$ rpki-client -vvf repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa File: 3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: zuPUCAILSOlADSWI5TanAbkAevxM6oeSw1GvD+91wcg= Subject key identifier: FD:E5:2F:17:01:D6:DA:EF:20:3B:37:C2:5A:AE:79:50:63:A7:4A:0B Certificate issuer: /CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429 Certificate serial: 18BA9D31D971B57275009A4F594B3BE6CB6EBC3E Authority key identifier: 69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa Signing time: Wed 01 May 2024 07:00:00 +0000 ROA not before: Wed 01 May 2024 06:55:00 +0000 ROA not after: Wed 30 Apr 2025 07:00:00 +0000 asID: 9341 IP address blocks: 103.189.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.crl rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ba:9d:31:d9:71:b5:72:75:00:9a:4f:59:4b:3b:e6:cb:6e:bc:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429 Validity Not Before: May 1 06:55:00 2024 GMT Not After : Apr 30 07:00:00 2025 GMT Subject: CN=FDE52F1701D6DAEF203B37C25AAE795063A74A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fa:6d:b4:fe:8d:c2:5f:0f:d9:71:c8:1b:17: 4c:8d:cc:6c:89:89:99:80:a4:a1:14:3c:68:5e:76: ad:cc:0a:c9:b5:55:df:f5:45:30:83:b2:d8:7d:07: b0:4a:96:fc:9c:fa:95:e2:72:ac:57:53:66:1e:68: 2e:07:34:90:d9:bc:ee:e9:d4:98:16:9b:35:32:74: d2:74:e2:85:8e:dd:3a:4e:c0:a2:09:62:f2:e0:16: 9b:26:ce:b3:c7:e5:95:57:2c:00:02:f9:be:4d:c8: 51:1c:65:64:f6:a2:04:a6:4d:4f:e9:2f:87:36:2c: da:26:6b:55:cb:8f:3a:61:1b:a9:ad:eb:0a:7c:a0: e8:bc:76:ef:64:2d:a4:6d:42:60:f2:b8:47:92:47: 4e:aa:5b:d2:bd:95:a6:3c:7c:5f:9c:d0:4b:9f:38: a5:7e:df:17:ed:fc:ce:6c:bb:b6:03:00:23:cb:26: 55:13:f9:37:23:ff:b9:fb:84:94:a4:81:77:44:f7: 9f:4d:2e:95:e2:76:fe:3e:6c:b4:23:4f:b2:c0:81: 9b:76:d1:b6:89:e7:74:01:75:e7:3a:7a:95:48:79: 34:f3:8e:a6:96:7e:34:09:23:c2:d4:b2:45:bc:e5: ae:56:b0:17:95:79:b5:64:9b:ca:91:d6:7b:7d:e1: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E5:2F:17:01:D6:DA:EF:20:3B:37:C2:5A:AE:79:50:63:A7:4A:0B X509v3 Authority Key Identifier: keyid:69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.206.0/23 Signature Algorithm: sha256WithRSAEncryption 45:33:fb:ea:e0:4a:9d:51:21:a9:9f:b9:39:0f:dc:8f:8a:3b: f4:64:d2:58:b5:98:b4:f4:f9:2a:bb:dc:3d:33:50:6c:c1:42: 29:7f:1f:9e:3c:18:86:6d:35:53:0d:80:66:ef:9e:7b:cb:6e: c9:6d:8c:0a:9f:c4:dc:fb:08:54:06:a9:f5:4d:7b:b8:da:02: ec:bb:21:39:b4:6c:27:65:06:3c:35:b1:a3:79:da:4c:80:9e: 29:6c:cc:21:98:37:6c:a9:7c:de:fe:7d:0e:95:70:c5:d6:b5: 2e:45:53:6a:94:c3:05:d5:d0:79:b0:a4:b2:4a:c1:a7:17:10: 46:20:61:e3:14:4e:e8:25:41:00:c7:9c:65:a2:a2:0a:f6:99: cb:92:38:80:50:7f:ad:48:bb:4f:cc:79:c4:cf:f6:5c:c5:a6: b9:3f:36:79:e7:aa:da:c7:0b:96:1d:ad:99:0f:0d:0b:d6:28: ac:cb:09:51:58:7e:89:3d:66:9b:6f:90:0d:95:21:9d:4f:8d: 78:d5:77:2a:43:bf:6c:50:a8:e9:dd:f3:2b:3d:9b:40:94:17: 17:85:75:5c:b0:c6:31:63:0b:b1:2f:e0:4f:12:f0:6b:d2:47: 6a:6e:26:a5:d0:1e:90:d5:bc:95:9b:79:6f:d1:b0:b6:08:00: 27:1b:54:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGLqdMdlxtXJ1AJpPWUs75stuvD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NDVDMzg2OUIzRTQyOUQ0QjBBRUNFREY5OTk5RUE1 REFFRTQyOTAeFw0yNDA1MDEwNjU1MDBaFw0yNTA0MzAwNzAwMDBaMDMxMTAvBgNV BAMTKEZERTUyRjE3MDFENkRBRUYyMDNCMzdDMjVBQUU3OTUwNjNBNzRBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb+m20/o3CXw/ZccgbF0yNzGyJ iZmApKEUPGhedq3MCsm1Vd/1RTCDsth9B7BKlvyc+pXicqxXU2YeaC4HNJDZvO7p 1JgWmzUydNJ04oWO3TpOwKIJYvLgFpsmzrPH5ZVXLAAC+b5NyFEcZWT2ogSmTU/p L4c2LNoma1XLjzphG6mt6wp8oOi8du9kLaRtQmDyuEeSR06qW9K9laY8fF+c0Euf OKV+3xft/M5su7YDACPLJlUT+Tcj/7n7hJSkgXdE959NLpXidv4+bLQjT7LAgZt2 0baJ53QBdec6epVIeTTzjqaWfjQJI8LUskW85a5WsBeVebVkm8qR1nt94ZWzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/eUvFwHW2u8gOzfCWq55UGOnSgswHwYDVR0j BBgwFoAUaZRcOGmz5CnUsK7O35mZ6l2u5CkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODMxZWViNC1mMzU3LTQ1YTctOTI2NS00MjhiMDA3YTAyNzAvMC82OTk0NUMzODY5 QjNFNDI5RDRCMEFFQ0VERjk5OTlFQTVEQUVFNDI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk5NDVDMzg2OUIzRTQyOUQ0QjBBRUNFREY5OTk5RUE1REFF RTQyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4MzFlZWI0LWYzNTctNDVhNy05 MjY1LTQyOGIwMDdhMDI3MC8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9zjANBgkqhkiG 9w0BAQsFAAOCAQEARTP76uBKnVEhqZ+5OQ/cj4o79GTSWLWYtPT5KrvcPTNQbMFC KX8fnjwYhm01Uw2AZu+ee8tuyW2MCp/E3PsIVAap9U17uNoC7LshObRsJ2UGPDWx o3naTICeKWzMIZg3bKl83v59DpVwxda1LkVTapTDBdXQebCkskrBpxcQRiBh4xRO 6CVBAMecZaKiCvaZy5I4gFB/rUi7T8x5xM/2XMWmuT82eeeq2scLlh2tmQ8NC9Yo rMsJUVh+iT1mm2+QDZUhnU+NeNV3KkO/bFCo6d3zKz2bQJQXF4V1XLDGMWMLsS/g TxLwa9JHam4mpdAekNW8lZt5b9GwtggAJxtUwg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org