$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa File: 3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa (raw, json) Hash identifier: NCNOeK1jYrHltR7G6BT7J1s3ZTFTmFlKn4/XG+RT23s= Subject key identifier: 3D:C7:24:CE:35:66:B2:29:93:AF:9E:65:AE:00:54:26:61:20:1C:A8 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 05BF9A82304B8A207FA0D9639D62132EA447C162 Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa Signing time: Wed 30 Oct 2024 11:01:18 +0000 ROA not before: Wed 30 Oct 2024 10:56:18 +0000 ROA not after: Wed 29 Oct 2025 11:01:18 +0000 asID: 24198 IP address blocks: 103.155.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:bf:9a:82:30:4b:8a:20:7f:a0:d9:63:9d:62:13:2e:a4:47:c1:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Oct 30 10:56:18 2024 GMT Not After : Oct 29 11:01:18 2025 GMT Subject: CN=3DC724CE3566B22993AF9E65AE00542661201CA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:6d:1d:0f:ee:6f:4b:fc:7b:53:bd:89:46: 38:e0:08:9c:a3:68:08:00:fa:9b:08:00:93:fa:a3: d4:32:60:32:b5:9d:dd:1a:7d:9e:e9:ef:0f:07:00: ff:7f:81:58:ea:bf:59:e4:19:7a:be:b5:f8:c0:bb: 8c:8c:39:b5:2e:c7:be:44:76:6a:14:34:17:9b:8b: 7c:cf:87:0e:62:a0:25:27:14:61:ea:51:fc:67:2b: c3:35:7d:88:df:3c:d4:99:34:33:20:89:c4:50:65: 3a:38:26:d4:08:b9:3b:f1:9e:d6:a0:af:75:06:ee: 81:eb:67:55:94:16:66:8a:0c:05:55:83:c5:10:29: e8:c5:43:29:62:da:91:6c:3d:65:0a:fb:4f:96:cc: 7c:7c:9e:4b:15:b4:2c:28:7b:24:39:38:e7:ce:a2: f6:d2:c2:d1:e5:b9:95:95:5a:9e:61:30:5e:9c:ff: d7:e8:0b:2b:7e:72:b8:39:c4:c6:4b:36:a6:74:18: 13:3e:b2:bc:f6:71:b6:51:54:f5:0f:43:17:07:22: b8:dd:89:6b:e4:2d:01:43:a9:d3:e6:c4:c6:f1:c6: eb:b1:59:e9:28:bb:98:06:c6:d3:5f:f2:da:13:1d: eb:a8:87:65:e0:2a:32:64:4c:6a:06:c4:55:f8:49: cb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C7:24:CE:35:66:B2:29:93:AF:9E:65:AE:00:54:26:61:20:1C:A8 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3130332e3135352e3138362e302f32332d3234203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.186.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:1a:cd:74:b4:74:07:a9:6c:c7:92:36:63:a8:36:15:13:5e: a9:ae:28:cb:b5:53:5c:55:3d:dc:76:3a:ac:2a:4a:39:bf:52: 61:7c:9c:46:55:32:ad:e5:5a:b2:b0:1e:2d:33:a0:53:4b:8d: 39:aa:da:3c:06:bf:77:9b:7c:52:6a:d3:88:2d:c0:e9:d9:35: 3a:32:df:da:e9:1f:67:e8:db:7b:90:3f:41:42:41:c6:40:e6: a3:95:36:22:f6:ca:b6:e9:08:af:0a:d1:bd:4d:23:eb:ee:56: 6f:7e:f8:29:ed:91:85:d6:f1:2a:1f:eb:8f:8c:a4:5e:1d:b0: 0e:05:ed:75:67:2a:72:df:ab:1f:77:d0:69:76:c5:23:f3:6e: 60:55:e9:08:18:89:8a:c3:eb:28:37:da:b0:01:22:4b:db:3a: a6:37:a7:81:a1:e5:38:44:15:1d:04:6b:1e:f2:39:6d:5b:de: 42:3f:65:3f:53:f4:94:49:2e:c6:6e:9e:16:28:3b:e6:f3:40: 39:27:46:32:53:83:b4:49:7b:f5:45:0e:64:40:4d:c0:4d:1e: 1a:13:af:5f:65:21:07:f0:74:e1:f6:5b:66:eb:74:da:29:e2: eb:c3:3b:4b:ce:35:74:61:ef:eb:83:91:29:ba:f2:8c:ea:1f: 40:ed:db:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBb+agjBLiiB/oNljnWITLqRHwWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDEwMzAxMDU2MThaFw0yNTEwMjkxMTAxMThaMDMxMTAvBgNV BAMTKDNEQzcyNENFMzU2NkIyMjk5M0FGOUU2NUFFMDA1NDI2NjEyMDFDQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5UG0dD+5vS/x7U72JRjjgCJyj aAgA+psIAJP6o9QyYDK1nd0afZ7p7w8HAP9/gVjqv1nkGXq+tfjAu4yMObUux75E dmoUNBebi3zPhw5ioCUnFGHqUfxnK8M1fYjfPNSZNDMgicRQZTo4JtQIuTvxntag r3UG7oHrZ1WUFmaKDAVVg8UQKejFQyli2pFsPWUK+0+WzHx8nksVtCwoeyQ5OOfO ovbSwtHluZWVWp5hMF6c/9foCyt+crg5xMZLNqZ0GBM+srz2cbZRVPUPQxcHIrjd iWvkLQFDqdPmxMbxxuuxWekou5gGxtNf8toTHeuoh2XgKjJkTGoGxFX4SctFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPcckzjVmsimTr55lrgBUJmEgHKgwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjM0MzEzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5u6MA0GCSqG SIb3DQEBCwUAA4IBAQBaGs10tHQHqWzHkjZjqDYVE16prijLtVNcVT3cdjqsKko5 v1JhfJxGVTKt5VqysB4tM6BTS405qto8Br93m3xSatOILcDp2TU6Mt/a6R9n6Nt7 kD9BQkHGQOajlTYi9sq26QivCtG9TSPr7lZvfvgp7ZGF1vEqH+uPjKReHbAOBe11 Zypy36sfd9BpdsUj825gVekIGImKw+soN9qwASJL2zqmN6eBoeU4RBUdBGse8jlt W95CP2U/U/SUSS7Gbp4WKDvm80A5J0YyU4O0SXv1RQ5kQE3ATR4aE69fZSEH8HTh 9ltm63TaKeLrwztLzjV0Ye/rg5EpuvKM6h9A7dvo -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org