$ rpki-client -vvf repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa File: 3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: EDBMQaQ4dqkKW3/Aqr0zHic0MOIJMjA++nVp8syiCJI= Subject key identifier: CA:50:5E:A6:04:01:D5:75:51:6E:6D:BF:01:5C:27:F8:59:3B:44:6B Certificate issuer: /CN=8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0 Certificate serial: 6D960CFF391E90462874E74A08501C663BF70602 Authority key identifier: 8C:57:C5:86:0B:F9:38:BB:57:E0:B7:ED:0F:89:0D:70:BF:EE:55:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa Signing time: Wed 19 Jun 2024 08:00:02 +0000 ROA not before: Wed 19 Jun 2024 07:55:02 +0000 ROA not after: Wed 18 Jun 2025 08:00:02 +0000 asID: 131111 IP address blocks: 103.159.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.crl rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:96:0c:ff:39:1e:90:46:28:74:e7:4a:08:50:1c:66:3b:f7:06:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0 Validity Not Before: Jun 19 07:55:02 2024 GMT Not After : Jun 18 08:00:02 2025 GMT Subject: CN=CA505EA60401D575516E6DBF015C27F8593B446B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f1:96:42:18:c5:f9:6f:78:87:43:48:fb:58: 9a:82:42:75:30:02:36:3b:07:c7:e5:26:00:90:86: 07:2e:61:0e:30:28:24:f7:88:1a:c4:39:1b:07:20: f4:8b:bb:68:af:26:da:51:9c:35:de:7c:99:34:e1: 32:99:b3:fd:9e:00:04:09:74:64:91:74:c5:04:43: 92:1e:55:46:fc:3a:e7:9a:8f:fa:92:fc:78:75:14: e0:d5:b5:b6:bb:ae:26:42:8f:7a:0a:ef:3d:1e:b1: d8:1a:76:2f:6b:2d:c9:f7:98:9b:ba:6e:83:f7:27: 2d:e9:4a:4e:83:66:42:46:09:3d:bd:e4:5b:d7:b8: c9:1d:8e:ed:8d:2f:5e:b5:d2:b5:ee:7b:ac:04:1a: 6e:95:3b:ea:1c:47:ab:a3:f2:f2:0b:cd:66:43:bc: 0a:66:00:bd:02:10:9f:e5:13:54:53:49:29:7d:c2: 02:01:88:31:d0:d7:6a:23:39:e9:d3:39:8d:77:aa: fd:62:0a:de:c4:72:0e:b1:41:41:01:8f:46:c5:ac: e3:63:a0:fa:2e:de:eb:fa:93:26:8d:bc:cc:1a:a6: 62:36:44:28:d7:18:85:7e:bd:ca:43:9f:1d:a7:a6: 27:87:4e:53:f8:a4:2f:c4:7b:bf:dd:08:97:79:b2: e5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:50:5E:A6:04:01:D5:75:51:6E:6D:BF:01:5C:27:F8:59:3B:44:6B X509v3 Authority Key Identifier: keyid:8C:57:C5:86:0B:F9:38:BB:57:E0:B7:ED:0F:89:0D:70:BF:EE:55:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C57C5860BF938BB57E0B7ED0F890D70BFEE55A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02913fa1-33ae-4e33-bbe2-81bd9f03c84b/0/3130332e3135392e3230322e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.202.0/23 Signature Algorithm: sha256WithRSAEncryption 96:5f:7d:d6:79:8b:7e:c2:83:02:a7:4c:7e:14:4d:e6:3a:93: 88:e9:26:b4:14:24:87:13:86:33:5d:e7:2c:fa:af:84:84:b1: ee:08:81:eb:e9:ac:90:b4:c2:24:71:fd:65:ef:01:1a:ba:17: bb:ea:12:68:ac:49:50:26:ca:e2:a6:ec:5f:1b:82:86:82:da: 8c:18:f6:68:25:33:9e:d6:22:7b:10:ba:08:bd:b9:78:16:6e: 95:08:8a:c6:8e:ca:e2:f0:3b:af:25:b0:c6:d7:96:96:18:a1: 67:ad:f6:19:a2:49:3e:11:d7:e9:9a:44:80:8e:23:fc:90:da: 12:9e:d8:d7:56:ab:d4:39:9e:a0:89:68:1e:ed:75:02:b0:4a: 48:6c:26:ab:00:72:df:b3:47:9f:45:c7:3e:af:0e:64:fa:a6: 5f:0a:1f:e0:bc:92:56:5f:64:c7:de:11:18:08:28:b7:74:44: 31:8f:c2:50:95:86:bd:90:74:f0:d9:45:b6:f7:dd:ce:28:9a: ef:54:6d:8f:36:c2:98:41:14:d9:84:5c:03:64:74:5a:6f:4d: 78:69:03:9b:1f:3e:e6:02:53:c2:0e:6e:96:5b:e5:8d:04:7f: a5:e2:79:e0:46:7c:e4:cd:94:8c:d2:e8:d8:59:a6:e8:a0:10: 85:fe:0a:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbZYM/zkekEYodOdKCFAcZjv3BgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1N0M1ODYwQkY5MzhCQjU3RTBCN0VEMEY4OTBENzBC RkVFNTVBMDAeFw0yNDA2MTkwNzU1MDJaFw0yNTA2MTgwODAwMDJaMDMxMTAvBgNV BAMTKENBNTA1RUE2MDQwMUQ1NzU1MTZFNkRCRjAxNUMyN0Y4NTkzQjQ0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM8ZZCGMX5b3iHQ0j7WJqCQnUw AjY7B8flJgCQhgcuYQ4wKCT3iBrEORsHIPSLu2ivJtpRnDXefJk04TKZs/2eAAQJ dGSRdMUEQ5IeVUb8Oueaj/qS/Hh1FODVtba7riZCj3oK7z0esdgadi9rLcn3mJu6 boP3Jy3pSk6DZkJGCT295FvXuMkdju2NL1610rXue6wEGm6VO+ocR6uj8vILzWZD vApmAL0CEJ/lE1RTSSl9wgIBiDHQ12ojOenTOY13qv1iCt7Ecg6xQUEBj0bFrONj oPou3uv6kyaNvMwapmI2RCjXGIV+vcpDnx2npieHTlP4pC/Ee7/dCJd5suWfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUylBepgQB1XVRbm2/AVwn+Fk7RGswHwYDVR0j BBgwFoAUjFfFhgv5OLtX4LftD4kNcL/uVaAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjkxM2ZhMS0zM2FlLTRlMzMtYmJlMi04MWJkOWYwM2M4NGIvMC84QzU3QzU4NjBC RjkzOEJCNTdFMEI3RUQwRjg5MEQ3MEJGRUU1NUEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1N0M1ODYwQkY5MzhCQjU3RTBCN0VEMEY4OTBENzBCRkVF NTVBMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyOTEzZmExLTMzYWUtNGUzMy1i YmUyLTgxYmQ5ZjAzYzg0Yi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8owDQYJ KoZIhvcNAQELBQADggEBAJZffdZ5i37CgwKnTH4UTeY6k4jpJrQUJIcThjNd5yz6 r4SEse4IgevprJC0wiRx/WXvARq6F7vqEmisSVAmyuKm7F8bgoaC2owY9mglM57W InsQugi9uXgWbpUIisaOyuLwO68lsMbXlpYYoWet9hmiST4R1+maRICOI/yQ2hKe 2NdWq9Q5nqCJaB7tdQKwSkhsJqsAct+zR59Fxz6vDmT6pl8KH+C8klZfZMfeERgI KLd0RDGPwlCVhr2QdPDZRbb33c4omu9UbY82wphBFNmEXANkdFpvTXhpA5sfPuYC U8IObpZb5Y0Ef6XieeBGfOTNlIzS6NhZpuigEIX+CgQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org