$ rpki-client -vvf repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa File: 3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa (raw, json) Hash identifier: hS4C96k05ou8TxNsTQvIO3EqHJirynZSoq48UJsNXT4= Subject key identifier: B6:19:A7:80:31:29:16:25:2F:2E:E0:9F:93:80:68:52:DF:00:0C:18 Certificate issuer: /CN=5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD Certificate serial: 68041F3EC4D98946D67191B77743B275D0E97DB9 Authority key identifier: 5A:CB:0F:96:C2:B1:25:5E:AB:AA:EB:C1:42:6E:CD:9E:6D:F6:C4:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa Signing time: Tue 23 Apr 2024 11:00:00 +0000 ROA not before: Tue 23 Apr 2024 10:55:00 +0000 ROA not after: Tue 22 Apr 2025 11:00:00 +0000 asID: 150991 IP address blocks: 103.252.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.crl rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:04:1f:3e:c4:d9:89:46:d6:71:91:b7:77:43:b2:75:d0:e9:7d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD Validity Not Before: Apr 23 10:55:00 2024 GMT Not After : Apr 22 11:00:00 2025 GMT Subject: CN=B619A780312916252F2EE09F93806852DF000C18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:42:44:bc:9d:9a:27:20:a7:6e:9c:62:36: cb:5b:ee:0c:3a:1a:8f:bb:3d:28:c9:90:83:8f:48: 62:35:af:1e:9a:f4:bd:63:71:9a:63:e0:45:c0:a2: 5b:97:b9:54:8d:18:ba:20:26:e5:40:bb:ba:97:ac: e3:86:2b:3e:8e:5a:c4:bf:79:23:80:c9:d3:0c:b1: 4f:7f:5a:06:10:28:33:36:02:b9:fe:c3:ca:2d:30: 5e:40:64:ad:34:4b:87:bd:2e:36:f4:4b:af:4d:cb: aa:65:76:79:d3:60:d5:c2:a2:2b:49:67:76:2e:09: 89:f9:cd:6e:3c:ee:e5:3b:71:0f:16:49:7c:f3:df: 05:a0:b6:d6:5c:c8:6b:25:ed:c5:93:ad:d6:8a:af: 76:c1:3b:28:04:fa:c2:f1:bd:5f:8f:02:c7:5e:67: b4:f2:e3:b3:70:58:9b:68:64:62:36:ad:b3:4a:15: 50:ca:7e:bf:b2:28:39:9e:e4:6f:aa:0e:38:ce:10: 7e:ad:23:cd:fe:19:3a:b2:f5:e8:00:69:de:ee:f2: a1:f4:a4:55:8e:c8:f6:94:83:b5:ee:62:1c:db:8e: e8:6b:d9:86:ee:d8:1a:b2:d8:f9:fa:57:be:5e:75: dd:08:b5:3c:f3:8f:0b:64:5b:ea:6d:cd:0c:bb:e8: 9f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:19:A7:80:31:29:16:25:2F:2E:E0:9F:93:80:68:52:DF:00:0C:18 X509v3 Authority Key Identifier: keyid:5A:CB:0F:96:C2:B1:25:5E:AB:AA:EB:C1:42:6E:CD:9E:6D:F6:C4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5ACB0F96C2B1255EABAAEBC1426ECD9E6DF6C4AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e13eed2b-955e-4093-88a4-f4de3cc9b9cd/0/3130332e3235322e34382e302f32342d3234203d3e20313530393931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.48.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:f3:9b:d4:44:20:0f:a6:95:79:3c:be:3e:85:f0:a8:bd:a0: 35:f5:25:ec:15:14:75:7e:10:52:fe:92:bf:17:07:8f:d9:19: 70:17:e6:6a:c6:7e:4a:ea:07:aa:e6:93:7d:73:3a:1f:bc:bb: 23:7c:47:b6:08:31:9f:1f:a9:f7:1e:54:26:1e:04:88:43:e7: 8f:90:15:69:93:15:f6:ce:d0:8e:d3:c4:59:03:2e:fc:f7:e8: 4a:74:eb:37:ea:b8:6b:d3:9b:82:53:42:3d:4d:0a:c9:cd:b0: 02:d7:7a:24:a8:ae:f3:53:ea:9c:b7:85:fb:5a:be:eb:ac:64: 01:e6:bf:86:11:4f:49:17:e2:24:f5:49:f8:e2:35:f9:88:27: f6:61:2c:4a:59:b0:65:ce:76:cb:cb:8a:40:1b:0f:f7:be:91: 45:76:da:ee:59:a6:e4:cd:60:72:52:09:44:71:10:42:12:16: 00:c0:59:08:43:d7:0c:dc:fe:8d:66:80:c5:17:09:ae:ac:54: f4:c2:a0:36:d0:3e:c4:b8:8b:8d:aa:bc:3d:04:76:c3:fa:c6: 03:a8:56:54:07:c9:61:8b:69:09:c2:38:92:25:ac:1f:7e:5d: 93:5d:25:41:31:78:9f:24:e7:74:bf:b2:5b:b3:e9:f3:e0:64: 7a:68:80:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaAQfPsTZiUbWcZG3d0OyddDpfbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDQjBGOTZDMkIxMjU1RUFCQUFFQkMxNDI2RUNEOUU2 REY2QzRBRDAeFw0yNDA0MjMxMDU1MDBaFw0yNTA0MjIxMTAwMDBaMDMxMTAvBgNV BAMTKEI2MTlBNzgwMzEyOTE2MjUyRjJFRTA5RjkzODA2ODUyREYwMDBDMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DUJEvJ2aJyCnbpxiNstb7gw6 Go+7PSjJkIOPSGI1rx6a9L1jcZpj4EXAoluXuVSNGLogJuVAu7qXrOOGKz6OWsS/ eSOAydMMsU9/WgYQKDM2Arn+w8otMF5AZK00S4e9Ljb0S69Ny6pldnnTYNXCoitJ Z3YuCYn5zW487uU7cQ8WSXzz3wWgttZcyGsl7cWTrdaKr3bBOygE+sLxvV+PAsde Z7Ty47NwWJtoZGI2rbNKFVDKfr+yKDme5G+qDjjOEH6tI83+GTqy9egAad7u8qH0 pFWOyPaUg7XuYhzbjuhr2Ybu2Bqy2Pn6V75edd0ItTzzjwtkW+ptzQy76J+PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUthmngDEpFiUvLuCfk4BoUt8ADBgwHwYDVR0j BBgwFoAUWssPlsKxJV6rquvBQm7Nnm32xK0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTNlZWQyYi05NTVlLTQwOTMtODhhNC1mNGRlM2NjOWI5Y2QvMC81QUNCMEY5NkMy QjEyNTVFQUJBQUVCQzE0MjZFQ0Q5RTZERjZDNEFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFDQjBGOTZDMkIxMjU1RUFCQUFFQkMxNDI2RUNEOUU2REY2 QzRBRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxM2VlZDJiLTk1NWUtNDA5My04 OGE0LWY0ZGUzY2M5YjljZC8wLzMxMzAzMzJlMzIzNTMyMmUzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/wwMA0GCSqG SIb3DQEBCwUAA4IBAQAN85vURCAPppV5PL4+hfCovaA19SXsFRR1fhBS/pK/FweP 2RlwF+Zqxn5K6geq5pN9czofvLsjfEe2CDGfH6n3HlQmHgSIQ+ePkBVpkxX2ztCO 08RZAy789+hKdOs36rhr05uCU0I9TQrJzbAC13okqK7zU+qct4X7Wr7rrGQB5r+G EU9JF+Ik9Un44jX5iCf2YSxKWbBlznbLy4pAGw/3vpFFdtruWabkzWByUglEcRBC EhYAwFkIQ9cM3P6NZoDFFwmurFT0wqA20D7EuIuNqrw9BHbD+sYDqFZUB8lhi2kJ wjiSJawffl2TXSVBMXifJOd0v7Jbs+nz4GR6aIC/ -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org