$ rpki-client -vvf repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa File: 3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa (raw, json) Hash identifier: imfZYd+PwuMIdN7UcBrml21Vlzc4h9f5RzLmotI9hlU= Subject key identifier: 99:B1:68:4B:81:CF:04:56:37:47:3E:29:DC:C3:BF:80:ED:B8:12:70 Certificate issuer: /CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9 Certificate serial: 18A193D8DBC38755299FEAA427E5E488D47D95B2 Authority key identifier: E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa Signing time: Thu 07 Nov 2024 12:01:37 +0000 ROA not before: Thu 07 Nov 2024 11:56:37 +0000 ROA not after: Thu 06 Nov 2025 12:01:37 +0000 asID: 149888 IP address blocks: 103.189.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.crl rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 05:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a1:93:d8:db:c3:87:55:29:9f:ea:a4:27:e5:e4:88:d4:7d:95:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9 Validity Not Before: Nov 7 11:56:37 2024 GMT Not After : Nov 6 12:01:37 2025 GMT Subject: CN=99B1684B81CF045637473E29DCC3BF80EDB81270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:05:94:1e:6a:4e:ce:d2:dc:d9:39:ca:b5:ba: 9b:79:4d:7a:6a:c9:77:c0:b4:2d:7f:87:7f:a6:32: 71:6a:64:c7:3d:ea:3b:f9:b2:6c:6e:68:2a:f4:91: b8:37:5f:93:e8:43:a7:e8:2f:0d:3f:3e:92:2e:30: d4:f2:2b:40:1c:85:dc:f3:56:30:8a:54:1d:f7:57: e4:af:82:6c:f5:13:1d:86:d9:9f:cd:e5:e5:12:7a: da:48:3f:8e:8d:15:29:84:fa:25:c7:2f:5c:82:3c: bb:a9:d7:5e:8f:cd:ce:37:00:fc:1d:5b:99:0e:a3: 57:f7:4f:4f:cd:03:52:2b:7c:5e:79:f2:1a:a5:9d: a8:37:9b:bc:05:38:cf:ba:f4:b1:a2:4a:d2:7b:09: 4d:83:6f:2f:60:4d:68:40:38:76:de:a6:e6:27:bd: bb:57:7b:aa:99:0c:5d:1e:ed:e6:7e:6a:a3:98:27: 1d:50:8e:50:f9:a6:62:0f:07:22:dd:b4:cf:82:61: 8f:53:80:2f:14:bb:32:e1:67:5d:69:50:1a:de:bf: 1a:b4:cf:df:38:88:f5:e2:5b:0c:0f:08:d7:85:98: 5c:27:28:78:1d:cc:28:96:66:3f:20:c9:80:62:da: 18:c4:c2:5a:cd:2b:91:4c:b6:ae:b7:b8:a5:cb:98: 65:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B1:68:4B:81:CF:04:56:37:47:3E:29:DC:C3:BF:80:ED:B8:12:70 X509v3 Authority Key Identifier: keyid:E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32342d3234203d3e20313439383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.248.0/24 Signature Algorithm: sha256WithRSAEncryption 47:2b:85:7a:ea:e9:1e:2e:4c:4d:b6:79:5c:da:df:21:3d:40: 35:11:02:03:44:c2:6e:1f:66:d4:de:ca:95:4f:0c:5e:bf:4d: e1:aa:77:74:cc:85:96:8a:98:1e:d1:50:92:b7:da:43:4d:7b: 84:cd:9f:0a:49:e5:95:73:0d:fe:13:a9:f0:a6:b4:4f:f3:6f: 2e:cf:6e:a0:0c:0b:8e:09:a0:d6:bf:55:65:2f:a3:55:42:2b: 04:a8:f7:9c:fe:32:de:e8:ca:65:2b:aa:5c:4f:a1:4c:69:f6: 22:aa:6f:30:13:2c:60:3e:b3:73:88:0a:95:31:1c:59:6b:00: 29:ae:7d:24:3a:ee:cc:a0:ac:2b:1f:24:91:e2:d9:f8:ea:8a: b7:9f:91:5f:87:d3:19:f3:fc:4c:7b:c0:60:13:2e:36:86:56: 3d:ed:e5:5f:f5:98:c4:49:7a:a2:dc:aa:40:85:4c:96:03:36: 31:5f:d6:86:04:14:ab:fb:ed:da:56:2d:11:81:b2:b9:37:08: 45:24:e5:26:bb:dd:a1:6e:b3:ab:86:fe:be:04:90:dc:1a:01: ff:bc:d4:b4:ff:d4:39:6f:40:33:3d:2a:be:69:7f:49:fe:90: a2:ed:58:4a:97:b1:5b:9c:eb:74:1c:e3:d9:ee:73:f7:e0:74: f4:4b:bf:79 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGKGT2NvDh1Upn+qkJ+XkiNR9lbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJDREFBMjIzQkZCNkYyQjEzOTczRUI4MDM1M0VEMjEx QzlGMjFDOTAeFw0yNDExMDcxMTU2MzdaFw0yNTExMDYxMjAxMzdaMDMxMTAvBgNV BAMTKDk5QjE2ODRCODFDRjA0NTYzNzQ3M0UyOURDQzNCRjgwRURCODEyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeBZQeak7O0tzZOcq1upt5TXpq yXfAtC1/h3+mMnFqZMc96jv5smxuaCr0kbg3X5PoQ6foLw0/PpIuMNTyK0Achdzz VjCKVB33V+Svgmz1Ex2G2Z/N5eUSetpIP46NFSmE+iXHL1yCPLup116Pzc43APwd W5kOo1f3T0/NA1IrfF558hqlnag3m7wFOM+69LGiStJ7CU2Dby9gTWhAOHbepuYn vbtXe6qZDF0e7eZ+aqOYJx1QjlD5pmIPByLdtM+CYY9TgC8UuzLhZ11pUBrevxq0 z984iPXiWwwPCNeFmFwnKHgdzCiWZj8gyYBi2hjEwlrNK5FMtq63uKXLmGV3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmbFoS4HPBFY3Rz4p3MO/gO24EnAwHwYDVR0j BBgwFoAU4s2qIjv7bysTlz64A1PtIRyfIckwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGY0MTY0ZS03NGU1LTQwZDYtOWEzMC1iMzcyYTRkMmE0NTQvMC9FMkNEQUEyMjNC RkI2RjJCMTM5NzNFQjgwMzUzRUQyMTFDOUYyMUM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJDREFBMjIzQkZCNkYyQjEzOTczRUI4MDM1M0VEMjExQzlG MjFDOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZjQxNjRlLTc0ZTUtNDBkNi05 YTMwLWIzNzJhNGQyYTQ1NC8wLzMxMzAzMzJlMzEzODM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvfgwDQYJ KoZIhvcNAQELBQADggEBAEcrhXrq6R4uTE22eVza3yE9QDURAgNEwm4fZtTeypVP DF6/TeGqd3TMhZaKmB7RUJK32kNNe4TNnwpJ5ZVzDf4TqfCmtE/zby7PbqAMC44J oNa/VWUvo1VCKwSo95z+Mt7oymUrqlxPoUxp9iKqbzATLGA+s3OICpUxHFlrACmu fSQ67sygrCsfJJHi2fjqirefkV+H0xnz/Ex7wGATLjaGVj3t5V/1mMRJeqLcqkCF TJYDNjFf1oYEFKv77dpWLRGBsrk3CEUk5Sa73aFus6uG/r4EkNwaAf+81LT/1Dlv QDM9Kr5pf0n+kKLtWEqXsVuc63Qc49nuc/fgdPRLv3k= -----END CERTIFICATE-----Generated at Fri Feb 21 11:06:14 2025 by rpki-client