$ rpki-client -vvf repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa File: 3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa (raw, json) Hash identifier: PlBGFcTpMVCZPELNTrEPn9zi/dt4FX9v2WIPCvlxQ2c= Subject key identifier: 3A:79:A3:76:E6:D1:B1:DD:9A:DE:88:8C:26:3C:31:8D:0F:49:C1:03 Certificate issuer: /CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Certificate serial: 195C3E9A04C53CFFB6E111B6D950290DBF7B8AD9 Authority key identifier: 86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa Signing time: Sun 22 Sep 2024 15:00:02 +0000 ROA not before: Sun 22 Sep 2024 14:55:02 +0000 ROA not after: Sun 21 Sep 2025 15:00:02 +0000 asID: 58495 IP address blocks: 103.190.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5c:3e:9a:04:c5:3c:ff:b6:e1:11:b6:d9:50:29:0d:bf:7b:8a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Validity Not Before: Sep 22 14:55:02 2024 GMT Not After : Sep 21 15:00:02 2025 GMT Subject: CN=3A79A376E6D1B1DD9ADE888C263C318D0F49C103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:37:9c:1a:45:e9:a1:d7:ab:8c:7d:7c:f4:ed: 36:45:69:70:f6:3a:91:d8:2d:5a:5b:07:3d:61:76: 6e:f2:41:67:68:a2:e9:4d:86:87:b2:4c:d1:40:ee: a3:b2:7a:dc:86:c6:a6:51:49:1b:c4:7c:9b:fe:b6: ca:f8:af:40:dd:be:b4:fd:8f:62:ab:ea:29:6c:6d: 4c:5f:d0:74:43:cf:1d:2f:9d:e4:e3:9a:6b:07:f1: 44:3c:19:b7:51:69:53:5e:1c:94:f0:8e:3a:0b:9f: ea:fa:2a:85:c2:db:15:e7:ed:65:a5:36:e1:ac:1d: b3:3e:df:22:b1:fd:00:c9:f0:9a:dd:02:3c:90:2b: f0:c2:51:d4:b0:d1:97:7e:29:a0:77:91:86:c2:51: 77:b0:5d:9b:65:1a:a7:bf:15:f2:e7:52:c4:02:58: 63:6f:08:f4:0d:32:6c:2c:88:a3:97:de:2e:e5:f0: 2b:1b:56:94:2e:36:cc:a7:45:f7:c3:45:24:54:a4: 1c:17:7f:82:98:53:7e:77:0b:c1:6a:35:da:88:f1: 05:87:c9:4f:5e:7e:eb:8c:b0:bb:a0:61:4c:b8:77: 20:99:25:33:8c:34:9d:19:92:6a:f5:d8:5c:b7:c6: dd:27:b2:34:a2:ff:50:34:d9:6e:3b:95:fb:67:15: 03:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:79:A3:76:E6:D1:B1:DD:9A:DE:88:8C:26:3C:31:8D:0F:49:C1:03 X509v3 Authority Key Identifier: keyid:86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133342e302f32332d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.134.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:d2:53:3b:ea:86:ca:ff:f5:06:05:78:9b:14:2b:f4:05:6e: 99:57:24:55:3c:d0:c1:74:90:1e:df:15:fa:71:e2:bc:90:6a: 72:7f:e3:03:3b:e4:f4:fc:8e:5a:45:8b:09:c6:fe:1a:f4:9c: 3d:1a:8a:14:69:1a:e6:c3:0a:fc:ba:71:62:b3:81:4b:c7:b5: 3a:d4:4c:e8:f6:e3:ab:60:1d:24:84:64:00:02:ac:a9:6f:a6: 31:61:68:63:19:6b:ae:35:21:79:40:bb:da:25:72:d7:54:f5: 70:46:2a:fc:af:a4:cf:13:07:bb:93:8a:5c:2e:d1:73:0c:c5: fa:98:71:b8:0e:37:9a:24:9f:69:92:11:6e:f0:83:82:17:df: 34:70:14:d2:a9:26:d1:25:33:52:75:93:0d:d2:e2:90:17:0e: e9:ba:6c:17:28:9b:a8:4c:a4:1f:5d:d8:15:a3:ac:95:29:86: af:e4:0b:91:c7:a0:e6:f7:4c:f5:fb:26:12:75:e1:84:38:eb: 39:9d:5e:d3:dd:91:76:7a:50:a5:65:85:bd:4e:cc:b1:e1:8d: ac:b3:6d:c4:fc:d5:b5:3b:cf:a4:ec:04:21:04:a0:d1:46:d8: e2:0b:20:53:26:1f:bd:0b:ff:ad:62:10:9d:de:45:ac:a9:b0: 20:06:5a:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGVw+mgTFPP+24RG22VApDb97itkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5 NUE0MjhERDAeFw0yNDA5MjIxNDU1MDJaFw0yNTA5MjExNTAwMDJaMDMxMTAvBgNV BAMTKDNBNzlBMzc2RTZEMUIxREQ5QURFODg4QzI2M0MzMThEMEY0OUMxMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYN5waRemh16uMfXz07TZFaXD2 OpHYLVpbBz1hdm7yQWdooulNhoeyTNFA7qOyetyGxqZRSRvEfJv+tsr4r0DdvrT9 j2Kr6ilsbUxf0HRDzx0vneTjmmsH8UQ8GbdRaVNeHJTwjjoLn+r6KoXC2xXn7WWl NuGsHbM+3yKx/QDJ8JrdAjyQK/DCUdSw0Zd+KaB3kYbCUXewXZtlGqe/FfLnUsQC WGNvCPQNMmwsiKOX3i7l8CsbVpQuNsynRffDRSRUpBwXf4KYU353C8FqNdqI8QWH yU9efuuMsLugYUy4dyCZJTOMNJ0Zkmr12Fy3xt0nsjSi/1A02W47lftnFQN7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOnmjdubRsd2a3oiMJjwxjQ9JwQMwHwYDVR0j BBgwFoAUhsjjpLSW65Om7vaEFQNiwpWkKN0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTYzYjdkNy1lYTgzLTRiZTktYjJmYy1iMzBlYjBiNDRkMGEvMC84NkM4RTNBNEI0 OTZFQjkzQTZFRUY2ODQxNTAzNjJDMjk1QTQyOERELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5NUE0 MjhERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNjNiN2Q3LWVhODMtNGJlOS1i MmZjLWIzMGViMGI0NGQwYS8wLzMxMzAzMzJlMzEzOTMwMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ76GMA0GCSqG SIb3DQEBCwUAA4IBAQCc0lM76obK//UGBXibFCv0BW6ZVyRVPNDBdJAe3xX6ceK8 kGpyf+MDO+T0/I5aRYsJxv4a9Jw9GooUaRrmwwr8unFis4FLx7U61Ezo9uOrYB0k hGQAAqypb6YxYWhjGWuuNSF5QLvaJXLXVPVwRir8r6TPEwe7k4pcLtFzDMX6mHG4 DjeaJJ9pkhFu8IOCF980cBTSqSbRJTNSdZMN0uKQFw7pumwXKJuoTKQfXdgVo6yV KYav5AuRx6Dm90z1+yYSdeGEOOs5nV7T3ZF2elClZYW9Tsyx4Y2ss23E/NW1O8+k 7AQhBKDRRtjiCyBTJh+9C/+tYhCd3kWsqbAgBlqA -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:40 2024 by rpki-client on console-fra.rpki-client.org