$ rpki-client -vvf repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa File: 3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa (raw, json) Hash identifier: IwYVvleYOXDE1KvxJlP/VyImH81zWBJgWu/EFn3XzgQ= Subject key identifier: 39:35:50:20:DE:59:C0:A4:45:C6:78:D5:68:96:10:22:7C:20:2E:1F Certificate issuer: /CN=F03C1838587677BF6505C46715F42F8B8416F949 Certificate serial: 2E2F285D697F08766325BD22DAAFCC85330E70AB Authority key identifier: F0:3C:18:38:58:76:77:BF:65:05:C4:67:15:F4:2F:8B:84:16:F9:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa Signing time: Sat 31 Aug 2024 10:02:24 +0000 ROA not before: Sat 31 Aug 2024 09:57:24 +0000 ROA not after: Sat 30 Aug 2025 10:02:24 +0000 asID: 140395 IP address blocks: 103.150.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.crl rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:2f:28:5d:69:7f:08:76:63:25:bd:22:da:af:cc:85:33:0e:70:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F03C1838587677BF6505C46715F42F8B8416F949 Validity Not Before: Aug 31 09:57:24 2024 GMT Not After : Aug 30 10:02:24 2025 GMT Subject: CN=39355020DE59C0A445C678D5689610227C202E1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f8:00:42:91:3c:d1:04:4e:25:84:c5:62:d6: 12:bf:b6:dc:ae:37:f8:72:c8:34:44:9a:b6:f6:16: 4e:de:75:ea:db:ad:9c:66:d4:b8:fb:85:3b:a0:95: ee:51:97:63:da:8d:4e:e9:3e:47:09:b1:63:b1:f4: 2b:d5:2d:bd:37:bb:6e:21:a7:1c:60:32:98:8f:2d: 70:58:9a:eb:45:b8:b4:94:cc:fe:f7:7f:12:1a:ba: fc:05:81:cd:af:26:fb:80:62:dc:84:79:ae:ac:be: 20:ff:74:72:91:d0:aa:c3:b9:bd:60:e6:38:c8:d5: 2c:66:8b:1f:8e:14:7c:be:54:98:32:b3:a3:e5:2e: 24:cc:23:61:27:2e:1a:fb:a2:b9:41:35:9e:a1:de: cf:20:f3:47:2b:46:2a:9d:ac:3d:00:84:9e:43:82: 76:66:af:68:82:8b:49:ce:93:35:58:77:97:2b:d4: 27:84:41:f2:be:57:d5:2f:7d:04:86:7c:b2:35:e1: b1:da:e7:17:10:2a:5d:1f:27:70:2c:5c:66:a2:9a: 9c:77:d8:f4:27:01:9c:f9:f4:48:3f:67:cd:27:71: 09:3b:a8:8a:a8:c9:ba:8a:4c:a0:01:7a:d5:ea:f3: 5c:f7:24:4a:7a:8f:4d:1b:5b:8c:01:34:1f:e5:da: cc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:35:50:20:DE:59:C0:A4:45:C6:78:D5:68:96:10:22:7C:20:2E:1F X509v3 Authority Key Identifier: keyid:F0:3C:18:38:58:76:77:BF:65:05:C4:67:15:F4:2F:8B:84:16:F9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/3130332e3135302e3135302e302f32332d3234203d3e20313430333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.150.0/23 Signature Algorithm: sha256WithRSAEncryption ba:b1:7e:d5:3f:45:b6:04:e1:08:6b:25:50:8d:23:09:5d:41: 41:ff:53:5c:b8:5d:72:61:4d:79:48:f7:38:76:39:d1:d2:87: 4f:45:a5:db:1d:9d:98:8d:8e:17:25:f7:fb:b6:af:e1:02:92: 29:a4:bf:b8:37:a2:af:c4:bf:40:b9:46:6c:07:35:86:d5:5e: 7f:b8:f4:e2:dc:cc:a3:14:6e:a5:2a:03:1d:e0:00:69:56:e5: 7a:5d:d3:bc:51:7d:b3:93:fe:d6:1b:cd:8e:6e:a5:ec:91:0d: 28:db:2b:f2:ea:6b:2c:46:be:c2:f9:9f:27:4c:f1:71:98:f1: 2b:79:f9:2e:38:6a:ea:7e:68:94:4d:51:90:58:90:e1:5f:2e: 20:71:3f:31:2b:b1:80:32:de:3e:be:50:96:98:55:be:91:d7: 72:5c:a1:69:63:f9:17:dc:49:10:29:dc:34:40:7d:2a:13:a5: 76:42:ce:1a:2b:14:36:dd:dd:44:4b:a1:f5:ca:86:e2:39:06: ae:f5:ab:30:18:a5:9b:c7:da:ce:a8:a5:13:61:6b:1e:e3:8a: 1b:92:b4:2f:41:bc:43:c8:73:3f:59:0c:94:48:3e:f2:75:5c: fa:ee:f3:df:f3:a2:52:c4:28:04:39:83:f3:73:6f:20:49:80: 7b:95:4a:66 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULi8oXWl/CHZjJb0i2q/MhTMOcKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzQzE4Mzg1ODc2NzdCRjY1MDVDNDY3MTVGNDJGOEI4 NDE2Rjk0OTAeFw0yNDA4MzEwOTU3MjRaFw0yNTA4MzAxMDAyMjRaMDMxMTAvBgNV BAMTKDM5MzU1MDIwREU1OUMwQTQ0NUM2NzhENTY4OTYxMDIyN0MyMDJFMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9+ABCkTzRBE4lhMVi1hK/ttyu N/hyyDREmrb2Fk7ederbrZxm1Lj7hTugle5Rl2PajU7pPkcJsWOx9CvVLb03u24h pxxgMpiPLXBYmutFuLSUzP73fxIauvwFgc2vJvuAYtyEea6sviD/dHKR0KrDub1g 5jjI1Sxmix+OFHy+VJgys6PlLiTMI2EnLhr7orlBNZ6h3s8g80crRiqdrD0AhJ5D gnZmr2iCi0nOkzVYd5cr1CeEQfK+V9UvfQSGfLI14bHa5xcQKl0fJ3AsXGaimpx3 2PQnAZz59Eg/Z80ncQk7qIqoybqKTKABetXq81z3JEp6j00bW4wBNB/l2sw1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOTVQIN5ZwKRFxnjVaJYQInwgLh8wHwYDVR0j BBgwFoAU8DwYOFh2d79lBcRnFfQvi4QW+UkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmQzZGQ3OS04NjM1LTQ4NTctOGEzYy05ODU5NTQ1MTZmOWUvMC9GMDNDMTgzODU4 NzY3N0JGNjUwNUM0NjcxNUY0MkY4Qjg0MTZGOTQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjAzQzE4Mzg1ODc2NzdCRjY1MDVDNDY3MTVGNDJGOEI4NDE2 Rjk0OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZDNkZDc5LTg2MzUtNDg1Ny04 YTNjLTk4NTk1NDUxNmY5ZS8wLzMxMzAzMzJlMzEzNTMwMmUzMTM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlpYwDQYJ KoZIhvcNAQELBQADggEBALqxftU/RbYE4QhrJVCNIwldQUH/U1y4XXJhTXlI9zh2 OdHSh09FpdsdnZiNjhcl9/u2r+ECkimkv7g3oq/Ev0C5RmwHNYbVXn+49OLczKMU bqUqAx3gAGlW5Xpd07xRfbOT/tYbzY5upeyRDSjbK/LqayxGvsL5nydM8XGY8St5 +S44aup+aJRNUZBYkOFfLiBxPzErsYAy3j6+UJaYVb6R13JcoWlj+RfcSRAp3DRA fSoTpXZCzhorFDbd3URLofXKhuI5Bq71qzAYpZvH2s6opRNhax7jihuStC9BvEPI cz9ZDJRIPvJ1XPru89/zolLEKAQ5g/NzbyBJgHuVSmY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org