$ rpki-client -vvf repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa File: 3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa (raw, json) Hash identifier: aKnOKOXrf8WDLTz9lOnMLQ3rz67XYoyw6eEFmfbGG64= Subject key identifier: 89:39:EE:DF:86:EC:41:B2:2D:AE:C6:DD:9A:8A:FC:A2:D2:F7:D8:16 Certificate issuer: /CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Certificate serial: 55DE1303FC76DDDC61B5060D81EC6CA376AAA1F5 Authority key identifier: 94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa Signing time: Thu 17 Oct 2024 10:00:01 +0000 ROA not before: Thu 17 Oct 2024 09:55:01 +0000 ROA not after: Thu 16 Oct 2025 10:00:01 +0000 asID: 136121 IP address blocks: 103.154.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:de:13:03:fc:76:dd:dc:61:b5:06:0d:81:ec:6c:a3:76:aa:a1:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383 Validity Not Before: Oct 17 09:55:01 2024 GMT Not After : Oct 16 10:00:01 2025 GMT Subject: CN=8939EEDF86EC41B22DAEC6DD9A8AFCA2D2F7D816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a7:d2:ae:4e:da:23:98:82:0e:1b:23:69:c0: 05:28:bc:6c:42:a4:7a:de:43:64:62:a8:a6:c5:fa: 2f:7c:d1:0e:de:0c:ad:06:08:b5:61:a9:d4:88:70: b2:cc:2b:0f:4c:34:bc:8f:0c:a5:15:3a:4f:2a:74: 69:35:28:a8:0c:2e:cc:f7:4e:d7:52:0c:67:e9:96: 9e:71:5b:e5:0e:71:97:cb:9f:1b:f7:c0:1c:1b:45: 28:38:f5:d8:04:58:11:25:60:de:a2:02:0d:56:de: 0b:4c:79:f8:c5:18:a8:d2:bf:e5:8f:a6:cc:e8:3e: d2:c8:3c:55:dc:17:da:0c:97:b7:b4:1a:8a:40:ad: ed:07:a4:e4:1d:3b:ff:dc:d1:a2:16:07:39:1e:2d: 65:4a:c0:bf:95:72:93:36:31:1e:e3:13:88:70:bc: 1f:ab:a3:f2:aa:e0:21:59:d1:11:a2:f0:24:70:b6: 07:03:d5:c2:fb:6f:bb:a6:d5:8a:ed:84:61:e2:a0: 5b:72:b2:b5:0b:39:ca:46:ce:56:40:b1:82:53:8f: 1f:aa:49:ad:d5:dd:6c:68:86:e7:f4:b4:eb:92:30: 00:6a:93:9e:a9:c4:90:10:5b:3b:39:46:7f:06:04: 54:95:13:e9:a3:ea:22:75:1c:1a:b2:0f:14:4f:39: 4b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:39:EE:DF:86:EC:41:B2:2D:AE:C6:DD:9A:8A:FC:A2:D2:F7:D8:16 X509v3 Authority Key Identifier: keyid:94:F7:5B:04:CE:BE:0D:F1:D0:B9:24:EC:F1:AD:9C:9C:13:99:23:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F75B04CEBE0DF1D0B924ECF1AD9C9C13992383.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.231.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:b2:e8:24:c4:78:07:03:89:62:26:da:7e:b0:41:5d:7e:0c: 9a:c9:5d:d0:31:5e:c3:68:61:ee:63:c8:54:a6:69:0c:32:bf: db:8d:70:4a:5d:7e:1f:19:65:05:1a:49:c7:ca:26:0d:dc:be: 04:01:b4:27:54:13:ed:3a:0e:56:0d:56:8b:43:b7:ec:f2:92: 6c:48:31:d8:89:dd:3f:39:72:9f:df:53:b9:0f:ef:ae:c6:ae: 8f:31:e0:2a:d6:48:4f:56:70:fe:8f:65:fb:73:76:75:c8:b1: 55:0e:ee:04:c4:0b:23:24:fe:14:7f:52:82:39:67:be:88:b5: 7a:48:a3:3d:61:e9:45:db:48:16:1c:82:e0:69:27:06:2a:c3: 5b:24:fd:35:9c:06:4e:16:00:d4:1a:7a:81:49:f1:71:f5:ae: ed:29:01:22:40:ed:1a:49:b8:65:0c:99:37:26:57:20:f7:d1: 1a:7f:bc:36:87:37:1d:e7:52:86:8e:c0:db:a2:15:89:8e:a1: ab:79:11:ba:36:92:5e:bf:f7:b9:88:a0:68:95:b5:a9:90:8f: b5:24:37:df:e8:56:20:44:51:38:e7:e0:d7:77:b9:2d:7f:b1: c5:2e:40:5b:11:ab:d4:04:6b:46:22:a2:29:4b:5f:43:71:0f: d3:e5:22:f9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVd4TA/x23dxhtQYNgexso3aqofUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMx Mzk5MjM4MzAeFw0yNDEwMTcwOTU1MDFaFw0yNTEwMTYxMDAwMDFaMDMxMTAvBgNV BAMTKDg5MzlFRURGODZFQzQxQjIyREFFQzZERDlBOEFGQ0EyRDJGN0Q4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNp9KuTtojmIIOGyNpwAUovGxC pHreQ2RiqKbF+i980Q7eDK0GCLVhqdSIcLLMKw9MNLyPDKUVOk8qdGk1KKgMLsz3 TtdSDGfplp5xW+UOcZfLnxv3wBwbRSg49dgEWBElYN6iAg1W3gtMefjFGKjSv+WP pszoPtLIPFXcF9oMl7e0GopAre0HpOQdO//c0aIWBzkeLWVKwL+VcpM2MR7jE4hw vB+ro/Kq4CFZ0RGi8CRwtgcD1cL7b7um1YrthGHioFtysrULOcpGzlZAsYJTjx+q Sa3V3Wxohuf0tOuSMABqk56pxJAQWzs5Rn8GBFSVE+mj6iJ1HBqyDxRPOUvnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiTnu34bsQbItrsbdmor8otL32BYwHwYDVR0j BBgwFoAUlPdbBM6+DfHQuSTs8a2cnBOZI4MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjEyN2ZlYi05NjE1LTRjNTgtYTNiYi1lZWY3YjdhNjU0N2UvMC85NEY3NUIwNENF QkUwREYxRDBCOTI0RUNGMUFEOUM5QzEzOTkyMzgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTRGNzVCMDRDRUJFMERGMUQwQjkyNEVDRjFBRDlDOUMxMzk5 MjM4My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyMTI3ZmViLTk2MTUtNGM1OC1h M2JiLWVlZjdiN2E2NTQ3ZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmucwDQYJ KoZIhvcNAQELBQADggEBAH2y6CTEeAcDiWIm2n6wQV1+DJrJXdAxXsNoYe5jyFSm aQwyv9uNcEpdfh8ZZQUaScfKJg3cvgQBtCdUE+06DlYNVotDt+zykmxIMdiJ3T85 cp/fU7kP767Gro8x4CrWSE9WcP6PZftzdnXIsVUO7gTECyMk/hR/UoI5Z76ItXpI oz1h6UXbSBYcguBpJwYqw1sk/TWcBk4WANQaeoFJ8XH1ru0pASJA7RpJuGUMmTcm VyD30Rp/vDaHNx3nUoaOwNuiFYmOoat5Ebo2kl6/97mIoGiVtamQj7UkN9/oViBE UTjn4Nd3uS1/scUuQFsRq9QEa0YioilLX0NxD9PlIvk= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org