$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa File: 3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: 5QmpoA9m0mmWsLSv00ogy7OAuITKadv3G3HLB3Oky3o= Subject key identifier: F1:1B:E6:67:33:0C:62:66:77:0B:35:87:C8:41:BD:44:6F:42:E6:DA Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Certificate serial: 6ADCACE97C63A0EBC0B6EE7B78119660AA77214F Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa Signing time: Wed 15 May 2024 09:00:01 +0000 ROA not before: Wed 15 May 2024 08:55:01 +0000 ROA not after: Wed 14 May 2025 09:00:01 +0000 asID: 149746 IP address blocks: 103.189.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:dc:ac:e9:7c:63:a0:eb:c0:b6:ee:7b:78:11:96:60:aa:77:21:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Validity Not Before: May 15 08:55:01 2024 GMT Not After : May 14 09:00:01 2025 GMT Subject: CN=F11BE667330C6266770B3587C841BD446F42E6DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5e:20:ee:cd:63:ad:89:2e:2f:21:76:a2:de: 14:5c:08:9a:f8:0a:f5:aa:58:99:7a:a2:e6:0c:2d: 7a:15:0c:85:95:f7:13:86:72:8b:11:8b:76:46:1b: 35:39:e7:b6:0f:40:a9:2c:81:f9:cf:88:b2:9a:ee: d4:b7:3f:ff:56:8a:b0:97:62:72:f0:18:66:23:7d: fc:0d:c9:e5:c2:7d:bc:da:3f:ed:5b:cc:57:67:6d: 74:49:7a:f3:0d:f4:40:6c:30:8c:5c:55:a8:5b:7c: 26:0a:93:ff:d2:7a:76:cd:08:7f:31:45:9c:2e:ed: 89:02:9f:d4:81:1d:27:25:3a:90:52:34:c1:a2:ac: 39:ac:8e:15:ed:ca:f6:78:c0:94:d2:44:0b:f8:9d: 6c:99:73:85:f6:5b:22:d1:9c:7c:00:cc:ff:7c:4e: 4b:4a:28:bf:dc:6d:44:62:c5:69:ce:8d:02:24:ce: 0b:31:1e:94:6b:b7:5a:85:c6:2d:44:50:20:64:3f: 2b:60:0f:5e:53:8b:5a:ab:57:23:10:30:e5:2a:59: 44:2a:e4:38:6d:9a:4e:7c:20:69:64:eb:b6:68:a5: 3e:ea:86:9b:fd:5f:ca:c1:e3:37:4a:fc:32:41:1d: b8:7f:b1:62:74:06:b8:5f:2c:20:c2:94:00:11:e1: a0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1B:E6:67:33:0C:62:66:77:0B:35:87:C8:41:BD:44:6F:42:E6:DA X509v3 Authority Key Identifier: keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36322e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.62.0/24 Signature Algorithm: sha256WithRSAEncryption a9:83:15:a9:03:28:87:38:be:fc:99:9c:d0:5c:30:62:f2:40: 1b:34:30:a3:5e:e0:a2:a9:13:3b:56:62:5b:bd:2d:c2:8c:20: 34:f6:b5:8f:28:d0:c8:8e:6d:e3:84:ac:a5:01:c1:be:6b:57: 40:96:bc:6f:9a:6f:ea:9e:9d:ca:b9:0a:34:09:e6:34:d1:d3: 78:da:70:41:3c:82:f1:d8:dc:30:2a:0b:53:d2:04:a5:76:aa: 43:5b:d1:e4:aa:76:96:9d:d0:60:54:24:4a:e8:5e:04:2e:c3: 19:c0:85:8a:22:13:66:45:11:47:6d:d2:62:01:af:49:2e:63: 4e:64:16:78:be:43:cf:04:03:85:65:0f:c5:e3:bf:46:16:67: f7:23:ca:bc:a0:25:1a:39:0f:3c:29:84:d0:b7:f6:a4:18:b4: 59:26:16:c4:24:41:cd:dd:73:f4:37:9b:38:80:e2:f8:ce:35: ed:a1:70:92:07:77:24:c9:20:b4:0a:08:8d:51:e2:dc:f1:d5: 17:d7:8c:3e:73:88:fc:1b:8c:47:3e:35:54:77:e4:8b:59:dd: 5c:3c:f6:6b:65:d3:de:ff:20:71:9c:bd:bd:0c:72:c5:f6:02: ec:93:69:01:9b:c1:58:af:d4:1c:5a:99:02:e5:d4:86:d7:7d: 75:79:46:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUatys6XxjoOvAtu57eBGWYKp3IU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZF RTczRjMwNzAeFw0yNDA1MTUwODU1MDFaFw0yNTA1MTQwOTAwMDFaMDMxMTAvBgNV BAMTKEYxMUJFNjY3MzMwQzYyNjY3NzBCMzU4N0M4NDFCRDQ0NkY0MkU2REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqXiDuzWOtiS4vIXai3hRcCJr4 CvWqWJl6ouYMLXoVDIWV9xOGcosRi3ZGGzU557YPQKksgfnPiLKa7tS3P/9WirCX YnLwGGYjffwNyeXCfbzaP+1bzFdnbXRJevMN9EBsMIxcVahbfCYKk//SenbNCH8x RZwu7YkCn9SBHSclOpBSNMGirDmsjhXtyvZ4wJTSRAv4nWyZc4X2WyLRnHwAzP98 TktKKL/cbURixWnOjQIkzgsxHpRrt1qFxi1EUCBkPytgD15Ti1qrVyMQMOUqWUQq 5Dhtmk58IGlk67ZopT7qhpv9X8rB4zdK/DJBHbh/sWJ0BrhfLCDClAAR4aAzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8RvmZzMMYmZ3CzWHyEG9RG9C5towHwYDVR0j BBgwFoAUvzjd1doqvwjrHdjYe1ZvNu5z8wcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjM0ZWYxZC03MzRkLTRjNzEtOGJhNy1kMzFlMTY4YjYzMmMvMC9CRjM4RERENURB MkFCRjA4RUIxREQ4RDg3QjU2NkYzNkVFNzNGMzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZFRTcz RjMwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMzRlZjFkLTczNGQtNGM3MS04 YmE3LWQzMWUxNjhiNjMyYy8wLzMxMzAzMzJlMzEzODM5MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ70+MA0GCSqG SIb3DQEBCwUAA4IBAQCpgxWpAyiHOL78mZzQXDBi8kAbNDCjXuCiqRM7VmJbvS3C jCA09rWPKNDIjm3jhKylAcG+a1dAlrxvmm/qnp3KuQo0CeY00dN42nBBPILx2Nww KgtT0gSldqpDW9HkqnaWndBgVCRK6F4ELsMZwIWKIhNmRRFHbdJiAa9JLmNOZBZ4 vkPPBAOFZQ/F479GFmf3I8q8oCUaOQ88KYTQt/akGLRZJhbEJEHN3XP0N5s4gOL4 zjXtoXCSB3ckySC0CgiNUeLc8dUX14w+c4j8G4xHPjVUd+SLWd1cPPZrZdPe/yBx nL29DHLF9gLsk2kBm8FYr9QcWpkC5dSG1311eUa+ -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:42 2024 by rpki-client on console-fra.rpki-client.org