$ rpki-client -vvf repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa File: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (raw, json) Hash identifier: zGj3FC5/QfkVsCB7C5YCSrYh/AHQCQkJxMzHlhTrV60= Subject key identifier: C9:31:15:6A:96:AC:56:72:AB:88:0B:D8:06:CB:B5:3D:ED:05:40:3F Certificate issuer: /CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Certificate serial: 2EECEA731BBB995737C752F696F119B94C289E6B Authority key identifier: 8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa Signing time: Thu 06 Jun 2024 04:00:00 +0000 ROA not before: Thu 06 Jun 2024 03:55:00 +0000 ROA not after: Thu 05 Jun 2025 04:00:00 +0000 asID: 149712 IP address blocks: 103.186.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ec:ea:73:1b:bb:99:57:37:c7:52:f6:96:f1:19:b9:4c:28:9e:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Validity Not Before: Jun 6 03:55:00 2024 GMT Not After : Jun 5 04:00:00 2025 GMT Subject: CN=C931156A96AC5672AB880BD806CBB53DED05403F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a6:1b:08:a3:30:fa:ef:0b:e1:3c:5b:42:49: cb:28:79:4f:c1:4b:63:68:93:27:c8:6e:2c:92:de: 06:e3:9f:71:ae:46:13:36:28:d7:ea:59:c7:0f:36: 4d:74:fb:4f:b7:a4:a8:36:00:54:22:13:46:7a:02: 15:57:ea:6d:c6:b7:e4:c3:1f:a7:d2:15:86:1b:99: a0:70:68:29:06:37:32:1f:b3:15:ec:7a:c0:9f:76: b6:7c:07:e6:00:7f:02:1a:d8:00:e5:8d:a2:f7:1c: 43:51:49:b5:dd:b3:60:40:c9:6e:29:b2:7e:41:5a: 11:21:58:23:77:b3:5f:70:21:49:0f:8f:3a:e5:a8: f3:a4:33:cd:30:b9:21:17:a6:3c:79:62:89:a9:6f: ef:7c:e7:8d:d5:5c:5c:e1:b7:84:fd:9c:2a:cb:d4: 87:02:18:74:da:37:4b:d6:de:e3:d7:0e:67:d6:69: 28:0b:a6:34:7d:66:6f:b4:60:de:89:07:0f:43:1e: 76:9f:6a:37:05:ed:95:71:b9:45:89:04:20:1d:75: 16:9d:f4:37:22:12:f3:8f:b4:84:93:3c:c7:e7:df: ec:5d:46:b3:cd:cf:7e:c6:76:7f:80:4a:75:fe:60: b8:81:58:4d:8b:f2:3c:bf:a2:98:0f:58:cf:58:c3: f1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:31:15:6A:96:AC:56:72:AB:88:0B:D8:06:CB:B5:3D:ED:05:40:3F X509v3 Authority Key Identifier: keyid:8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/23 Signature Algorithm: sha256WithRSAEncryption 64:54:f5:99:36:87:9d:be:d4:ef:ab:b1:c6:66:0b:55:42:09: 0e:25:2b:5c:84:34:3c:53:5e:62:6d:e0:71:85:05:a3:36:9e: 8c:dd:ec:77:07:2b:4d:95:15:09:8b:b4:9e:37:13:4e:b5:d9: 0f:ac:26:ca:2d:9d:1b:49:9b:a1:96:27:df:86:c8:1c:b7:d2: 8f:2c:91:bd:c8:22:25:64:68:f1:28:d1:4c:03:0f:42:57:e1: 26:45:64:86:a4:18:2b:31:52:03:03:45:5e:42:ac:81:30:21: ae:c9:32:8c:8c:48:c3:7b:06:b8:49:aa:98:ff:94:f8:a6:49: 2e:65:12:a3:9d:5d:f0:a6:0a:9c:3a:26:34:d8:83:85:44:d6: 8e:9f:3b:ca:4c:cd:81:9e:3a:5d:c0:0d:6f:5e:0b:ea:f4:6b: 20:4c:74:05:9f:3d:38:b5:89:6f:e5:12:47:8e:16:6e:c3:7f: 7d:cb:c6:41:d1:c8:83:1f:27:9e:7c:cc:b0:8d:a6:8e:7f:1b: 85:6b:8b:e3:13:fc:57:f7:73:3f:96:86:bf:2a:14:79:1a:d9: 23:5c:48:3a:55:f2:43:7e:8b:df:31:44:51:d2:eb:f9:39:ba: 1d:a1:9c:6b:85:ee:61:9b:69:d2:40:2e:62:a2:e1:7f:3c:5e: 21:da:8c:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULuzqcxu7mVc3x1L2lvEZuUwonmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhB MDlBNUY1OTAeFw0yNDA2MDYwMzU1MDBaFw0yNTA2MDUwNDAwMDBaMDMxMTAvBgNV BAMTKEM5MzExNTZBOTZBQzU2NzJBQjg4MEJEODA2Q0JCNTNERUQwNTQwM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1phsIozD67wvhPFtCScsoeU/B S2NokyfIbiyS3gbjn3GuRhM2KNfqWccPNk10+0+3pKg2AFQiE0Z6AhVX6m3Gt+TD H6fSFYYbmaBwaCkGNzIfsxXsesCfdrZ8B+YAfwIa2ADljaL3HENRSbXds2BAyW4p sn5BWhEhWCN3s19wIUkPjzrlqPOkM80wuSEXpjx5Yompb+98543VXFzht4T9nCrL 1IcCGHTaN0vW3uPXDmfWaSgLpjR9Zm+0YN6JBw9DHnafajcF7ZVxuUWJBCAddRad 9DciEvOPtISTPMfn3+xdRrPNz37Gdn+ASnX+YLiBWE2L8jy/opgPWM9Yw/ELAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyTEVapasVnKriAvYBsu1Pe0FQD8wHwYDVR0j BBgwFoAUjPsifaHvUdsjNku6A00PaKCaX1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjUyZWFkMy1kYzhmLTRkODYtYWZjZi1hMTQwZTViODc1MzIvMC84Q0ZCMjI3REEx RUY1MURCMjMzNjRCQkEwMzREMEY2OEEwOUE1RjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhBMDlB NUY1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnusIwDQYJ KoZIhvcNAQELBQADggEBAGRU9Zk2h52+1O+rscZmC1VCCQ4lK1yENDxTXmJt4HGF BaM2nozd7HcHK02VFQmLtJ43E0612Q+sJsotnRtJm6GWJ9+GyBy30o8skb3IIiVk aPEo0UwDD0JX4SZFZIakGCsxUgMDRV5CrIEwIa7JMoyMSMN7BrhJqpj/lPimSS5l EqOdXfCmCpw6JjTYg4VE1o6fO8pMzYGeOl3ADW9eC+r0ayBMdAWfPTi1iW/lEkeO Fm7Df33LxkHRyIMfJ558zLCNpo5/G4Vri+MT/Ff3cz+Whr8qFHka2SNcSDpV8kN+ i98xRFHS6/k5uh2hnGuF7mGbadJALmKi4X88XiHajM4= -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:33 2024 by rpki-client on console-ams.rpki-client.org