$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa File: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (raw, json) Hash identifier: GpPOWs9VxBPasPMBzvDCP7Tdeg1upqH9ZV21fxWvJbs= Subject key identifier: E2:F4:DB:36:CD:5B:41:7D:30:59:88:FE:AF:1F:9F:67:1A:52:16:17 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 0C7967041C5A9319432AC0D18A6D9E71C8E90D8D Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa Signing time: Wed 15 May 2024 10:01:52 +0000 ROA not before: Wed 15 May 2024 09:56:52 +0000 ROA not after: Wed 14 May 2025 10:01:52 +0000 asID: 141591 IP address blocks: 103.159.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:79:67:04:1c:5a:93:19:43:2a:c0:d1:8a:6d:9e:71:c8:e9:0d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: May 15 09:56:52 2024 GMT Not After : May 14 10:01:52 2025 GMT Subject: CN=E2F4DB36CD5B417D305988FEAF1F9F671A521617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:72:c6:e4:4e:6e:c0:22:ea:6b:1b:f7:a7:7f: 5f:f6:02:39:c2:f8:27:85:26:42:4d:e2:54:4d:6d: 52:b1:62:8c:c3:ac:42:22:a1:33:5f:33:64:85:a7: cc:86:3d:a2:04:a3:74:1d:e2:7f:e1:71:56:a5:e5: c8:04:61:04:cd:6a:30:67:64:1d:2f:34:c0:bd:e3: 9c:82:18:03:2a:ec:47:bf:e7:04:83:24:db:d5:52: ae:6c:8a:45:4c:bd:9b:47:5c:bb:c1:48:0f:0a:59: 55:32:d0:63:06:d7:af:dd:c3:e0:79:8f:a6:ed:54: 8e:89:93:5c:2a:3b:ef:b2:f3:4a:19:7b:56:1a:53: 69:da:1e:11:ce:a5:17:86:d9:51:43:18:76:8c:09: de:20:fe:b8:77:34:9e:89:3e:9f:98:e3:59:53:7f: 7e:8b:89:95:3e:9a:e6:5f:16:13:a6:e0:9c:a4:bf: d7:4e:0f:9b:47:3b:df:cd:28:ad:91:f4:4a:31:89: f9:57:a2:ab:df:86:37:58:dd:14:b0:9b:d2:05:d3: 39:13:fc:d2:52:75:a6:97:0b:cc:68:29:97:25:a4: a3:cc:0b:bb:7c:f9:fb:47:12:4a:9b:ad:b4:c1:b5: 7c:6c:9e:bd:86:47:72:34:a0:4a:1c:79:f5:67:95: 3a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F4:DB:36:CD:5B:41:7D:30:59:88:FE:AF:1F:9F:67:1A:52:16:17 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/24 Signature Algorithm: sha256WithRSAEncryption 20:47:72:ba:85:27:3d:38:39:92:b8:3b:00:4a:4a:d0:e4:00: 2c:0f:16:ff:f0:44:05:e3:1a:b1:30:d1:97:74:5d:1a:08:92: ed:22:82:2b:02:f0:bf:2e:f5:99:93:4c:33:63:bc:27:c1:3c: 37:56:a1:24:58:5a:af:9b:00:5d:59:6d:1b:16:63:b8:bf:c8: b8:a5:1c:ac:31:93:18:99:9d:2d:fd:af:4d:3b:a6:f5:b5:34: 68:3c:7f:40:03:47:26:21:0c:4b:57:2c:44:25:ea:1a:10:1c: 91:f4:bf:0f:f0:a3:d0:09:d8:bb:65:f0:d0:b4:62:c7:19:ca: 64:48:8e:2d:4f:67:de:61:a1:a3:e4:c3:ae:5e:a4:8a:ee:f1: 30:9a:9c:28:d0:33:05:97:25:a5:10:c3:f0:b9:37:3f:05:da: cb:f1:8e:67:3f:8c:7f:e9:89:bd:b4:ff:20:18:22:bb:b0:71: 84:a8:73:8b:f5:cd:02:82:4b:9c:a8:af:5e:bd:11:ae:23:4d: 03:e1:ea:f2:6c:fe:48:9e:fc:0b:d8:14:35:29:7d:c5:f4:1f: bf:20:c2:20:fc:c0:c7:7a:00:d7:82:7e:38:c6:47:69:9e:9d: 14:bc:ad:12:20:8c:5e:fc:64:00:0b:85:a0:82:a6:77:0c:7a: 89:61:84:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDHlnBBxakxlDKsDRim2eccjpDY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNDA1MTUwOTU2NTJaFw0yNTA1MTQxMDAxNTJaMDMxMTAvBgNV BAMTKEUyRjREQjM2Q0Q1QjQxN0QzMDU5ODhGRUFGMUY5RjY3MUE1MjE2MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFcsbkTm7AIuprG/enf1/2AjnC +CeFJkJN4lRNbVKxYozDrEIioTNfM2SFp8yGPaIEo3Qd4n/hcVal5cgEYQTNajBn ZB0vNMC945yCGAMq7Ee/5wSDJNvVUq5sikVMvZtHXLvBSA8KWVUy0GMG16/dw+B5 j6btVI6Jk1wqO++y80oZe1YaU2naHhHOpReG2VFDGHaMCd4g/rh3NJ6JPp+Y41lT f36LiZU+muZfFhOm4Jykv9dOD5tHO9/NKK2R9EoxiflXoqvfhjdY3RSwm9IF0zkT /NJSdaaXC8xoKZclpKPMC7t8+ftHEkqbrbTBtXxsnr2GR3I0oEocefVnlTonAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4vTbNs1bQX0wWYj+rx+fZxpSFhcwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQAgR3K6hSc9ODmSuDsASkrQ5AAsDxb/8EQF4xqxMNGXdF0a CJLtIoIrAvC/LvWZk0wzY7wnwTw3VqEkWFqvmwBdWW0bFmO4v8i4pRysMZMYmZ0t /a9NO6b1tTRoPH9AA0cmIQxLVyxEJeoaEByR9L8P8KPQCdi7ZfDQtGLHGcpkSI4t T2feYaGj5MOuXqSK7vEwmpwo0DMFlyWlEMPwuTc/BdrL8Y5nP4x/6Ym9tP8gGCK7 sHGEqHOL9c0CgkucqK9evRGuI00D4erybP5InvwL2BQ1KX3F9B+/IMIg/MDHegDX gn44xkdpnp0UvK0SIIxe/GQAC4WggqZ3DHqJYYTr -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org