$ rpki-client -vvf repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa File: 3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa (raw, json) Hash identifier: dBdAEMMIZQBHG9D050LJZcl9yacI+k3OYS4/Q2exWpo= Subject key identifier: 47:18:92:51:49:AD:31:E8:BE:3C:84:E6:1A:F3:C4:F1:5E:EF:50:82 Certificate issuer: /CN=E003E850B77C76F0E024F1DA6EFBD8767B411A81 Certificate serial: 54656DB36744E727A47ACDE6905273C6433C842D Authority key identifier: E0:03:E8:50:B7:7C:76:F0:E0:24:F1:DA:6E:FB:D8:76:7B:41:1A:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa Signing time: Tue 05 Mar 2024 01:00:01 +0000 ROA not before: Tue 05 Mar 2024 00:55:01 +0000 ROA not after: Tue 04 Mar 2025 01:00:01 +0000 asID: 141082 IP address blocks: 103.156.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.crl rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:65:6d:b3:67:44:e7:27:a4:7a:cd:e6:90:52:73:c6:43:3c:84:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E003E850B77C76F0E024F1DA6EFBD8767B411A81 Validity Not Before: Mar 5 00:55:01 2024 GMT Not After : Mar 4 01:00:01 2025 GMT Subject: CN=4718925149AD31E8BE3C84E61AF3C4F15EEF5082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c5:71:97:e7:50:f9:d6:b6:d4:1c:93:85:cd: a8:0a:94:84:61:7b:d9:6a:4e:c8:ca:99:86:3f:32: f9:3d:28:c9:48:63:f6:8d:00:02:8d:8e:46:48:39: a8:79:5d:c1:3b:7e:0d:8c:99:a3:88:5a:34:6e:10: 9b:69:43:5f:e9:c6:1d:ca:ad:77:38:99:eb:c2:94: 8a:c9:a7:fd:0b:3f:ff:6e:bd:c0:d3:91:9c:ae:de: 75:dc:db:fe:14:cc:e2:19:3e:f8:9b:4f:c5:b1:9e: 8a:0b:d2:b3:df:99:0c:08:fc:b1:1a:db:79:a3:f9: 7c:bd:00:3e:9c:b5:61:c3:f1:3e:4d:e1:15:ca:a4: 8b:52:8a:59:cc:f9:5e:dd:69:52:0e:40:f5:a3:94: a9:b3:0e:a2:b5:83:fe:81:e0:89:a4:6e:ee:5d:2b: 3f:04:c8:52:80:cf:1e:48:87:19:27:ed:1f:f6:b0: 48:fd:90:3c:99:e1:28:c6:de:fa:ab:a9:87:8e:30: fe:08:df:ed:ec:fc:78:dd:b8:d0:0c:bd:b9:e7:92: a5:b7:dc:bd:97:fc:19:dc:cd:48:e9:61:70:3d:45: a6:f9:e3:d0:46:e0:11:f8:49:73:de:2c:4b:6b:d1: 5d:a5:32:24:2f:ca:0f:ba:92:e9:85:6a:53:0c:4d: 4c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:18:92:51:49:AD:31:E8:BE:3C:84:E6:1A:F3:C4:F1:5E:EF:50:82 X509v3 Authority Key Identifier: keyid:E0:03:E8:50:B7:7C:76:F0:E0:24:F1:DA:6E:FB:D8:76:7B:41:1A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.74.0/23 Signature Algorithm: sha256WithRSAEncryption bb:66:96:cb:a8:57:11:db:1e:10:29:35:e3:7f:13:13:c8:89: 65:1a:38:46:f2:35:79:3f:c8:0e:08:b5:bd:ff:c0:a0:c1:38: de:68:51:68:cd:03:33:40:59:c3:00:c5:8e:5a:f8:2c:60:d4: 40:a5:f3:38:86:0a:0e:66:bb:42:7d:64:cd:3f:cc:6e:bb:19: 04:fb:89:6d:b1:a3:15:af:ac:a1:88:cd:e9:99:fe:eb:9a:17: 85:62:e8:29:85:ed:4e:52:3c:84:e1:2d:5c:b6:dd:bb:6f:58: 2d:f0:5b:d4:cb:c4:9e:7c:8f:de:b3:12:32:33:31:46:a4:bc: 18:4b:ac:42:d7:4a:b7:1c:80:17:f6:f3:08:35:14:d1:04:ba: e8:bc:10:15:53:1f:16:aa:8c:3a:d8:39:ab:19:79:83:39:fd: 65:fc:16:ea:8f:d7:5a:38:0c:5f:1d:09:f0:68:88:7f:47:fe: 69:ca:03:ad:ba:20:04:5b:6e:cc:81:ed:c0:94:7f:93:9c:58: 7b:d8:64:91:c3:20:b6:7d:9d:99:3d:3b:62:05:f2:5b:0a:c0: d7:ed:12:4b:61:85:65:97:bb:40:54:91:4e:b9:27:b3:f8:2b: e3:9e:ad:a1:a1:46:8e:49:8e:89:07:b2:0f:23:11:e7:09:f2: fd:35:75:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVGVts2dE5yekes3mkFJzxkM8hC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAwM0U4NTBCNzdDNzZGMEUwMjRGMURBNkVGQkQ4NzY3 QjQxMUE4MTAeFw0yNDAzMDUwMDU1MDFaFw0yNTAzMDQwMTAwMDFaMDMxMTAvBgNV BAMTKDQ3MTg5MjUxNDlBRDMxRThCRTNDODRFNjFBRjNDNEYxNUVFRjUwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVxXGX51D51rbUHJOFzagKlIRh e9lqTsjKmYY/Mvk9KMlIY/aNAAKNjkZIOah5XcE7fg2MmaOIWjRuEJtpQ1/pxh3K rXc4mevClIrJp/0LP/9uvcDTkZyu3nXc2/4UzOIZPvibT8WxnooL0rPfmQwI/LEa 23mj+Xy9AD6ctWHD8T5N4RXKpItSilnM+V7daVIOQPWjlKmzDqK1g/6B4Imkbu5d Kz8EyFKAzx5Ihxkn7R/2sEj9kDyZ4SjG3vqrqYeOMP4I3+3s/HjduNAMvbnnkqW3 3L2X/BnczUjpYXA9Rab549BG4BH4SXPeLEtr0V2lMiQvyg+6kumFalMMTUy/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURxiSUUmtMei+PITmGvPE8V7vUIIwHwYDVR0j BBgwFoAU4APoULd8dvDgJPHabvvYdntBGoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDAxMDJkMC03MTRmLTRiNTItOWJlNS1kZWQxNmVkZmU0YTIvMC9FMDAzRTg1MEI3 N0M3NkYwRTAyNEYxREE2RUZCRDg3NjdCNDExQTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTAwM0U4NTBCNzdDNzZGMEUwMjRGMURBNkVGQkQ4NzY3QjQx MUE4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwMDEwMmQwLTcxNGYtNGI1Mi05 YmU1LWRlZDE2ZWRmZTRhMi8wLzMxMzAzMzJlMzEzNTM2MmUzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xKMA0GCSqG SIb3DQEBCwUAA4IBAQC7ZpbLqFcR2x4QKTXjfxMTyIllGjhG8jV5P8gOCLW9/8Cg wTjeaFFozQMzQFnDAMWOWvgsYNRApfM4hgoOZrtCfWTNP8xuuxkE+4ltsaMVr6yh iM3pmf7rmheFYugphe1OUjyE4S1ctt27b1gt8FvUy8SefI/esxIyMzFGpLwYS6xC 10q3HIAX9vMINRTRBLrovBAVUx8Wqow62DmrGXmDOf1l/Bbqj9daOAxfHQnwaIh/ R/5pygOtuiAEW27Mge3AlH+TnFh72GSRwyC2fZ2ZPTtiBfJbCsDX7RJLYYVll7tA VJFOuSez+Cvjnq2hoUaOSY6JB7IPIxHnCfL9NXVi -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org