$ rpki-client -vvf repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa File: 3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa (raw, json) Hash identifier: zBmW9Bk2lLkpCt+UwsQR1DXBR9F91BW/SX5QBgtlozE= Subject key identifier: 05:B0:DF:B1:37:C7:1E:EE:49:16:2E:06:61:2B:92:B3:C2:8F:A0:DD Certificate issuer: /CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Certificate serial: 387C44972DC8D2B41C92F2B843B39156D0B8452F Authority key identifier: 33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa Signing time: Wed 12 Jun 2024 07:00:05 +0000 ROA not before: Wed 12 Jun 2024 06:55:05 +0000 ROA not after: Wed 11 Jun 2025 07:00:05 +0000 asID: 58821 IP address blocks: 103.188.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7c:44:97:2d:c8:d2:b4:1c:92:f2:b8:43:b3:91:56:d0:b8:45:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EF8ED81E12A39E325D47325D8FDA76CC497040 Validity Not Before: Jun 12 06:55:05 2024 GMT Not After : Jun 11 07:00:05 2025 GMT Subject: CN=05B0DFB137C71EEE49162E06612B92B3C28FA0DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8c:66:09:94:08:89:5a:c7:49:5c:ea:67:0e: ca:99:5d:1a:4d:75:59:2b:78:8c:31:5f:29:77:3b: cb:12:25:9d:24:c0:6d:b2:5a:7a:24:b2:47:04:69: d0:78:19:40:34:c7:f2:17:a3:50:45:ef:c8:bd:e3: c6:9e:c7:6f:59:fa:c5:c6:f6:a4:f4:05:c4:29:fa: d7:92:24:ab:8f:f7:7b:96:95:51:c1:77:8a:33:09: a1:fc:7b:14:03:4c:33:ba:69:8f:07:8d:23:2b:9e: a6:ea:b1:63:e0:04:ed:f7:90:ba:ea:d0:6c:73:13: 07:08:d1:83:9b:9d:18:43:58:f2:2f:8f:71:23:4d: ec:fc:ec:9f:52:75:97:f3:63:e6:14:c5:eb:bf:9d: 08:16:d1:bc:05:bc:78:76:b9:86:2c:34:4b:20:6d: 11:14:04:31:24:98:7f:1b:84:b8:19:b4:02:3a:d4: cd:df:77:8a:ad:f2:c1:9a:ef:d3:08:61:ac:b6:d2: dd:38:84:b1:e5:7c:2b:33:79:b3:36:81:21:95:c3: 21:bb:23:b5:fb:f6:a1:75:b6:f2:24:20:2c:c5:31: 5b:68:65:bf:8a:58:bb:25:7c:8e:f8:ef:32:8d:24: f8:f0:5b:7c:a6:02:df:2e:db:43:17:a8:5f:f5:fe: 48:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B0:DF:B1:37:C7:1E:EE:49:16:2E:06:61:2B:92:B3:C2:8F:A0:DD X509v3 Authority Key Identifier: keyid:33:EF:8E:D8:1E:12:A3:9E:32:5D:47:32:5D:8F:DA:76:CC:49:70:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/33EF8ED81E12A39E325D47325D8FDA76CC497040.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33EF8ED81E12A39E325D47325D8FDA76CC497040.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03ade9c0-cde1-47f0-9cd2-4a57bdde14e8/0/3130332e3138382e3136392e302f32342d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.169.0/24 Signature Algorithm: sha256WithRSAEncryption 79:e5:24:85:f3:69:25:91:24:51:a0:38:9f:ab:52:e5:33:dc: 75:1f:fa:1e:9a:08:db:bd:f9:03:b8:74:32:f6:36:c8:02:ff: 8b:b9:7c:4e:55:13:72:b9:cc:e0:33:97:10:38:e1:f5:78:2c: a6:e2:04:4d:af:87:da:d5:1e:78:ce:27:46:90:61:81:70:01: e8:bd:74:4f:51:2a:c3:05:74:b9:02:a3:f8:c1:5d:e6:76:c7: bf:43:43:8b:ae:6d:d1:50:d4:4d:9d:d8:2e:2e:8d:40:bf:20: e1:e6:a3:32:78:cb:cb:97:a5:ca:50:75:4e:6d:a9:26:3a:ee: 8b:5a:14:a4:7f:72:38:7b:91:fe:a9:97:d2:07:e1:44:f5:fc: 6a:4e:71:19:b2:c1:72:cd:06:1a:72:43:9a:1f:b8:97:3f:e4: 85:36:f4:fc:f3:fb:5c:34:36:f2:57:66:2b:4d:67:cb:c7:de: d6:c0:13:b7:dd:48:8f:6d:67:be:22:63:52:34:94:2e:88:ff: 57:0c:6c:59:63:28:3d:83:a8:f3:72:35:42:65:b2:93:7f:8d: c5:61:95:53:5a:75:09:08:26:94:02:da:29:65:fd:b7:1e:bd: 82:05:40:6e:4b:e1:56:a1:ec:44:a2:b5:15:06:06:eb:9d:91: 32:06:81:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOHxEly3I0rQckvK4Q7ORVtC4RS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZD QzQ5NzA0MDAeFw0yNDA2MTIwNjU1MDVaFw0yNTA2MTEwNzAwMDVaMDMxMTAvBgNV BAMTKDA1QjBERkIxMzdDNzFFRUU0OTE2MkUwNjYxMkI5MkIzQzI4RkEwREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIjGYJlAiJWsdJXOpnDsqZXRpN dVkreIwxXyl3O8sSJZ0kwG2yWnokskcEadB4GUA0x/IXo1BF78i948aex29Z+sXG 9qT0BcQp+teSJKuP93uWlVHBd4ozCaH8exQDTDO6aY8HjSMrnqbqsWPgBO33kLrq 0GxzEwcI0YObnRhDWPIvj3EjTez87J9SdZfzY+YUxeu/nQgW0bwFvHh2uYYsNEsg bREUBDEkmH8bhLgZtAI61M3fd4qt8sGa79MIYay20t04hLHlfCszebM2gSGVwyG7 I7X79qF1tvIkICzFMVtoZb+KWLslfI747zKNJPjwW3ymAt8u20MXqF/1/kjTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBbDfsTfHHu5JFi4GYSuSs8KPoN0wHwYDVR0j BBgwFoAUM++O2B4So54yXUcyXY/adsxJcEAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2FkZTljMC1jZGUxLTQ3ZjAtOWNkMi00YTU3YmRkZTE0ZTgvMC8zM0VGOEVEODFF MTJBMzlFMzI1RDQ3MzI1RDhGREE3NkNDNDk3MDQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNFRjhFRDgxRTEyQTM5RTMyNUQ0NzMyNUQ4RkRBNzZDQzQ5 NzA0MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzYWRlOWMwLWNkZTEtNDdmMC05 Y2QyLTRhNTdiZGRlMTRlOC8wLzMxMzAzMzJlMzEzODM4MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ypMA0GCSqG SIb3DQEBCwUAA4IBAQB55SSF82klkSRRoDifq1LlM9x1H/oemgjbvfkDuHQy9jbI Av+LuXxOVRNyuczgM5cQOOH1eCym4gRNr4fa1R54zidGkGGBcAHovXRPUSrDBXS5 AqP4wV3mdse/Q0OLrm3RUNRNndguLo1AvyDh5qMyeMvLl6XKUHVObakmOu6LWhSk f3I4e5H+qZfSB+FE9fxqTnEZssFyzQYackOaH7iXP+SFNvT88/tcNDbyV2YrTWfL x97WwBO33UiPbWe+ImNSNJQuiP9XDGxZYyg9g6jzcjVCZbKTf43FYZVTWnUJCCaU AtopZf23Hr2CBUBuS+FWoexEorUVBgbrnZEyBoHr -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org