$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa File: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (raw, json) Hash identifier: wAGGklCk4B1PY/Yk97FdUVDq0X8tOoPh5XLBtQglwEI= Subject key identifier: 85:BE:3B:E1:A2:2C:75:F8:1E:9C:8A:7D:8B:86:64:42:6B:A5:A9:E2 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 19B6DEB50E612D0C82F3BD28196F463911589805 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa Signing time: Sun 31 Dec 2023 04:44:19 +0000 ROA not before: Sun 31 Dec 2023 04:39:19 +0000 ROA not after: Sun 29 Dec 2024 04:44:19 +0000 asID: 150487 IP address blocks: 103.55.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b6:de:b5:0e:61:2d:0c:82:f3:bd:28:19:6f:46:39:11:58:98:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Dec 31 04:39:19 2023 GMT Not After : Dec 29 04:44:19 2024 GMT Subject: CN=85BE3BE1A22C75F81E9C8A7D8B8664426BA5A9E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:39:19:fd:aa:39:cd:c4:c6:5d:45:14:00:df: c4:95:8f:6f:df:c5:38:e9:3f:83:ef:ea:ea:23:0d: 04:e7:d2:60:18:c3:cf:d2:45:91:59:dd:d3:53:61: 72:d3:f4:3a:11:35:4e:e3:58:34:7f:82:fa:33:a8: 07:3e:40:c6:97:90:2d:47:90:d8:2c:3a:25:f3:f3: 0d:83:c8:95:a5:6e:04:6e:97:14:07:ea:cb:8e:bc: 7c:99:c3:b6:62:72:7b:b3:72:77:d0:82:47:00:30: d3:c6:32:fc:00:e0:ad:b6:63:9b:34:1e:2f:48:0c: db:9e:82:89:ee:0c:4e:c6:32:04:56:f9:62:3b:37: 55:77:e6:98:4b:06:8a:e1:d0:ab:11:91:e7:82:2d: 65:b2:b9:fe:f6:23:e1:e4:2f:53:33:da:6a:5c:33: b0:e4:83:54:f9:ad:aa:86:f0:6f:63:1e:28:ae:b9: 8a:3f:e4:f8:e9:42:e1:c4:0c:0f:72:09:41:b6:73: 82:17:f8:22:bf:a1:18:10:50:b9:4b:dd:69:15:4b: ec:ec:41:d5:ca:01:fa:01:a9:ab:a8:99:d4:89:a0: 40:37:f9:16:3e:bf:a8:4e:b7:b0:5f:f9:d5:cf:34: 49:7c:10:cd:80:a1:51:6a:ce:41:36:64:43:f7:6a: 1a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BE:3B:E1:A2:2C:75:F8:1E:9C:8A:7D:8B:86:64:42:6B:A5:A9:E2 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32332d3234203d3e20313530343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.28.0/23 Signature Algorithm: sha256WithRSAEncryption 84:d5:32:88:84:61:d0:ef:f7:45:2e:a2:e4:ef:b0:53:67:26: 21:58:38:16:60:91:27:62:20:3a:22:7b:7f:75:60:b0:9a:23: 21:82:e1:3c:ed:8f:60:c4:7d:3f:aa:ba:b9:8b:d4:d1:2d:a9: 66:37:56:e4:fa:5c:a1:0a:29:55:19:68:6a:ce:95:b1:73:af: 3c:5e:ce:84:36:45:6f:17:8d:c7:ea:0b:6a:13:95:17:55:7e: 09:97:d7:0b:f1:a3:76:99:2e:cd:be:fb:5b:e1:e5:a0:45:2c: 73:fd:9b:61:e8:e6:a3:fc:8a:33:9b:c1:30:17:41:1b:93:3a: f5:3c:87:a4:a3:8e:b7:e3:d1:b8:40:f8:69:4a:85:42:a0:11: 36:f5:1a:20:be:70:4a:1f:6c:5b:32:f7:d7:f9:d9:e6:94:1b: 29:78:34:46:f9:29:7c:37:f4:c7:8c:c1:e9:5b:a2:5d:b9:a8: b8:f9:46:b3:01:3f:cf:89:76:df:0a:14:cc:ff:7b:09:e0:d9: 89:fc:2f:2c:6f:30:5c:71:e0:80:84:50:b8:9e:45:f8:25:47: 80:eb:d6:52:99:68:e9:b6:01:35:d5:58:29:ea:20:f6:83:39: c9:03:90:75:d8:c8:63:61:e0:98:80:d4:99:d1:51:9d:23:3d: 3c:87:05:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGbbetQ5hLQyC870oGW9GORFYmAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yMzEyMzEwNDM5MTlaFw0yNDEyMjkwNDQ0MTlaMDMxMTAvBgNV BAMTKDg1QkUzQkUxQTIyQzc1RjgxRTlDOEE3RDhCODY2NDQyNkJBNUE5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjORn9qjnNxMZdRRQA38SVj2/f xTjpP4Pv6uojDQTn0mAYw8/SRZFZ3dNTYXLT9DoRNU7jWDR/gvozqAc+QMaXkC1H kNgsOiXz8w2DyJWlbgRulxQH6suOvHyZw7ZicnuzcnfQgkcAMNPGMvwA4K22Y5s0 Hi9IDNuegonuDE7GMgRW+WI7N1V35phLBorh0KsRkeeCLWWyuf72I+HkL1Mz2mpc M7Dkg1T5raqG8G9jHiiuuYo/5PjpQuHEDA9yCUG2c4IX+CK/oRgQULlL3WkVS+zs QdXKAfoBqauomdSJoEA3+RY+v6hOt7Bf+dXPNEl8EM2AoVFqzkE2ZEP3ahqbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhb474aIsdfgenIp9i4ZkQmulqeIwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNjLWMyMDktNDY5YS04 ZTNjLWViM2Y1YTgzODYzZi8wLzMxMzAzMzJlMzUzNTJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc3HDANBgkqhkiG 9w0BAQsFAAOCAQEAhNUyiIRh0O/3RS6i5O+wU2cmIVg4FmCRJ2IgOiJ7f3VgsJoj IYLhPO2PYMR9P6q6uYvU0S2pZjdW5PpcoQopVRloas6VsXOvPF7OhDZFbxeNx+oL ahOVF1V+CZfXC/Gjdpkuzb77W+HloEUsc/2bYejmo/yKM5vBMBdBG5M69TyHpKOO t+PRuED4aUqFQqARNvUaIL5wSh9sWzL31/nZ5pQbKXg0RvkpfDf0x4zB6VuiXbmo uPlGswE/z4l23woUzP97CeDZifwvLG8wXHHggIRQuJ5F+CVHgOvWUplo6bYBNdVY Keog9oM5yQOQddjIY2HgmIDUmdFRnSM9PIcFKw== -----END CERTIFICATE-----Generated at Sat Jun 22 13:04:58 2024 by rpki-client on console-ams.rpki-client.org