$ rpki-client -vvf repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3130332e33312e3230362e302f32342d3234203d3e203435373138.roa File: 3130332e33312e3230362e302f32342d3234203d3e203435373138.roa (raw, json) Hash identifier: Kqmvw9R0gvtXCHP9neKiafJC3x/A11TSB6JG8daPS14= Subject key identifier: C5:39:E8:AA:BA:14:36:45:3D:FC:EF:50:9F:C8:19:50:E3:AD:55:44 Certificate issuer: /CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Certificate serial: 05C317CAE4763597D261450DB22024A249C4DB35 Authority key identifier: E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3130332e33312e3230362e302f32342d3234203d3e203435373138.roa Signing time: Sat 20 Apr 2024 08:02:00 +0000 ROA not before: Sat 20 Apr 2024 07:57:00 +0000 ROA not after: Sat 19 Apr 2025 08:02:00 +0000 asID: 45718 IP address blocks: 103.31.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:c3:17:ca:e4:76:35:97:d2:61:45:0d:b2:20:24:a2:49:c4:db:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Validity Not Before: Apr 20 07:57:00 2024 GMT Not After : Apr 19 08:02:00 2025 GMT Subject: CN=C539E8AABA1436453DFCEF509FC81950E3AD5544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:77:e1:60:e9:46:ef:3c:ae:03:a0:38:2c: b5:46:d0:89:82:ac:bc:5a:65:b0:7e:93:1b:07:66: 07:dc:0d:10:4e:d2:46:6a:40:3b:37:91:04:be:3e: 46:8f:25:b6:fe:c5:4b:d7:28:74:70:32:22:4f:c0: 79:8b:57:d0:a3:07:89:7d:5a:9e:89:68:43:4d:cc: b4:67:cb:c8:cf:64:f6:03:f7:15:a2:d3:0a:66:20: 67:35:fd:29:80:6f:e8:70:f7:df:95:58:46:e9:a4: f5:20:e8:02:c7:76:cf:14:14:dd:ad:23:cb:38:43: 0d:b1:58:da:28:01:98:64:6d:3c:8f:4a:3d:83:e7: 34:6f:96:ac:f6:dd:46:9e:9e:58:ba:51:dd:7c:fd: d0:8f:40:b1:6a:1e:26:25:5a:9b:f6:df:46:d0:ff: d7:00:f6:2e:4e:e9:11:0f:72:3f:ae:93:25:c0:0e: 42:18:9e:17:17:5d:57:12:9e:49:9b:c9:f2:ee:2a: 6f:fc:83:71:70:d4:45:53:ca:aa:4e:7d:59:23:2b: c1:63:ba:8d:be:c2:56:7f:d9:eb:16:f8:02:b4:93: 94:fc:cd:8f:10:46:e3:85:d1:ef:c6:7d:ac:9b:ff: ae:c3:9e:a4:2a:12:2e:2e:8b:8d:e8:0f:49:dd:c9: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:39:E8:AA:BA:14:36:45:3D:FC:EF:50:9F:C8:19:50:E3:AD:55:44 X509v3 Authority Key Identifier: keyid:E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3130332e33312e3230362e302f32342d3234203d3e203435373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.206.0/24 Signature Algorithm: sha256WithRSAEncryption 87:ca:48:9a:f7:9b:ac:1a:9d:9a:df:2d:1b:20:72:d0:48:cd: b4:b1:f2:49:66:6d:12:86:bd:cf:68:5c:37:57:57:28:4d:51: 51:91:55:fa:05:37:8e:5b:20:ba:66:e9:30:35:cc:36:8c:99: f4:61:fa:fa:6e:46:61:3d:7d:47:32:56:66:2b:56:f7:71:8b: ec:43:2d:d8:d9:da:f3:2a:fe:8c:dc:f8:9a:7b:8f:2d:e2:42: 78:7d:77:ca:ab:0b:e2:e2:91:bf:23:6c:43:6c:ee:26:9b:59: 40:e0:ba:de:ef:5a:ed:18:53:e7:1d:bc:3b:f7:c3:9a:a1:35: d4:29:d7:19:80:5e:01:15:fe:54:24:2f:c3:37:2e:6f:4e:61: b9:2d:d8:ce:22:d4:0d:a8:3d:e2:60:1c:ef:95:94:5a:f8:d7: 9f:02:70:7e:c1:df:1a:35:ab:56:3c:d5:e2:23:94:41:15:44: 62:a9:fc:9c:1b:e9:61:36:c4:39:83:66:72:50:85:6c:8c:11: a0:0c:7d:0d:73:df:4e:f4:1f:94:f8:16:68:34:ad:79:a9:f7: 07:67:3f:06:be:4c:b7:7a:5d:18:ad:d7:83:12:70:80:db:a6: 47:bf:0b:02:9c:f7:47:40:d0:5a:5f:64:7c:8d:28:d4:44:ef: 69:99:e4:db -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBcMXyuR2NZfSYUUNsiAkoknE2zUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIz QkQzMUQxRDAeFw0yNDA0MjAwNzU3MDBaFw0yNTA0MTkwODAyMDBaMDMxMTAvBgNV BAMTKEM1MzlFOEFBQkExNDM2NDUzREZDRUY1MDlGQzgxOTUwRTNBRDU1NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAI3fhYOlG7zyuA6A4LLVG0ImC rLxaZbB+kxsHZgfcDRBO0kZqQDs3kQS+PkaPJbb+xUvXKHRwMiJPwHmLV9CjB4l9 Wp6JaENNzLRny8jPZPYD9xWi0wpmIGc1/SmAb+hw99+VWEbppPUg6ALHds8UFN2t I8s4Qw2xWNooAZhkbTyPSj2D5zRvlqz23Uaenli6Ud18/dCPQLFqHiYlWpv230bQ /9cA9i5O6REPcj+ukyXADkIYnhcXXVcSnkmbyfLuKm/8g3Fw1EVTyqpOfVkjK8Fj uo2+wlZ/2esW+AK0k5T8zY8QRuOF0e/Gfayb/67DnqQqEi4ui43oD0ndyYOrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxTnoqroUNkU9/O9Qn8gZUOOtVUQwHwYDVR0j BBgwFoAU5HWosBi65YRI3eVdlIdEKzvTHR0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDQ5YzIxMC1mMzY1LTQzMmYtYTdjYS0wYjVlYjg2YjAxYzYvMC9FNDc1QThCMDE4 QkFFNTg0NDhEREU1NUQ5NDg3NDQyQjNCRDMxRDFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIzQkQz MUQxRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwNDljMjEwLWYzNjUtNDMyZi1h N2NhLTBiNWViODZiMDFjNi8wLzMxMzAzMzJlMzMzMTJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcfzjANBgkqhkiG 9w0BAQsFAAOCAQEAh8pImvebrBqdmt8tGyBy0EjNtLHySWZtEoa9z2hcN1dXKE1R UZFV+gU3jlsgumbpMDXMNoyZ9GH6+m5GYT19RzJWZitW93GL7EMt2Nna8yr+jNz4 mnuPLeJCeH13yqsL4uKRvyNsQ2zuJptZQOC63u9a7RhT5x28O/fDmqE11CnXGYBe ARX+VCQvwzcub05huS3YziLUDag94mAc75WUWvjXnwJwfsHfGjWrVjzV4iOUQRVE Yqn8nBvpYTbEOYNmclCFbIwRoAx9DXPfTvQflPgWaDStean3B2c/Br5Mt3pdGK3X gxJwgNumR78LApz3R0DQWl9kfI0o1ETvaZnk2w== -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org