$ rpki-client -vvf repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa File: 3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa (raw, json) Hash identifier: yd0B0TVXfuYlzafhAu/L0N+YwD187y6DolsKnTqXywc= Subject key identifier: 63:D2:89:F2:BC:60:80:F2:7A:FB:C1:6B:6C:2D:E5:2F:4F:C4:53:88 Certificate issuer: /CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Certificate serial: 105973C67FA3C9FF2D322039DFD71623DD4A58A5 Authority key identifier: E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa Signing time: Mon 12 Feb 2024 02:00:00 +0000 ROA not before: Mon 12 Feb 2024 01:55:00 +0000 ROA not after: Mon 10 Feb 2025 02:00:00 +0000 asID: 150913 IP address blocks: 103.89.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:59:73:c6:7f:a3:c9:ff:2d:32:20:39:df:d7:16:23:dd:4a:58:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Validity Not Before: Feb 12 01:55:00 2024 GMT Not After : Feb 10 02:00:00 2025 GMT Subject: CN=63D289F2BC6080F27AFBC16B6C2DE52F4FC45388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e5:9f:53:a9:cb:a7:c3:9f:86:2c:e7:a7:dd: 84:bb:20:02:b8:b0:58:56:2d:46:4b:a0:fb:b3:75: c4:61:5f:5c:28:ce:08:5b:b8:c2:b0:2c:08:5d:7f: 58:f1:07:d4:4d:f0:f6:fa:42:89:0a:d7:6c:80:dc: 90:ab:6e:5a:a3:c5:b8:84:92:e9:7d:06:48:93:6f: 73:f8:0e:e8:62:a0:88:c0:c5:70:f8:e6:be:74:0c: 24:97:43:52:25:42:53:78:6b:8b:f0:ff:dd:de:7e: f3:2d:0c:c4:83:8a:c4:c2:6d:f7:95:e3:86:3f:3f: e0:44:80:d4:21:c3:44:94:f7:bb:77:04:2d:37:f6: 7c:45:98:13:2a:ed:dc:f9:12:cc:3c:ac:1f:8c:ab: f3:0b:6a:25:a1:24:b7:e7:d3:ca:0c:39:44:dc:86: 3e:34:9d:95:9c:59:3f:db:43:16:90:11:39:71:f3: 35:f9:51:18:b7:63:37:d8:7e:54:74:2d:8e:fd:3f: 7f:08:b8:10:03:98:54:d9:4e:3b:b3:fa:ee:45:94: d3:97:a3:f5:90:d7:dc:ec:5d:4b:6e:b9:8c:46:db: 59:6d:cc:c7:f2:b9:d8:03:a9:87:d0:48:cd:72:6e: c5:54:e7:45:cc:01:43:9e:d5:e6:98:af:a1:3e:c8: df:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D2:89:F2:BC:60:80:F2:7A:FB:C1:6B:6C:2D:E5:2F:4F:C4:53:88 X509v3 Authority Key Identifier: keyid:E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.242.0/24 Signature Algorithm: sha256WithRSAEncryption b5:73:1f:1b:ec:47:42:ed:74:f7:ed:cb:e2:53:d4:e5:78:49: 87:a5:86:37:96:b8:2e:9b:bc:a3:cd:de:a0:5b:57:3c:e1:9d: 31:32:f1:46:bc:34:8a:7f:2f:37:2e:75:e3:29:3f:10:12:24: 86:0c:8a:07:85:98:54:9a:1e:bb:d9:6f:3f:26:bf:87:13:a6: 26:fd:7f:3d:e9:5f:14:db:19:4e:c6:67:bc:1d:c0:93:d1:18: d6:37:91:9b:3e:85:8c:4b:c6:75:ba:54:c5:d1:f9:ee:e6:06: a1:7e:02:00:da:f8:db:9d:a6:c1:2c:98:e5:4d:91:78:f5:1f: 25:76:9e:26:7c:7b:ed:56:db:48:5b:97:7b:79:a2:4f:cd:2e: e2:65:63:2b:c3:f2:32:78:f0:12:39:f9:b4:00:7e:f2:5d:06: 27:c1:19:e7:c5:12:2e:9e:6d:21:c5:5c:c4:9b:35:89:aa:3a: 86:15:40:84:77:44:3a:65:55:db:a9:5e:6e:bb:84:ff:32:0f: f6:82:4b:0c:57:30:7a:87:33:c8:d7:db:f2:e0:6d:31:8a:4e: e1:e7:cb:96:82:05:09:03:78:17:1d:fc:61:57:3a:7f:a2:3e: 58:f2:c4:9a:8f:4e:88:e4:02:bd:10:6a:e7:1b:38:12:d3:c8: 4d:fd:1f:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEFlzxn+jyf8tMiA539cWI91KWKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBB RkI2NEI0QzAeFw0yNDAyMTIwMTU1MDBaFw0yNTAyMTAwMjAwMDBaMDMxMTAvBgNV BAMTKDYzRDI4OUYyQkM2MDgwRjI3QUZCQzE2QjZDMkRFNTJGNEZDNDUzODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr5Z9Tqcunw5+GLOen3YS7IAK4 sFhWLUZLoPuzdcRhX1wozghbuMKwLAhdf1jxB9RN8Pb6QokK12yA3JCrblqjxbiE kul9BkiTb3P4DuhioIjAxXD45r50DCSXQ1IlQlN4a4vw/93efvMtDMSDisTCbfeV 44Y/P+BEgNQhw0SU97t3BC039nxFmBMq7dz5Esw8rB+Mq/MLaiWhJLfn08oMOUTc hj40nZWcWT/bQxaQETlx8zX5URi3YzfYflR0LY79P38IuBADmFTZTjuz+u5FlNOX o/WQ19zsXUtuuYxG21ltzMfyudgDqYfQSM1ybsVU50XMAUOe1eaYr6E+yN/3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY9KJ8rxggPJ6+8FrbC3lL0/EU4gwHwYDVR0j BBgwFoAU43c3HoLGxTx6V5a0mwhRkK+2S0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTMzMDg3Ni03ZTY4LTQ3MDctYTUzZC05MmJiZmRiMmYyM2MvMC9FMzc3MzcxRTgy QzZDNTNDN0E1Nzk2QjQ5QjA4NTE5MEFGQjY0QjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBBRkI2 NEI0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMzMwODc2LTdlNjgtNDcwNy1h NTNkLTkyYmJmZGIyZjIzYy8wLzMxMzAzMzJlMzgzOTJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1nyMA0GCSqG SIb3DQEBCwUAA4IBAQC1cx8b7EdC7XT37cviU9TleEmHpYY3lrgum7yjzd6gW1c8 4Z0xMvFGvDSKfy83LnXjKT8QEiSGDIoHhZhUmh672W8/Jr+HE6Ym/X896V8U2xlO xme8HcCT0RjWN5GbPoWMS8Z1ulTF0fnu5gahfgIA2vjbnabBLJjlTZF49R8ldp4m fHvtVttIW5d7eaJPzS7iZWMrw/IyePASOfm0AH7yXQYnwRnnxRIunm0hxVzEmzWJ qjqGFUCEd0Q6ZVXbqV5uu4T/Mg/2gksMVzB6hzPI19vy4G0xik7h58uWggUJA3gX HfxhVzp/oj5Y8sSaj06I5AK9EGrnGzgS08hN/R/9 -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org