$ rpki-client -vvf repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa File: 3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa (raw, json) Hash identifier: q3D0gokLtaoTWGXZ65FjjWiIlEBRw2BR2w0tZwoughw= Subject key identifier: 69:CF:06:25:CF:E9:C7:31:A7:50:29:6A:99:D4:E0:0A:F5:57:6A:1E Certificate issuer: /CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Certificate serial: 2EE0F073FF19B8ABCEC8E4875B2D06C17D2EB670 Authority key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa Signing time: Sat 28 Sep 2024 10:00:02 +0000 ROA not before: Sat 28 Sep 2024 09:55:02 +0000 ROA not after: Sat 27 Sep 2025 10:00:02 +0000 asID: 140392 IP address blocks: 103.150.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e0:f0:73:ff:19:b8:ab:ce:c8:e4:87:5b:2d:06:c1:7d:2e:b6:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Validity Not Before: Sep 28 09:55:02 2024 GMT Not After : Sep 27 10:00:02 2025 GMT Subject: CN=69CF0625CFE9C731A750296A99D4E00AF5576A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d6:1f:28:be:89:90:39:bb:4e:06:99:57:57: 37:4e:ab:5d:d0:af:c9:9f:07:e5:51:89:37:c7:41: 16:76:cf:96:1b:27:66:ff:46:b0:a4:e9:aa:46:69: 67:fa:88:fb:05:d2:c1:ff:2f:b8:df:4d:93:e9:0d: 0d:c9:2b:08:e7:21:a5:5f:fe:ca:35:89:c0:8c:4e: 99:4d:b3:80:87:02:8c:58:ea:af:c5:48:67:9b:19: 70:78:2d:bd:ea:b1:84:d0:1c:8a:3b:c2:2f:12:72: da:64:57:e1:a7:ea:71:04:8a:46:20:c5:f0:23:50: 60:f4:a8:0b:b1:33:2a:65:d7:9a:8b:5b:c0:da:66: 8f:03:7b:bc:21:3d:03:21:64:dc:18:0b:8f:89:bb: 27:8e:38:ba:29:44:17:ac:2a:2d:de:11:40:62:96: 47:1a:20:6e:ba:63:40:47:95:4f:b7:2a:e9:90:05: d8:e6:9f:0a:a7:bc:24:6f:d7:2f:9e:9b:d3:a1:d3: 94:29:46:a0:47:2e:ac:45:4f:f3:fd:7f:84:86:d7: 47:32:4a:3f:a7:38:08:1d:dd:44:d3:be:b4:a6:94: b6:94:89:53:06:c3:c5:4c:f4:4c:a2:82:ed:55:b9: c7:e6:7e:f1:5b:1a:ad:01:5f:01:3f:ee:15:c1:3f: 4b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CF:06:25:CF:E9:C7:31:A7:50:29:6A:99:D4:E0:0A:F5:57:6A:1E X509v3 Authority Key Identifier: keyid:8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 Signature Algorithm: sha256WithRSAEncryption 76:66:96:81:ec:1e:4d:17:e9:72:18:a3:27:3f:c8:a9:19:68: dc:63:cc:16:47:57:db:ab:37:bd:99:13:43:21:f9:c4:ff:c4: f7:66:5c:88:cc:28:56:70:0f:54:5e:75:f8:c9:f2:0a:f1:39: eb:2d:fb:c9:71:89:95:c3:4e:a1:48:76:dd:9b:41:26:a6:47: 39:fc:40:a0:f9:88:e8:84:72:63:f0:00:3d:ee:a0:7d:69:cb: 83:cb:6b:cd:89:9f:7e:d5:c0:55:bf:41:8a:3f:da:9e:4a:79: 5f:e7:63:44:c6:df:53:29:f8:fa:51:8e:3e:eb:34:de:a4:64: be:b7:2a:77:0b:77:20:8c:07:01:b2:47:7d:44:27:f7:43:0f: 60:ca:c4:dc:13:fd:df:37:fd:5a:f0:e3:69:d7:b7:bd:6a:be: af:fc:66:9d:ae:72:70:b6:14:44:3e:af:87:d6:93:5c:10:2c: e7:5e:00:db:79:eb:c6:a3:0c:76:26:7a:c6:26:1a:bd:94:a4: cf:7b:a2:3b:ad:2e:73:0f:9b:bb:f5:c0:80:c7:5f:5a:7d:af: 15:66:67:0b:c3:2d:a6:f9:e4:75:7c:eb:d1:e3:a6:12:a0:44: 87:29:37:c4:46:68:4d:d8:f2:e2:34:2e:cb:31:0c:8b:8d:a6: 5e:0b:1c:52 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULuDwc/8ZuKvOyOSHWy0GwX0utnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQy MzhCNjc3OTAeFw0yNDA5MjgwOTU1MDJaFw0yNTA5MjcxMDAwMDJaMDMxMTAvBgNV BAMTKDY5Q0YwNjI1Q0ZFOUM3MzFBNzUwMjk2QTk5RDRFMDBBRjU1NzZBMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy1h8ovomQObtOBplXVzdOq13Q r8mfB+VRiTfHQRZ2z5YbJ2b/RrCk6apGaWf6iPsF0sH/L7jfTZPpDQ3JKwjnIaVf /so1icCMTplNs4CHAoxY6q/FSGebGXB4Lb3qsYTQHIo7wi8SctpkV+Gn6nEEikYg xfAjUGD0qAuxMypl15qLW8DaZo8De7whPQMhZNwYC4+JuyeOOLopRBesKi3eEUBi lkcaIG66Y0BHlU+3KumQBdjmnwqnvCRv1y+em9Oh05QpRqBHLqxFT/P9f4SG10cy Sj+nOAgd3UTTvrSmlLaUiVMGw8VM9Eyigu1VucfmfvFbGq0BXwE/7hXBP0vRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUac8GJc/pxzGnUClqmdTgCvVXah4wHwYDVR0j BBgwFoAUj1iJOxzh24VV177LY940LSOLZ3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMC84RjU4ODkzQjFD RTFEQjg1NTVEN0JFQ0I2M0RFMzQyRDIzOEI2Nzc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY1ODg5M0IxQ0UxREI4NTU1RDdCRUNCNjNERTM0MkQyMzhC Njc3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZiLTUzY2YtNGIwOC1i NWY3LTJiOTBkZTIxZmU5NC8wLzMxMzAzMzJlMzEzNTMwMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMzM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlpQwDQYJ KoZIhvcNAQELBQADggEBAHZmloHsHk0X6XIYoyc/yKkZaNxjzBZHV9urN72ZE0Mh +cT/xPdmXIjMKFZwD1RedfjJ8grxOest+8lxiZXDTqFIdt2bQSamRzn8QKD5iOiE cmPwAD3uoH1py4PLa82Jn37VwFW/QYo/2p5KeV/nY0TG31Mp+PpRjj7rNN6kZL63 KncLdyCMBwGyR31EJ/dDD2DKxNwT/d83/Vrw42nXt71qvq/8Zp2ucnC2FEQ+r4fW k1wQLOdeANt568ajDHYmesYmGr2UpM97ojutLnMPm7v1wIDHX1p9rxVmZwvDLab5 5HV869HjphKgRIcpN8RGaE3Y8uI0LssxDIuNpl4LHFI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:47 2024 by rpki-client on console-fra.rpki-client.org