$ rpki-client -vvf repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa File: 3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa (raw, json) Hash identifier: Sm8HuoT40pZvIjKe3igk+4VoMhB7N+fd97QPZ1b6yDk= Subject key identifier: 84:00:08:E5:02:37:3E:16:EC:96:9B:BB:D2:09:0E:9A:3A:E8:14:20 Certificate issuer: /CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Certificate serial: 686300FCEB797DBEBCC95F090D314871E67EFB2E Authority key identifier: 90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa Signing time: Wed 01 May 2024 17:01:50 +0000 ROA not before: Wed 01 May 2024 16:56:50 +0000 ROA not after: Wed 30 Apr 2025 17:01:50 +0000 asID: 139455 IP address blocks: 103.145.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:63:00:fc:eb:79:7d:be:bc:c9:5f:09:0d:31:48:71:e6:7e:fb:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Validity Not Before: May 1 16:56:50 2024 GMT Not After : Apr 30 17:01:50 2025 GMT Subject: CN=840008E502373E16EC969BBBD2090E9A3AE81420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e4:3c:90:34:35:27:db:e2:bb:7a:6e:15:cd: e8:d1:83:fc:16:d4:b7:49:2c:83:df:08:0a:c3:e1: 6d:a2:56:cc:47:71:41:db:d2:07:6d:70:82:af:1d: 03:c2:50:e0:02:2c:09:c8:3e:d9:e2:35:6a:ab:12: d3:9f:4a:1e:d3:a4:41:7c:d0:29:6b:07:12:15:6f: ce:96:98:c8:76:fb:f7:13:66:8d:b6:21:3d:05:1e: e5:eb:6d:88:1d:c1:cd:75:15:bf:02:b2:14:7e:e4: 84:76:e2:8b:c0:1c:0e:12:67:13:a3:0a:9e:d7:e1: 55:c3:fd:d1:fa:de:a8:5c:0c:e2:88:c3:80:8b:49: 53:bd:8b:b8:76:97:88:b1:39:55:fe:a2:79:26:14: b4:15:00:2a:71:ed:5f:a4:11:3f:f3:ea:88:70:48: 77:e7:9a:93:dd:de:e2:fa:95:d0:d3:41:2a:65:30: e7:c0:68:97:e3:13:56:0c:78:5b:73:34:6e:61:dd: c4:5f:4c:76:b7:64:93:d6:73:1c:f5:f4:c5:b4:c2: 61:ee:7a:58:14:6c:b3:6d:ca:15:ed:e0:73:2a:0a: 4f:da:ef:e4:3b:0f:cc:7b:45:0e:bc:b8:51:ab:63: 3f:0e:a0:2f:4f:00:70:6a:4b:53:01:10:86:8c:12: 14:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:00:08:E5:02:37:3E:16:EC:96:9B:BB:D2:09:0E:9A:3A:E8:14:20 X509v3 Authority Key Identifier: keyid:90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32342d3234203d3e20313339343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.52.0/24 Signature Algorithm: sha256WithRSAEncryption ab:4f:4a:93:10:f8:e0:15:b8:8b:07:e6:90:f8:fb:2b:59:44: fb:e2:32:c0:f4:fe:89:5e:26:b3:44:3f:36:34:2b:3c:a1:b7: c4:77:3a:5f:65:9f:d4:57:8b:6f:56:81:4d:44:1b:a9:b5:a3: 31:97:ce:73:9d:f1:92:f7:50:ff:67:74:10:21:c6:3d:1e:ac: 8f:5a:76:3b:ef:58:ff:90:de:f4:eb:df:5c:69:69:95:ac:5c: e4:dc:91:f9:68:c3:fb:11:be:31:b6:68:c9:a7:d0:ec:f8:c3: 0a:59:66:7c:d8:59:bd:f8:82:e6:17:dd:a5:31:32:73:5c:28: 4c:8a:54:aa:3b:2f:6a:58:c6:27:25:ee:96:1b:63:59:f0:08: 25:29:57:a6:ab:9a:71:d2:3e:90:96:45:81:d0:0c:76:99:06: 48:6f:37:b8:22:78:b1:01:a0:75:45:4d:a4:18:f2:9b:d9:96: 9f:e2:14:94:4d:2b:9a:76:da:e4:f2:f9:e4:19:30:ab:28:e5: d3:0c:46:fd:80:8d:ec:ed:81:ea:ad:51:98:00:37:ef:b2:a3: df:e7:23:83:33:e0:71:94:79:a0:e8:cb:29:c3:0f:58:ae:19: a0:8d:cd:54:90:15:da:16:00:e6:33:cd:9c:7b:0b:c3:31:d4: 0a:8c:68:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaGMA/Ot5fb68yV8JDTFIceZ++y4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFF Q0VGODNBMzAeFw0yNDA1MDExNjU2NTBaFw0yNTA0MzAxNzAxNTBaMDMxMTAvBgNV BAMTKDg0MDAwOEU1MDIzNzNFMTZFQzk2OUJCQkQyMDkwRTlBM0FFODE0MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS5DyQNDUn2+K7em4VzejRg/wW 1LdJLIPfCArD4W2iVsxHcUHb0gdtcIKvHQPCUOACLAnIPtniNWqrEtOfSh7TpEF8 0ClrBxIVb86WmMh2+/cTZo22IT0FHuXrbYgdwc11Fb8CshR+5IR24ovAHA4SZxOj Cp7X4VXD/dH63qhcDOKIw4CLSVO9i7h2l4ixOVX+onkmFLQVACpx7V+kET/z6ohw SHfnmpPd3uL6ldDTQSplMOfAaJfjE1YMeFtzNG5h3cRfTHa3ZJPWcxz19MW0wmHu elgUbLNtyhXt4HMqCk/a7+Q7D8x7RQ68uFGrYz8OoC9PAHBqS1MBEIaMEhSLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhAAI5QI3Phbslpu70gkOmjroFCAwHwYDVR0j BBgwFoAUkOLMrKMj6rIUX1S3z2XF+uzvg6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzdmZmUyYS0zMWU0LTQ4MDAtOTdkNC03ODc0YzEyMzE5MTEvMC85MEUyQ0NBQ0Ez MjNFQUIyMTQ1RjU0QjdDRjY1QzVGQUVDRUY4M0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFFQ0VG ODNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3N2ZmZTJhLTMxZTQtNDgwMC05 N2Q0LTc4NzRjMTIzMTkxMS8wLzMxMzAzMzJlMzEzNDM1MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5E0MA0GCSqG SIb3DQEBCwUAA4IBAQCrT0qTEPjgFbiLB+aQ+PsrWUT74jLA9P6JXiazRD82NCs8 obfEdzpfZZ/UV4tvVoFNRBuptaMxl85znfGS91D/Z3QQIcY9HqyPWnY771j/kN70 699caWmVrFzk3JH5aMP7Eb4xtmjJp9Ds+MMKWWZ82Fm9+ILmF92lMTJzXChMilSq Oy9qWMYnJe6WG2NZ8AglKVemq5px0j6QlkWB0Ax2mQZIbze4InixAaB1RU2kGPKb 2Zaf4hSUTSuadtrk8vnkGTCrKOXTDEb9gI3s7YHqrVGYADfvsqPf5yODM+BxlHmg 6Mspww9Yrhmgjc1UkBXaFgDmM82cewvDMdQKjGgC -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:49 2024 by rpki-client on console-ams.rpki-client.org