$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa File: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (raw, json) Hash identifier: ieZ8GfDTbTIGuPdRNiJz+TUiira8AeSJa0sr3BYv9d0= Subject key identifier: 13:9B:F8:23:F4:E0:9E:2A:CC:73:92:4B:C7:AC:D1:AF:E5:19:62:8A Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 58DCB745F220D85208C442CFD13BA60BC97CFB83 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa Signing time: Sat 30 Mar 2024 10:00:00 +0000 ROA not before: Sat 30 Mar 2024 09:55:00 +0000 ROA not after: Sat 29 Mar 2025 10:00:00 +0000 asID: 150966 IP address blocks: 103.130.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:dc:b7:45:f2:20:d8:52:08:c4:42:cf:d1:3b:a6:0b:c9:7c:fb:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 30 09:55:00 2024 GMT Not After : Mar 29 10:00:00 2025 GMT Subject: CN=139BF823F4E09E2ACC73924BC7ACD1AFE519628A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e6:8a:a9:c8:a8:0b:15:5a:9f:4d:43:72:c5: e3:ea:01:48:7b:92:00:af:46:fd:67:5b:fc:28:59: 3e:b0:b0:c1:37:67:e6:00:65:24:53:ac:19:63:4d: d3:8b:67:a8:72:69:31:87:84:94:2b:d3:fa:25:db: ba:7d:bb:80:d3:5c:93:ae:94:b6:e8:d3:86:df:86: 52:b7:03:40:af:cc:41:cf:2f:c7:d4:3f:d7:56:cb: fa:5f:16:3a:83:6a:3c:97:b9:47:1a:fa:52:b8:f6: a3:c4:96:69:1b:1e:f9:d3:c5:c4:95:e5:99:7c:e6: db:e5:c9:47:56:bb:72:f6:e7:c4:c1:bb:27:da:e1: 86:74:bd:dd:71:d1:ea:df:9e:a9:79:13:35:0c:bf: 39:12:f4:99:49:1d:da:35:51:af:1b:76:ea:1b:ff: 1a:d5:09:d1:4f:d6:c8:cc:d1:af:7f:35:60:2a:5a: 5f:d0:c9:8e:31:ed:32:49:5c:db:e6:7f:47:18:f9: ea:fd:ec:d3:de:79:cd:41:82:9a:b7:63:2f:be:b5: 50:75:2a:20:54:1b:73:1b:8f:01:dd:0d:b0:f7:a1: a2:5a:d7:d0:f1:3b:75:c7:97:d4:29:44:5a:fc:7f: 3e:e9:c6:d5:a9:e0:62:7e:49:c1:d5:f0:fb:81:74: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9B:F8:23:F4:E0:9E:2A:CC:73:92:4B:C7:AC:D1:AF:E5:19:62:8A X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.83.0/24 Signature Algorithm: sha256WithRSAEncryption a0:bc:74:09:9a:6a:b7:7d:46:43:dc:4e:f7:4d:ac:ee:9e:78: e8:4a:0b:82:39:8d:7b:1b:a9:0f:36:d8:08:04:70:7e:d8:aa: a9:b5:3f:b9:e7:fc:a0:95:4b:ac:71:6b:15:e2:24:59:60:dc: da:10:b4:32:d6:c8:9f:46:a1:02:7b:9a:b7:f4:b7:f8:e7:00: cf:7d:b0:26:e7:af:65:b2:fe:fc:5e:df:1b:ed:b4:77:6a:60: 61:e8:15:6a:f8:26:30:a1:67:ce:e4:27:6d:5f:d5:d1:3e:6e: 1b:75:33:13:35:62:75:df:18:0c:bb:42:70:2a:42:76:8d:c2: fb:f6:11:2c:87:8e:85:bd:91:83:69:a9:3d:21:f6:5d:aa:f9: b8:67:a4:91:6a:da:14:b1:83:b2:a0:ab:cf:35:37:26:fc:52: 8b:0f:dd:be:8c:07:86:59:9a:04:3a:21:09:79:6f:b0:a8:d3: d5:fb:ea:99:b6:52:b5:b9:40:89:86:a6:10:12:37:a8:ae:8f: 0a:32:64:ee:1d:1d:84:16:c8:65:a8:de:aa:d5:c9:4b:68:da: 78:35:7a:73:d4:79:ea:c0:56:b7:bc:cf:a6:45:1d:b6:72:6d: 8f:c3:e8:51:00:04:40:e9:06:41:61:1d:9e:65:ec:2f:cb:89: e9:e2:81:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWNy3RfIg2FIIxELP0TumC8l8+4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNDAzMzAwOTU1MDBaFw0yNTAzMjkxMDAwMDBaMDMxMTAvBgNV BAMTKDEzOUJGODIzRjRFMDlFMkFDQzczOTI0QkM3QUNEMUFGRTUxOTYyOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO5oqpyKgLFVqfTUNyxePqAUh7 kgCvRv1nW/woWT6wsME3Z+YAZSRTrBljTdOLZ6hyaTGHhJQr0/ol27p9u4DTXJOu lLbo04bfhlK3A0CvzEHPL8fUP9dWy/pfFjqDajyXuUca+lK49qPElmkbHvnTxcSV 5Zl85tvlyUdWu3L258TBuyfa4YZ0vd1x0erfnql5EzUMvzkS9JlJHdo1Ua8bduob /xrVCdFP1sjM0a9/NWAqWl/QyY4x7TJJXNvmf0cY+er97NPeec1Bgpq3Yy++tVB1 KiBUG3MbjwHdDbD3oaJa19DxO3XHl9QpRFr8fz7pxtWp4GJ+ScHV8PuBdA6VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUE5v4I/TgnirMc5JLx6zRr+UZYoowHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4JTMA0GCSqG SIb3DQEBCwUAA4IBAQCgvHQJmmq3fUZD3E73TazunnjoSguCOY17G6kPNtgIBHB+ 2KqptT+55/yglUuscWsV4iRZYNzaELQy1sifRqECe5q39Lf45wDPfbAm569lsv78 Xt8b7bR3amBh6BVq+CYwoWfO5CdtX9XRPm4bdTMTNWJ13xgMu0JwKkJ2jcL79hEs h46FvZGDaak9IfZdqvm4Z6SRatoUsYOyoKvPNTcm/FKLD92+jAeGWZoEOiEJeW+w qNPV++qZtlK1uUCJhqYQEjeoro8KMmTuHR2EFshlqN6q1clLaNp4NXpz1HnqwFa3 vM+mRR22cm2Pw+hRAARA6QZBYR2eZewvy4np4oEK -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org