$ rpki-client -vvf repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133352e302f32342d3234203d3e203538343935.roa File: 3130332e3139302e3133352e302f32342d3234203d3e203538343935.roa (raw, json) Hash identifier: qSLOmmKQbpUJFsyDR7s4vV7U7BrxlvPKm9Mtz4l1D8c= Subject key identifier: BE:71:A8:3C:9E:69:AF:6A:F8:BE:7C:CB:3E:CE:30:11:0C:A6:06:15 Certificate issuer: /CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Certificate serial: 07B109135FD90F09F313EF6BAD1D4C768B41A3C0 Authority key identifier: 86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133352e302f32342d3234203d3e203538343935.roa Signing time: Mon 23 Sep 2024 04:00:02 +0000 ROA not before: Mon 23 Sep 2024 03:55:02 +0000 ROA not after: Mon 22 Sep 2025 04:00:02 +0000 asID: 58495 IP address blocks: 103.190.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b1:09:13:5f:d9:0f:09:f3:13:ef:6b:ad:1d:4c:76:8b:41:a3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86C8E3A4B496EB93A6EEF684150362C295A428DD Validity Not Before: Sep 23 03:55:02 2024 GMT Not After : Sep 22 04:00:02 2025 GMT Subject: CN=BE71A83C9E69AF6AF8BE7CCB3ECE30110CA60615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:29:37:c8:78:5a:89:bc:23:03:5c:3f:e1:6e: 6e:87:c5:b6:92:5b:fe:ed:3b:bc:f5:5c:a6:9d:ee: 03:82:77:18:00:bd:58:47:b3:3f:76:62:ca:f0:c2: fd:ac:a8:a7:ad:69:7f:2b:7a:48:4c:2e:85:f9:b3: 21:ce:39:67:1a:da:5c:a6:7a:7d:b1:94:96:b8:9d: f4:43:e3:f9:76:b9:dc:c9:e6:94:f3:d3:07:44:f8: 4a:f0:0b:43:ab:0a:16:06:a6:d5:ec:c3:52:39:8c: 13:6d:45:c2:44:11:48:c7:7a:e1:8c:2f:e9:80:c6: 38:a6:a7:71:47:ba:9a:43:42:f0:e2:71:b7:a9:d3: 92:82:28:4d:1b:70:58:c8:0a:b6:55:99:f2:45:24: 3a:5f:46:82:ff:12:91:12:03:9d:8d:f5:6e:23:6a: b2:47:59:e3:2e:a8:41:c9:d7:c6:fb:ff:9d:b0:cc: ae:a0:e3:e2:39:b9:ab:6a:86:d3:c7:b1:d7:5a:35: 0a:be:3c:92:47:f4:6f:17:4f:19:31:42:96:60:98: 02:e6:55:fc:fb:4c:d7:1e:89:59:cf:94:d7:3f:7c: 1b:09:b6:ac:51:0f:da:8c:58:b5:43:83:f2:c9:cb: 2b:57:a1:49:5e:2f:e4:28:db:81:ea:f7:20:1d:a3: 96:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:71:A8:3C:9E:69:AF:6A:F8:BE:7C:CB:3E:CE:30:11:0C:A6:06:15 X509v3 Authority Key Identifier: keyid:86:C8:E3:A4:B4:96:EB:93:A6:EE:F6:84:15:03:62:C2:95:A4:28:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/86C8E3A4B496EB93A6EEF684150362C295A428DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86C8E3A4B496EB93A6EEF684150362C295A428DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a63b7d7-ea83-4be9-b2fc-b30eb0b44d0a/0/3130332e3139302e3133352e302f32342d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.135.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ae:f5:83:0b:ef:1b:c2:60:78:11:56:df:87:0b:75:e6:f1: 42:8e:fb:84:3e:f6:28:f8:01:8f:3c:ef:43:a9:aa:12:19:9a: a3:f9:75:5a:df:03:6e:24:25:c3:4c:2d:c1:e0:a6:87:04:ad: df:24:7c:2e:2e:d8:4f:e9:58:ae:a8:b2:89:fe:70:da:27:db: 94:b8:ff:65:1e:f0:0d:57:53:fb:c1:69:54:e9:da:7d:85:8a: e8:93:eb:9c:fd:09:b6:b8:2b:2d:b9:e3:7f:99:be:03:29:cc: 56:65:80:d5:76:d0:ec:30:65:5a:79:20:94:f4:eb:a9:1c:19: 20:16:57:a2:99:69:2e:d5:47:87:48:b7:b2:a8:6e:23:18:eb: 77:5b:5b:2d:9a:94:8f:2c:02:20:c5:c4:e7:21:01:e1:e4:f8: 8a:da:bb:cb:da:06:a7:db:ed:fc:75:df:6c:c6:33:10:40:5e: 76:8a:ba:42:a4:a4:fe:9f:c4:56:c8:e2:0a:cb:4b:0f:8f:a9: 74:44:c3:d5:51:eb:85:61:70:89:08:74:b5:8f:ca:6a:a1:91: 5c:0f:30:96:07:76:f3:51:d5:90:e9:4b:8e:85:d0:8f:9d:15: d5:f3:89:8f:34:25:1b:62:3f:7c:f9:35:85:43:f6:17:8f:dd: bc:b9:95:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB7EJE1/ZDwnzE+9rrR1MdotBo8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5 NUE0MjhERDAeFw0yNDA5MjMwMzU1MDJaFw0yNTA5MjIwNDAwMDJaMDMxMTAvBgNV BAMTKEJFNzFBODNDOUU2OUFGNkFGOEJFN0NDQjNFQ0UzMDExMENBNjA2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoKTfIeFqJvCMDXD/hbm6HxbaS W/7tO7z1XKad7gOCdxgAvVhHsz92Ysrwwv2sqKetaX8rekhMLoX5syHOOWca2lym en2xlJa4nfRD4/l2udzJ5pTz0wdE+ErwC0OrChYGptXsw1I5jBNtRcJEEUjHeuGM L+mAxjimp3FHuppDQvDicbep05KCKE0bcFjICrZVmfJFJDpfRoL/EpESA52N9W4j arJHWeMuqEHJ18b7/52wzK6g4+I5uatqhtPHsddaNQq+PJJH9G8XTxkxQpZgmALm Vfz7TNceiVnPlNc/fBsJtqxRD9qMWLVDg/LJyytXoUleL+Qo24Hq9yAdo5aRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvnGoPJ5pr2r4vnzLPs4wEQymBhUwHwYDVR0j BBgwFoAUhsjjpLSW65Om7vaEFQNiwpWkKN0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTYzYjdkNy1lYTgzLTRiZTktYjJmYy1iMzBlYjBiNDRkMGEvMC84NkM4RTNBNEI0 OTZFQjkzQTZFRUY2ODQxNTAzNjJDMjk1QTQyOERELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZDOEUzQTRCNDk2RUI5M0E2RUVGNjg0MTUwMzYyQzI5NUE0 MjhERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNjNiN2Q3LWVhODMtNGJlOS1i MmZjLWIzMGViMGI0NGQwYS8wLzMxMzAzMzJlMzEzOTMwMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ76HMA0GCSqG SIb3DQEBCwUAA4IBAQCTrvWDC+8bwmB4EVbfhwt15vFCjvuEPvYo+AGPPO9DqaoS GZqj+XVa3wNuJCXDTC3B4KaHBK3fJHwuLthP6ViuqLKJ/nDaJ9uUuP9lHvANV1P7 wWlU6dp9hYrok+uc/Qm2uCstueN/mb4DKcxWZYDVdtDsMGVaeSCU9OupHBkgFlei mWku1UeHSLeyqG4jGOt3W1stmpSPLAIgxcTnIQHh5PiK2rvL2gan2+38dd9sxjMQ QF52irpCpKT+n8RWyOIKy0sPj6l0RMPVUeuFYXCJCHS1j8pqoZFcDzCWB3bzUdWQ 6UuOhdCPnRXV84mPNCUbYj98+TWFQ/YXj928uZX2 -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:37 2024 by rpki-client on console-ams.rpki-client.org