$ rpki-client -vvf repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa File: 3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa (raw, json) Hash identifier: eTIGvTxcclkAjkS0JQL+QXqxxlU66A6zLv2/rsCM/mo= Subject key identifier: 69:75:1E:F0:AC:47:54:B5:56:3E:A3:7D:0A:9A:73:67:AA:04:FD:75 Certificate issuer: /CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Certificate serial: 7BD9DD169C1B46EE96B32A7D0540C4E9CA2419C3 Authority key identifier: E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa Signing time: Fri 18 Oct 2024 10:00:01 +0000 ROA not before: Fri 18 Oct 2024 09:55:01 +0000 ROA not after: Fri 17 Oct 2025 10:00:01 +0000 asID: 149881 IP address blocks: 103.189.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d9:dd:16:9c:1b:46:ee:96:b3:2a:7d:05:40:c4:e9:ca:24:19:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1FE69A34216C24D1870F5CED3A4309234A0F1B2 Validity Not Before: Oct 18 09:55:01 2024 GMT Not After : Oct 17 10:00:01 2025 GMT Subject: CN=69751EF0AC4754B5563EA37D0A9A7367AA04FD75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:ae:b6:fd:cc:9c:a5:ec:98:2e:a2:58:95: bf:94:48:6c:48:05:aa:d3:7c:72:a2:23:fb:b4:25: ec:43:eb:66:01:81:92:30:12:98:e1:cc:52:fa:06: b6:8c:94:41:58:4b:06:66:e1:e9:8c:a0:52:b2:b7: 9e:bb:a2:49:3b:ba:d3:7f:bd:e4:60:fd:58:3c:48: df:0a:8b:44:a2:a8:7e:00:12:63:9c:93:29:84:49: f7:73:ee:ba:f3:17:c1:83:14:37:a6:83:bc:31:8e: 57:9d:b2:de:b9:c6:e0:ec:1e:96:8a:c6:88:69:ba: b2:b3:0e:f0:be:5b:af:fa:78:df:9d:1d:4d:81:2f: 81:40:56:df:ef:ff:f8:d9:2e:72:46:f3:bc:ea:c3: b2:d3:e1:d4:6b:2a:a6:6c:7c:77:c2:c2:5f:18:a0: ad:ba:e9:2f:aa:13:d7:51:e0:e5:c6:3b:c4:c6:56: cc:93:26:63:3d:0a:77:69:45:86:17:44:95:75:13: 99:93:00:7d:23:9a:e6:a9:46:72:f8:e5:54:ce:a0: a4:45:2f:ee:34:4a:d7:b9:29:21:fd:d9:fc:49:7e: 46:b9:4b:58:75:ce:52:6a:35:74:a2:93:2b:c8:65: 84:2d:75:bc:bb:06:9a:f2:30:05:4e:88:34:73:ee: 18:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:75:1E:F0:AC:47:54:B5:56:3E:A3:7D:0A:9A:73:67:AA:04:FD:75 X509v3 Authority Key Identifier: keyid:E1:FE:69:A3:42:16:C2:4D:18:70:F5:CE:D3:A4:30:92:34:A0:F1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1FE69A34216C24D1870F5CED3A4309234A0F1B2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/3130332e3138392e3232332e302f32342d3234203d3e20313439383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.223.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:6f:60:d4:26:81:ed:a9:96:ce:c3:57:69:56:c4:c4:0a:6b: 37:52:3a:8c:c6:27:98:f4:7f:0d:e5:78:1d:5d:7e:38:36:64: f4:11:cf:70:88:31:01:be:96:30:fe:83:f3:2f:8f:7a:3c:a7: a0:b7:9d:73:e4:1f:a5:91:f7:25:45:55:cc:7e:42:da:d7:67: f2:77:5c:bf:0f:b5:25:f9:ab:c6:55:ab:42:40:cc:ea:8f:6c: 63:48:75:25:24:6b:50:d2:f5:79:06:b3:1d:8a:6a:45:89:92: 66:a8:c4:4a:a3:41:e4:e4:17:c0:ee:dd:d6:2d:76:1c:9d:82: 24:fa:d8:a8:69:ad:a8:d4:ab:91:14:2c:77:4a:8d:f7:b3:1f: 4c:e2:73:29:ad:23:a5:17:89:eb:07:b8:57:c3:e4:67:f3:45: 4f:7a:dc:6f:f3:34:4c:5f:41:33:35:ab:e0:8b:ff:cb:cb:ef: 13:3c:00:97:ee:63:a9:d7:f9:f8:a0:ec:7c:85:e3:ae:45:3d: 19:4a:ac:4a:27:81:69:45:bd:7d:63:4a:a8:86:6d:3a:5e:6e: 44:28:3a:9d:a2:8c:6d:b7:52:88:29:3b:1a:7c:4d:88:d7:dc: ea:36:cc:bd:26:82:86:b3:00:10:15:0b:ac:44:a0:80:e3:6c: 03:26:50:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe9ndFpwbRu6Wsyp9BUDE6cokGcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIz NEEwRjFCMjAeFw0yNDEwMTgwOTU1MDFaFw0yNTEwMTcxMDAwMDFaMDMxMTAvBgNV BAMTKDY5NzUxRUYwQUM0NzU0QjU1NjNFQTM3RDBBOUE3MzY3QUEwNEZENzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDTK62/cycpeyYLqJYlb+USGxI BarTfHKiI/u0JexD62YBgZIwEpjhzFL6BraMlEFYSwZm4emMoFKyt567okk7utN/ veRg/Vg8SN8Ki0SiqH4AEmOckymESfdz7rrzF8GDFDemg7wxjledst65xuDsHpaK xohpurKzDvC+W6/6eN+dHU2BL4FAVt/v//jZLnJG87zqw7LT4dRrKqZsfHfCwl8Y oK266S+qE9dR4OXGO8TGVsyTJmM9CndpRYYXRJV1E5mTAH0jmuapRnL45VTOoKRF L+40Ste5KSH92fxJfka5S1h1zlJqNXSikyvIZYQtdby7BpryMAVOiDRz7hiPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaXUe8KxHVLVWPqN9CppzZ6oE/XUwHwYDVR0j BBgwFoAU4f5po0IWwk0YcPXO06QwkjSg8bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODhlM2ExNy0xYzkxLTQ3OTMtODNjNC0yMTFkNDIxMGFlYTgvMC9FMUZFNjlBMzQy MTZDMjREMTg3MEY1Q0VEM0E0MzA5MjM0QTBGMUIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFGRTY5QTM0MjE2QzI0RDE4NzBGNUNFRDNBNDMwOTIzNEEw RjFCMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4OGUzYTE3LTFjOTEtNDc5My04 M2M0LTIxMWQ0MjEwYWVhOC8wLzMxMzAzMzJlMzEzODM5MmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvd8wDQYJ KoZIhvcNAQELBQADggEBAA5vYNQmge2pls7DV2lWxMQKazdSOozGJ5j0fw3leB1d fjg2ZPQRz3CIMQG+ljD+g/Mvj3o8p6C3nXPkH6WR9yVFVcx+QtrXZ/J3XL8PtSX5 q8ZVq0JAzOqPbGNIdSUka1DS9XkGsx2KakWJkmaoxEqjQeTkF8Du3dYtdhydgiT6 2KhprajUq5EULHdKjfezH0zicymtI6UXiesHuFfD5GfzRU963G/zNExfQTM1q+CL /8vL7xM8AJfuY6nX+fig7HyF465FPRlKrEongWlFvX1jSqiGbTpebkQoOp2ijG23 UogpOxp8TYjX3Oo2zL0mgoazABAVC6xEoIDjbAMmUAQ= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org