$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa File: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (raw, json) Hash identifier: c1gB6BKB05mfETS6Rw4QIkT1a+hkEFs7hHtdh5pU46M= Subject key identifier: 5F:F9:BB:DE:77:BE:E9:03:66:4F:53:4C:99:D7:72:04:E1:8B:1A:00 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 0542983D425DF5C24B6786FDC3B5EA07940E50B9 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa Signing time: Sat 30 Mar 2024 10:00:01 +0000 ROA not before: Sat 30 Mar 2024 09:55:01 +0000 ROA not after: Sat 29 Mar 2025 10:00:01 +0000 asID: 150966 IP address blocks: 103.130.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:42:98:3d:42:5d:f5:c2:4b:67:86:fd:c3:b5:ea:07:94:0e:50:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 30 09:55:01 2024 GMT Not After : Mar 29 10:00:01 2025 GMT Subject: CN=5FF9BBDE77BEE903664F534C99D77204E18B1A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:be:0a:cf:cc:2d:0a:b2:f6:68:d9:5c:8d:47: 49:3f:71:b4:0a:ba:78:56:da:b3:0c:c0:c4:06:d5: 4d:5c:a8:31:4b:ca:a6:e1:d1:54:9c:36:e5:ae:11: c9:fa:4e:c0:34:12:f2:01:4c:71:10:ee:61:ab:be: 16:27:66:de:1c:e3:2b:80:12:d3:19:d1:6f:85:12: 66:1a:fc:a3:87:5b:32:c9:83:3b:52:d4:36:49:db: 9a:7d:24:37:da:36:1e:30:10:1c:e2:54:4f:77:a3: 44:a5:ec:e3:1b:36:2c:af:26:b4:42:47:f7:5f:74: 6c:e7:e5:cd:26:fd:94:ab:24:35:40:18:68:0a:09: 14:83:ae:4e:35:25:d0:c5:a9:d8:e0:12:66:31:76: 17:19:df:31:1b:6b:7e:a9:6c:44:5f:5c:95:ed:5a: 30:09:45:20:0d:87:c5:ed:4d:61:e5:3d:e9:f1:94: d1:6a:48:f4:99:ab:21:f5:52:ba:70:01:50:3e:29: d0:4f:72:1d:32:03:3d:95:77:91:6f:7e:57:af:3c: 77:1a:ec:f0:f0:a3:a7:c7:a9:53:ff:73:47:38:9b: ff:54:ff:6e:68:7d:3f:3a:0d:9c:30:f7:81:32:c9: c1:34:e4:5f:b1:9f:bc:ed:6c:99:76:bb:90:30:d3: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F9:BB:DE:77:BE:E9:03:66:4F:53:4C:99:D7:72:04:E1:8B:1A:00 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.82.0/24 Signature Algorithm: sha256WithRSAEncryption 19:81:2a:b3:be:34:a4:90:56:ed:52:07:53:f7:c3:38:52:93: d3:fa:0f:af:f8:51:dd:fc:99:78:23:f3:b9:7e:81:57:6e:32: 21:27:f5:5c:21:33:1e:c1:71:5e:79:77:90:13:a7:31:dd:a2: b4:a0:19:1d:c5:7f:43:45:55:f5:de:d1:c0:a8:17:65:c4:01: bd:9c:0c:db:7c:36:89:1d:f1:20:93:14:04:00:7a:66:5b:9e: f8:ba:94:00:e3:f2:9b:a4:56:10:47:90:b2:c8:85:b2:2a:8f: c7:30:1c:05:ba:02:ef:70:a4:04:e6:62:51:81:97:da:16:2d: 67:69:51:09:fc:18:e3:7d:ee:20:b2:b0:e3:1a:24:82:18:1a: e7:4e:83:95:59:6f:ac:09:c0:18:21:48:60:d9:3d:3c:4a:27: 78:68:7a:84:38:2f:37:0d:ed:6a:4e:3e:77:22:60:ec:2c:c2: d2:60:96:76:bc:c9:4c:15:b4:86:ba:47:7e:0a:ed:20:b0:38: 4b:43:a5:14:28:b9:5d:0e:dc:11:18:a0:32:49:e9:bc:37:d3: bf:a4:ef:c1:8a:a8:8d:0f:49:08:6a:10:40:97:f6:eb:d4:6e: 2b:b3:72:16:90:10:df:21:57:2c:18:9a:b3:81:33:72:b3:f8: 37:d6:0f:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBUKYPUJd9cJLZ4b9w7XqB5QOULkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNDAzMzAwOTU1MDFaFw0yNTAzMjkxMDAwMDFaMDMxMTAvBgNV BAMTKDVGRjlCQkRFNzdCRUU5MDM2NjRGNTM0Qzk5RDc3MjA0RTE4QjFBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4vgrPzC0KsvZo2VyNR0k/cbQK unhW2rMMwMQG1U1cqDFLyqbh0VScNuWuEcn6TsA0EvIBTHEQ7mGrvhYnZt4c4yuA EtMZ0W+FEmYa/KOHWzLJgztS1DZJ25p9JDfaNh4wEBziVE93o0Sl7OMbNiyvJrRC R/dfdGzn5c0m/ZSrJDVAGGgKCRSDrk41JdDFqdjgEmYxdhcZ3zEba36pbERfXJXt WjAJRSANh8XtTWHlPenxlNFqSPSZqyH1UrpwAVA+KdBPch0yAz2Vd5FvflevPHca 7PDwo6fHqVP/c0c4m/9U/25ofT86DZww94EyycE05F+xn7ztbJl2u5Aw06W5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX/m73ne+6QNmT1NMmddyBOGLGgAwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4JSMA0GCSqG SIb3DQEBCwUAA4IBAQAZgSqzvjSkkFbtUgdT98M4UpPT+g+v+FHd/Jl4I/O5foFX bjIhJ/VcITMewXFeeXeQE6cx3aK0oBkdxX9DRVX13tHAqBdlxAG9nAzbfDaJHfEg kxQEAHpmW574upQA4/KbpFYQR5CyyIWyKo/HMBwFugLvcKQE5mJRgZfaFi1naVEJ /Bjjfe4gsrDjGiSCGBrnToOVWW+sCcAYIUhg2T08Sid4aHqEOC83De1qTj53ImDs LMLSYJZ2vMlMFbSGukd+Cu0gsDhLQ6UUKLldDtwRGKAySem8N9O/pO/BiqiND0kI ahBAl/br1G4rs3IWkBDfIVcsGJqzgTNys/g31g/x -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org