$ rpki-client -vvf repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa File: 3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa (raw, json) Hash identifier: d+J4junLJdCE2sxvmRjUwB+FBBupoMTN/w0qbdtED1k= Subject key identifier: 7C:F9:17:3E:9C:7F:BD:22:3C:3F:DA:C4:96:0B:57:8F:6E:6E:D2:40 Certificate issuer: /CN=EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB Certificate serial: 304FFC70ACB10CC8664721B88802E8BDC05CB4E3 Authority key identifier: EA:EA:2F:2F:07:FF:F3:43:40:77:7B:3B:BD:7D:1D:18:6F:4E:C1:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa Signing time: Mon 01 Jul 2024 10:00:01 +0000 ROA not before: Mon 01 Jul 2024 09:55:01 +0000 ROA not after: Mon 30 Jun 2025 10:00:01 +0000 asID: 149937 IP address blocks: 103.191.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.crl rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4f:fc:70:ac:b1:0c:c8:66:47:21:b8:88:02:e8:bd:c0:5c:b4:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB Validity Not Before: Jul 1 09:55:01 2024 GMT Not After : Jun 30 10:00:01 2025 GMT Subject: CN=7CF9173E9C7FBD223C3FDAC4960B578F6E6ED240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:aa:2d:cc:42:e8:d5:c5:f4:de:b3:42:87:7f: e3:2f:8b:37:90:79:75:63:44:41:57:83:f5:92:62: fc:f1:39:4f:c4:5d:86:28:6b:92:45:6c:ca:ef:f7: f3:58:2c:c5:df:68:31:52:6e:b8:a3:06:2a:fb:c3: 29:5b:01:7a:db:cb:7c:23:1d:fe:2e:7f:1d:73:d0: 7b:ac:1c:c2:a9:16:78:03:43:d7:96:a0:d8:62:3a: 7c:26:db:a8:ea:60:48:dd:a0:d0:f2:3e:f7:80:be: e3:f7:1b:4a:e2:da:87:a1:e9:cc:28:24:4b:03:65: 78:39:25:74:3c:20:26:49:38:ff:12:89:2d:7d:f2: f0:b1:1b:83:6a:f0:ed:56:41:af:d6:79:29:3d:72: 96:7a:3c:2e:53:e9:21:93:bd:52:9f:01:11:b9:27: fd:0d:02:61:b8:14:d2:8d:1a:69:e5:3f:2c:cd:55: 0d:21:9b:0d:93:ba:fe:52:5e:2b:04:63:69:c7:01: 1b:bb:ec:00:51:25:93:b9:b4:04:a6:5e:4b:62:af: 73:0c:cf:da:b7:8a:bb:ef:74:9c:53:1f:cb:18:9a: 3d:12:69:7f:cc:9b:90:11:3b:89:5e:38:60:cb:9a: cf:db:28:7e:98:f7:6f:d1:2b:47:ad:2b:fc:40:0c: a3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F9:17:3E:9C:7F:BD:22:3C:3F:DA:C4:96:0B:57:8F:6E:6E:D2:40 X509v3 Authority Key Identifier: keyid:EA:EA:2F:2F:07:FF:F3:43:40:77:7B:3B:BD:7D:1D:18:6F:4E:C1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAEA2F2F07FFF34340777B3BBD7D1D186F4EC1CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/18b42420-56d0-451a-a29d-5f9d6230e227/0/3130332e3139312e3135302e302f32332d3234203d3e20313439393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.150.0/23 Signature Algorithm: sha256WithRSAEncryption 37:3f:8b:d6:50:4e:39:81:75:a6:54:fc:cc:2c:df:2f:fb:5e: fd:c9:d4:e8:c6:92:9c:e3:f2:2d:55:26:36:b8:45:b7:09:11: ca:e0:9e:ef:aa:c2:e5:69:5d:1b:ef:20:b6:ad:04:38:0b:35: c7:09:53:a5:e2:69:b9:02:91:2c:c0:db:d3:f1:01:f3:d5:66: 2b:91:24:8e:07:5f:2d:8c:26:cd:f9:fb:20:cb:95:6a:f0:94: 80:c3:98:e2:78:a7:9e:e2:18:31:f5:cc:c0:df:70:82:40:cc: 82:a4:47:29:d1:21:a0:e4:71:61:4a:de:6a:f2:a7:93:f2:04: 82:33:58:c3:ba:86:af:6f:30:46:19:52:03:c7:7b:05:42:7b: 2b:7b:6e:62:ae:98:f6:3a:87:53:25:7f:48:87:aa:6b:4a:7e: 9b:11:10:71:4f:44:64:b6:35:be:45:49:9b:6d:3e:4e:74:ed: 2e:87:39:fa:4e:a0:c4:5b:fd:4c:1e:d0:e7:82:bf:1e:8f:7a: 9c:12:a5:10:c8:18:73:ae:6a:ed:b5:71:f2:33:f9:39:ba:31: 29:65:d1:04:ca:58:1a:9c:bf:09:11:5e:a3:9d:7e:4a:14:16: c0:e1:a1:02:46:8a:72:01:2c:7c:16:d9:a4:1b:65:a9:ec:c4: 44:c1:87:11 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUME/8cKyxDMhmRyG4iALovcBctOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFQTJGMkYwN0ZGRjM0MzQwNzc3QjNCQkQ3RDFEMTg2 RjRFQzFDQjAeFw0yNDA3MDEwOTU1MDFaFw0yNTA2MzAxMDAwMDFaMDMxMTAvBgNV BAMTKDdDRjkxNzNFOUM3RkJEMjIzQzNGREFDNDk2MEI1NzhGNkU2RUQyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLqi3MQujVxfTes0KHf+MvizeQ eXVjREFXg/WSYvzxOU/EXYYoa5JFbMrv9/NYLMXfaDFSbrijBir7wylbAXrby3wj Hf4ufx1z0HusHMKpFngDQ9eWoNhiOnwm26jqYEjdoNDyPveAvuP3G0ri2oeh6cwo JEsDZXg5JXQ8ICZJOP8SiS198vCxG4Nq8O1WQa/WeSk9cpZ6PC5T6SGTvVKfARG5 J/0NAmG4FNKNGmnlPyzNVQ0hmw2Tuv5SXisEY2nHARu77ABRJZO5tASmXktir3MM z9q3irvvdJxTH8sYmj0SaX/Mm5ARO4leOGDLms/bKH6Y92/RK0etK/xADKPHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfPkXPpx/vSI8P9rElgtXj25u0kAwHwYDVR0j BBgwFoAU6uovLwf/80NAd3s7vX0dGG9OwcswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OGI0MjQyMC01NmQwLTQ1MWEtYTI5ZC01ZjlkNjIzMGUyMjcvMC9FQUVBMkYyRjA3 RkZGMzQzNDA3NzdCM0JCRDdEMUQxODZGNEVDMUNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFFQTJGMkYwN0ZGRjM0MzQwNzc3QjNCQkQ3RDFEMTg2RjRF QzFDQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4YjQyNDIwLTU2ZDAtNDUxYS1h MjlkLTVmOWQ2MjMwZTIyNy8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnv5YwDQYJ KoZIhvcNAQELBQADggEBADc/i9ZQTjmBdaZU/Mws3y/7Xv3J1OjGkpzj8i1VJja4 RbcJEcrgnu+qwuVpXRvvILatBDgLNccJU6XiabkCkSzA29PxAfPVZiuRJI4HXy2M Js35+yDLlWrwlIDDmOJ4p57iGDH1zMDfcIJAzIKkRynRIaDkcWFK3mryp5PyBIIz WMO6hq9vMEYZUgPHewVCeyt7bmKumPY6h1Mlf0iHqmtKfpsREHFPRGS2Nb5FSZtt Pk507S6HOfpOoMRb/Uwe0OeCvx6PepwSpRDIGHOuau21cfIz+Tm6MSll0QTKWBqc vwkRXqOdfkoUFsDhoQJGinIBLHwW2aQbZansxETBhxE= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org