$ rpki-client -vvf repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa File: 3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa (raw, json) Hash identifier: Euq0LsiRS+Uue3HJjEhefVDCOs9n+ngEHcc/HV7913Q= Subject key identifier: D1:02:89:E8:C0:FD:16:DC:72:8A:26:19:1E:84:FF:FF:99:CC:5F:C6 Certificate issuer: /CN=893997EF53FFBB5A3C55A47213135040C1C5B843 Certificate serial: 4E18057778B6D776C7F65578E1C2C01B418D2296 Authority key identifier: 89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer Subject info access: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa Signing time: Thu 25 Apr 2024 09:01:53 +0000 ROA not before: Thu 25 Apr 2024 08:56:53 +0000 ROA not after: Thu 24 Apr 2025 09:01:53 +0000 asID: 150917 IP address blocks: 103.192.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.crl rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 16:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:18:05:77:78:b6:d7:76:c7:f6:55:78:e1:c2:c0:1b:41:8d:22:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893997EF53FFBB5A3C55A47213135040C1C5B843 Validity Not Before: Apr 25 08:56:53 2024 GMT Not After : Apr 24 09:01:53 2025 GMT Subject: CN=D10289E8C0FD16DC728A26191E84FFFF99CC5FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:dc:8c:ab:fd:7e:87:a6:bd:05:f0:be:dc: 0a:1d:fb:02:32:98:3b:26:40:02:8e:24:c9:61:ea: a8:00:2b:40:c5:59:98:91:1e:56:85:23:15:af:52: 92:6d:2c:c0:c6:98:2c:38:dd:14:0f:e2:1c:4c:84: 2a:e5:0c:35:ba:02:95:44:9f:a2:98:83:05:9c:e6: 61:f8:2e:73:09:64:bf:27:83:96:ce:ab:e0:55:03: a1:31:a7:1b:91:ac:a2:62:50:0c:ba:16:5a:71:15: 10:ff:3f:c2:5c:eb:95:08:d6:5f:47:32:67:ed:cb: 2c:b9:a7:ae:87:a1:69:2a:b9:a7:86:f7:0a:a7:53: ba:fa:03:30:19:83:f5:6d:5f:bb:ad:df:80:dc:19: 1c:45:53:e9:9f:0b:29:09:89:19:c6:2c:c9:b8:23: 9e:5e:a3:bc:e9:6b:74:34:b2:e0:59:80:2b:50:c0: 58:2c:64:09:26:7c:25:81:55:55:57:9d:4c:f8:6a: 69:34:7c:27:a8:b0:93:79:ba:5d:75:1a:9b:2c:69: ab:d2:f2:2f:44:af:c4:48:d6:fb:0c:d2:a5:96:d9: 59:be:09:9f:e3:14:de:37:54:cf:01:c3:33:b1:58: 8e:13:ac:8a:0e:bd:9d:d6:69:cd:e4:26:85:e4:c0: 73:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:02:89:E8:C0:FD:16:DC:72:8A:26:19:1E:84:FF:FF:99:CC:5F:C6 X509v3 Authority Key Identifier: keyid:89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.81.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:22:f3:31:bd:8b:2b:93:52:b4:cd:db:c3:fe:ed:45:65:8b: bb:2f:38:c3:be:43:d3:18:c4:6d:c7:59:f8:80:f3:df:8c:45: 68:75:1c:36:cb:22:f3:ee:3b:9e:ac:41:ac:f7:1b:bb:e1:98: 76:cc:70:0c:e2:cd:d8:b1:af:a4:aa:0e:78:23:98:c6:98:8c: 49:a1:ba:84:b6:f2:8d:1e:6d:8f:a0:2e:94:27:1a:1a:48:ef: 5a:dd:19:dc:f3:26:b0:2e:77:35:aa:70:af:30:cf:a2:3d:79: 53:01:51:a7:fc:4c:a8:b8:58:98:58:e1:4d:d9:10:13:99:24: 8e:c4:02:06:8f:41:e9:8d:98:d6:d1:e1:0c:6b:ae:4e:1f:a0: e1:6b:8e:1f:ec:13:90:c6:25:df:0c:ff:b0:99:87:a8:7e:48: ab:b4:6b:41:35:4e:1b:d2:9e:07:0e:65:22:78:9e:25:6f:a1: b6:50:89:d4:fc:43:ec:02:a2:9b:92:0f:4f:6e:d5:b8:86:70: 0b:69:1e:8b:d4:69:23:67:64:57:3c:fd:58:19:77:56:a0:63: 7d:a7:0c:0a:c9:73:1d:b7:2d:63:8d:f9:f8:b0:9b:22:65:0a: 03:b8:da:fc:63:39:93:a3:0f:0d:bb:58:dd:11:0a:ce:04:dc: 47:74:54:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUThgFd3i213bH9lV44cLAG0GNIpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzOTk3RUY1M0ZGQkI1QTNDNTVBNDcyMTMxMzUwNDBD MUM1Qjg0MzAeFw0yNDA0MjUwODU2NTNaFw0yNTA0MjQwOTAxNTNaMDMxMTAvBgNV BAMTKEQxMDI4OUU4QzBGRDE2REM3MjhBMjYxOTFFODRGRkZGOTlDQzVGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGa9yMq/1+h6a9BfC+3Aod+wIy mDsmQAKOJMlh6qgAK0DFWZiRHlaFIxWvUpJtLMDGmCw43RQP4hxMhCrlDDW6ApVE n6KYgwWc5mH4LnMJZL8ng5bOq+BVA6ExpxuRrKJiUAy6FlpxFRD/P8Jc65UI1l9H Mmftyyy5p66HoWkquaeG9wqnU7r6AzAZg/VtX7ut34DcGRxFU+mfCykJiRnGLMm4 I55eo7zpa3Q0suBZgCtQwFgsZAkmfCWBVVVXnUz4amk0fCeosJN5ul11GpssaavS 8i9Er8RI1vsM0qWW2Vm+CZ/jFN43VM8BwzOxWI4TrIoOvZ3Wac3kJoXkwHMtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0QKJ6MD9FtxyiiYZHoT//5nMX8YwHwYDVR0j BBgwFoAUiTmX71P/u1o8VaRyExNQQMHFuEMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjRmZjdjOS1lOTA1LTQ0ZDYtYmMzNS1jN2RiYjA3MGI3NTcvMC84OTM5OTdFRjUz RkZCQjVBM0M1NUE0NzIxMzEzNTA0MEMxQzVCODQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODkzOTk3RUY1M0ZGQkI1QTNDNTVBNDcyMTMxMzUwNDBDMUM1 Qjg0My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NGZmN2M5LWU5MDUtNDRkNi1i YzM1LWM3ZGJiMDcwYjc1Ny8wLzMxMzAzMzJlMzEzOTMyMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8BRMA0GCSqG SIb3DQEBCwUAA4IBAQArIvMxvYsrk1K0zdvD/u1FZYu7LzjDvkPTGMRtx1n4gPPf jEVodRw2yyLz7juerEGs9xu74Zh2zHAM4s3Ysa+kqg54I5jGmIxJobqEtvKNHm2P oC6UJxoaSO9a3Rnc8yawLnc1qnCvMM+iPXlTAVGn/EyouFiYWOFN2RATmSSOxAIG j0HpjZjW0eEMa65OH6Dha44f7BOQxiXfDP+wmYeofkirtGtBNU4b0p4HDmUieJ4l b6G2UInU/EPsAqKbkg9PbtW4hnALaR6L1GkjZ2RXPP1YGXdWoGN9pwwKyXMdty1j jfn4sJsiZQoDuNr8YzmTow8Nu1jdEQrOBNxHdFRh -----END CERTIFICATE-----Generated at Wed Nov 27 10:12:51 2024 by rpki-client on console-fra.rpki-client.org