$ rpki-client -vvf repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa File: 3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: rXrrXvyCDd8NdDQpC4YJVYW6xZrnJFF55E2ij+QGKtw= Subject key identifier: 49:CA:E8:37:FC:5B:C9:0E:A1:11:D6:C6:5B:97:0E:23:EF:CE:39:2F Certificate issuer: /CN=A0021383E40D55B69009CDEA313E654C3CE463B0 Certificate serial: 58C67511D3071ADB397822DB5FC3359A55193992 Authority key identifier: A0:02:13:83:E4:0D:55:B6:90:09:CD:EA:31:3E:65:4C:3C:E4:63:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa Signing time: Sat 08 Jun 2024 13:00:01 +0000 ROA not before: Sat 08 Jun 2024 12:55:01 +0000 ROA not after: Sat 07 Jun 2025 13:00:01 +0000 asID: 149705 IP address blocks: 103.158.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.crl rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c6:75:11:d3:07:1a:db:39:78:22:db:5f:c3:35:9a:55:19:39:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0021383E40D55B69009CDEA313E654C3CE463B0 Validity Not Before: Jun 8 12:55:01 2024 GMT Not After : Jun 7 13:00:01 2025 GMT Subject: CN=49CAE837FC5BC90EA111D6C65B970E23EFCE392F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:c7:8a:9f:3e:e4:92:26:e6:f3:c1:8e:c5: e8:81:69:f3:0d:59:fb:1c:96:1f:b8:a5:76:06:d9: 33:8d:cc:6b:3c:cf:21:47:48:47:d4:2b:ed:16:aa: 49:39:8d:2c:20:cf:a4:20:d0:67:75:2a:32:9e:79: 43:30:25:2d:7e:8f:f4:09:99:4d:94:48:f1:bd:ae: 0c:58:2a:29:a1:fd:b8:0f:bc:3e:d8:4f:33:ae:e4: 6b:bb:88:2e:b0:4d:04:67:f1:8a:f2:fa:60:0b:d5: 6e:86:d8:4d:45:ca:dc:aa:12:75:b8:7e:db:01:a8: 24:61:84:1c:e7:c1:fe:29:50:57:d0:0d:9c:36:cf: ab:15:42:bb:f7:ca:64:87:66:7d:9d:df:dd:d7:39: b6:85:a0:db:09:1c:6d:eb:b8:8e:70:67:a3:d1:e5: c8:69:7a:f0:c9:05:7b:0d:b7:14:87:07:a6:3b:4b: fa:a5:57:29:c7:70:fe:e8:14:99:c6:1f:0c:ff:84: 31:bf:bd:29:ac:41:b3:cd:52:79:86:04:c9:bf:be: fa:62:f4:a9:c0:dc:40:7b:19:fb:ab:29:0c:a1:ef: 2f:b5:ce:df:8d:20:35:1b:15:a9:94:ef:a5:13:c0: 07:08:91:13:87:8e:cf:ab:42:39:72:75:06:6d:79: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CA:E8:37:FC:5B:C9:0E:A1:11:D6:C6:5B:97:0E:23:EF:CE:39:2F X509v3 Authority Key Identifier: keyid:A0:02:13:83:E4:0D:55:B6:90:09:CD:EA:31:3E:65:4C:3C:E4:63:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/A0021383E40D55B69009CDEA313E654C3CE463B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0021383E40D55B69009CDEA313E654C3CE463B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b6c614f-d0ff-41a9-92d0-3a213581537b/0/3130332e3135382e3139332e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.193.0/24 Signature Algorithm: sha256WithRSAEncryption 13:b9:25:dc:e9:60:78:49:bd:7a:7e:30:6d:f6:f7:00:ee:13: ce:cb:5f:1d:6f:eb:cd:fb:60:16:d1:b3:5d:9d:44:f5:09:42: 74:2f:22:02:a1:8e:cc:8d:f8:72:a0:c2:c9:b7:5d:31:98:ba: 7e:cb:58:97:ec:3c:9e:ac:9e:29:03:8b:06:69:6a:b9:04:7b: 6a:2e:49:2e:5f:55:20:db:d4:87:6a:6d:5a:72:90:10:7f:5b: cb:d0:e6:ed:1e:ae:c7:4a:b6:4b:f4:b7:a9:e4:64:ae:dd:81: e4:06:b9:4f:81:d8:bd:cc:4f:e7:db:57:fe:df:f6:bc:3d:5f: 72:5d:f0:22:c9:ba:fe:0a:33:10:81:ea:ad:a0:64:1e:cf:01: 61:c4:27:09:8d:5b:10:2a:7c:71:98:a0:5f:df:21:58:e3:5e: 4c:d5:0d:7c:fc:13:8d:7e:15:3d:ac:62:41:07:d6:83:e8:e5: 0c:f8:4f:fd:c0:3d:f6:24:0e:f6:ea:6b:69:d9:7f:a0:7a:30: 42:f3:1f:02:ff:43:d1:3c:24:a9:d2:09:3a:6c:a3:97:6e:61: 00:11:e6:da:b0:d8:a1:aa:1c:6a:52:ab:30:05:fa:34:f3:ac: ca:b8:4d:0d:4c:3f:5f:88:83:9f:ee:be:b1:a3:d1:8f:9c:c3: 08:0e:25:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWMZ1EdMHGts5eCLbX8M1mlUZOZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwMjEzODNFNDBENTVCNjkwMDlDREVBMzEzRTY1NEMz Q0U0NjNCMDAeFw0yNDA2MDgxMjU1MDFaFw0yNTA2MDcxMzAwMDFaMDMxMTAvBgNV BAMTKDQ5Q0FFODM3RkM1QkM5MEVBMTExRDZDNjVCOTcwRTIzRUZDRTM5MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC188eKnz7kkibm88GOxeiBafMN Wfsclh+4pXYG2TONzGs8zyFHSEfUK+0Wqkk5jSwgz6Qg0Gd1KjKeeUMwJS1+j/QJ mU2USPG9rgxYKimh/bgPvD7YTzOu5Gu7iC6wTQRn8Yry+mAL1W6G2E1FytyqEnW4 ftsBqCRhhBznwf4pUFfQDZw2z6sVQrv3ymSHZn2d393XObaFoNsJHG3ruI5wZ6PR 5chpevDJBXsNtxSHB6Y7S/qlVynHcP7oFJnGHwz/hDG/vSmsQbPNUnmGBMm/vvpi 9KnA3EB7GfurKQyh7y+1zt+NIDUbFamU76UTwAcIkROHjs+rQjlydQZteYJxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUScroN/xbyQ6hEdbGW5cOI+/OOS8wHwYDVR0j BBgwFoAUoAITg+QNVbaQCc3qMT5lTDzkY7AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjZjNjE0Zi1kMGZmLTQxYTktOTJkMC0zYTIxMzU4MTUzN2IvMC9BMDAyMTM4M0U0 MEQ1NUI2OTAwOUNERUEzMTNFNjU0QzNDRTQ2M0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwMjEzODNFNDBENTVCNjkwMDlDREVBMzEzRTY1NEMzQ0U0 NjNCMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNmM2MTRmLWQwZmYtNDFhOS05 MmQwLTNhMjEzNTgxNTM3Yi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsEwDQYJ KoZIhvcNAQELBQADggEBABO5JdzpYHhJvXp+MG329wDuE87LXx1v6837YBbRs12d RPUJQnQvIgKhjsyN+HKgwsm3XTGYun7LWJfsPJ6snikDiwZparkEe2ouSS5fVSDb 1IdqbVpykBB/W8vQ5u0ersdKtkv0t6nkZK7dgeQGuU+B2L3MT+fbV/7f9rw9X3Jd 8CLJuv4KMxCB6q2gZB7PAWHEJwmNWxAqfHGYoF/fIVjjXkzVDXz8E41+FT2sYkEH 1oPo5Qz4T/3APfYkDvbqa2nZf6B6MELzHwL/Q9E8JKnSCTpso5duYQAR5tqw2KGq HGpSqzAF+jTzrMq4TQ1MP1+Ig5/uvrGj0Y+cwwgOJSA= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org