$ rpki-client -vvf repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa File: 3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa (raw, json) Hash identifier: MJ5rji/pccqQ0iJjDsk6/7TOxTNMih19wHwBeZGz1Sk= Subject key identifier: 36:0B:F3:90:5D:86:73:AD:10:B1:BA:23:E5:C6:CE:83:76:A8:BB:EB Certificate issuer: /CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Certificate serial: 2718BC40E463EA803329608A3E0DC2A7A750F10B Authority key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa Signing time: Wed 12 Jun 2024 07:00:01 +0000 ROA not before: Wed 12 Jun 2024 06:55:01 +0000 ROA not after: Wed 11 Jun 2025 07:00:01 +0000 asID: 141909 IP address blocks: 103.164.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:18:bc:40:e4:63:ea:80:33:29:60:8a:3e:0d:c2:a7:a7:50:f1:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Validity Not Before: Jun 12 06:55:01 2024 GMT Not After : Jun 11 07:00:01 2025 GMT Subject: CN=360BF3905D8673AD10B1BA23E5C6CE8376A8BBEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:ba:ef:4a:20:80:9d:9e:a3:58:a3:6c:81: 5d:d0:36:1d:13:e2:09:62:5a:bd:05:81:08:94:55: a3:6d:ef:1f:98:78:46:62:a1:e0:df:77:70:7c:ff: de:d4:e1:1d:b8:d1:51:40:ca:a8:62:a8:11:fc:9c: 6e:0e:f0:8a:e6:54:54:b0:f7:43:0f:42:08:2b:dd: 77:9e:e8:b0:36:8b:4c:04:94:66:ad:d9:53:57:18: 82:55:46:f4:15:fe:0e:3b:c1:4d:51:1f:b9:42:6b: b9:c1:7b:89:f9:aa:b2:21:10:37:f3:36:36:5d:35: 99:d8:20:f2:74:3a:1b:0c:5c:e5:80:f7:36:86:e0: f3:bb:08:b1:81:cf:fd:ee:00:06:5a:94:fe:87:8b: 17:d7:c7:b4:62:a0:2b:dd:15:81:4c:72:a2:b0:08: 03:86:bf:50:c6:fc:42:47:b2:85:3b:c3:64:85:ff: 62:61:d6:5d:82:5d:c6:65:1a:1e:fe:91:61:ea:7a: 39:b1:1f:5b:9d:b4:fb:17:db:5a:c7:cc:a3:8e:7e: 7c:0d:0f:03:f9:5a:4b:ca:d6:ee:48:49:34:e3:d1: b5:17:6e:ce:fc:4d:39:ea:c3:1b:39:7b:92:d5:93: 43:cd:e4:ed:65:3f:d0:bf:11:d0:9f:41:29:44:39: c0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0B:F3:90:5D:86:73:AD:10:B1:BA:23:E5:C6:CE:83:76:A8:BB:EB X509v3 Authority Key Identifier: keyid:5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:57:f6:10:6b:3c:df:88:35:81:c6:30:c0:c0:48:17:1b:3e: 4a:b4:65:34:0b:61:bb:68:f8:95:e6:af:4f:b7:42:b8:9b:c2: 22:70:e0:13:3f:d7:0f:f0:dc:ca:3c:04:88:7a:0c:a5:f2:dc: 6b:cb:2b:d8:06:d5:9e:0b:0e:ba:d7:49:da:ca:d1:00:21:5b: 7a:77:df:13:ec:c6:fe:2e:a5:1c:a3:45:28:13:7e:b1:ab:1d: 93:d2:ce:c6:03:68:cd:c8:fc:63:c6:ea:4f:3a:1e:94:c8:b4: c5:d1:61:82:ab:31:2d:97:f9:91:18:2f:91:0b:e2:48:e4:51: c4:05:73:2e:77:38:65:26:e8:ab:97:84:75:12:e2:e2:19:af: b1:eb:99:07:b1:67:dd:b8:6a:9a:4c:47:5e:0a:79:a2:89:6b: 08:d1:31:7a:50:cf:bb:e7:ba:03:96:d2:1d:5c:5a:4c:e9:20: 3f:62:bc:31:6b:bb:1e:a9:6c:57:0c:69:c8:a1:a1:2b:f7:75: 9d:27:3f:44:6f:32:ac:53:c5:6a:d0:df:48:8d:01:f7:63:6a: 33:f4:8c:5f:4d:d0:57:d7:38:46:1c:92:7b:24:ef:1b:07:99: 45:c3:6f:a1:c8:34:57:81:32:a4:e4:a2:f2:b7:75:db:e6:d4: e2:4c:89:83 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJxi8QORj6oAzKWCKPg3Cp6dQ8QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0My RTZCM0Q4RjAeFw0yNDA2MTIwNjU1MDFaFw0yNTA2MTEwNzAwMDFaMDMxMTAvBgNV BAMTKDM2MEJGMzkwNUQ4NjczQUQxMEIxQkEyM0U1QzZDRTgzNzZBOEJCRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLurrvSiCAnZ6jWKNsgV3QNh0T 4gliWr0FgQiUVaNt7x+YeEZioeDfd3B8/97U4R240VFAyqhiqBH8nG4O8IrmVFSw 90MPQggr3Xee6LA2i0wElGat2VNXGIJVRvQV/g47wU1RH7lCa7nBe4n5qrIhEDfz NjZdNZnYIPJ0OhsMXOWA9zaG4PO7CLGBz/3uAAZalP6HixfXx7RioCvdFYFMcqKw CAOGv1DG/EJHsoU7w2SF/2Jh1l2CXcZlGh7+kWHqejmxH1udtPsX21rHzKOOfnwN DwP5WkvK1u5ISTTj0bUXbs78TTnqwxs5e5LVk0PN5O1lP9C/EdCfQSlEOcCZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNgvzkF2Gc60Qsboj5cbOg3aou+swHwYDVR0j BBgwFoAUXB3H6HRXqR81kVrx3j+7zC5rPY8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMC81QzFEQzdFODc0 NTdBOTFGMzU5MTVBRjFERTNGQkJDQzJFNkIzRDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUMxREM3RTg3NDU3QTkxRjM1OTE1QUYxREUzRkJCQ0MyRTZC M0Q4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJiLWM0OGUtNGJhMC04 YWQ3LTU4ZTEyNjNjNmRjNy8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpJYwDQYJ KoZIhvcNAQELBQADggEBAE5X9hBrPN+INYHGMMDASBcbPkq0ZTQLYbto+JXmr0+3 QribwiJw4BM/1w/w3Mo8BIh6DKXy3GvLK9gG1Z4LDrrXSdrK0QAhW3p33xPsxv4u pRyjRSgTfrGrHZPSzsYDaM3I/GPG6k86HpTItMXRYYKrMS2X+ZEYL5EL4kjkUcQF cy53OGUm6KuXhHUS4uIZr7HrmQexZ924appMR14KeaKJawjRMXpQz7vnugOW0h1c WkzpID9ivDFrux6pbFcMacihoSv3dZ0nP0RvMqxTxWrQ30iNAfdjajP0jF9N0FfX OEYcknsk7xsHmUXDb6HINFeBMqTkovK3ddvm1OJMiYM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org