$ rpki-client -vvf repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa File: 3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa (raw, json) Hash identifier: g9/uiWbYKNvcIlWTchSsVUWyrLe2G9TdCOvQTSHicdU= Subject key identifier: CE:0B:1A:58:96:84:87:C5:35:1D:97:A4:7D:98:15:AE:19:52:CD:5C Certificate issuer: /CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Certificate serial: 5869B1858733219D8F9F7A831BC40535864B1B36 Authority key identifier: 9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa Signing time: Wed 14 Feb 2024 10:00:00 +0000 ROA not before: Wed 14 Feb 2024 09:55:00 +0000 ROA not after: Wed 12 Feb 2025 10:00:00 +0000 asID: 138141 IP address blocks: 103.134.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:69:b1:85:87:33:21:9d:8f:9f:7a:83:1b:c4:05:35:86:4b:1b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Validity Not Before: Feb 14 09:55:00 2024 GMT Not After : Feb 12 10:00:00 2025 GMT Subject: CN=CE0B1A58968487C5351D97A47D9815AE1952CD5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d9:2f:1a:c0:3d:17:bd:4b:f9:74:c2:df:43: 25:be:69:4a:17:ac:06:c7:de:6d:ba:ce:e0:15:6d: d1:64:62:4d:0c:e1:e9:12:59:87:7d:d5:ce:71:07: 76:3d:fe:28:a5:29:77:8b:f5:86:f9:09:cd:9e:b6: 52:ff:fa:ae:9d:34:1a:75:86:8d:2a:3a:ad:05:18: e5:e1:da:20:71:26:98:f1:a7:88:7f:09:b4:87:26: 6f:90:1d:30:b7:a0:8a:23:fd:04:f8:19:c6:cb:99: a7:67:09:91:e2:ec:59:05:5a:e4:c4:9c:3a:ff:c4: 8e:ba:4e:77:39:73:bf:c1:f5:0d:d3:23:a9:e2:28: d2:bc:15:76:a9:b9:4f:3f:53:3e:ca:0f:b1:33:ca: c8:da:84:88:82:11:4d:3f:73:93:29:0c:e6:f1:a0: 0e:8e:5d:41:c9:73:c3:ab:da:cc:8d:08:24:a4:16: f5:ec:e2:1b:2b:a7:cf:87:1b:de:0a:a1:e6:95:40: 24:d1:14:7f:2f:cc:55:03:a7:fe:a1:41:09:f6:7b: e1:b6:45:01:79:0c:3b:c3:c2:b8:db:2c:b2:cd:a5: 48:2c:ec:65:d2:04:c8:2d:45:e8:20:8a:3c:b3:98: 96:91:89:dc:ed:2b:dd:31:90:38:0e:7c:98:60:9b: ab:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0B:1A:58:96:84:87:C5:35:1D:97:A4:7D:98:15:AE:19:52:CD:5C X509v3 Authority Key Identifier: keyid:9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.18.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:80:ce:a5:57:6b:2d:95:40:a0:a6:7d:b7:6a:a6:06:dd:98: 28:8a:35:2b:de:91:bc:1b:9b:c2:d0:4f:4b:67:8a:20:a9:e4: ad:32:a8:66:98:76:94:cb:6f:1a:2c:d2:8e:9f:fc:c2:26:92: 0d:09:00:d0:5c:18:51:17:54:bc:8d:07:8a:4d:3d:3d:8b:b9: 2b:0a:7e:1d:78:65:51:e2:d0:35:00:60:f1:82:ec:bb:cc:e0: b8:49:b7:65:da:45:82:85:40:e3:cd:80:ce:77:11:13:a7:3e: fa:81:1b:a2:72:e1:bd:30:4b:f9:53:7c:00:38:40:19:8b:24: ed:25:0a:be:02:f5:90:a9:41:83:bb:0b:04:82:de:6b:9c:5d: a5:08:dd:2e:37:b0:23:1f:81:96:42:de:22:82:f6:7d:18:3d: 90:d2:e3:a0:fc:3f:83:04:05:ce:0b:b4:db:59:8c:25:34:c2: e7:3a:82:51:35:c7:90:2c:9a:c1:bd:c5:29:12:03:08:4a:91: 2a:d4:95:7c:b8:b6:8f:51:93:42:32:57:ab:2a:e2:b5:0a:32: 74:8d:34:c2:79:63:09:b3:23:cf:8d:61:d6:36:a8:51:07:7f: 68:be:3b:15:67:74:02:a5:bd:53:2d:c4:64:e6:32:b9:18:c4: 2e:ff:37:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWGmxhYczIZ2Pn3qDG8QFNYZLGzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTky NzQ3MjMxMTAeFw0yNDAyMTQwOTU1MDBaFw0yNTAyMTIxMDAwMDBaMDMxMTAvBgNV BAMTKENFMEIxQTU4OTY4NDg3QzUzNTFEOTdBNDdEOTgxNUFFMTk1MkNENUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2S8awD0XvUv5dMLfQyW+aUoX rAbH3m26zuAVbdFkYk0M4ekSWYd91c5xB3Y9/iilKXeL9Yb5Cc2etlL/+q6dNBp1 ho0qOq0FGOXh2iBxJpjxp4h/CbSHJm+QHTC3oIoj/QT4GcbLmadnCZHi7FkFWuTE nDr/xI66Tnc5c7/B9Q3TI6niKNK8FXapuU8/Uz7KD7EzysjahIiCEU0/c5MpDObx oA6OXUHJc8Or2syNCCSkFvXs4hsrp8+HG94KoeaVQCTRFH8vzFUDp/6hQQn2e+G2 RQF5DDvDwrjbLLLNpUgs7GXSBMgtReggijyzmJaRidztK90xkDgOfJhgm6tDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzgsaWJaEh8U1HZekfZgVrhlSzVwwHwYDVR0j BBgwFoAUn8G+1rCZ9OV7rZ+m8JJCGSdHIxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjAwMjI4Zi02ZTI1LTRjOTYtOWNlNS0yZDUwMjI5YTFkMTgvMC85RkMxQkVENkIw OTlGNEU1N0JBRDlGQTZGMDkyNDIxOTI3NDcyMzExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTkyNzQ3 MjMxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDAyMjhmLTZlMjUtNGM5Ni05 Y2U1LTJkNTAyMjlhMWQxOC8wLzMxMzAzMzJlMzEzMzM0MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YSMA0GCSqG SIb3DQEBCwUAA4IBAQANgM6lV2stlUCgpn23aqYG3ZgoijUr3pG8G5vC0E9LZ4og qeStMqhmmHaUy28aLNKOn/zCJpINCQDQXBhRF1S8jQeKTT09i7krCn4deGVR4tA1 AGDxguy7zOC4Sbdl2kWChUDjzYDOdxETpz76gRuicuG9MEv5U3wAOEAZiyTtJQq+ AvWQqUGDuwsEgt5rnF2lCN0uN7AjH4GWQt4igvZ9GD2Q0uOg/D+DBAXOC7TbWYwl NMLnOoJRNceQLJrBvcUpEgMISpEq1JV8uLaPUZNCMlerKuK1CjJ0jTTCeWMJsyPP jWHWNqhRB39ovjsVZ3QCpb1TLcRk5jK5GMQu/ze/ -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org