$ rpki-client -vvf repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/3130332e3138392e3235302e302f32332d3234203d3e20313530323437.roa File: 3130332e3138392e3235302e302f32332d3234203d3e20313530323437.roa (raw, json) Hash identifier: /98DMXkzU+QDHjIDKoOYU1wcZedvwYZgWNBABDhsRv0= Subject key identifier: 6F:D5:28:F5:C9:4E:F8:99:A9:5E:91:AF:DA:3E:03:87:8C:61:C5:71 Certificate issuer: /CN=1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6 Certificate serial: 58AEC3E06B2830BEA1BBCBCB25E11E002B3F43BE Authority key identifier: 13:26:A8:A4:21:37:89:1A:70:B3:C0:BB:30:1C:D6:CB:2B:A8:E2:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/3130332e3138392e3235302e302f32332d3234203d3e20313530323437.roa Signing time: Tue 05 Nov 2024 00:00:02 +0000 ROA not before: Mon 04 Nov 2024 23:55:02 +0000 ROA not after: Tue 04 Nov 2025 00:00:02 +0000 asID: 150247 IP address blocks: 103.189.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.crl rsync://repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ae:c3:e0:6b:28:30:be:a1:bb:cb:cb:25:e1:1e:00:2b:3f:43:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6 Validity Not Before: Nov 4 23:55:02 2024 GMT Not After : Nov 4 00:00:02 2025 GMT Subject: CN=6FD528F5C94EF899A95E91AFDA3E03878C61C571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fb:4b:af:a0:cf:bb:92:c7:94:08:f2:50:d6: ac:95:5e:da:d2:8a:52:30:40:43:69:b4:a7:83:a7: a3:90:ae:58:b0:07:11:b5:8a:c2:03:1a:8b:4b:e0: 36:5a:fc:86:85:77:aa:3b:1e:68:17:a2:40:21:5d: e2:3c:cd:27:81:ea:ee:98:58:3f:75:af:87:88:1f: 89:4c:36:28:de:0e:60:62:7a:03:2a:5d:20:95:28: 87:0a:5c:bb:d1:d8:d9:6d:5e:6b:2c:7b:ef:f5:33: 4f:6f:38:83:fd:bb:2a:a7:20:cf:d4:96:f0:d0:bb: 97:0f:6d:0e:d6:34:aa:3d:31:48:c5:be:b2:07:a6: a5:d1:12:e3:a7:ed:82:16:b2:3d:99:71:d0:0f:c5: 18:12:ad:1b:f8:0e:73:6c:fe:b0:e8:96:22:39:7a: 0b:fa:d8:4f:5b:1d:3b:6f:9e:d6:34:12:63:28:7b: c8:41:39:cb:da:38:db:ff:7e:15:1b:40:74:56:46: a0:46:ee:4f:e7:e2:96:31:70:77:ad:31:a6:72:61: 0a:9b:ba:e3:ba:5e:5a:2f:dd:1a:98:85:a3:3f:76: 8f:a1:16:06:93:a3:fb:6e:3d:f5:c5:42:8d:a9:ba: 96:46:56:29:7d:f6:c9:7f:87:29:83:6b:f6:25:1f: 04:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D5:28:F5:C9:4E:F8:99:A9:5E:91:AF:DA:3E:03:87:8C:61:C5:71 X509v3 Authority Key Identifier: keyid:13:26:A8:A4:21:37:89:1A:70:B3:C0:BB:30:1C:D6:CB:2B:A8:E2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1326A8A42137891A70B3C0BB301CD6CB2BA8E2E6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221126d3-13be-4508-b97d-13fe65a5b4d6/0/3130332e3138392e3235302e302f32332d3234203d3e20313530323437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.250.0/23 Signature Algorithm: sha256WithRSAEncryption 70:9e:81:55:c8:d4:b2:42:27:87:f2:49:bf:c6:c7:eb:14:3c: 22:36:dd:4d:af:e3:fe:3b:a8:6a:91:65:d1:10:ec:62:1d:22: 45:e2:ac:72:b6:f7:32:8b:cd:20:e1:3e:86:bf:18:79:b4:c1: 7b:c8:80:27:9c:a6:e7:bf:3e:25:5a:ec:f8:a9:68:21:a6:39: 5f:bf:9b:db:85:57:50:9a:88:6a:b3:37:f2:f9:57:26:5d:03: 4f:69:6b:7d:bc:79:a3:f6:30:d4:fb:c5:8c:8c:b2:14:a6:e8: d9:6c:89:a9:88:40:1b:37:77:46:b3:15:2e:ce:10:25:e2:76: 94:48:5a:b1:51:25:ac:2f:f6:ec:bf:5a:d7:72:ee:6e:f1:3a: 90:73:db:29:a3:4a:fd:f8:1b:da:38:9f:7b:04:23:ef:a6:79: 1d:ca:ea:17:a0:8d:52:31:ce:69:54:ef:0a:b2:4d:1f:e5:85: 00:c1:c0:8f:6d:b9:1c:3a:3f:3f:3d:08:cd:6f:dd:15:41:a3: 4b:b2:26:94:f9:86:5d:e2:75:21:cc:90:82:63:4a:60:59:3a: 16:fb:51:c3:36:2d:3d:b1:60:d2:db:d0:77:4c:42:f2:67:a7: cc:ec:4c:69:de:53:9b:59:2b:d4:b1:b5:be:ce:56:b0:09:f2: 61:2b:ac:fb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWK7D4GsoML6hu8vLJeEeACs/Q74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMyNkE4QTQyMTM3ODkxQTcwQjNDMEJCMzAxQ0Q2Q0Iy QkE4RTJFNjAeFw0yNDExMDQyMzU1MDJaFw0yNTExMDQwMDAwMDJaMDMxMTAvBgNV BAMTKDZGRDUyOEY1Qzk0RUY4OTlBOTVFOTFBRkRBM0UwMzg3OEM2MUM1NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH+0uvoM+7kseUCPJQ1qyVXtrS ilIwQENptKeDp6OQrliwBxG1isIDGotL4DZa/IaFd6o7HmgXokAhXeI8zSeB6u6Y WD91r4eIH4lMNijeDmBiegMqXSCVKIcKXLvR2NltXmsse+/1M09vOIP9uyqnIM/U lvDQu5cPbQ7WNKo9MUjFvrIHpqXREuOn7YIWsj2ZcdAPxRgSrRv4DnNs/rDoliI5 egv62E9bHTtvntY0EmMoe8hBOcvaONv/fhUbQHRWRqBG7k/n4pYxcHetMaZyYQqb uuO6Xlov3RqYhaM/do+hFgaTo/tuPfXFQo2pupZGVil99sl/hymDa/YlHwTpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUb9Uo9clO+JmpXpGv2j4Dh4xhxXEwHwYDVR0j BBgwFoAUEyaopCE3iRpws8C7MBzWyyuo4uYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjExMjZkMy0xM2JlLTQ1MDgtYjk3ZC0xM2ZlNjVhNWI0ZDYvMC8xMzI2QThBNDIx Mzc4OTFBNzBCM0MwQkIzMDFDRDZDQjJCQThFMkU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMyNkE4QTQyMTM3ODkxQTcwQjNDMEJCMzAxQ0Q2Q0IyQkE4 RTJFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMTEyNmQzLTEzYmUtNDUwOC1i OTdkLTEzZmU2NWE1YjRkNi8wLzMxMzAzMzJlMzEzODM5MmUzMjM1MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzMjM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvfowDQYJ KoZIhvcNAQELBQADggEBAHCegVXI1LJCJ4fySb/Gx+sUPCI23U2v4/47qGqRZdEQ 7GIdIkXirHK29zKLzSDhPoa/GHm0wXvIgCecpue/PiVa7PipaCGmOV+/m9uFV1Ca iGqzN/L5VyZdA09pa328eaP2MNT7xYyMshSm6NlsiamIQBs3d0azFS7OECXidpRI WrFRJawv9uy/Wtdy7m7xOpBz2ymjSv34G9o4n3sEI++meR3K6hegjVIxzmlU7wqy TR/lhQDBwI9tuRw6Pz89CM1v3RVBo0uyJpT5hl3idSHMkIJjSmBZOhb7UcM2LT2x YNLb0HdMQvJnp8zsTGneU5tZK9Sxtb7OVrAJ8mErrPs= -----END CERTIFICATE-----Generated at Sun Nov 24 17:17:41 2024 by rpki-client on console-fra.rpki-client.org