$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa File: 3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa (raw, json) Hash identifier: x2KnNs20e2P/gWXVltkdzSrnxajZNaZQrxNA/6UVN4M= Subject key identifier: 1F:48:FC:B1:2C:FD:D9:22:F7:BB:56:B4:32:79:9F:93:D6:34:7E:36 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 1F46D454075B2557C3910E2988699EA3270D43FD Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa Signing time: Wed 15 May 2024 10:02:07 +0000 ROA not before: Wed 15 May 2024 09:57:07 +0000 ROA not after: Wed 14 May 2025 10:02:07 +0000 asID: 140478 IP address blocks: 103.154.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:46:d4:54:07:5b:25:57:c3:91:0e:29:88:69:9e:a3:27:0d:43:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 15 09:57:07 2024 GMT Not After : May 14 10:02:07 2025 GMT Subject: CN=1F48FCB12CFDD922F7BB56B432799F93D6347E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:47:0b:2a:35:fc:14:5f:32:95:cf:e6:3f:8a: 66:84:62:4d:0e:3b:62:84:62:de:33:fa:8f:02:ee: aa:85:ca:49:19:93:d4:e7:d9:6d:3b:f7:99:78:32: 34:77:e3:d8:79:67:24:79:b9:0f:8d:c6:0e:b4:da: a6:79:80:08:9b:1f:13:5a:da:22:02:2a:9f:6e:d4: 8a:92:aa:5b:50:12:cd:b8:68:e0:a6:0d:ec:2d:9d: 4b:24:30:4a:8e:77:77:7f:be:63:b5:37:42:f5:67: ed:45:ab:78:b1:d2:5c:72:a6:41:33:0b:95:c6:c4: cf:a6:42:42:da:07:3c:c4:0f:eb:b2:58:2c:79:87: 77:34:e8:25:6c:ff:80:35:a3:1a:f2:cf:3f:24:29: c6:bc:d9:a7:af:bf:de:8b:81:72:2f:19:92:7f:ec: 6f:33:7d:0e:28:07:8f:39:c0:4f:17:1a:f4:d8:ce: b2:4d:e8:1c:83:3a:20:df:54:ce:7d:f5:8c:be:25: c1:0d:a0:e3:5d:ca:4d:e2:a1:51:1c:53:6f:5b:02: d6:2e:f3:25:6a:bf:75:70:46:88:82:99:75:90:e6: cc:31:93:4e:3a:3b:7f:76:4a:10:d0:7f:56:54:ef: 99:50:34:4b:a3:6b:6f:54:a2:63:7a:f5:62:72:f5: 5d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:48:FC:B1:2C:FD:D9:22:F7:BB:56:B4:32:79:9F:93:D6:34:7E:36 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:9a:f4:d8:10:51:c1:98:c1:9c:da:62:8d:ad:a3:f1:7f:af: 2d:a1:2b:25:da:70:35:34:93:c4:db:dd:ac:18:1a:30:9f:d6: af:a6:af:2d:34:58:a2:29:1e:4c:2a:74:d5:c3:60:82:4b:29: a0:c8:4e:1c:13:a6:69:93:52:c8:b5:0f:f5:c7:b1:ce:42:47: 5e:db:16:e7:37:43:c5:a3:74:1c:e5:56:9d:bf:e4:72:8f:69: ae:9e:0a:b6:14:65:2c:1e:92:0d:de:58:f6:c4:f1:a3:10:f6: 5c:77:f4:cd:41:fa:77:2b:c9:56:25:d1:77:0a:d7:91:cd:63: 56:a3:eb:bc:f4:d5:e5:84:6b:b4:6b:25:02:6d:a7:d3:f0:ee: 6d:77:5d:c8:8c:69:36:4d:27:94:f7:04:04:69:02:b5:1f:53: 48:fb:b6:56:85:4a:a8:f0:d5:bd:c8:48:cf:d6:b7:e8:3f:43: bf:46:49:37:50:bc:86:c2:e4:b7:25:82:db:34:2a:40:4e:5c: ad:6a:d0:cc:28:52:9e:b0:d6:ca:08:2a:3a:3b:12:bd:7d:3a: e4:64:53:df:6c:49:45:1c:a4:e8:a1:68:a7:27:5e:a8:32:d5: 9c:d2:26:e0:81:99:1d:01:ef:c5:a6:4f:31:d6:10:09:e7:ba: 3e:89:63:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH0bUVAdbJVfDkQ4piGmeoycNQ/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNDA1MTUwOTU3MDdaFw0yNTA1MTQxMDAyMDdaMDMxMTAvBgNV BAMTKDFGNDhGQ0IxMkNGREQ5MjJGN0JCNTZCNDMyNzk5RjkzRDYzNDdFMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6RwsqNfwUXzKVz+Y/imaEYk0O O2KEYt4z+o8C7qqFykkZk9Tn2W0795l4MjR349h5ZyR5uQ+Nxg602qZ5gAibHxNa 2iICKp9u1IqSqltQEs24aOCmDewtnUskMEqOd3d/vmO1N0L1Z+1Fq3ix0lxypkEz C5XGxM+mQkLaBzzED+uyWCx5h3c06CVs/4A1oxryzz8kKca82aevv96LgXIvGZJ/ 7G8zfQ4oB485wE8XGvTYzrJN6ByDOiDfVM599Yy+JcENoONdyk3ioVEcU29bAtYu 8yVqv3VwRoiCmXWQ5swxk046O392ShDQf1ZU75lQNEuja29UomN69WJy9V2/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH0j8sSz92SL3u1a0Mnmfk9Y0fjYwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQBamvTYEFHBmMGc2mKNraPxf68toSsl2nA1NJPE292sGBow n9avpq8tNFiiKR5MKnTVw2CCSymgyE4cE6Zpk1LItQ/1x7HOQkde2xbnN0PFo3Qc 5Vadv+Ryj2mungq2FGUsHpIN3lj2xPGjEPZcd/TNQfp3K8lWJdF3CteRzWNWo+u8 9NXlhGu0ayUCbafT8O5td13IjGk2TSeU9wQEaQK1H1NI+7ZWhUqo8NW9yEjP1rfo P0O/Rkk3ULyGwuS3JYLbNCpATlytatDMKFKesNbKCCo6OxK9fTrkZFPfbElFHKTo oWinJ16oMtWc0ibggZkdAe/Fpk8x1hAJ57o+iWMj -----END CERTIFICATE-----Generated at Sat Nov 23 20:31:24 2024 by rpki-client on console-fra.rpki-client.org