$ rpki-client -vvf repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa File: 3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa (raw, json) Hash identifier: SEQ6tg3JngKo4EuPEoreDiNfhhs+RQhioJdhjUZ/tYA= Subject key identifier: C4:9F:90:40:6F:DE:B6:78:D2:C1:E4:DF:16:F6:C2:59:63:EF:4B:62 Certificate issuer: /CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Certificate serial: 68EEF28CC24F4848BCCA1958ADDE7A9D30D262E1 Authority key identifier: B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa Signing time: Thu 29 Aug 2024 04:00:00 +0000 ROA not before: Thu 29 Aug 2024 03:55:00 +0000 ROA not after: Thu 28 Aug 2025 04:00:00 +0000 asID: 140384 IP address blocks: 103.149.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ee:f2:8c:c2:4f:48:48:bc:ca:19:58:ad:de:7a:9d:30:d2:62:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD Validity Not Before: Aug 29 03:55:00 2024 GMT Not After : Aug 28 04:00:00 2025 GMT Subject: CN=C49F90406FDEB678D2C1E4DF16F6C25963EF4B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:14:4e:f1:67:c9:b4:08:34:59:a5:2f:e9: 21:e5:14:6a:b8:b3:89:d1:03:a4:71:57:17:46:03: 89:f2:03:df:dd:f9:d5:07:54:ac:d0:a9:e6:6e:ba: 07:da:51:0d:69:fd:da:d0:64:0b:11:24:25:f0:38: 9f:9e:17:25:01:1d:68:98:a8:79:1f:56:1f:19:61: c3:13:86:99:5e:58:cc:76:88:0e:e6:26:cc:12:fb: 4d:0f:a6:4f:f4:a4:8c:91:28:07:5b:5c:a5:c4:7d: af:de:90:64:09:61:8a:5b:4f:ac:a5:c4:fd:b0:a1: a0:7b:5f:e3:d8:e5:90:e1:fd:c2:4e:be:87:e6:39: 13:9c:65:d6:4b:32:de:8b:83:7a:93:68:f2:20:c4: c8:f0:e7:d2:b6:4e:6b:45:14:3d:8e:52:26:6a:c5: ea:a7:2f:a2:8f:25:53:2d:f4:3f:07:a4:fe:d4:c2: 9a:66:df:c4:39:31:95:90:2e:6e:e2:a1:f8:f9:9f: 7c:e8:b7:b4:b0:0c:40:39:51:b0:e7:49:46:14:41: a6:1b:54:7d:b9:c3:e2:4e:4e:28:7b:af:13:b9:a9: 07:96:bd:6a:b4:70:d6:52:96:37:27:24:ca:c0:b5: 30:6a:0d:e2:b0:c3:5c:28:22:e4:3e:8d:66:6b:9c: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9F:90:40:6F:DE:B6:78:D2:C1:E4:DF:16:F6:C2:59:63:EF:4B:62 X509v3 Authority Key Identifier: keyid:B6:2E:44:2C:8D:2C:70:D0:F5:AB:5E:2A:3A:1F:11:B2:D0:B4:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B62E442C8D2C70D0F5AB5E2A3A1F11B2D0B4D8BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.239.0/24 Signature Algorithm: sha256WithRSAEncryption 54:63:8b:1f:d7:11:b4:81:ee:92:e0:81:a6:c2:f8:cb:70:fb: 03:7a:33:7d:db:69:98:1c:8a:08:79:8f:05:c1:9c:c3:5c:9b: 83:f3:b8:08:91:28:f6:e6:d6:cc:28:c9:db:f3:81:c2:19:1b: 12:ee:b5:0d:f7:6e:63:cc:b5:7e:a1:d4:89:46:f5:27:07:20: 84:83:dc:b1:27:85:cd:28:61:71:11:a6:76:f3:9e:59:52:03: e5:f9:a0:7b:1c:86:34:c8:7f:31:0f:1c:7d:7b:3a:36:bd:7b: 8c:c7:a9:a9:29:cf:32:da:4d:d2:34:ee:49:f0:28:8a:7c:4a: 65:7e:21:29:73:f6:ee:95:ef:e6:dc:a3:08:db:f3:b3:a0:75: 1c:5e:71:4d:19:ad:23:0f:7e:15:05:55:7a:6a:b5:99:ad:d6: b7:b6:e8:e8:3d:59:0e:b1:db:94:31:42:30:0b:53:e8:22:1b: 0e:d4:79:b0:89:f5:0b:3c:bb:6d:b6:bb:93:5c:a0:b2:e4:8e: 25:a0:28:90:7a:0a:93:5e:4a:a0:21:fa:5f:58:e7:16:91:b8: 7f:28:f2:8d:c8:a4:4b:c1:0f:82:0c:66:9d:c6:ff:1d:ce:d1: ca:f1:1f:8b:f5:52:c1:f8:f0:18:a6:36:3e:e1:f9:07:0a:c1: 7a:08:a0:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaO7yjMJPSEi8yhlYrd56nTDSYuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJE MEI0RDhCRDAeFw0yNDA4MjkwMzU1MDBaFw0yNTA4MjgwNDAwMDBaMDMxMTAvBgNV BAMTKEM0OUY5MDQwNkZERUI2NzhEMkMxRTRERjE2RjZDMjU5NjNFRjRCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56RRO8WfJtAg0WaUv6SHlFGq4 s4nRA6RxVxdGA4nyA9/d+dUHVKzQqeZuugfaUQ1p/drQZAsRJCXwOJ+eFyUBHWiY qHkfVh8ZYcMThpleWMx2iA7mJswS+00Ppk/0pIyRKAdbXKXEfa/ekGQJYYpbT6yl xP2woaB7X+PY5ZDh/cJOvofmOROcZdZLMt6Lg3qTaPIgxMjw59K2TmtFFD2OUiZq xeqnL6KPJVMt9D8HpP7Uwppm38Q5MZWQLm7iofj5n3zot7SwDEA5UbDnSUYUQaYb VH25w+JOTih7rxO5qQeWvWq0cNZSljcnJMrAtTBqDeKww1woIuQ+jWZrnHrFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxJ+QQG/etnjSweTfFvbCWWPvS2IwHwYDVR0j BBgwFoAUti5ELI0scND1q14qOh8RstC02L0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MGQzNGU3Ny02Y2Y2LTQxODctOTA4My0xYzdhODgxOWU5NjUvMC9CNjJFNDQyQzhE MkM3MEQwRjVBQjVFMkEzQTFGMTFCMkQwQjREOEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYyRTQ0MkM4RDJDNzBEMEY1QUI1RTJBM0ExRjExQjJEMEI0 RDhCRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwZDM0ZTc3LTZjZjYtNDE4Ny05 MDgzLTFjN2E4ODE5ZTk2NS8wLzMxMzAzMzJlMzEzNDM5MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMzM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnle8wDQYJ KoZIhvcNAQELBQADggEBAFRjix/XEbSB7pLggabC+Mtw+wN6M33baZgcigh5jwXB nMNcm4PzuAiRKPbm1swoydvzgcIZGxLutQ33bmPMtX6h1IlG9ScHIISD3LEnhc0o YXERpnbznllSA+X5oHschjTIfzEPHH17Oja9e4zHqakpzzLaTdI07knwKIp8SmV+ ISlz9u6V7+bcowjb87OgdRxecU0ZrSMPfhUFVXpqtZmt1re26Og9WQ6x25QxQjAL U+giGw7UebCJ9Qs8u222u5NcoLLkjiWgKJB6CpNeSqAh+l9Y5xaRuH8o8o3IpEvB D4IMZp3G/x3O0crxH4v1UsH48BimNj7h+QcKwXoIoCQ= -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:44 2024 by rpki-client on console-fra.rpki-client.org