$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa File: 3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa (raw, json) Hash identifier: jVne5rUtwt9PTYaeEjn6cm3OrPHuxr79CzttZiT3p34= Subject key identifier: 32:21:7F:CC:08:2D:9E:DB:41:B6:61:A2:23:82:85:0E:46:1A:9E:73 Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Certificate serial: 73079B8DBB2761F206E234DBEB9810E4A474B9A6 Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa Signing time: Thu 11 Jul 2024 20:00:01 +0000 ROA not before: Thu 11 Jul 2024 19:55:01 +0000 ROA not after: Thu 10 Jul 2025 20:00:01 +0000 asID: 64300 IP address blocks: 103.153.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:07:9b:8d:bb:27:61:f2:06:e2:34:db:eb:98:10:e4:a4:74:b9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89 Validity Not Before: Jul 11 19:55:01 2024 GMT Not After : Jul 10 20:00:01 2025 GMT Subject: CN=32217FCC082D9EDB41B661A22382850E461A9E73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:18:d9:85:8c:91:f7:36:ba:8b:ac:db:05:27: 1a:02:2c:a3:ce:c5:69:63:3b:d5:f3:f7:76:06:90: 9f:ef:c5:1b:c2:76:c3:59:f1:6c:a4:80:21:ed:3a: 94:3a:f7:41:5f:35:71:03:bb:b7:8b:28:59:05:24: 99:04:ce:7f:d0:af:29:8e:ef:52:85:ff:40:7a:5e: e4:07:5f:8e:4c:90:00:e3:c7:1e:ab:ef:1f:a7:0e: af:9d:4e:66:b9:76:f6:65:e2:24:47:bc:f5:b3:bc: 85:35:03:1c:f9:6c:d7:b0:1a:1a:c0:a9:88:f8:17: d5:8b:06:45:3f:15:99:c4:72:fd:dc:af:60:87:81: 28:f0:76:47:d9:a7:87:80:b1:46:7d:20:fd:52:fa: e4:60:76:fc:96:f5:64:bd:a5:35:ed:fa:28:63:e9: 34:1a:62:b5:1b:b9:76:f3:b5:48:30:9c:d7:af:11: 06:cf:af:8b:7c:7e:18:6b:5a:6f:22:0c:ff:d6:4f: 9f:68:66:c1:c4:40:22:25:dc:68:b3:21:0b:3f:74: a2:ba:b3:a1:b8:f3:a6:2b:74:19:14:2c:46:7a:5f: 3a:61:d8:14:52:3c:1e:76:56:85:6a:f3:25:eb:18: c5:29:1e:40:c7:6c:36:3b:8f:53:4d:e0:fb:4a:b4: 7d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:21:7F:CC:08:2D:9E:DB:41:B6:61:A2:23:82:85:0E:46:1A:9E:73 X509v3 Authority Key Identifier: keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134382e302f32332d3233203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.148.0/23 Signature Algorithm: sha256WithRSAEncryption 48:78:34:d9:e8:af:52:f4:05:e8:86:a1:51:96:fd:19:b5:0f: 52:a1:55:56:71:b7:7f:40:64:32:96:ca:d6:f6:1c:23:a9:74: 91:21:6a:b8:90:bc:12:65:99:ce:48:7f:fe:99:1a:08:fc:dd: f0:c3:ab:d4:99:5c:ae:91:3a:e8:1b:c4:81:1e:82:45:71:68: 9b:0e:41:ad:58:c0:72:c8:2f:ce:ab:61:4e:b7:69:98:ad:02: e9:a3:99:f1:fa:9e:9e:fd:3a:46:4a:41:eb:f3:0a:a4:ad:ae: c7:80:f0:28:72:db:c2:10:87:bd:2b:a7:86:f7:ea:74:f6:bc: d5:67:34:fd:99:58:34:d2:dc:8e:01:a1:af:9d:b1:be:74:8c: 36:86:b3:29:0b:38:f0:51:d7:98:1b:8e:99:49:36:07:28:fe: f9:12:f3:14:e2:ec:a2:be:d5:93:db:8b:bd:b9:39:7b:5f:35: db:cb:af:a6:5a:1a:d5:00:30:9b:33:af:c1:51:fe:e6:9a:45: 81:dd:17:4f:c1:f8:f9:bd:39:51:a0:1b:20:7e:57:cd:a2:db: ec:b4:7e:a1:5e:6d:ad:2d:25:82:7c:8c:2f:b2:41:10:3e:58: ee:95:b3:10:ab:d2:69:01:b6:2b:a6:04:8b:72:55:fb:fe:81: 79:3b:e9:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcwebjbsnYfIG4jTb65gQ5KR0uaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBE RTE0RkQ4OTAeFw0yNDA3MTExOTU1MDFaFw0yNTA3MTAyMDAwMDFaMDMxMTAvBgNV BAMTKDMyMjE3RkNDMDgyRDlFREI0MUI2NjFBMjIzODI4NTBFNDYxQTlFNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqGNmFjJH3NrqLrNsFJxoCLKPO xWljO9Xz93YGkJ/vxRvCdsNZ8WykgCHtOpQ690FfNXEDu7eLKFkFJJkEzn/QrymO 71KF/0B6XuQHX45MkADjxx6r7x+nDq+dTma5dvZl4iRHvPWzvIU1Axz5bNewGhrA qYj4F9WLBkU/FZnEcv3cr2CHgSjwdkfZp4eAsUZ9IP1S+uRgdvyW9WS9pTXt+ihj 6TQaYrUbuXbztUgwnNevEQbPr4t8fhhrWm8iDP/WT59oZsHEQCIl3GizIQs/dKK6 s6G486YrdBkULEZ6Xzph2BRSPB52VoVq8yXrGMUpHkDHbDY7j1NN4PtKtH1FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMiF/zAgtnttBtmGiI4KFDkYannMwHwYDVR0j BBgwFoAUkubKaDr6GOoDGd7Bfd9T4N4U/YkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDMwNGI2NC0yODk5LTQ4MzAtOWMzYy0zNzU4NGEzMjdlMWUvMC85MkU2Q0E2ODNB RkExOEVBMDMxOURFQzE3RERGNTNFMERFMTRGRDg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTJFNkNBNjgzQUZBMThFQTAzMTlERUMxN0RERjUzRTBERTE0 RkQ4OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMxMzAzMzJlMzEzNTMzMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjM0MzMzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5mUMA0GCSqG SIb3DQEBCwUAA4IBAQBIeDTZ6K9S9AXohqFRlv0ZtQ9SoVVWcbd/QGQylsrW9hwj qXSRIWq4kLwSZZnOSH/+mRoI/N3ww6vUmVyukTroG8SBHoJFcWibDkGtWMByyC/O q2FOt2mYrQLpo5nx+p6e/TpGSkHr8wqkra7HgPAoctvCEIe9K6eG9+p09rzVZzT9 mVg00tyOAaGvnbG+dIw2hrMpCzjwUdeYG46ZSTYHKP75EvMU4uyivtWT24u9uTl7 XzXby6+mWhrVADCbM6/BUf7mmkWB3RdPwfj5vTlRoBsgflfNotvstH6hXm2tLSWC fIwvskEQPljulbMQq9JpAbYrpgSLclX7/oF5O+mw -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:01 2024 by rpki-client on console-ams.rpki-client.org