$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa File: 3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: NUPlEw08Zx7YoeB4OqO+Ox+lwPcpmhcKsBziz0RYTAM= Subject key identifier: 96:1A:86:F1:D2:5A:AA:F1:F5:DC:E3:45:9A:A3:ED:1F:9A:E8:65:07 Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Certificate serial: 6DB2D2741CEA6340F9775D56DCBBDD1FE87A98F3 Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa Signing time: Wed 15 May 2024 09:00:01 +0000 ROA not before: Wed 15 May 2024 08:55:01 +0000 ROA not after: Wed 14 May 2025 09:00:01 +0000 asID: 149746 IP address blocks: 103.189.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b2:d2:74:1c:ea:63:40:f9:77:5d:56:dc:bb:dd:1f:e8:7a:98:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Validity Not Before: May 15 08:55:01 2024 GMT Not After : May 14 09:00:01 2025 GMT Subject: CN=961A86F1D25AAAF1F5DCE3459AA3ED1F9AE86507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c4:d0:58:83:b5:d7:09:c9:1a:3a:25:09:80: 86:fd:a5:1b:ff:4e:2e:cc:a6:d2:be:f1:bd:d8:34: 39:5a:dd:25:a3:e6:5e:4e:b4:81:4c:c0:35:31:41: 50:46:17:5e:74:a7:0c:01:ff:d2:7e:78:08:41:4d: d6:5a:d6:6c:bc:31:22:ed:29:2d:5a:f5:98:ed:e2: 26:6c:6a:31:62:aa:81:6b:76:cc:a6:64:51:70:46: 36:37:51:aa:b5:f7:0d:01:d8:ac:9c:3f:e4:3d:fc: 24:ea:b8:14:84:c1:80:6e:4f:e1:53:73:e8:e1:64: 30:a5:ee:11:d5:82:80:92:3d:49:16:6f:e4:31:73: b1:32:71:49:7e:fb:cb:d1:c4:52:3f:c5:46:84:6e: a0:5d:0e:2f:83:57:36:43:c8:e9:dc:0a:50:dc:e3: 52:63:f6:9d:37:e2:25:f2:b4:9a:c9:ed:aa:e7:be: ef:f1:55:94:0d:ea:12:d7:08:2f:49:97:a5:1e:ca: 00:f3:67:4f:7d:32:e5:a3:fa:a4:2e:38:df:06:c7: cd:85:0a:60:ff:12:28:03:8d:82:a5:77:21:35:4a: ff:1b:75:1a:94:f3:28:33:98:8a:d6:7c:44:68:02: 80:67:90:b0:a3:af:46:90:2d:ac:fc:c0:7b:c1:fa: f8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1A:86:F1:D2:5A:AA:F1:F5:DC:E3:45:9A:A3:ED:1F:9A:E8:65:07 X509v3 Authority Key Identifier: keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.63.0/24 Signature Algorithm: sha256WithRSAEncryption 88:2e:c1:26:bd:3c:3a:f1:f7:8f:3a:c5:ea:2d:cb:b2:5d:40: d3:62:24:15:f5:d9:15:82:4d:30:eb:89:5b:17:0c:69:16:c9: c9:e7:53:10:c4:50:dc:ec:4c:4a:7a:e6:a0:6c:4e:33:bb:1e: 5b:6b:25:ba:db:86:9b:8e:84:89:99:86:6b:8d:d0:36:2b:f6: 6f:c2:45:e2:68:56:49:66:60:84:62:ae:77:dc:ed:e4:f4:e6: 7a:cc:e2:06:05:72:09:f3:77:ba:17:87:7b:93:45:34:f6:8e: ed:94:89:a1:4a:3b:a4:05:a3:0e:6f:00:d8:61:ef:98:1f:42: cd:55:49:7f:a6:d1:87:6a:cd:e3:25:9a:8d:fc:de:41:29:91: 3d:ab:18:28:4e:36:c5:cc:3b:30:38:0f:8a:e5:cc:0f:13:25: 86:72:15:18:a6:a4:b2:c2:6d:df:07:5a:1c:4c:b3:4e:3a:b9: 1a:b8:e5:67:6c:6d:52:5a:1a:9c:bb:36:22:01:47:01:b6:c4: 1d:fc:5d:ac:4a:42:e9:09:0a:72:54:f5:5d:a6:b5:66:c2:8d: 45:13:1f:29:a8:36:ee:ca:47:ef:e0:c0:7f:52:9b:6d:95:f2: 5a:56:58:18:30:39:85:55:b4:e8:c4:d4:e2:95:66:d8:04:57: f8:f4:f8:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbbLSdBzqY0D5d11W3LvdH+h6mPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZF RTczRjMwNzAeFw0yNDA1MTUwODU1MDFaFw0yNTA1MTQwOTAwMDFaMDMxMTAvBgNV BAMTKDk2MUE4NkYxRDI1QUFBRjFGNURDRTM0NTlBQTNFRDFGOUFFODY1MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjxNBYg7XXCckaOiUJgIb9pRv/ Ti7MptK+8b3YNDla3SWj5l5OtIFMwDUxQVBGF150pwwB/9J+eAhBTdZa1my8MSLt KS1a9Zjt4iZsajFiqoFrdsymZFFwRjY3Uaq19w0B2KycP+Q9/CTquBSEwYBuT+FT c+jhZDCl7hHVgoCSPUkWb+Qxc7EycUl++8vRxFI/xUaEbqBdDi+DVzZDyOncClDc 41Jj9p034iXytJrJ7arnvu/xVZQN6hLXCC9Jl6UeygDzZ099MuWj+qQuON8Gx82F CmD/EigDjYKldyE1Sv8bdRqU8ygzmIrWfERoAoBnkLCjr0aQLaz8wHvB+vhvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlhqG8dJaqvH13ONFmqPtH5roZQcwHwYDVR0j BBgwFoAUvzjd1doqvwjrHdjYe1ZvNu5z8wcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjM0ZWYxZC03MzRkLTRjNzEtOGJhNy1kMzFlMTY4YjYzMmMvMC9CRjM4RERENURB MkFCRjA4RUIxREQ4RDg3QjU2NkYzNkVFNzNGMzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZFRTcz RjMwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMzRlZjFkLTczNGQtNGM3MS04 YmE3LWQzMWUxNjhiNjMyYy8wLzMxMzAzMzJlMzEzODM5MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ70/MA0GCSqG SIb3DQEBCwUAA4IBAQCILsEmvTw68fePOsXqLcuyXUDTYiQV9dkVgk0w64lbFwxp FsnJ51MQxFDc7ExKeuagbE4zux5bayW624abjoSJmYZrjdA2K/ZvwkXiaFZJZmCE Yq533O3k9OZ6zOIGBXIJ83e6F4d7k0U09o7tlImhSjukBaMObwDYYe+YH0LNVUl/ ptGHas3jJZqN/N5BKZE9qxgoTjbFzDswOA+K5cwPEyWGchUYpqSywm3fB1ocTLNO OrkauOVnbG1SWhqcuzYiAUcBtsQd/F2sSkLpCQpyVPVdprVmwo1FEx8pqDbuykfv 4MB/UpttlfJaVlgYMDmFVbToxNTilWbYBFf49Pg4 -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:42 2024 by rpki-client on console-fra.rpki-client.org