$ rpki-client -vvf repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa File: 3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa (raw, json) Hash identifier: 3V2LBds5CHlYeQ7BENLSGTWCVjLMN/8zv25ra0DZ92s= Subject key identifier: D9:FD:F5:D1:47:B8:3E:71:0F:EA:96:CE:2A:76:C8:EF:80:53:51:9B Certificate issuer: /CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Certificate serial: 2DB1B4E2FAA271D94127488C3CFD8DAB353EE629 Authority key identifier: 90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa Signing time: Wed 01 May 2024 17:01:51 +0000 ROA not before: Wed 01 May 2024 16:56:51 +0000 ROA not after: Wed 30 Apr 2025 17:01:51 +0000 asID: 139455 IP address blocks: 103.145.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b1:b4:e2:fa:a2:71:d9:41:27:48:8c:3c:fd:8d:ab:35:3e:e6:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3 Validity Not Before: May 1 16:56:51 2024 GMT Not After : Apr 30 17:01:51 2025 GMT Subject: CN=D9FDF5D147B83E710FEA96CE2A76C8EF8053519B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:73:5a:46:e2:46:ef:4d:5d:7f:5b:17:62:91: 32:bf:6b:b5:ee:3e:c7:65:26:87:d3:dc:2c:ce:0f: 63:45:dd:03:25:d2:0e:c8:e3:78:0e:11:46:e4:66: d0:d1:8e:6f:8f:4e:ea:48:ab:ab:59:ec:63:0b:d4: 95:30:56:f7:78:43:63:e8:ac:54:e5:a8:04:ed:59: 5f:b9:4e:57:30:2f:a4:c4:5a:1b:d7:8a:fa:ea:de: 7f:57:74:c1:bf:59:a8:55:f0:e8:0f:6a:25:f2:93: db:f8:63:fc:a7:57:01:a4:d2:4a:d9:69:54:e0:0f: 93:9d:6d:65:2d:28:66:8c:ea:4e:77:bd:c0:56:38: 41:bc:91:35:22:e1:ad:3b:ad:9c:02:93:70:09:80: a4:46:62:d7:b0:05:7d:79:7b:9f:55:9f:08:e3:6e: f9:f8:a3:f5:b8:9a:51:23:2e:d9:c6:c9:74:4a:0e: b5:88:b7:78:b5:80:5e:58:38:c9:f3:ce:f6:c7:ad: d7:67:2a:e9:99:b6:da:d9:d2:2c:d1:fa:51:25:20: 2d:03:4e:c6:b7:0f:14:da:f9:64:b5:09:d7:9b:4d: 3d:f2:0d:55:ed:66:a5:4a:83:a1:f7:19:c6:71:76: 10:2d:0d:d2:07:e2:88:76:b3:78:2b:65:37:88:dc: 3c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FD:F5:D1:47:B8:3E:71:0F:EA:96:CE:2A:76:C8:EF:80:53:51:9B X509v3 Authority Key Identifier: keyid:90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.53.0/24 Signature Algorithm: sha256WithRSAEncryption a8:a3:a0:5c:95:4f:7c:ac:53:c1:5f:df:59:a0:ec:ad:21:66: a1:f7:1b:74:12:a1:39:c4:9f:f6:9b:8d:37:74:b4:b3:eb:5d: 8f:bf:7b:e9:ce:d7:5e:67:78:26:1c:8c:f5:0b:e0:8b:ae:8b: 8f:42:a0:bd:86:46:2b:d1:e4:a4:a1:75:03:0f:6d:82:cc:11: 69:5e:18:fa:3c:68:cc:f9:66:ae:54:2d:80:97:35:6f:e3:3d: b9:40:ed:bf:4e:59:1c:ad:b5:cd:16:7b:bf:3c:54:ca:87:dd: b4:9b:18:07:60:ac:0c:3c:cc:c2:4f:64:f6:89:46:a2:8b:9a: 6a:00:77:2f:92:6b:82:db:8b:c0:1f:cf:df:67:a6:dd:7c:bc: 7e:2e:1b:cf:f6:6f:85:bd:4f:6e:db:76:f0:9f:fb:15:d6:51: c4:2e:87:b1:6a:37:f3:34:47:8a:6c:28:b9:80:0d:67:bd:76: 18:4e:86:50:60:cf:c6:be:e7:cd:d4:1b:f0:2d:43:60:26:1d: fe:13:59:79:f1:ca:d2:cd:6f:60:73:c0:43:3b:c7:2e:c3:a7: fa:16:85:ac:11:64:c6:cb:27:17:15:cc:72:7c:4d:86:ed:21: 04:f7:52:e1:9d:36:ba:57:d4:4e:c8:03:d0:15:5d:12:99:e9: 09:ba:5d:bc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULbG04vqicdlBJ0iMPP2NqzU+5ikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFF Q0VGODNBMzAeFw0yNDA1MDExNjU2NTFaFw0yNTA0MzAxNzAxNTFaMDMxMTAvBgNV BAMTKEQ5RkRGNUQxNDdCODNFNzEwRkVBOTZDRTJBNzZDOEVGODA1MzUxOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcc1pG4kbvTV1/WxdikTK/a7Xu PsdlJofT3CzOD2NF3QMl0g7I43gOEUbkZtDRjm+PTupIq6tZ7GML1JUwVvd4Q2Po rFTlqATtWV+5TlcwL6TEWhvXivrq3n9XdMG/WahV8OgPaiXyk9v4Y/ynVwGk0krZ aVTgD5OdbWUtKGaM6k53vcBWOEG8kTUi4a07rZwCk3AJgKRGYtewBX15e59Vnwjj bvn4o/W4mlEjLtnGyXRKDrWIt3i1gF5YOMnzzvbHrddnKumZttrZ0izR+lElIC0D Tsa3DxTa+WS1CdebTT3yDVXtZqVKg6H3GcZxdhAtDdIH4oh2s3grZTeI3DwhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2f310Ue4PnEP6pbOKnbI74BTUZswHwYDVR0j BBgwFoAUkOLMrKMj6rIUX1S3z2XF+uzvg6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzdmZmUyYS0zMWU0LTQ4MDAtOTdkNC03ODc0YzEyMzE5MTEvMC85MEUyQ0NBQ0Ez MjNFQUIyMTQ1RjU0QjdDRjY1QzVGQUVDRUY4M0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTBFMkNDQUNBMzIzRUFCMjE0NUY1NEI3Q0Y2NUM1RkFFQ0VG ODNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3N2ZmZTJhLTMxZTQtNDgwMC05 N2Q0LTc4NzRjMTIzMTkxMS8wLzMxMzAzMzJlMzEzNDM1MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5E1MA0GCSqG SIb3DQEBCwUAA4IBAQCoo6BclU98rFPBX99ZoOytIWah9xt0EqE5xJ/2m403dLSz 612Pv3vpztdeZ3gmHIz1C+CLrouPQqC9hkYr0eSkoXUDD22CzBFpXhj6PGjM+Wau VC2AlzVv4z25QO2/TlkcrbXNFnu/PFTKh920mxgHYKwMPMzCT2T2iUaii5pqAHcv kmuC24vAH8/fZ6bdfLx+LhvP9m+FvU9u23bwn/sV1lHELoexajfzNEeKbCi5gA1n vXYYToZQYM/GvufN1BvwLUNgJh3+E1l58crSzW9gc8BDO8cuw6f6FoWsEWTGyycX FcxyfE2G7SEE91LhnTa6V9ROyAPQFV0SmekJul28 -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org