$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa File: 3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa (raw, json) Hash identifier: cfHCjnDarnllVj25dWqxiONS6Yx/wp58PJde0ROd4Lw= Subject key identifier: 07:24:4C:03:2C:20:54:2E:2D:9E:5C:E6:0D:9F:24:8A:2C:3C:7B:5D Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Certificate serial: 7062025F10917B4BF5925A1B18C304C1B4556825 Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa Signing time: Thu 25 Jan 2024 16:00:02 +0000 ROA not before: Thu 25 Jan 2024 15:55:02 +0000 ROA not after: Thu 23 Jan 2025 16:00:02 +0000 asID: 141122 IP address blocks: 103.157.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:62:02:5f:10:91:7b:4b:f5:92:5a:1b:18:c3:04:c1:b4:55:68:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Validity Not Before: Jan 25 15:55:02 2024 GMT Not After : Jan 23 16:00:02 2025 GMT Subject: CN=07244C032C20542E2D9E5CE60D9F248A2C3C7B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a4:e2:0b:f0:63:a7:e1:df:fe:10:eb:a4:83: 9b:9b:b8:b6:df:89:67:f1:24:cd:0b:e1:45:1e:8f: 93:b2:35:91:3b:d5:4b:d8:5f:cd:25:6d:df:51:9f: e5:a0:f3:6f:d9:3f:6a:30:d1:54:46:e0:55:4f:6e: 52:ce:35:ba:74:d0:a6:77:1b:ab:7c:f7:5f:e5:57: 42:db:e4:b2:14:9b:81:ef:48:3f:6a:df:ee:48:05: 5b:8d:8a:f5:e4:e4:90:4e:e0:4e:47:2e:7b:f7:c9: 31:0b:07:3e:f8:e9:48:11:e9:11:f3:a8:ae:4d:a6: fc:44:80:d9:60:15:07:6a:d3:94:e8:7f:90:f4:4f: 61:22:93:ca:c2:35:0b:ee:95:66:ac:5e:ac:8a:ef: 84:35:c5:73:61:0d:ff:b6:d6:2b:66:b6:2f:c3:42: 59:9c:1f:1e:0c:70:13:c7:3f:31:92:3c:77:a7:4b: 11:e5:2f:24:4d:59:5c:1a:83:2a:33:cb:64:94:70: 10:0c:1f:89:51:dd:ee:78:2a:46:20:41:2f:40:01: b5:3a:55:43:8c:d0:da:27:df:60:59:a7:cc:ee:ee: cf:26:7c:bb:54:36:ce:ed:79:8c:86:6a:2e:9e:40: 52:14:0e:60:60:16:e7:5c:04:27:f6:90:ef:f0:af: ab:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:24:4C:03:2C:20:54:2E:2D:9E:5C:E6:0D:9F:24:8A:2C:3C:7B:5D X509v3 Authority Key Identifier: keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.193.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:4f:6a:77:fb:2f:8f:be:39:ef:47:43:6c:d8:f1:90:46:dd: 31:44:44:39:7b:cb:de:64:57:09:76:14:13:69:d2:83:a2:88: 24:6a:5b:d3:1a:63:65:f4:b0:34:6b:ed:65:99:12:75:bc:f1: ac:cf:81:a0:63:09:1f:40:82:02:75:12:db:9f:63:7c:49:b7: 6e:8e:2b:52:82:81:ca:4c:91:58:8b:7a:fb:58:d6:ba:cd:fa: ff:8a:55:b5:5b:f3:9a:5e:57:e4:8f:13:3e:82:27:90:5e:81: de:ef:52:c1:01:7c:8e:5f:18:e3:23:11:5e:a6:b8:c2:9d:87: f1:04:8d:a5:6c:70:f5:73:e8:75:8a:3b:04:ee:c2:f1:d3:31: 84:c3:40:47:ff:b0:2a:1c:11:11:15:0f:69:ec:90:36:83:ce: 40:08:54:91:ce:40:24:8d:77:ba:eb:14:ce:35:54:39:91:9b: 1d:5e:7d:d5:4f:cd:46:6b:e8:9e:fa:2f:9c:4c:00:0b:fb:62: 6a:e0:6f:25:6b:77:83:b5:30:05:4e:4d:4d:73:c5:53:12:35: 50:30:d2:50:43:db:11:fa:7a:3a:1e:ab:72:f5:fa:16:79:5b: 94:bd:d3:9b:b8:75:e6:9f:13:0e:8d:96:f6:64:7b:57:71:8e: cb:e7:a3:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcGICXxCRe0v1klobGMMEwbRVaCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBC NDQ5MTM2RDAeFw0yNDAxMjUxNTU1MDJaFw0yNTAxMjMxNjAwMDJaMDMxMTAvBgNV BAMTKDA3MjQ0QzAzMkMyMDU0MkUyRDlFNUNFNjBEOUYyNDhBMkMzQzdCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDapOIL8GOn4d/+EOukg5ubuLbf iWfxJM0L4UUej5OyNZE71UvYX80lbd9Rn+Wg82/ZP2ow0VRG4FVPblLONbp00KZ3 G6t891/lV0Lb5LIUm4HvSD9q3+5IBVuNivXk5JBO4E5HLnv3yTELBz746UgR6RHz qK5NpvxEgNlgFQdq05Tof5D0T2Eik8rCNQvulWasXqyK74Q1xXNhDf+21itmti/D QlmcHx4McBPHPzGSPHenSxHlLyRNWVwagyozy2SUcBAMH4lR3e54KkYgQS9AAbU6 VUOM0Non32BZp8zu7s8mfLtUNs7teYyGai6eQFIUDmBgFudcBCf2kO/wr6u5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUByRMAywgVC4tnlzmDZ8kiiw8e10wHwYDVR0j BBgwFoAUA1rWqbcSxPp2t+gjp59kELRJE20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZmNWNlNy1iMzZiLTQ3M2QtYTViZS05YzAzNTBkMWYzODIvMC8wMzVBRDZBOUI3 MTJDNEZBNzZCN0U4MjNBNzlGNjQxMEI0NDkxMzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBCNDQ5 MTM2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnncEwDQYJ KoZIhvcNAQELBQADggEBACpPanf7L4++Oe9HQ2zY8ZBG3TFERDl7y95kVwl2FBNp 0oOiiCRqW9MaY2X0sDRr7WWZEnW88azPgaBjCR9AggJ1EtufY3xJt26OK1KCgcpM kViLevtY1rrN+v+KVbVb85peV+SPEz6CJ5Begd7vUsEBfI5fGOMjEV6muMKdh/EE jaVscPVz6HWKOwTuwvHTMYTDQEf/sCocEREVD2nskDaDzkAIVJHOQCSNd7rrFM41 VDmRmx1efdVPzUZr6J76L5xMAAv7YmrgbyVrd4O1MAVOTU1zxVMSNVAw0lBD2xH6 ejoeq3L1+hZ5W5S905u4deafEw6NlvZke1dxjsvno5M= -----END CERTIFICATE-----Generated at Sun Nov 24 03:16:16 2024 by rpki-client on console-ams.rpki-client.org