$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa File: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (raw, json) Hash identifier: S8jwmxFNz6/dqqAIRdtopWAYHmDF2qg8uN2eVcvE1EM= Subject key identifier: 16:79:02:17:30:D3:FC:9C:33:95:53:54:C8:1E:1E:1D:06:BE:81:82 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 5955A6D7960FF851B13CDF51A2F526D482EAD6A2 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa Signing time: Wed 13 Mar 2024 00:00:01 +0000 ROA not before: Tue 12 Mar 2024 23:55:01 +0000 ROA not after: Wed 12 Mar 2025 00:00:01 +0000 asID: 150966 IP address blocks: 103.130.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:55:a6:d7:96:0f:f8:51:b1:3c:df:51:a2:f5:26:d4:82:ea:d6:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 12 23:55:01 2024 GMT Not After : Mar 12 00:00:01 2025 GMT Subject: CN=1679021730D3FC9C33955354C81E1E1D06BE8182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:81:3b:ca:51:34:e1:ea:1f:3d:ac:e3:d1:44: e3:dc:45:f1:e6:ad:c3:6e:74:f4:62:d3:d2:6c:7d: a1:4d:f8:4b:69:01:e3:fc:30:cf:19:35:0f:bf:29: d0:91:b8:4e:92:c9:62:73:26:0c:25:d4:82:be:eb: 41:75:d9:df:71:fd:f9:33:06:f7:49:55:01:b6:9d: 8e:4f:bb:8f:a2:5f:c7:93:75:57:89:86:b7:68:0f: bf:12:6e:a9:30:fc:9a:83:97:40:b7:4f:5c:bc:86: 26:6b:c5:41:74:b9:d8:18:a2:ba:37:e0:17:1b:3f: f7:ec:b2:90:90:0d:02:77:4c:7f:58:c1:22:af:61: 6a:e2:b5:16:6b:6b:b7:94:f4:7b:9a:37:14:a9:be: dc:9d:c6:df:70:51:1a:53:aa:9b:1d:c7:a7:f0:6f: d1:f2:f4:5b:0a:97:d5:e2:ba:b3:a2:23:55:17:98: 18:f6:72:ea:2a:a2:82:71:dd:db:f5:c6:6d:5c:79: 91:f4:30:50:44:e7:81:29:bd:9c:e8:f2:85:96:c7: 98:cb:4b:1c:32:75:28:b0:00:80:b6:87:ee:b3:8f: e7:3f:df:06:61:26:15:d0:30:93:fb:4f:44:62:2a: a8:27:b1:8c:99:a0:e5:ad:92:f1:96:1c:d6:0d:d4: 0c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:79:02:17:30:D3:FC:9C:33:95:53:54:C8:1E:1E:1D:06:BE:81:82 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.82.0/23 Signature Algorithm: sha256WithRSAEncryption 41:28:3b:31:2d:ce:4b:f8:56:30:bc:78:52:85:5b:f6:eb:c8: f9:4b:5f:ba:5e:99:1c:d4:8d:60:f6:83:e2:fb:c6:ff:fd:32: 0b:1d:ac:c7:b9:19:4b:80:4f:d2:2a:fa:8e:b8:0f:e9:2d:7d: 3a:a8:3d:3d:06:a1:68:02:b5:78:bb:0f:2b:95:58:28:a1:cc: ec:56:a8:08:0d:5a:6a:86:cb:f4:e1:3e:84:ac:07:ac:22:b6: 00:60:e7:7f:a0:bc:23:da:9f:d4:0d:1d:30:2a:9a:7f:d8:00: ee:1b:08:ae:23:f5:d4:b3:09:cf:98:b0:2c:9a:3b:f1:4a:a2: 99:e9:7d:84:ce:24:8c:d1:ff:d0:73:d2:cf:2b:71:1f:7a:f0: 13:e8:86:db:c7:42:4a:da:25:9c:6e:c2:4a:24:88:d1:20:a1: 86:ce:55:09:57:a1:f3:c6:45:d7:e5:82:d6:53:1a:3b:7c:fd: af:2a:26:1c:fb:bf:6d:e8:cc:13:5d:da:f7:27:f4:ce:93:5a: 78:75:d3:12:ce:26:ef:38:a8:1b:82:c1:a9:2f:54:ef:e3:3e: 1e:6a:48:15:60:75:80:d8:11:b0:73:24:9c:6a:72:08:31:84: 7f:43:00:b7:25:25:29:70:0c:80:47:42:b2:c5:bf:28:cd:4b: b3:c2:82:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWVWm15YP+FGxPN9RovUm1ILq1qIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNDAzMTIyMzU1MDFaFw0yNTAzMTIwMDAwMDFaMDMxMTAvBgNV BAMTKDE2NzkwMjE3MzBEM0ZDOUMzMzk1NTM1NEM4MUUxRTFEMDZCRTgxODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwgTvKUTTh6h89rOPRROPcRfHm rcNudPRi09JsfaFN+EtpAeP8MM8ZNQ+/KdCRuE6SyWJzJgwl1IK+60F12d9x/fkz BvdJVQG2nY5Pu4+iX8eTdVeJhrdoD78Sbqkw/JqDl0C3T1y8hiZrxUF0udgYoro3 4BcbP/fsspCQDQJ3TH9YwSKvYWritRZra7eU9HuaNxSpvtydxt9wURpTqpsdx6fw b9Hy9FsKl9XiurOiI1UXmBj2cuoqooJx3dv1xm1ceZH0MFBE54EpvZzo8oWWx5jL SxwydSiwAIC2h+6zj+c/3wZhJhXQMJP7T0RiKqgnsYyZoOWtkvGWHNYN1AwdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFnkCFzDT/JwzlVNUyB4eHQa+gYIwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4JSMA0GCSqG SIb3DQEBCwUAA4IBAQBBKDsxLc5L+FYwvHhShVv268j5S1+6Xpkc1I1g9oPi+8b/ /TILHazHuRlLgE/SKvqOuA/pLX06qD09BqFoArV4uw8rlVgooczsVqgIDVpqhsv0 4T6ErAesIrYAYOd/oLwj2p/UDR0wKpp/2ADuGwiuI/XUswnPmLAsmjvxSqKZ6X2E ziSM0f/Qc9LPK3EfevAT6Ibbx0JK2iWcbsJKJIjRIKGGzlUJV6HzxkXX5YLWUxo7 fP2vKiYc+79t6MwTXdr3J/TOk1p4ddMSzibvOKgbgsGpL1Tv4z4eakgVYHWA2BGw cyScanIIMYR/QwC3JSUpcAyAR0Kyxb8ozUuzwoJB -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org