30:fe:11:66:e5:04:fb:73:51: 92:4f:ab:5e:47:fe:cc:46:db:bd:90:a5:a9:2c:45: 2b:dc:95:c8:0e:cc:2a:21:ef:2e:f2:cd:a1:23:f2: 42:b9:44:46:7a:93:54:d6:f4:f2:74:dd:35:a6:25: 30:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:25:EC:48:A6:CD:FF:71:BD:AD:11:63:21:49:FA:D3:87:BB:3C:D2 X509v3 Authority Key Identifier: keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.192.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:fa:12:e3:90:af:cc:45:ac:61:d7:21:69:49:89:eb:a1:e9: f6:c1:b9:49:cc:af:ae:de:83:03:4e:5f:47:40:a3:33:cb:c1: 7f:33:f2:a1:b5:60:f1:52:a7:f4:3e:0a:60:7f:d3:1a:b1:d8: 81:25:13:aa:01:42:26:f6:26:c8:1d:c9:03:40:56:de:d6:47: fc:bf:52:b3:5e:e6:1c:e5:a1:e2:83:bc:12:08:cb:06:74:73: d6:a0:8e:a9:b1:f5:d6:0a:49:79:29:17:ef:62:b9:0f:03:3a: c6:8d:21:0f:64:0b:ae:83:a6:15:1b:44:c3:ec:90:21:58:3f: 96:32:11:17:e3:7b:bb:86:39:43:bd:e8:ca:49:f7:39:d1:e3: bf:ef:bf:b5:e7:54:a9:1a:b7:b3:39:96:5f:45:25:78:68:0a: 37:89:db:77:68:c7:bf:e8:57:be:38:a9:b6:eb:00:85:61:af: 3a:be:5c:d5:72:a6:a7:69:fc:ed:5c:c9:5e:a9:27:3c:66:b3: c4:98:ca:33:8f:43:98:54:af:b0:d1:51:d5:25:0c:78:6c:e4: 2c:68:bf:30:ed:d0:79:f0:79:3e:ac:b8:8e:76:9b:8a:e6:f1: bc:3f:34:1b:3d:4b:4c:98:b2:89:ef:cc:0a:cf:25:67:eb:42: 1a:99:5b:7e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFVcll5/Vkb62qubSZhcGpR7PTVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBC NDQ5MTM2RDAeFw0yNDAxMjUxNTU1MDFaFw0yNTAxMjMxNjAwMDFaMDMxMTAvBgNV BAMTKDk0MjVFQzQ4QTZDREZGNzFCREFEMTE2MzIxNDlGQUQzODdCQjNDRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC55302duwbSgb5tLkmFSdKgMBA pP5k/jtQ+/A9qgae+sWdLhAfh0YaieaQ0qnpE6qjCTZNMqj6dRIHqyRqWC1pvc0F gDBXelpzfmy+DlVIHGuvAcTnswqAzo9+KFehA4LMkoipN7i/t+gxvcJD5sxnSdYP DznKTDh4EKHC7EAgeY3za4pGBNdKGDAB3rDj6fH0HN8zHesUVQdpwHidQR0bklSf uKy+0DPAXP2TTO7NfTg/4yVQUUCV4edCHoApgIORgVoC2kSEejD+EWblBPtzUZJP q15H/sxG272QpaksRSvclcgOzCoh7y7yzaEj8kK5REZ6k1TW9PJ03TWmJTCvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlCXsSKbN/3G9rRFjIUn604e7PNIwHwYDVR0j BBgwFoAUA1rWqbcSxPp2t+gjp59kELRJE20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZmNWNlNy1iMzZiLTQ3M2QtYTViZS05YzAzNTBkMWYzODIvMC8wMzVBRDZBOUI3 MTJDNEZBNzZCN0U4MjNBNzlGNjQxMEI0NDkxMzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBCNDQ5 MTM2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnncAwDQYJ KoZIhvcNAQELBQADggEBAGr6EuOQr8xFrGHXIWlJieuh6fbBuUnMr67egwNOX0dA ozPLwX8z8qG1YPFSp/Q+CmB/0xqx2IElE6oBQib2JsgdyQNAVt7WR/y/UrNe5hzl oeKDvBIIywZ0c9agjqmx9dYKSXkpF+9iuQ8DOsaNIQ9kC66DphUbRMPskCFYP5Yy ERfje7uGOUO96MpJ9znR47/vv7XnVKkat7M5ll9FJXhoCjeJ23dox7/oV744qbbr AIVhrzq+XNVypqdp/O1cyV6pJzxms8SYyjOPQ5hUr7DRUdUlDHhs5CxovzDt0Hnw eT6suI52m4rm8bw/NBs9S0yYsonvzArPJWfrQhqZW34= -----END CERTIFICATE-----Generated at Sun Nov 24 03:16:16 2024 by rpki-client on console-ams.rpki-client.org