$ rpki-client -vvf repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa File: 3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa (raw, json) Hash identifier: B8flxKHnqLu+ni4Qf3F0eEe8yFqzQ9zn0Tl0YXoj/YM= Subject key identifier: 42:D0:7B:81:15:4E:00:68:62:02:EC:C2:A4:B7:8B:02:62:15:E9:C2 Certificate issuer: /CN=19280B8F5AA4FBDEC679C351EB040D284CF791BE Certificate serial: 37D71CE91B1A6AE01A41A4BD9053A6C83D7D544D Authority key identifier: 19:28:0B:8F:5A:A4:FB:DE:C6:79:C3:51:EB:04:0D:28:4C:F7:91:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19280B8F5AA4FBDEC679C351EB040D284CF791BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa Signing time: Tue 23 Jan 2024 15:00:00 +0000 ROA not before: Tue 23 Jan 2024 14:55:00 +0000 ROA not after: Tue 21 Jan 2025 15:00:00 +0000 asID: 150517 IP address blocks: 103.68.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/19280B8F5AA4FBDEC679C351EB040D284CF791BE.crl rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/19280B8F5AA4FBDEC679C351EB040D284CF791BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19280B8F5AA4FBDEC679C351EB040D284CF791BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d7:1c:e9:1b:1a:6a:e0:1a:41:a4:bd:90:53:a6:c8:3d:7d:54:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19280B8F5AA4FBDEC679C351EB040D284CF791BE Validity Not Before: Jan 23 14:55:00 2024 GMT Not After : Jan 21 15:00:00 2025 GMT Subject: CN=42D07B81154E00686202ECC2A4B78B026215E9C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:e9:69:0f:82:4d:a1:ed:da:88:06:0b:70: ef:b2:7d:4a:01:d9:b0:6c:ff:aa:23:88:b3:77:10: 3d:73:57:ab:a3:5e:ba:1f:f9:e4:7c:3c:d5:08:17: 9e:81:3e:d1:7a:31:71:09:64:b9:63:5d:d0:7a:1e: 27:e1:98:68:c9:23:be:84:ca:3e:f6:a3:18:fb:4b: b6:31:ee:b3:23:e7:8e:08:8b:1f:61:9d:e0:d9:84: f3:0b:b0:96:4f:58:43:f4:ec:35:45:59:31:06:bb: 67:88:d1:0c:6a:4d:09:c0:57:4d:26:f4:07:c9:59: d5:9e:d2:e5:16:ae:6e:a5:eb:e2:58:a6:0d:1b:7c: 72:36:3d:06:fd:8a:5e:28:a6:01:39:d6:fb:22:40: 73:7f:64:87:a2:5d:95:1e:47:87:8e:f4:20:d6:d2: 49:ee:5b:95:bc:15:76:47:aa:9d:8e:ab:95:bb:9d: 4f:94:84:03:26:f7:77:33:f0:2b:14:e7:e3:13:5b: 79:9b:3f:2a:80:3d:97:77:7e:d1:c2:c1:30:d4:f5: 09:d3:49:7d:76:20:24:7e:a7:9c:37:ef:61:b1:c9: 2d:e8:d1:97:63:aa:32:e1:19:88:45:36:be:ec:b3: e6:19:a7:fb:12:c7:c7:b0:8c:3a:b9:5d:c5:1b:9a: fc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D0:7B:81:15:4E:00:68:62:02:EC:C2:A4:B7:8B:02:62:15:E9:C2 X509v3 Authority Key Identifier: keyid:19:28:0B:8F:5A:A4:FB:DE:C6:79:C3:51:EB:04:0D:28:4C:F7:91:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/19280B8F5AA4FBDEC679C351EB040D284CF791BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19280B8F5AA4FBDEC679C351EB040D284CF791BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.214.0/23 Signature Algorithm: sha256WithRSAEncryption bd:5d:8d:13:9c:82:46:67:5a:9c:e0:57:dd:84:7a:0e:b3:c6: e1:a7:ba:5b:d1:09:c8:c2:09:80:7a:c2:34:bc:f6:69:f6:d4: 88:32:2a:ba:aa:6b:0b:c5:18:4c:94:23:ca:a2:d9:e5:68:4b: bd:2d:f9:b9:00:e9:59:d1:b9:32:67:9e:b2:cb:33:fb:ae:89: 9e:80:99:12:64:4a:d1:16:7c:f3:c4:f6:c1:41:79:f6:fa:00: ea:db:33:29:af:e0:83:d9:a2:6d:6d:9e:d1:73:24:02:fe:8a: 44:44:86:28:e6:e6:49:2c:a2:6d:46:c1:aa:94:83:de:df:39: cf:6a:06:8b:fe:af:3b:df:dc:31:e6:00:b1:25:0f:97:96:05: 8c:ec:3d:00:ea:60:36:7b:71:75:14:c7:c9:b5:92:73:1b:ae: 8a:e1:dc:f7:3f:44:c4:a7:5f:ea:d6:fa:5a:22:c0:62:c4:3b: a6:8f:2b:dc:c5:95:bb:ea:e2:14:d0:eb:9c:67:bf:43:78:c8: df:81:ca:7f:f9:46:a5:df:77:b0:41:d8:0f:f5:09:d5:70:4b: 97:55:ce:12:2d:61:45:c3:16:84:e1:62:81:61:c5:0f:63:35: 59:61:0c:8e:1b:f8:9e:c8:5c:67:0f:3c:49:d9:19:06:9d:c4: 02:c7:7e:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN9cc6RsaauAaQaS9kFOmyD19VE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkyODBCOEY1QUE0RkJERUM2NzlDMzUxRUIwNDBEMjg0 Q0Y3OTFCRTAeFw0yNDAxMjMxNDU1MDBaFw0yNTAxMjExNTAwMDBaMDMxMTAvBgNV BAMTKDQyRDA3QjgxMTU0RTAwNjg2MjAyRUNDMkE0Qjc4QjAyNjIxNUU5QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxu+lpD4JNoe3aiAYLcO+yfUoB 2bBs/6ojiLN3ED1zV6ujXrof+eR8PNUIF56BPtF6MXEJZLljXdB6HifhmGjJI76E yj72oxj7S7Yx7rMj544Iix9hneDZhPMLsJZPWEP07DVFWTEGu2eI0QxqTQnAV00m 9AfJWdWe0uUWrm6l6+JYpg0bfHI2PQb9il4opgE51vsiQHN/ZIeiXZUeR4eO9CDW 0knuW5W8FXZHqp2Oq5W7nU+UhAMm93cz8CsU5+MTW3mbPyqAPZd3ftHCwTDU9QnT SX12ICR+p5w372GxyS3o0ZdjqjLhGYhFNr7ss+YZp/sSx8ewjDq5XcUbmvy3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQtB7gRVOAGhiAuzCpLeLAmIV6cIwHwYDVR0j BBgwFoAUGSgLj1qk+97GecNR6wQNKEz3kb4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWJmNjNlZC1kNDUwLTQ3N2UtYjMxYi1hZjkyYjE3MjZkMmUvMC8xOTI4MEI4RjVB QTRGQkRFQzY3OUMzNTFFQjA0MEQyODRDRjc5MUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkyODBCOEY1QUE0RkJERUM2NzlDMzUxRUIwNDBEMjg0Q0Y3 OTFCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlYmY2M2VkLWQ0NTAtNDc3ZS1i MzFiLWFmOTJiMTcyNmQyZS8wLzMxMzAzMzJlMzYzODJlMzIzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0TWMA0GCSqG SIb3DQEBCwUAA4IBAQC9XY0TnIJGZ1qc4FfdhHoOs8bhp7pb0QnIwgmAesI0vPZp 9tSIMiq6qmsLxRhMlCPKotnlaEu9Lfm5AOlZ0bkyZ56yyzP7romegJkSZErRFnzz xPbBQXn2+gDq2zMpr+CD2aJtbZ7RcyQC/opERIYo5uZJLKJtRsGqlIPe3znPagaL /q8739wx5gCxJQ+XlgWM7D0A6mA2e3F1FMfJtZJzG66K4dz3P0TEp1/q1vpaIsBi xDumjyvcxZW76uIU0OucZ79DeMjfgcp/+Ual33ewQdgP9QnVcEuXVc4SLWFFwxaE 4WKBYcUPYzVZYQyOG/ieyFxnDzxJ2RkGncQCx34F -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org