$ rpki-client -vvf repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32342d3234203d3e20313333383233.roa File: 3130332e3136312e3139302e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: hvScsFU3gyKuZF4ZLSU+Pil08L9tuR9DBWDpcMUJ6M8= Subject key identifier: 40:85:75:65:62:5E:E9:30:5B:D5:63:76:59:B3:B5:FD:D2:B9:AE:EB Certificate issuer: /CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Certificate serial: 4F0C2E1FE2E7DDE13FD57BE3A3EC20CC627B2B50 Authority key identifier: 71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32342d3234203d3e20313333383233.roa Signing time: Sat 09 Nov 2024 06:01:56 +0000 ROA not before: Sat 09 Nov 2024 05:56:56 +0000 ROA not after: Sat 08 Nov 2025 06:01:56 +0000 asID: 133823 IP address blocks: 103.161.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:0c:2e:1f:e2:e7:dd:e1:3f:d5:7b:e3:a3:ec:20:cc:62:7b:2b:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Validity Not Before: Nov 9 05:56:56 2024 GMT Not After : Nov 8 06:01:56 2025 GMT Subject: CN=40857565625EE9305BD5637659B3B5FDD2B9AEEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:0e:a6:ab:18:b8:4b:88:05:95:7c:b0:34: 96:5e:e6:b7:cf:50:9a:e2:49:cb:2c:a4:07:55:e9: ba:03:d9:0f:b8:2e:7f:9e:bb:26:5d:45:27:8b:b8: 68:57:00:31:a7:d8:90:10:fd:3f:24:f2:72:91:c7: 5c:d7:15:51:48:75:27:1e:98:bb:84:56:57:0f:82: 8e:52:1f:7e:95:24:a3:af:5d:a0:4a:62:50:a1:8c: 41:3c:18:09:89:0b:1d:44:a6:f1:31:23:3f:1f:56: 28:fb:3b:5e:2c:df:d4:b8:79:4c:8b:5f:77:f7:1d: 25:45:49:b1:20:29:1c:17:a1:c0:aa:d0:00:06:ae: 48:22:c4:16:44:f1:ca:84:cf:63:d6:b5:7e:11:03: 8f:d3:af:be:0a:43:10:9c:c0:b5:ad:5b:00:7d:b8: d3:91:9a:59:be:36:ef:16:df:7c:56:28:ae:f1:70: a8:0f:19:b9:fc:82:8b:04:8c:8b:d0:57:a5:f5:40: 01:78:2c:97:81:51:75:e1:d0:2f:39:c5:97:d9:65: de:4a:6d:73:cb:64:8f:dc:76:41:7a:c3:88:fa:cb: 12:65:b9:f5:b5:f8:da:cf:68:41:c1:d4:37:c8:dc: 69:40:85:be:92:1a:2c:8b:8d:b7:d5:ff:65:bf:5c: 4b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:85:75:65:62:5E:E9:30:5B:D5:63:76:59:B3:B5:FD:D2:B9:AE:EB X509v3 Authority Key Identifier: keyid:71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.190.0/24 Signature Algorithm: sha256WithRSAEncryption 39:ef:1a:4f:23:31:02:e2:11:1a:6e:0e:58:9e:dc:48:16:0f: b4:a6:b4:1a:39:b7:a3:ff:08:5a:98:20:2a:a2:9b:7d:46:9d: fb:b0:c2:f9:40:06:cd:fd:66:61:86:28:57:0c:bf:98:a3:cc: ea:bb:7a:67:be:7f:3e:f5:da:f6:f5:e1:02:d2:4e:f0:0d:e9: 17:04:83:d9:13:d9:e6:f0:0c:99:ed:ac:cf:e1:0c:86:70:19: de:a9:66:3a:6d:31:54:9d:fd:40:57:8b:31:b7:a1:ca:69:56: 0d:63:8e:3c:7c:69:c9:ce:5c:00:e3:2b:2e:00:6b:9d:14:38: 60:33:cf:c2:71:15:d2:59:00:46:24:3d:5b:81:73:67:96:bf: b5:97:2c:9c:93:ea:bc:42:3e:3f:46:af:55:d7:e0:e0:b4:fd: 21:6a:04:cd:3d:be:41:18:0c:14:68:84:56:cb:e5:76:77:55: 70:a6:73:ab:13:45:29:da:17:cd:e3:c2:a5:7e:6f:ab:54:04: 5f:29:0e:f0:b0:60:a0:93:78:a3:0c:67:b7:8c:50:8c:7e:bb: 97:de:41:9c:21:31:2f:3f:6e:a1:10:56:58:00:19:1b:7a:48: 9b:d3:d6:bc:2f:83:31:a1:84:ee:15:fa:2a:b4:14:7c:28:30: fa:b1:ae:26 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTwwuH+Ln3eE/1Xvjo+wgzGJ7K1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1 Qzc3RTJDMTAeFw0yNDExMDkwNTU2NTZaFw0yNTExMDgwNjAxNTZaMDMxMTAvBgNV BAMTKDQwODU3NTY1NjI1RUU5MzA1QkQ1NjM3NjU5QjNCNUZERDJCOUFFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwXg6mqxi4S4gFlXywNJZe5rfP UJriScsspAdV6boD2Q+4Ln+euyZdRSeLuGhXADGn2JAQ/T8k8nKRx1zXFVFIdSce mLuEVlcPgo5SH36VJKOvXaBKYlChjEE8GAmJCx1EpvExIz8fVij7O14s39S4eUyL X3f3HSVFSbEgKRwXocCq0AAGrkgixBZE8cqEz2PWtX4RA4/Tr74KQxCcwLWtWwB9 uNORmlm+Nu8W33xWKK7xcKgPGbn8gosEjIvQV6X1QAF4LJeBUXXh0C85xZfZZd5K bXPLZI/cdkF6w4j6yxJlufW1+NrPaEHB1DfI3GlAhb6SGiyLjbfV/2W/XEtZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQIV1ZWJe6TBb1WN2WbO1/dK5ruswHwYDVR0j BBgwFoAUcV3G3qgP5dif3GgsGcezD1x34sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTkxYjU5Yi0xY2E1LTQ0NjQtOTk4Mi1iZjZmNmQ4YTFjOTQvMC83MTVEQzZERUE4 MEZFNUQ4OUZEQzY4MkMxOUM3QjMwRjVDNzdFMkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1Qzc3 RTJDMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1OTFiNTliLTFjYTUtNDQ2NC05 OTgyLWJmNmY2ZDhhMWM5NC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnob4wDQYJ KoZIhvcNAQELBQADggEBADnvGk8jMQLiERpuDlie3EgWD7SmtBo5t6P/CFqYICqi m31GnfuwwvlABs39ZmGGKFcMv5ijzOq7eme+fz712vb14QLSTvAN6RcEg9kT2ebw DJntrM/hDIZwGd6pZjptMVSd/UBXizG3ocppVg1jjjx8acnOXADjKy4Aa50UOGAz z8JxFdJZAEYkPVuBc2eWv7WXLJyT6rxCPj9Gr1XX4OC0/SFqBM09vkEYDBRohFbL 5XZ3VXCmc6sTRSnaF83jwqV+b6tUBF8pDvCwYKCTeKMMZ7eMUIx+u5feQZwhMS8/ bqEQVlgAGRt6SJvT1rwvgzGhhO4V+iq0FHwoMPqxriY= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org