$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa File: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (raw, json) Hash identifier: 2/cotGNcJ8/pTH7ezN1hAoiTKcYjyf0D6A4DNtUiVcI= Subject key identifier: C2:66:8E:5F:4C:AC:AC:8E:48:B0:9B:A9:30:91:E9:89:E9:9E:0C:E0 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 29BD6061FED9DDD2AEC2B87A8579D4B543E4172A Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa Signing time: Mon 07 Oct 2024 13:52:50 +0000 ROA not before: Mon 07 Oct 2024 13:47:50 +0000 ROA not after: Mon 06 Oct 2025 13:52:50 +0000 asID: 150958 IP address blocks: 103.81.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:bd:60:61:fe:d9:dd:d2:ae:c2:b8:7a:85:79:d4:b5:43:e4:17:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Oct 7 13:47:50 2024 GMT Not After : Oct 6 13:52:50 2025 GMT Subject: CN=C2668E5F4CACAC8E48B09BA93091E989E99E0CE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:67:f6:62:dc:0a:af:8b:05:3e:e5:cc:45: fb:3e:22:21:68:a9:de:ca:05:cf:f6:e7:66:99:12: d0:99:e6:a1:ac:17:3c:1e:15:c1:1e:20:04:a5:47: 29:53:ac:54:f1:1a:93:70:bf:c4:63:b2:05:d6:84: be:36:2e:ed:d6:78:6d:2e:34:3b:83:22:bf:a5:86: 68:59:e5:d1:bf:3b:fb:55:c0:6a:d3:bf:1c:4a:2c: 65:85:5a:7b:16:d5:91:b6:66:af:07:f7:b1:66:c8: af:af:4c:a8:64:a4:ed:90:83:78:47:db:e8:86:76: c6:0b:2e:b7:da:0b:4f:71:38:b4:bd:2e:ca:8b:8b: a9:87:34:b6:cc:9e:3b:f6:c8:5f:05:0c:2c:54:39: 32:d1:51:d9:d6:b8:2e:2a:56:75:21:56:59:37:4c: 05:2a:ba:a4:6f:78:02:65:ef:95:aa:b4:4a:b4:d8: d0:c4:05:f7:04:61:e6:0a:8e:ee:de:ca:36:1c:b5: 9e:01:33:28:5c:a9:3a:7a:48:79:5f:82:7a:8d:19: 12:87:75:60:3c:9e:f6:d6:fc:39:f6:b7:29:27:59: 00:b9:3e:d0:78:8b:0e:be:8e:d7:4c:16:b0:cf:83: 34:d3:b8:e7:5a:ac:49:9b:c7:ba:78:0b:d1:17:01: 06:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:66:8E:5F:4C:AC:AC:8E:48:B0:9B:A9:30:91:E9:89:E9:9E:0C:E0 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.110.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:45:2a:52:e9:fd:1c:5e:04:94:b5:c4:d9:61:be:20:b0:82: c8:22:9c:33:45:9d:2f:b1:b6:1c:70:b4:b6:74:ea:a8:6c:df: 3a:e3:bc:ab:1d:6e:a2:04:36:e7:f7:f3:e1:eb:ff:18:29:e0: 05:e6:1b:da:7b:a4:eb:27:97:af:0e:04:ba:05:60:08:88:15: 15:b7:31:1f:dc:c7:e0:66:3d:cf:79:33:a8:38:72:5f:45:c2: ef:ac:ee:c5:73:b5:4b:f9:be:e1:4c:74:f0:71:1a:17:4e:d9: 29:89:dd:5e:ef:fc:02:f9:64:0a:e9:15:19:da:ab:d4:22:86: a1:de:5a:cf:e2:81:3d:83:d1:a2:3d:b7:60:ab:88:89:3f:70: 31:2c:8e:b5:cc:e8:58:d2:17:22:23:96:79:5a:64:39:ae:29: 3b:68:4d:25:c2:11:76:48:b7:da:42:04:b8:21:c0:56:15:ef: 89:61:09:68:31:b2:dd:e2:14:a6:69:a0:4f:a5:a7:99:f7:c9: 14:25:13:82:1d:e1:00:04:c3:07:d4:5f:8d:44:45:51:98:38: c6:05:c8:85:20:ca:a7:d6:e3:37:1d:0c:54:fa:39:db:53:27: 7b:bc:49:db:68:5a:56:f0:f7:38:f5:4b:24:00:5a:26:80:8b: 4a:93:e2:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKb1gYf7Z3dKuwrh6hXnUtUPkFyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNDEwMDcxMzQ3NTBaFw0yNTEwMDYxMzUyNTBaMDMxMTAvBgNV BAMTKEMyNjY4RTVGNENBQ0FDOEU0OEIwOUJBOTMwOTFFOTg5RTk5RTBDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB32f2YtwKr4sFPuXMRfs+IiFo qd7KBc/252aZEtCZ5qGsFzweFcEeIASlRylTrFTxGpNwv8RjsgXWhL42Lu3WeG0u NDuDIr+lhmhZ5dG/O/tVwGrTvxxKLGWFWnsW1ZG2Zq8H97FmyK+vTKhkpO2Qg3hH 2+iGdsYLLrfaC09xOLS9LsqLi6mHNLbMnjv2yF8FDCxUOTLRUdnWuC4qVnUhVlk3 TAUquqRveAJl75WqtEq02NDEBfcEYeYKju7eyjYctZ4BMyhcqTp6SHlfgnqNGRKH dWA8nvbW/Dn2tyknWQC5PtB4iw6+jtdMFrDPgzTTuOdarEmbx7p4C9EXAQaXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwmaOX0ysrI5IsJupMJHpiemeDOAwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMGJjZGMzLTBmZWEtNDc0Ny05 OTA3LTY1NjQ4NmJhZThkYS8wLzMxMzAzMzJlMzgzMTJlMzEzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1FuMA0GCSqG SIb3DQEBCwUAA4IBAQA7RSpS6f0cXgSUtcTZYb4gsILIIpwzRZ0vsbYccLS2dOqo bN8647yrHW6iBDbn9/Ph6/8YKeAF5hvae6TrJ5evDgS6BWAIiBUVtzEf3MfgZj3P eTOoOHJfRcLvrO7Fc7VL+b7hTHTwcRoXTtkpid1e7/wC+WQK6RUZ2qvUIoah3lrP 4oE9g9GiPbdgq4iJP3AxLI61zOhY0hciI5Z5WmQ5rik7aE0lwhF2SLfaQgS4IcBW Fe+JYQloMbLd4hSmaaBPpaeZ98kUJROCHeEABMMH1F+NREVRmDjGBciFIMqn1uM3 HQxU+jnbUyd7vEnbaFpW8Pc49UskAFomgItKk+Ia -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:55 2024 by rpki-client on console-ams.rpki-client.org