$ rpki-client -vvf repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa File: 3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa (raw, json) Hash identifier: KPo4wuLbGzX/6ydQMeGG4vRz99frNxB88+YZBW4aDp8= Subject key identifier: 88:B3:18:D6:AC:19:35:2B:A5:D7:78:E6:A3:EE:81:4E:D6:0C:AE:47 Certificate issuer: /CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036 Certificate serial: 7A51521FA636532DC4BFD785313173325C2C9DB6 Authority key identifier: 23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa Signing time: Fri 31 May 2024 12:00:00 +0000 ROA not before: Fri 31 May 2024 11:55:00 +0000 ROA not after: Fri 30 May 2025 12:00:00 +0000 asID: 149689 IP address blocks: 103.185.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.crl rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 20:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:51:52:1f:a6:36:53:2d:c4:bf:d7:85:31:31:73:32:5c:2c:9d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036 Validity Not Before: May 31 11:55:00 2024 GMT Not After : May 30 12:00:00 2025 GMT Subject: CN=88B318D6AC19352BA5D778E6A3EE814ED60CAE47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:b5:32:69:58:48:01:40:ff:62:34:e2:38:84: 76:1d:86:12:1c:98:b9:c3:7b:95:a3:ab:80:a0:54: bc:c6:e4:7d:99:16:53:9b:b1:a8:1a:13:c3:ee:53: e2:03:06:b7:88:f8:78:32:ef:c1:79:ce:e3:d6:21: 63:2f:85:30:eb:af:5d:52:bf:08:6b:6d:fc:75:44: 36:da:4c:d5:ff:88:d3:04:8d:7d:b5:32:5a:b2:1e: 0b:61:73:d6:0d:f5:be:9f:f4:54:b7:f0:f3:4d:41: 49:59:fd:e7:71:f8:36:03:47:8b:c9:ea:2f:89:c5: f2:a5:b2:63:24:a7:76:9b:d7:b1:88:b6:db:3e:85: 2b:ab:4f:23:98:86:5c:3c:40:41:04:34:18:79:c9: 0b:72:c3:d1:8c:6a:be:dc:6b:49:ff:5d:77:56:50: 76:c9:d8:2b:e0:25:7b:2a:34:03:a9:bc:5c:1c:ec: 3b:2f:fe:69:e4:6e:bc:6d:48:67:72:c7:cf:8a:8c: f6:0b:84:36:65:d3:53:77:ed:b0:76:b7:7f:fb:8a: 61:a5:0d:c0:ba:a3:8c:de:2f:d1:f4:59:34:9b:53: a3:d4:a4:24:fa:54:ba:74:dd:fc:97:ee:2e:66:b4: 89:66:8b:2b:cd:35:97:e9:15:2c:ac:ba:0f:c6:ed: ba:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B3:18:D6:AC:19:35:2B:A5:D7:78:E6:A3:EE:81:4E:D6:0C:AE:47 X509v3 Authority Key Identifier: keyid:23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.252.0/23 Signature Algorithm: sha256WithRSAEncryption 88:bc:af:ee:88:7f:fa:12:ea:0c:22:64:87:bd:91:4d:ff:b1: a8:39:02:89:bd:92:32:49:b0:c7:c2:58:39:6f:1e:64:4f:b4: af:47:a9:f6:18:16:4c:40:07:fe:15:25:36:03:74:17:f7:84: 50:7a:54:b0:ff:32:b8:22:ea:f6:d3:1d:b0:00:31:a8:6f:90: bf:62:66:6a:f2:01:d2:42:2d:86:49:1d:29:e7:7a:64:20:32: 21:57:3c:a6:2a:ce:7d:e3:0e:c7:12:cd:cc:b4:6d:6f:07:14: b2:9b:7d:6a:ae:10:2e:9f:a3:65:86:b7:7a:fb:b7:36:82:59: be:66:36:1f:2e:34:0c:5c:ba:53:4f:85:ea:9e:86:4c:35:dd: e2:f2:e4:d7:8a:fc:c3:ad:70:95:ee:f5:f1:05:bb:6f:57:71: 32:47:a5:26:cf:d2:19:93:81:d5:03:99:ca:b1:89:09:1c:fe: 25:ef:99:87:ba:97:97:1a:da:7e:60:e2:60:4b:d7:b3:ad:24: 82:ce:0d:0d:2e:3e:1c:36:e6:ad:96:bf:fc:30:ac:3d:34:cf: 14:ad:a7:f0:65:ff:95:07:62:aa:8b:7b:6f:9b:9a:2b:af:05: 6e:05:07:2e:41:82:78:3d:b6:80:8e:2e:f6:61:c3:47:a3:06: 5e:10:b4:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUelFSH6Y2Uy3Ev9eFMTFzMlwsnbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzN0U2M0EwMTQyOTg0RkFGRjBBRDlENDYyRUI2ODEw QUM2QTAzNjAeFw0yNDA1MzExMTU1MDBaFw0yNTA1MzAxMjAwMDBaMDMxMTAvBgNV BAMTKDg4QjMxOEQ2QUMxOTM1MkJBNUQ3NzhFNkEzRUU4MTRFRDYwQ0FFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7tTJpWEgBQP9iNOI4hHYdhhIc mLnDe5Wjq4CgVLzG5H2ZFlObsagaE8PuU+IDBreI+Hgy78F5zuPWIWMvhTDrr11S vwhrbfx1RDbaTNX/iNMEjX21MlqyHgthc9YN9b6f9FS38PNNQUlZ/edx+DYDR4vJ 6i+JxfKlsmMkp3ab17GItts+hSurTyOYhlw8QEEENBh5yQtyw9GMar7ca0n/XXdW UHbJ2CvgJXsqNAOpvFwc7Dsv/mnkbrxtSGdyx8+KjPYLhDZl01N37bB2t3/7imGl DcC6o4zeL9H0WTSbU6PUpCT6VLp03fyX7i5mtIlmiyvNNZfpFSysug/G7bqXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiLMY1qwZNSul13jmo+6BTtYMrkcwHwYDVR0j BBgwFoAUIzfmOgFCmE+v8K2dRi62gQrGoDYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTIzZDA2MC1iN2E1LTQ0NTUtOTk0MC00ZmI3YzcwNDQzMGYvMC8yMzM3RTYzQTAx NDI5ODRGQUZGMEFEOUQ0NjJFQjY4MTBBQzZBMDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMzN0U2M0EwMTQyOTg0RkFGRjBBRDlENDYyRUI2ODEwQUM2 QTAzNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MjNkMDYwLWI3YTUtNDQ1NS05 OTQwLTRmYjdjNzA0NDMwZi8wLzMxMzAzMzJlMzEzODM1MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnufwwDQYJ KoZIhvcNAQELBQADggEBAIi8r+6If/oS6gwiZIe9kU3/sag5Aom9kjJJsMfCWDlv HmRPtK9HqfYYFkxAB/4VJTYDdBf3hFB6VLD/Mrgi6vbTHbAAMahvkL9iZmryAdJC LYZJHSnnemQgMiFXPKYqzn3jDscSzcy0bW8HFLKbfWquEC6fo2WGt3r7tzaCWb5m Nh8uNAxculNPheqehkw13eLy5NeK/MOtcJXu9fEFu29XcTJHpSbP0hmTgdUDmcqx iQkc/iXvmYe6l5ca2n5g4mBL17OtJILODQ0uPhw25q2Wv/wwrD00zxStp/Bl/5UH YqqLe2+bmiuvBW4FBy5Bgng9toCOLvZhw0ejBl4QtK4= -----END CERTIFICATE-----Generated at Wed Nov 27 21:36:13 2024 by rpki-client on console-ams.rpki-client.org