$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa File: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (raw, json) Hash identifier: /xrMIb1Auprqupsvf+NzVTf+2yjeUFZrWf9ac8JqAMs= Subject key identifier: 98:50:61:05:A0:36:ED:BB:BE:93:2C:4F:AF:D1:AF:94:36:D0:9F:88 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 63D2291F0FEB2A1FE86C22F784056369B64EF750 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa Signing time: Wed 24 Apr 2024 22:00:00 +0000 ROA not before: Wed 24 Apr 2024 21:55:00 +0000 ROA not after: Wed 23 Apr 2025 22:00:00 +0000 asID: 147087 IP address blocks: 103.69.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d2:29:1f:0f:eb:2a:1f:e8:6c:22:f7:84:05:63:69:b6:4e:f7:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Apr 24 21:55:00 2024 GMT Not After : Apr 23 22:00:00 2025 GMT Subject: CN=98506105A036EDBBBE932C4FAFD1AF9436D09F88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:03:e6:f5:51:63:3a:69:2b:0d:63:64:90: ff:35:fe:38:b9:97:17:05:09:58:73:04:83:9d:c1: b8:8f:c8:7b:88:3a:e7:e2:24:a5:37:73:0a:03:f3: 50:ac:d9:0d:63:66:50:4c:b3:0c:9e:a1:6b:08:85: 6b:60:f4:73:39:7a:22:59:d7:22:e8:8c:5c:0d:1f: 50:5d:50:3b:a5:9d:00:08:c9:fa:20:16:3d:3b:e8: e1:cc:a5:b5:12:a2:83:26:b9:dc:67:ae:f9:77:ca: 7c:a9:63:ea:21:bb:c5:89:7a:77:cc:42:37:61:b5: 20:f3:32:0a:ad:ac:48:4d:5d:a8:e9:ad:e1:f7:7f: a9:7c:bd:8f:d2:1d:97:06:b6:ad:13:6c:6a:76:8c: b7:57:1b:12:7c:27:43:a9:46:cc:8f:3c:b3:51:a7: d0:a8:95:5d:8a:7a:96:06:58:7c:99:95:11:db:53: 2f:f0:57:68:77:2c:9e:c0:18:50:fc:a7:4a:ac:4d: 76:29:e4:42:a3:ec:e9:f8:31:8f:fa:04:59:71:43: 80:33:c4:72:bb:ab:cd:67:bb:29:dc:9a:26:8a:27: 44:07:5f:23:f6:c0:3c:c9:26:ee:f2:96:11:5a:51: 99:07:78:d7:67:d1:99:b4:20:11:98:74:3b:7e:1d: ad:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:50:61:05:A0:36:ED:BB:BE:93:2C:4F:AF:D1:AF:94:36:D0:9F:88 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.107.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:cc:5d:43:c8:8f:0b:61:20:b3:f6:d3:16:e2:cb:3b:7d:e0: 9d:e5:59:89:4a:60:e8:29:9f:3f:1b:f3:f2:a4:e8:81:5c:ff: 71:27:0c:e5:5e:2a:d7:e8:fd:ad:21:ce:5b:b9:a5:0e:7e:9b: 9e:10:dd:99:98:04:5f:75:57:ea:87:2d:ae:25:94:74:38:41: 74:d0:d6:f6:6e:4d:4f:85:b2:dc:9a:63:3a:98:1e:22:2e:36: 97:70:d0:2f:70:c0:e3:c9:26:8e:a9:34:3f:f4:6c:42:e6:6c: ef:79:d4:c3:4c:10:0b:76:51:b1:14:50:dd:3f:75:ac:f7:56: 7d:01:3a:9c:41:95:1b:62:57:a0:95:95:42:c9:04:37:90:b1: 8c:7c:9a:00:35:c4:eb:ae:d8:3c:57:7f:89:2f:c4:b1:27:45: 0e:aa:a4:47:83:26:01:f2:8e:05:b8:f4:5e:f8:8d:4d:1a:b2: 54:78:20:d8:8e:ef:a9:9c:ed:94:ba:17:34:02:b2:ed:26:61: 5a:22:73:3b:52:3c:a2:51:e4:89:87:a9:c1:1a:2f:7f:73:ab: 71:08:11:68:f7:79:b9:6c:f4:32:ac:7d:cd:4e:d8:7a:41:8c: fa:55:17:53:70:c7:eb:10:4b:0c:a8:c0:04:2a:fe:e9:8a:df: c6:77:b3:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY9IpHw/rKh/obCL3hAVjabZO91AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNDA0MjQyMTU1MDBaFw0yNTA0MjMyMjAwMDBaMDMxMTAvBgNV BAMTKDk4NTA2MTA1QTAzNkVEQkJCRTkzMkM0RkFGRDFBRjk0MzZEMDlGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG+QPm9VFjOmkrDWNkkP81/ji5 lxcFCVhzBIOdwbiPyHuIOufiJKU3cwoD81Cs2Q1jZlBMswyeoWsIhWtg9HM5eiJZ 1yLojFwNH1BdUDulnQAIyfogFj076OHMpbUSooMmudxnrvl3ynypY+ohu8WJenfM QjdhtSDzMgqtrEhNXajpreH3f6l8vY/SHZcGtq0TbGp2jLdXGxJ8J0OpRsyPPLNR p9ColV2KepYGWHyZlRHbUy/wV2h3LJ7AGFD8p0qsTXYp5EKj7On4MY/6BFlxQ4Az xHK7q81nuyncmiaKJ0QHXyP2wDzJJu7ylhFaUZkHeNdn0Zm0IBGYdDt+Ha33AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmFBhBaA27bu+kyxPr9GvlDbQn4gwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZTJlYmRlLTYzMTEtNDg4YS04 MmI3LTlkNGMwNTUzMDk4Ny8wLzMxMzAzMzJlMzYzOTJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0VrMA0GCSqG SIb3DQEBCwUAA4IBAQBKzF1DyI8LYSCz9tMW4ss7feCd5VmJSmDoKZ8/G/PypOiB XP9xJwzlXirX6P2tIc5buaUOfpueEN2ZmARfdVfqhy2uJZR0OEF00Nb2bk1PhbLc mmM6mB4iLjaXcNAvcMDjySaOqTQ/9GxC5mzvedTDTBALdlGxFFDdP3Ws91Z9ATqc QZUbYleglZVCyQQ3kLGMfJoANcTrrtg8V3+JL8SxJ0UOqqRHgyYB8o4FuPRe+I1N GrJUeCDYju+pnO2Uuhc0ArLtJmFaInM7UjyiUeSJh6nBGi9/c6txCBFo93m5bPQy rH3NTth6QYz6VRdTcMfrEEsMqMAEKv7pit/Gd7OC -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org