$ rpki-client -vvf repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa File: 3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa (raw, json) Hash identifier: /M1/bFbnauWSsEM5g1ozSqTAlwpkDjJCK1RP7FDCFrc= Subject key identifier: 27:05:52:B1:4A:F5:7F:D9:5E:F9:10:83:A0:9E:35:35:DE:A0:8B:A4 Certificate issuer: /CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Certificate serial: 572D4D268D1B35FA09E04DE0861213360C3CF977 Authority key identifier: E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa Signing time: Mon 12 Feb 2024 02:00:00 +0000 ROA not before: Mon 12 Feb 2024 01:55:00 +0000 ROA not after: Mon 10 Feb 2025 02:00:00 +0000 asID: 150913 IP address blocks: 103.89.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:2d:4d:26:8d:1b:35:fa:09:e0:4d:e0:86:12:13:36:0c:3c:f9:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Validity Not Before: Feb 12 01:55:00 2024 GMT Not After : Feb 10 02:00:00 2025 GMT Subject: CN=270552B14AF57FD95EF91083A09E3535DEA08BA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:26:97:5d:e5:21:94:6c:7d:bd:f7:0e:9c: f7:87:27:ec:c6:6b:1f:89:d1:44:52:95:ea:88:a8: 36:a4:73:16:c3:be:c2:b3:52:f8:2b:d9:26:00:f2: 0c:72:5d:f9:bf:f2:cc:e2:c1:4e:13:ee:48:63:7a: fe:19:12:17:0f:91:fd:d4:f7:a0:3e:88:68:33:1b: d1:ec:7c:b5:06:45:35:69:e5:b9:35:7c:0b:09:c1: 7f:98:58:6e:f5:5b:64:8c:4a:d3:28:6e:7f:3e:0c: 4c:c9:73:38:48:f0:04:3c:fd:a5:ad:1b:59:9b:06: 97:2f:c5:21:0c:70:94:85:b9:9c:c2:88:e7:b8:62: 2c:85:14:fe:eb:aa:7f:e2:72:28:f3:3a:fe:a6:a5: 41:55:69:a6:54:be:bd:de:70:3a:dd:81:72:31:1d: 23:4f:5c:64:eb:b3:4e:5e:c0:57:24:53:d5:44:31: 7b:bf:a3:4a:f7:c2:7e:7c:35:68:a4:df:a3:1a:9a: 0d:8e:69:36:2f:0a:67:c0:7a:b2:97:3b:79:34:c4: 3a:51:ae:a3:6c:a8:7e:11:93:21:87:19:92:24:2e: d9:54:ae:35:cf:4d:61:e3:bf:66:29:8f:a9:b0:aa: ee:d4:64:b2:4a:ba:ca:80:ff:a4:53:a1:97:b6:1f: c2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:05:52:B1:4A:F5:7F:D9:5E:F9:10:83:A0:9E:35:35:DE:A0:8B:A4 X509v3 Authority Key Identifier: keyid:E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.243.0/24 Signature Algorithm: sha256WithRSAEncryption 78:f8:57:44:b0:e6:97:cf:35:bb:d3:36:d2:3c:eb:22:41:0e: c9:f6:3a:c5:3c:c1:52:ee:13:44:57:62:db:70:ad:28:9a:2d: f0:62:a2:df:fb:fa:71:7b:a7:5a:ba:a1:09:e7:7a:9f:c3:b9: 94:51:4a:4b:72:02:ba:55:04:94:6f:49:99:32:f0:5b:ce:a5: f9:92:84:53:bb:cb:00:79:93:39:a7:8e:be:ba:e9:f1:05:8b: 1d:79:e4:c2:05:63:26:85:49:61:6b:e6:48:e6:73:95:10:69: fc:c1:ef:3a:7f:d9:a0:df:14:18:9a:3c:08:87:11:0d:b1:19: 29:33:3f:e8:d5:f8:3c:7b:d1:61:1a:54:73:54:a9:11:5d:a8: f7:e8:44:06:92:0f:4b:a4:f5:50:60:87:d2:28:1f:fc:74:dc: 2c:b2:83:ca:58:8e:a2:5d:b4:04:fb:ca:e1:ed:61:35:e8:09: 75:b4:ad:5e:54:4e:9b:e3:4c:59:0a:1c:3f:0b:3b:6c:f0:da: dc:62:f7:92:b9:26:76:1d:d6:83:39:7d:1e:44:d3:06:93:a1: 50:54:a4:87:e6:55:54:68:91:c1:b0:85:28:6a:e2:d4:b9:e8: a4:f4:a6:76:56:21:44:54:f8:9b:49:4c:7c:e9:47:0f:0d:00: b4:ab:7f:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVy1NJo0bNfoJ4E3ghhITNgw8+XcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBB RkI2NEI0QzAeFw0yNDAyMTIwMTU1MDBaFw0yNTAyMTAwMjAwMDBaMDMxMTAvBgNV BAMTKDI3MDU1MkIxNEFGNTdGRDk1RUY5MTA4M0EwOUUzNTM1REVBMDhCQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC0SaXXeUhlGx9vfcOnPeHJ+zG ax+J0URSleqIqDakcxbDvsKzUvgr2SYA8gxyXfm/8sziwU4T7khjev4ZEhcPkf3U 96A+iGgzG9HsfLUGRTVp5bk1fAsJwX+YWG71W2SMStMobn8+DEzJczhI8AQ8/aWt G1mbBpcvxSEMcJSFuZzCiOe4YiyFFP7rqn/icijzOv6mpUFVaaZUvr3ecDrdgXIx HSNPXGTrs05ewFckU9VEMXu/o0r3wn58NWik36Mamg2OaTYvCmfAerKXO3k0xDpR rqNsqH4RkyGHGZIkLtlUrjXPTWHjv2Ypj6mwqu7UZLJKusqA/6RToZe2H8KHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJwVSsUr1f9le+RCDoJ41Nd6gi6QwHwYDVR0j BBgwFoAU43c3HoLGxTx6V5a0mwhRkK+2S0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTMzMDg3Ni03ZTY4LTQ3MDctYTUzZC05MmJiZmRiMmYyM2MvMC9FMzc3MzcxRTgy QzZDNTNDN0E1Nzk2QjQ5QjA4NTE5MEFGQjY0QjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBBRkI2 NEI0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMzMwODc2LTdlNjgtNDcwNy1h NTNkLTkyYmJmZGIyZjIzYy8wLzMxMzAzMzJlMzgzOTJlMzIzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1nzMA0GCSqG SIb3DQEBCwUAA4IBAQB4+FdEsOaXzzW70zbSPOsiQQ7J9jrFPMFS7hNEV2LbcK0o mi3wYqLf+/pxe6dauqEJ53qfw7mUUUpLcgK6VQSUb0mZMvBbzqX5koRTu8sAeZM5 p46+uunxBYsdeeTCBWMmhUlha+ZI5nOVEGn8we86f9mg3xQYmjwIhxENsRkpMz/o 1fg8e9FhGlRzVKkRXaj36EQGkg9LpPVQYIfSKB/8dNwssoPKWI6iXbQE+8rh7WE1 6Al1tK1eVE6b40xZChw/Czts8NrcYveSuSZ2HdaDOX0eRNMGk6FQVKSH5lVUaJHB sIUoauLUueik9KZ2ViFEVPibSUx86UcPDQC0q39T -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org