$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa File: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (raw, json) Hash identifier: 75pOH7venM4sq9vCSKgnYFwi83LOYXcOR39NcWsYv6s= Subject key identifier: D0:28:BF:94:E8:5E:D5:C4:9F:E1:AA:E0:7B:2E:3F:61:DA:00:A9:57 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 25058CD2E2A290051FA10599B9FADFAB686BF897 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa Signing time: Tue 30 Apr 2024 10:10:46 +0000 ROA not before: Tue 30 Apr 2024 10:05:46 +0000 ROA not after: Tue 29 Apr 2025 10:10:46 +0000 asID: 133811 IP address blocks: 103.52.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:05:8c:d2:e2:a2:90:05:1f:a1:05:99:b9:fa:df:ab:68:6b:f8:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Apr 30 10:05:46 2024 GMT Not After : Apr 29 10:10:46 2025 GMT Subject: CN=D028BF94E85ED5C49FE1AAE07B2E3F61DA00A957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a9:8e:16:75:c7:06:cd:f5:25:dc:ac:4a:4f: 5a:6f:f1:62:fe:c2:35:87:fb:61:75:78:2e:25:25: b7:a0:3e:5c:45:00:1a:5b:db:21:d0:b5:92:37:9d: d5:41:85:ab:11:54:a5:d9:68:9a:50:eb:34:f1:0c: 93:e0:65:e9:f7:b3:90:bd:11:7f:4d:f0:34:0a:c1: b9:98:43:84:de:0b:69:bf:74:b2:0e:f7:e7:77:fb: 8d:7f:76:84:10:c6:32:3c:70:ee:cc:03:8d:53:5a: 22:b5:df:e8:de:0c:0a:3b:4f:56:4b:ed:fe:ca:40: 32:b4:c9:0b:46:c3:e9:13:a6:b4:3e:17:4e:4b:34: c0:a4:65:69:d7:48:93:c5:d2:d5:8f:5e:b8:bb:21: cb:64:d1:d7:f0:62:34:72:ac:a3:c3:91:67:3f:3e: 16:b9:ba:1e:c6:53:8b:e8:5a:11:9c:fc:f6:7f:7c: cf:46:0e:4b:8d:68:bb:b6:14:cb:26:6b:9e:66:87: 80:19:ca:b4:25:37:8c:72:14:a0:df:0b:36:d0:6e: 12:9d:ba:83:e8:14:a1:10:d5:e6:e0:e8:9a:18:9f: 0d:1b:ea:bc:bb:8d:84:88:a1:e4:9f:10:25:81:ce: 7f:28:07:98:a9:f5:c6:f7:3d:c5:1b:bb:62:23:d0: ca:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:28:BF:94:E8:5E:D5:C4:9F:E1:AA:E0:7B:2E:3F:61:DA:00:A9:57 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.16.0/22 Signature Algorithm: sha256WithRSAEncryption 23:ce:3f:72:f4:20:d3:d7:5b:b7:36:c2:ee:fd:84:cb:ec:b5: 31:fc:d0:c4:fe:89:9e:5c:fa:45:9f:88:f8:1f:b7:da:7f:db: 5a:71:ee:29:bd:f0:0f:94:a5:44:c9:a1:4d:ee:8c:bd:25:15: 6b:78:98:ff:bc:34:f3:59:65:02:15:c6:2e:81:4e:f6:42:6a: 19:d7:a7:5c:bb:c7:8c:33:74:99:50:2e:0b:ea:4d:4d:43:d4: 07:66:e1:52:f7:19:0d:61:42:30:8a:60:ab:ea:64:ac:6b:48: 25:96:92:49:e0:3a:d8:93:fb:d4:40:6e:d9:77:7a:79:d4:80: ee:23:a1:d2:a4:8e:34:2b:e1:d3:d3:10:65:1c:45:c2:41:cc: 62:ff:ce:0a:37:51:f5:04:9d:ff:de:3e:f2:ff:5e:2c:f7:b5: ae:74:27:27:4e:e8:78:b7:b6:a8:77:5f:aa:41:49:55:87:cf: ad:d8:36:b5:62:c1:45:fe:db:6d:18:94:d4:11:71:86:cb:94: b0:87:ea:a3:73:90:5a:51:a6:c8:d2:f0:73:88:e7:92:0c:bf: 31:93:6f:d8:8a:e0:0e:14:a1:51:0e:35:68:06:5a:28:13:00: c5:97:e5:01:8d:9c:68:8a:1f:40:be:e2:c5:0c:b9:09:cc:d4: 00:ec:be:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJQWM0uKikAUfoQWZufrfq2hr+JcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNDA0MzAxMDA1NDZaFw0yNTA0MjkxMDEwNDZaMDMxMTAvBgNV BAMTKEQwMjhCRjk0RTg1RUQ1QzQ5RkUxQUFFMDdCMkUzRjYxREEwMEE5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxqY4WdccGzfUl3KxKT1pv8WL+ wjWH+2F1eC4lJbegPlxFABpb2yHQtZI3ndVBhasRVKXZaJpQ6zTxDJPgZen3s5C9 EX9N8DQKwbmYQ4TeC2m/dLIO9+d3+41/doQQxjI8cO7MA41TWiK13+jeDAo7T1ZL 7f7KQDK0yQtGw+kTprQ+F05LNMCkZWnXSJPF0tWPXri7Ictk0dfwYjRyrKPDkWc/ Pha5uh7GU4voWhGc/PZ/fM9GDkuNaLu2FMsma55mh4AZyrQlN4xyFKDfCzbQbhKd uoPoFKEQ1ebg6JoYnw0b6ry7jYSIoeSfECWBzn8oB5ip9cb3PcUbu2Ij0MqFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0Ci/lOhe1cSf4argey4/YdoAqVcwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc0EDANBgkqhkiG 9w0BAQsFAAOCAQEAI84/cvQg09dbtzbC7v2Ey+y1MfzQxP6Jnlz6RZ+I+B+32n/b WnHuKb3wD5SlRMmhTe6MvSUVa3iY/7w081llAhXGLoFO9kJqGdenXLvHjDN0mVAu C+pNTUPUB2bhUvcZDWFCMIpgq+pkrGtIJZaSSeA62JP71EBu2Xd6edSA7iOh0qSO NCvh09MQZRxFwkHMYv/OCjdR9QSd/94+8v9eLPe1rnQnJ07oeLe2qHdfqkFJVYfP rdg2tWLBRf7bbRiU1BFxhsuUsIfqo3OQWlGmyNLwc4jnkgy/MZNv2IrgDhShUQ41 aAZaKBMAxZflAY2caIofQL7ixQy5CczUAOy+9w== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org