$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa File: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: /qWK0LcoSyBB17DKdn5S/rBbFGOn/HEahhhfy2Twaq4= Subject key identifier: 42:7A:7B:98:DE:9E:4F:45:5F:75:99:2F:26:57:43:67:14:E9:86:9A Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 1D01711BBFCD94489903CCD992BE7F6752C34A37 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa Signing time: Wed 26 Jun 2024 03:00:00 +0000 ROA not before: Wed 26 Jun 2024 02:55:00 +0000 ROA not after: Wed 25 Jun 2025 03:00:00 +0000 asID: 149883 IP address blocks: 103.189.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:01:71:1b:bf:cd:94:48:99:03:cc:d9:92:be:7f:67:52:c3:4a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Jun 26 02:55:00 2024 GMT Not After : Jun 25 03:00:00 2025 GMT Subject: CN=427A7B98DE9E4F455F75992F2657436714E9869A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7b:f3:07:c3:d5:0e:bd:c0:86:b6:87:ca:32: c1:75:88:7f:86:62:ec:93:b6:d4:93:2f:48:d0:44: f6:c6:11:66:ef:6a:7e:d9:1c:85:48:cf:84:3b:03: 4b:d7:10:cf:9c:f7:6c:3e:d8:18:7d:e5:7d:c5:67: 3b:0c:f9:c2:fd:5e:db:eb:3a:34:a5:70:ca:78:2d: 74:0e:08:bc:74:41:44:66:8a:4c:7c:6b:da:fa:e2: 87:cd:2f:63:41:1d:3f:63:3d:bd:45:2a:29:aa:dd: 02:a3:23:94:13:d9:84:3a:66:97:34:77:8f:89:8b: 86:27:fd:73:52:96:87:16:c9:c5:03:86:58:d5:0a: fc:02:1e:02:1e:23:e2:94:86:d8:b2:ba:09:f7:c4: d3:bb:d7:19:b2:40:18:28:e4:e0:b7:71:57:21:15: 0a:85:9c:8f:a0:cf:80:b5:a8:97:c1:96:c5:77:87: ef:e2:71:d6:2e:cb:f5:1c:53:2d:c3:80:06:a3:2b: 17:3c:48:ec:e8:1b:8c:15:34:91:77:47:2e:f6:44: c6:66:0c:ff:d7:c3:63:85:b5:96:fc:d7:39:a3:5f: c6:48:81:4e:6f:62:da:3f:5a:35:05:0c:4a:bb:b3: bd:f9:71:b0:c2:97:3a:4c:8a:01:3e:60:18:bc:dd: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7A:7B:98:DE:9E:4F:45:5F:75:99:2F:26:57:43:67:14:E9:86:9A X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.118.0/23 Signature Algorithm: sha256WithRSAEncryption 68:06:3e:1b:06:d5:9c:f8:5d:e6:1c:91:b7:18:af:4f:21:54: 27:24:64:63:b3:f1:04:29:c5:af:50:79:a6:11:ba:76:0f:42: bc:c8:e4:fb:3a:39:cf:63:f0:29:52:34:0e:41:09:d1:b5:fc: 61:d4:40:83:9c:43:8b:2b:f9:8c:1c:cd:b7:82:66:9e:2e:6a: 5b:fe:53:d1:73:7c:48:23:61:62:85:57:be:86:a7:e2:86:9e: 1a:fe:79:1b:5d:06:06:0c:01:7c:3c:04:55:80:b1:62:91:8d: 24:c8:eb:69:67:90:6a:27:c2:b4:f2:ac:5e:dd:d0:3d:eb:09: e7:48:e2:4f:72:e6:87:7f:94:26:5b:e4:24:64:ee:d2:23:41: 54:8b:23:60:1f:f8:c7:19:ba:78:65:c6:74:28:c2:27:c8:b3: c3:5f:79:70:17:bc:97:6f:d9:48:7b:0a:7a:06:9b:09:3e:3d: 06:ec:88:84:2d:fd:83:ff:ef:76:48:3e:e2:ee:e2:0f:ef:c8: 1c:dd:b0:8c:2d:6b:a9:82:8c:f7:5e:29:89:89:57:a0:4a:d3: c6:62:c0:29:26:45:da:06:cd:0e:e2:ef:60:b9:0a:f4:4b:b8: 17:ee:fd:e4:df:1e:23:c7:f6:06:bb:73:be:f7:0a:9b:80:a3: 4f:0e:e8:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHQFxG7/NlEiZA8zZkr5/Z1LDSjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNDA2MjYwMjU1MDBaFw0yNTA2MjUwMzAwMDBaMDMxMTAvBgNV BAMTKDQyN0E3Qjk4REU5RTRGNDU1Rjc1OTkyRjI2NTc0MzY3MTRFOTg2OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfe/MHw9UOvcCGtofKMsF1iH+G YuyTttSTL0jQRPbGEWbvan7ZHIVIz4Q7A0vXEM+c92w+2Bh95X3FZzsM+cL9Xtvr OjSlcMp4LXQOCLx0QURmikx8a9r64ofNL2NBHT9jPb1FKimq3QKjI5QT2YQ6Zpc0 d4+Ji4Yn/XNSlocWycUDhljVCvwCHgIeI+KUhtiyugn3xNO71xmyQBgo5OC3cVch FQqFnI+gz4C1qJfBlsV3h+/icdYuy/UcUy3DgAajKxc8SOzoG4wVNJF3Ry72RMZm DP/Xw2OFtZb81zmjX8ZIgU5vYto/WjUFDEq7s735cbDClzpMigE+YBi83exxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQnp7mN6eT0VfdZkvJldDZxTphpowHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvXYwDQYJ KoZIhvcNAQELBQADggEBAGgGPhsG1Zz4XeYckbcYr08hVCckZGOz8QQpxa9QeaYR unYPQrzI5Ps6Oc9j8ClSNA5BCdG1/GHUQIOcQ4sr+YwczbeCZp4ualv+U9FzfEgj YWKFV76Gp+KGnhr+eRtdBgYMAXw8BFWAsWKRjSTI62lnkGonwrTyrF7d0D3rCedI 4k9y5od/lCZb5CRk7tIjQVSLI2Af+McZunhlxnQowifIs8NfeXAXvJdv2Uh7CnoG mwk+PQbsiIQt/YP/73ZIPuLu4g/vyBzdsIwta6mCjPdeKYmJV6BK08ZiwCkmRdoG zQ7i72C5CvRLuBfu/eTfHiPH9ga7c773CpuAo08O6Ak= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org