$ rpki-client -vvf repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa File: 3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa (raw, json) Hash identifier: nbEpopwiojWgYGehW+g9TqMlbT1/tFwqFVAFzwn9bm8= Subject key identifier: EE:DF:BC:3C:9A:7A:D3:E6:A4:8D:F1:EB:39:5A:52:21:59:1C:92:6D Certificate issuer: /CN=923816C042C964B6465A7BA06B2D44BDAF28D827 Certificate serial: 178AAB1053F8F48A227C4239BA89AFED3F79ABB6 Authority key identifier: 92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer Subject info access: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa Signing time: Mon 14 Oct 2024 09:02:14 +0000 ROA not before: Mon 14 Oct 2024 08:57:14 +0000 ROA not after: Mon 13 Oct 2025 09:02:14 +0000 asID: 149758 IP address blocks: 103.189.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.crl rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:8a:ab:10:53:f8:f4:8a:22:7c:42:39:ba:89:af:ed:3f:79:ab:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923816C042C964B6465A7BA06B2D44BDAF28D827 Validity Not Before: Oct 14 08:57:14 2024 GMT Not After : Oct 13 09:02:14 2025 GMT Subject: CN=EEDFBC3C9A7AD3E6A48DF1EB395A5221591C926D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:30:f8:be:4d:f0:a1:f0:74:46:6e:6e:6a:cb: 70:f0:67:ba:51:a2:94:15:10:65:e5:48:d7:91:1b: d8:7c:70:3a:43:b2:82:b6:16:c6:e7:c9:12:e9:2a: a5:65:e9:94:19:96:6c:56:f0:6c:18:d6:96:14:8a: cc:ab:62:e2:e2:cf:7f:df:23:35:a2:78:9a:cc:b9: 2e:49:de:5a:50:20:70:99:ef:b1:ba:00:54:a8:85: 27:bc:70:a0:94:7f:fa:31:8e:2d:68:25:85:b2:4a: 42:a1:32:d3:d3:23:39:e4:1c:0f:a9:88:39:f4:f0: 50:ba:89:ed:3c:2c:96:96:19:43:62:4c:4a:7b:89: f6:73:91:ae:d2:b6:b0:35:a8:8f:b5:49:8d:00:f7: df:9a:78:a4:42:2b:f4:ab:65:58:6f:f2:be:97:52: 7a:22:d2:72:1e:cb:41:b8:bd:f6:17:5f:fd:04:3b: 67:6a:73:04:c9:77:33:b8:21:de:b8:c3:2a:aa:37: 76:e8:64:9e:c9:27:1b:96:ad:b3:61:72:ba:39:59: 02:ad:ba:32:c1:df:ad:c0:48:b9:4a:ee:ff:aa:ff: 27:8b:93:71:2d:76:e3:2e:e6:13:ad:8f:b6:0e:53: b7:a8:28:a8:e1:cb:ce:e7:9d:5a:2b:8d:e8:34:d4: b9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DF:BC:3C:9A:7A:D3:E6:A4:8D:F1:EB:39:5A:52:21:59:1C:92:6D X509v3 Authority Key Identifier: keyid:92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35392e302f32342d3234203d3e20313439373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.59.0/24 Signature Algorithm: sha256WithRSAEncryption 07:d6:93:49:ee:d5:7e:1b:4f:40:d0:f4:1e:a6:0e:2f:d6:a7: e7:03:19:9e:b4:10:72:b1:d0:dc:29:4f:e3:b7:dc:0e:c9:d1: 9c:df:84:36:f4:fb:25:71:44:81:db:f2:f9:ed:e2:30:99:80: 4f:ca:ba:2a:e6:c2:c2:c4:02:04:76:30:34:13:53:3d:6a:68: 61:27:7d:5e:ca:e9:ae:6a:68:77:03:22:74:c1:37:3d:7e:5d: 5d:9d:23:dc:0e:ed:6c:0b:19:25:df:9a:17:4f:85:85:dc:2d: 0e:da:83:a7:dd:1b:19:e8:9f:7e:4e:1f:23:4d:77:d5:0f:aa: 86:a1:54:cc:66:5f:60:e0:58:b0:f5:56:8b:13:07:f8:27:ab: c2:9d:f9:19:14:af:da:b8:d3:43:ce:42:e5:bc:6c:60:d3:f6: a4:70:cd:16:cf:92:e6:70:0e:b3:8d:60:b6:10:2d:9f:29:de: d1:63:b7:32:11:83:61:57:58:19:a8:1d:e2:55:40:e6:ab:d5: 75:d6:1f:8d:b8:fa:08:cb:b6:9d:ed:7c:8d:84:8b:88:7b:f0: 25:4f:fe:56:b8:86:73:b3:8e:3b:54:c8:db:60:ae:f3:60:f3: b0:80:6f:b1:eb:a7:6f:6f:43:91:9e:74:4f:7b:82:a4:42:16: 42:19:e6:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF4qrEFP49IoifEI5uomv7T95q7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzODE2QzA0MkM5NjRCNjQ2NUE3QkEwNkIyRDQ0QkRB RjI4RDgyNzAeFw0yNDEwMTQwODU3MTRaFw0yNTEwMTMwOTAyMTRaMDMxMTAvBgNV BAMTKEVFREZCQzNDOUE3QUQzRTZBNDhERjFFQjM5NUE1MjIxNTkxQzkyNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqMPi+TfCh8HRGbm5qy3DwZ7pR opQVEGXlSNeRG9h8cDpDsoK2FsbnyRLpKqVl6ZQZlmxW8GwY1pYUisyrYuLiz3/f IzWieJrMuS5J3lpQIHCZ77G6AFSohSe8cKCUf/oxji1oJYWySkKhMtPTIznkHA+p iDn08FC6ie08LJaWGUNiTEp7ifZzka7StrA1qI+1SY0A99+aeKRCK/SrZVhv8r6X Unoi0nIey0G4vfYXX/0EO2dqcwTJdzO4Id64wyqqN3boZJ7JJxuWrbNhcro5WQKt ujLB363ASLlK7v+q/yeLk3EtduMu5hOtj7YOU7eoKKjhy87nnVorjeg01Lm/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7t+8PJp60+akjfHrOVpSIVkckm0wHwYDVR0j BBgwFoAUkjgWwELJZLZGWnugay1Eva8o2CcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzdkZmI4OC1mYjUwLTQ4ZDEtYjkwZC1lNTI1MTAyZjRmNWUvMC85MjM4MTZDMDQy Qzk2NEI2NDY1QTdCQTA2QjJENDRCREFGMjhEODI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzODE2QzA0MkM5NjRCNjQ2NUE3QkEwNkIyRDQ0QkRBRjI4 RDgyNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzN2RmYjg4LWZiNTAtNDhkMS1i OTBkLWU1MjUxMDJmNGY1ZS8wLzMxMzAzMzJlMzEzODM5MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ707MA0GCSqG SIb3DQEBCwUAA4IBAQAH1pNJ7tV+G09A0PQepg4v1qfnAxmetBBysdDcKU/jt9wO ydGc34Q29PslcUSB2/L57eIwmYBPyroq5sLCxAIEdjA0E1M9amhhJ31eyumuamh3 AyJ0wTc9fl1dnSPcDu1sCxkl35oXT4WF3C0O2oOn3RsZ6J9+Th8jTXfVD6qGoVTM Zl9g4Fiw9VaLEwf4J6vCnfkZFK/auNNDzkLlvGxg0/akcM0Wz5LmcA6zjWC2EC2f Kd7RY7cyEYNhV1gZqB3iVUDmq9V11h+NuPoIy7ad7XyNhIuIe/AlT/5WuIZzs447 VMjbYK7zYPOwgG+x66dvb0ORnnRPe4KkQhZCGeZU -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org