$ rpki-client -vvf repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa File: 3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa (raw, json) Hash identifier: Um+Wdv5s2TZ/CqC2WfjsTM2p/7pHGh2pvgc6xo7DZp4= Subject key identifier: 18:42:BA:5A:FB:AA:34:5E:57:FB:EE:28:15:93:48:64:B0:CF:7D:39 Certificate issuer: /CN=8E5335B45EE371DC463E5C65783A244FD1846656 Certificate serial: 5A4D20F522C2B144238AE71BCE3672EFCCBFE8E4 Authority key identifier: 8E:53:35:B4:5E:E3:71:DC:46:3E:5C:65:78:3A:24:4F:D1:84:66:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E5335B45EE371DC463E5C65783A244FD1846656.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa Signing time: Tue 02 Apr 2024 07:19:41 +0000 ROA not before: Tue 02 Apr 2024 07:14:41 +0000 ROA not after: Tue 01 Apr 2025 07:19:41 +0000 asID: 149358 IP address blocks: 103.180.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/8E5335B45EE371DC463E5C65783A244FD1846656.crl rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/8E5335B45EE371DC463E5C65783A244FD1846656.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E5335B45EE371DC463E5C65783A244FD1846656.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4d:20:f5:22:c2:b1:44:23:8a:e7:1b:ce:36:72:ef:cc:bf:e8:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E5335B45EE371DC463E5C65783A244FD1846656 Validity Not Before: Apr 2 07:14:41 2024 GMT Not After : Apr 1 07:19:41 2025 GMT Subject: CN=1842BA5AFBAA345E57FBEE2815934864B0CF7D39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b7:da:3a:17:5c:3c:a5:4e:2c:cf:e6:26:42: 19:f0:c9:0b:1d:aa:c9:d2:17:35:22:d0:18:a9:e3: aa:d8:43:eb:69:5b:13:c0:cf:ea:3e:1a:e3:44:43: 04:b8:85:ad:2a:94:19:b8:cf:44:08:f2:c9:cf:2a: 4c:5f:dd:cc:db:68:40:b6:60:9b:f2:15:7d:69:83: 54:21:11:c2:ea:5b:4f:51:9d:b6:e5:6f:ca:e1:d8: 50:e5:3d:30:50:b0:88:c6:14:e1:8d:c1:d3:8a:c9: a5:36:f7:f9:f2:f2:c0:72:90:b8:9e:5b:68:33:38: a4:f8:77:1a:ad:2e:64:ed:64:5b:d3:93:80:5a:17: df:3a:21:86:22:e0:7b:5d:11:21:0c:b4:67:e8:2b: 19:d0:d0:ae:d6:db:0a:24:e9:49:31:0c:e3:68:e0: 67:88:4e:13:76:49:a4:a3:f4:6b:7c:f2:c2:37:07: dc:f6:0e:76:4c:8d:3c:33:be:4d:ea:1a:04:29:83: 75:30:01:2e:19:2c:ed:c0:a1:cb:1c:5a:9d:02:4c: f3:94:af:08:0c:14:c9:6f:84:89:7b:1f:f5:2f:8b: c3:bb:5f:e0:53:45:03:72:e6:a6:49:f0:53:75:80: 22:be:c6:bc:fa:eb:37:6d:2a:4a:f9:d3:0c:9f:48: 48:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:42:BA:5A:FB:AA:34:5E:57:FB:EE:28:15:93:48:64:B0:CF:7D:39 X509v3 Authority Key Identifier: keyid:8E:53:35:B4:5E:E3:71:DC:46:3E:5C:65:78:3A:24:4F:D1:84:66:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/8E5335B45EE371DC463E5C65783A244FD1846656.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E5335B45EE371DC463E5C65783A244FD1846656.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.95.0/24 Signature Algorithm: sha256WithRSAEncryption 34:f1:ce:a1:1d:5d:26:36:9b:10:b6:08:4a:34:df:15:7a:79: 87:49:dd:fa:ac:44:ea:05:28:18:91:6e:5c:46:24:b0:97:d9: ee:88:f6:8f:47:ae:2f:e7:ab:91:2d:c9:65:5f:dc:23:aa:01: 6d:40:91:46:5c:cc:92:a4:72:af:77:7b:16:41:76:9f:5b:c5: 94:cd:90:8c:6c:0c:b1:ad:10:90:ff:c1:f6:2c:2a:c8:af:9d: 6f:9d:34:00:2f:fe:2d:fd:6e:c9:85:b3:73:7a:d5:93:81:08: b5:ca:ec:15:3c:aa:f8:da:ef:4c:cd:f4:fe:a1:8c:94:24:eb: ef:8d:82:c9:d8:ad:59:f8:27:1f:ee:a5:26:ab:f2:2e:48:69: 61:ff:09:e1:c0:f3:02:0c:ce:eb:44:53:b2:56:d5:64:40:8e: bd:d7:32:6e:13:cb:84:9c:80:56:45:a4:ac:e9:4e:1d:3f:a6: d3:de:1b:b2:d6:dd:a3:99:fb:bd:4c:02:8f:2b:ad:70:9b:ee: 50:be:37:22:19:7c:60:ef:a6:95:da:3f:8d:f3:32:fa:9e:d1: f6:32:b4:0b:93:ff:7c:2c:a7:dc:60:f2:98:60:d2:47:61:d5: e2:b9:ef:03:36:d8:0c:39:41:af:2d:f6:56:26:85:9a:a9:02: c4:fe:71:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWk0g9SLCsUQjiucbzjZy78y/6OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU1MzM1QjQ1RUUzNzFEQzQ2M0U1QzY1NzgzQTI0NEZE MTg0NjY1NjAeFw0yNDA0MDIwNzE0NDFaFw0yNTA0MDEwNzE5NDFaMDMxMTAvBgNV BAMTKDE4NDJCQTVBRkJBQTM0NUU1N0ZCRUUyODE1OTM0ODY0QjBDRjdEMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGt9o6F1w8pU4sz+YmQhnwyQsd qsnSFzUi0Bip46rYQ+tpWxPAz+o+GuNEQwS4ha0qlBm4z0QI8snPKkxf3czbaEC2 YJvyFX1pg1QhEcLqW09Rnbblb8rh2FDlPTBQsIjGFOGNwdOKyaU29/ny8sBykLie W2gzOKT4dxqtLmTtZFvTk4BaF986IYYi4HtdESEMtGfoKxnQ0K7W2wok6UkxDONo 4GeIThN2SaSj9Gt88sI3B9z2DnZMjTwzvk3qGgQpg3UwAS4ZLO3AocscWp0CTPOU rwgMFMlvhIl7H/Uvi8O7X+BTRQNy5qZJ8FN1gCK+xrz66zdtKkr50wyfSEhtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGEK6WvuqNF5X++4oFZNIZLDPfTkwHwYDVR0j BBgwFoAUjlM1tF7jcdxGPlxleDokT9GEZlYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNjMmU1Yi0zYjkxLTQyYWYtODIwMy01ZTNiOTE3MDQ4NDMvMC84RTUzMzVCNDVF RTM3MURDNDYzRTVDNjU3ODNBMjQ0RkQxODQ2NjU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEU1MzM1QjQ1RUUzNzFEQzQ2M0U1QzY1NzgzQTI0NEZEMTg0 NjY1Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5Y2MyZTViLTNiOTEtNDJhZi04 MjAzLTVlM2I5MTcwNDg0My8wLzMxMzAzMzJlMzEzODMwMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7RfMA0GCSqG SIb3DQEBCwUAA4IBAQA08c6hHV0mNpsQtghKNN8VenmHSd36rETqBSgYkW5cRiSw l9nuiPaPR64v56uRLcllX9wjqgFtQJFGXMySpHKvd3sWQXafW8WUzZCMbAyxrRCQ /8H2LCrIr51vnTQAL/4t/W7JhbNzetWTgQi1yuwVPKr42u9MzfT+oYyUJOvvjYLJ 2K1Z+Ccf7qUmq/IuSGlh/wnhwPMCDM7rRFOyVtVkQI691zJuE8uEnIBWRaSs6U4d P6bT3huy1t2jmfu9TAKPK61wm+5QvjciGXxg76aV2j+N8zL6ntH2MrQLk/98LKfc YPKYYNJHYdXiue8DNtgMOUGvLfZWJoWaqQLE/nGG -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:42 2024 by rpki-client on console-fra.rpki-client.org