$ rpki-client -vvf repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313338313431.roa File: 3130332e3133342e31392e302f32342d3234203d3e20313338313431.roa (raw, json) Hash identifier: r3a8hB3kQnl0xRJegSPS8mJ15/RAJ53yjLCZn/MvD40= Subject key identifier: 70:F7:89:99:83:C4:63:4C:8F:85:29:6A:4B:94:FB:46:FF:40:9A:DF Certificate issuer: /CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Certificate serial: 75EEFCDF47C37C195E119118F2A26AFB55FC14B1 Authority key identifier: 9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313338313431.roa Signing time: Wed 14 Feb 2024 10:00:00 +0000 ROA not before: Wed 14 Feb 2024 09:55:00 +0000 ROA not after: Wed 12 Feb 2025 10:00:00 +0000 asID: 138141 IP address blocks: 103.134.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ee:fc:df:47:c3:7c:19:5e:11:91:18:f2:a2:6a:fb:55:fc:14:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Validity Not Before: Feb 14 09:55:00 2024 GMT Not After : Feb 12 10:00:00 2025 GMT Subject: CN=70F7899983C4634C8F85296A4B94FB46FF409ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:5d:89:67:f2:0f:4d:75:af:3b:a0:20:de: 7c:fb:53:77:6b:58:3b:b2:2e:64:dd:dc:1e:85:cd: c2:a5:c5:88:09:50:9d:1a:ab:e1:53:9e:e1:06:d1: 35:1e:7e:17:bd:e6:b5:9b:89:91:75:28:5c:8a:84: 11:b3:6e:83:58:b9:36:98:9b:8a:ff:52:69:59:a9: cb:d0:f2:14:65:63:98:c1:9b:16:46:c8:68:98:b3: e2:67:3b:10:e4:24:6e:ec:9b:da:fc:22:d5:7f:74: 28:84:1e:36:e4:06:41:4c:3f:69:1f:fd:ba:3f:3e: 6c:bf:4b:df:84:84:e4:d3:3a:03:65:6d:ca:5b:aa: 71:d3:cf:4f:b6:a7:6a:5e:96:15:50:c0:c0:54:8d: c1:71:92:27:18:bf:95:b2:94:39:e7:f3:75:94:97: 15:62:51:ed:ce:20:84:60:aa:1c:43:23:2b:94:3a: ef:60:13:e6:80:6d:0d:17:f6:35:bc:33:d8:0f:73: 22:66:02:d2:c5:a8:a5:fb:41:64:a6:d7:39:2c:7f: 6f:6e:c5:b6:73:19:04:a5:75:52:75:01:3d:c0:17: 82:51:a3:4b:86:3f:02:6c:71:e7:02:dc:74:6e:a0: 8a:78:e0:a7:15:20:35:db:f8:1e:01:1f:88:a4:2c: fd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F7:89:99:83:C4:63:4C:8F:85:29:6A:4B:94:FB:46:FF:40:9A:DF X509v3 Authority Key Identifier: keyid:9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313338313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.19.0/24 Signature Algorithm: sha256WithRSAEncryption b4:2d:52:8f:c7:0d:f1:da:24:d3:90:4e:3b:0f:c8:82:b9:e1: 21:76:ee:c6:24:1f:b1:7d:86:1a:a2:80:5b:a7:0b:ff:af:6e: d0:87:fc:0f:d3:73:9c:d3:e2:8f:1d:23:37:48:8c:c7:60:a3: 9c:1d:4d:31:f0:90:bf:1c:07:8b:0f:51:59:b6:6f:05:e8:ba: 7f:e2:24:17:34:8e:bf:8d:47:61:47:9b:24:7a:b4:c2:72:6e: 82:ab:44:18:00:2d:2c:93:87:7f:51:cf:56:90:fe:26:d9:25: 59:42:fd:d6:db:74:98:0a:cb:a6:8f:4f:7e:3d:4e:f3:2b:40: 2d:91:a9:9e:8b:d5:60:a8:fe:b7:db:3c:9e:50:4b:ac:c1:cd: ba:06:61:52:3f:a2:88:31:1b:b7:fa:fc:19:85:a9:87:93:98: 2a:b1:81:06:6d:77:7d:9e:6c:b1:10:dc:f5:6a:5f:93:c0:8f: df:1b:9e:4f:80:f0:4f:e4:5f:c5:7f:d8:db:a1:ac:d1:79:14: 30:93:e4:60:8d:28:52:da:5c:68:1a:4c:a5:96:1d:74:48:64: f5:03:03:82:60:d5:55:37:2f:27:e4:99:9b:2b:e1:19:08:16: 18:44:20:89:f9:e8:64:d4:ce:c5:b8:a7:c0:74:f5:45:89:c5: a4:1b:ee:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUde7830fDfBleEZEY8qJq+1X8FLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTky NzQ3MjMxMTAeFw0yNDAyMTQwOTU1MDBaFw0yNTAyMTIxMDAwMDBaMDMxMTAvBgNV BAMTKDcwRjc4OTk5ODNDNDYzNEM4Rjg1Mjk2QTRCOTRGQjQ2RkY0MDlBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwV2JZ/IPTXWvO6Ag3nz7U3dr WDuyLmTd3B6FzcKlxYgJUJ0aq+FTnuEG0TUefhe95rWbiZF1KFyKhBGzboNYuTaY m4r/UmlZqcvQ8hRlY5jBmxZGyGiYs+JnOxDkJG7sm9r8ItV/dCiEHjbkBkFMP2kf /bo/Pmy/S9+EhOTTOgNlbcpbqnHTz0+2p2pelhVQwMBUjcFxkicYv5WylDnn83WU lxViUe3OIIRgqhxDIyuUOu9gE+aAbQ0X9jW8M9gPcyJmAtLFqKX7QWSm1zksf29u xbZzGQSldVJ1AT3AF4JRo0uGPwJscecC3HRuoIp44KcVIDXb+B4BH4ikLP3LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcPeJmYPEY0yPhSlqS5T7Rv9Amt8wHwYDVR0j BBgwFoAUn8G+1rCZ9OV7rZ+m8JJCGSdHIxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjAwMjI4Zi02ZTI1LTRjOTYtOWNlNS0yZDUwMjI5YTFkMTgvMC85RkMxQkVENkIw OTlGNEU1N0JBRDlGQTZGMDkyNDIxOTI3NDcyMzExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTkyNzQ3 MjMxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDAyMjhmLTZlMjUtNGM5Ni05 Y2U1LTJkNTAyMjlhMWQxOC8wLzMxMzAzMzJlMzEzMzM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YTMA0GCSqG SIb3DQEBCwUAA4IBAQC0LVKPxw3x2iTTkE47D8iCueEhdu7GJB+xfYYaooBbpwv/ r27Qh/wP03Oc0+KPHSM3SIzHYKOcHU0x8JC/HAeLD1FZtm8F6Lp/4iQXNI6/jUdh R5skerTCcm6Cq0QYAC0sk4d/Uc9WkP4m2SVZQv3W23SYCsumj09+PU7zK0Atkame i9VgqP632zyeUEuswc26BmFSP6KIMRu3+vwZhamHk5gqsYEGbXd9nmyxENz1al+T wI/fG55PgPBP5F/Ff9jboazReRQwk+RgjShS2lxoGkyllh10SGT1AwOCYNVVNy8n 5JmbK+EZCBYYRCCJ+ehk1M7FuKfAdPVFicWkG+7c -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org