$ rpki-client -vvf repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa File: 3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa (raw, json) Hash identifier: mUXp1HwbtHkXaX3CkjisHWg2Yn4i2eJ4/iIA+bJW9yA= Subject key identifier: 25:0E:8F:91:61:28:CC:16:13:CA:44:D4:5E:EA:5D:60:7C:BE:92:F3 Certificate issuer: /CN=8F9164714A1B3B906CF8A8B371F342EBA3540CD9 Certificate serial: 62534284CC473600C1C54393B7D68DF362F34A89 Authority key identifier: 8F:91:64:71:4A:1B:3B:90:6C:F8:A8:B3:71:F3:42:EB:A3:54:0C:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa Signing time: Wed 24 Apr 2024 09:00:00 +0000 ROA not before: Wed 24 Apr 2024 08:55:00 +0000 ROA not after: Wed 23 Apr 2025 09:00:00 +0000 asID: 149745 IP address blocks: 103.188.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.crl rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:53:42:84:cc:47:36:00:c1:c5:43:93:b7:d6:8d:f3:62:f3:4a:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F9164714A1B3B906CF8A8B371F342EBA3540CD9 Validity Not Before: Apr 24 08:55:00 2024 GMT Not After : Apr 23 09:00:00 2025 GMT Subject: CN=250E8F916128CC1613CA44D45EEA5D607CBE92F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e7:f7:8e:33:36:6a:70:0d:42:0e:ec:df:03: 21:9d:48:bc:4e:f1:61:cf:e5:5d:d7:5a:ec:1f:2d: 7e:fb:1a:84:03:0e:fb:de:63:ce:e6:45:28:60:c4: 91:2d:97:90:52:9b:44:f4:7b:5f:b9:02:07:90:88: 92:49:af:f4:bd:c7:04:bf:a5:3d:ea:1a:d1:99:2a: 46:33:d4:15:91:67:e0:f6:46:ec:13:61:1a:aa:12: a0:8e:e2:0c:26:85:47:19:2f:4e:6a:66:b8:c5:ca: b8:f9:03:d6:02:fa:3f:f5:50:40:39:92:de:e4:9a: 1b:72:e9:70:24:74:d1:d7:27:08:72:ae:cc:99:6f: a7:a6:be:43:71:ad:17:5f:0f:16:7d:66:03:dd:40: 6d:88:ce:19:34:5d:25:51:72:b9:e0:3d:a5:65:d5: f8:8b:5d:47:7c:6a:65:c3:38:34:7a:65:f9:fa:0d: 13:0a:6c:e2:78:7c:38:32:cf:55:2f:28:72:84:33: 86:e2:47:f6:f4:1b:65:99:c1:d2:e5:87:b5:cf:e3: b2:a8:0f:0c:5a:13:2c:64:c1:4d:3d:c3:ff:a3:74: 5c:f3:cd:c2:7b:0a:c5:aa:1e:b2:6a:1a:75:2b:7d: 2f:d9:b0:b9:97:bc:b7:71:a6:3f:20:6d:14:46:98: 9d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0E:8F:91:61:28:CC:16:13:CA:44:D4:5E:EA:5D:60:7C:BE:92:F3 X509v3 Authority Key Identifier: keyid:8F:91:64:71:4A:1B:3B:90:6C:F8:A8:B3:71:F3:42:EB:A3:54:0C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.119.0/24 Signature Algorithm: sha256WithRSAEncryption 12:bd:cc:12:0a:2d:db:43:45:e5:72:07:03:c9:c1:33:a8:76: 19:14:07:21:63:f3:8e:53:fc:bc:e8:13:91:f9:7d:a8:35:81: b8:58:ef:4d:49:ee:cf:e6:cd:64:71:ce:95:fa:bc:72:b7:7b: 09:d1:10:b1:ac:39:64:1f:aa:a9:47:d2:e1:f8:57:03:7f:36: 3c:21:ad:b1:85:17:a8:ad:fe:30:b9:85:57:d2:60:0c:f5:b3: 69:db:2f:c2:e2:92:d5:a9:9f:9d:7b:24:a0:52:83:57:34:8c: ed:a5:52:a6:8e:32:ca:b3:f0:0f:6c:7b:4c:d9:2c:47:2e:50: 06:b8:31:a0:75:c5:2c:ff:84:1c:45:16:a4:9f:91:af:f0:c2: a7:09:15:18:95:7a:07:93:de:3a:11:23:a5:58:6e:aa:a7:20: db:be:e8:f4:f5:7e:f9:4c:ac:ef:bf:04:b0:f4:e8:d3:b7:b9: c9:73:ef:fd:63:16:81:80:7f:75:62:c0:19:42:1c:38:75:9b: e9:ae:32:cd:76:1d:d3:bd:b0:87:3a:57:4c:b5:d1:09:19:bf: 06:b6:a5:4a:0c:96:e0:f9:01:3d:ca:56:81:42:44:37:14:ca: d1:f1:67:e5:ce:da:c9:e9:b2:01:0b:7c:ca:aa:7e:10:88:70: 35:a4:04:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYlNChMxHNgDBxUOTt9aN82LzSokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY5MTY0NzE0QTFCM0I5MDZDRjhBOEIzNzFGMzQyRUJB MzU0MENEOTAeFw0yNDA0MjQwODU1MDBaFw0yNTA0MjMwOTAwMDBaMDMxMTAvBgNV BAMTKDI1MEU4RjkxNjEyOENDMTYxM0NBNDRENDVFRUE1RDYwN0NCRTkyRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf5/eOMzZqcA1CDuzfAyGdSLxO 8WHP5V3XWuwfLX77GoQDDvveY87mRShgxJEtl5BSm0T0e1+5AgeQiJJJr/S9xwS/ pT3qGtGZKkYz1BWRZ+D2RuwTYRqqEqCO4gwmhUcZL05qZrjFyrj5A9YC+j/1UEA5 kt7kmhty6XAkdNHXJwhyrsyZb6emvkNxrRdfDxZ9ZgPdQG2Izhk0XSVRcrngPaVl 1fiLXUd8amXDODR6Zfn6DRMKbOJ4fDgyz1UvKHKEM4biR/b0G2WZwdLlh7XP47Ko DwxaEyxkwU09w/+jdFzzzcJ7CsWqHrJqGnUrfS/ZsLmXvLdxpj8gbRRGmJ2bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJQ6PkWEozBYTykTUXupdYHy+kvMwHwYDVR0j BBgwFoAUj5FkcUobO5Bs+KizcfNC66NUDNkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDc1OGU4ZS00OWM4LTQ4YjgtYmRjYi0zNTMzOWUyYWU2MDEvMC84RjkxNjQ3MTRB MUIzQjkwNkNGOEE4QjM3MUYzNDJFQkEzNTQwQ0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY5MTY0NzE0QTFCM0I5MDZDRjhBOEIzNzFGMzQyRUJBMzU0 MENEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NzU4ZThlLTQ5YzgtNDhiOC1i ZGNiLTM1MzM5ZTJhZTYwMS8wLzMxMzAzMzJlMzEzODM4MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvHcwDQYJ KoZIhvcNAQELBQADggEBABK9zBIKLdtDReVyBwPJwTOodhkUByFj845T/LzoE5H5 fag1gbhY701J7s/mzWRxzpX6vHK3ewnRELGsOWQfqqlH0uH4VwN/NjwhrbGFF6it /jC5hVfSYAz1s2nbL8LiktWpn517JKBSg1c0jO2lUqaOMsqz8A9se0zZLEcuUAa4 MaB1xSz/hBxFFqSfka/wwqcJFRiVegeT3joRI6VYbqqnINu+6PT1fvlMrO+/BLD0 6NO3uclz7/1jFoGAf3ViwBlCHDh1m+muMs12HdO9sIc6V0y10QkZvwa2pUoMluD5 AT3KVoFCRDcUytHxZ+XO2snpsgELfMqqfhCIcDWkBPs= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org