$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa File: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: W9SlEeOl3X8ocbNoZ4DhRgPCmpzG9cK0+5yGb5bLv0Q= Subject key identifier: 6B:F2:0B:89:58:6E:15:05:3E:0E:D5:28:98:61:0C:D3:FF:89:0F:2F Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 111F94DBB823E6C51FD3251EBF89A1A5B823D689 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa Signing time: Wed 01 May 2024 05:00:00 +0000 ROA not before: Wed 01 May 2024 04:55:00 +0000 ROA not after: Wed 30 Apr 2025 05:00:00 +0000 asID: 149883 IP address blocks: 103.189.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:1f:94:db:b8:23:e6:c5:1f:d3:25:1e:bf:89:a1:a5:b8:23:d6:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: May 1 04:55:00 2024 GMT Not After : Apr 30 05:00:00 2025 GMT Subject: CN=6BF20B89586E15053E0ED52898610CD3FF890F2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:22:a9:fd:39:01:1b:28:7b:15:bd:1b:09:f5: 36:de:60:90:49:7f:2a:8c:96:c1:67:3a:9a:d3:33: 67:d0:f1:aa:2d:35:54:30:54:5f:99:9d:08:88:d3: 8c:82:76:f2:f7:64:5c:46:bd:10:1b:b4:84:da:97: 48:7d:71:c1:8e:80:03:7b:e8:13:51:94:16:49:e7: 1b:26:ce:93:55:7f:a1:30:36:70:cb:8b:87:90:a4: 90:2b:8e:29:09:4f:6c:dc:d6:ea:90:25:c1:c0:5c: ae:70:0a:2c:e7:8b:f3:db:45:d5:17:74:92:70:9c: 74:02:b1:cf:c8:68:78:35:b8:92:0f:a8:a8:a3:01: 77:5c:99:5c:d5:fd:0e:9c:e3:d4:87:c4:9f:5d:33: 57:28:54:2a:d1:93:15:b7:88:2f:f8:e2:bb:a9:50: c6:37:b7:8e:d5:57:40:80:6c:ab:c0:04:d3:56:02: 39:0a:26:01:5a:be:35:76:9c:62:61:09:66:0b:39: cf:4a:8b:6f:69:09:de:a1:dd:c9:84:21:65:6b:29: 4c:ed:5a:c4:7a:11:16:49:07:ca:20:88:0a:ea:ae: 5b:10:35:f8:e5:c0:22:d6:7e:d5:94:10:7a:a8:44: f9:ff:d3:8d:60:28:4d:9d:23:5f:9d:f5:22:fe:39: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F2:0B:89:58:6E:15:05:3E:0E:D5:28:98:61:0C:D3:FF:89:0F:2F X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.119.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:ca:69:b9:68:8d:ba:48:3a:4c:de:99:e2:00:63:ff:03:29: 57:06:ac:1a:a2:18:49:cd:68:cb:92:35:2b:a1:76:01:19:2b: a9:b2:6d:19:4a:3f:1d:55:92:64:e2:59:06:d5:c6:2d:fd:d0: 9f:d2:0a:ea:5b:0f:48:e2:2b:4b:da:fc:ad:6b:aa:5e:6f:c6: 50:d4:a1:64:35:fd:91:43:76:6d:42:31:d2:68:7c:35:c8:b9: 9a:ba:75:07:b5:9b:bd:a9:67:0c:f6:e7:76:fa:ee:cc:db:7e: 8b:df:16:dd:64:92:df:c1:7a:85:0f:03:20:4c:25:85:41:da: bc:81:c6:e2:e3:09:40:eb:cb:27:c1:d4:7d:07:4b:6d:2e:d4: aa:4b:c3:7f:39:e8:25:84:29:5d:74:b9:2d:6d:03:8d:2d:b3: ea:79:c3:06:d0:d7:2f:a4:b1:d9:fb:fb:5a:d4:70:f3:21:b9: 5c:3d:af:24:f9:35:4b:42:02:7f:e1:e2:52:28:3d:2f:47:a0: 66:91:cb:00:03:66:c0:c2:97:e6:31:84:89:bb:09:a2:71:20: 48:31:4c:d4:b7:70:04:0f:8b:35:72:f0:1e:f3:83:7c:68:63: 5a:1a:87:87:51:1f:53:4f:c6:5b:a2:2b:8f:88:54:18:53:d2: da:8a:07:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUER+U27gj5sUf0yUev4mhpbgj1okwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNDA1MDEwNDU1MDBaFw0yNTA0MzAwNTAwMDBaMDMxMTAvBgNV BAMTKDZCRjIwQjg5NTg2RTE1MDUzRTBFRDUyODk4NjEwQ0QzRkY4OTBGMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Iqn9OQEbKHsVvRsJ9TbeYJBJ fyqMlsFnOprTM2fQ8aotNVQwVF+ZnQiI04yCdvL3ZFxGvRAbtITal0h9ccGOgAN7 6BNRlBZJ5xsmzpNVf6EwNnDLi4eQpJArjikJT2zc1uqQJcHAXK5wCizni/PbRdUX dJJwnHQCsc/IaHg1uJIPqKijAXdcmVzV/Q6c49SHxJ9dM1coVCrRkxW3iC/44rup UMY3t47VV0CAbKvABNNWAjkKJgFavjV2nGJhCWYLOc9Ki29pCd6h3cmEIWVrKUzt WsR6ERZJB8ogiArqrlsQNfjlwCLWftWUEHqoRPn/041gKE2dI1+d9SL+Oc9zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa/ILiVhuFQU+DtUomGEM0/+JDy8wHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXcwDQYJ KoZIhvcNAQELBQADggEBAFrKablojbpIOkzemeIAY/8DKVcGrBqiGEnNaMuSNSuh dgEZK6mybRlKPx1VkmTiWQbVxi390J/SCupbD0jiK0va/K1rql5vxlDUoWQ1/ZFD dm1CMdJofDXIuZq6dQe1m72pZwz253b67szbfovfFt1kkt/BeoUPAyBMJYVB2ryB xuLjCUDryyfB1H0HS20u1KpLw3856CWEKV10uS1tA40ts+p5wwbQ1y+ksdn7+1rU cPMhuVw9ryT5NUtCAn/h4lIoPS9HoGaRywADZsDCl+YxhIm7CaJxIEgxTNS3cAQP izVy8B7zg3xoY1oah4dRH1NPxluiK4+IVBhT0tqKB4Y= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org