$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa File: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (raw, json) Hash identifier: wVvC7RrM2/LqSU+eCUMpRT4VLMiy6hzOCmvyl4cCB/U= Subject key identifier: CD:98:E8:23:C1:05:43:85:9E:34:EF:1B:0E:79:76:D3:C2:D9:9B:98 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 47CCFA979A170A507ADACE2FD9C0408C34EBDFEE Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa Signing time: Wed 12 Jun 2024 04:00:00 +0000 ROA not before: Wed 12 Jun 2024 03:55:00 +0000 ROA not after: Wed 11 Jun 2025 04:00:00 +0000 asID: 149901 IP address blocks: 103.190.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 13:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cc:fa:97:9a:17:0a:50:7a:da:ce:2f:d9:c0:40:8c:34:eb:df:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: Jun 12 03:55:00 2024 GMT Not After : Jun 11 04:00:00 2025 GMT Subject: CN=CD98E823C10543859E34EF1B0E7976D3C2D99B98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:67:14:fb:f3:1f:94:e1:3d:5f:0e:4a:93: 2a:64:db:c6:dd:da:f7:e3:e5:3b:f4:d4:fb:a1:d2: 10:fb:51:c3:ba:ca:22:df:98:a6:5c:0d:e0:f3:d4: cc:6e:36:06:22:f3:3d:89:ec:c8:83:ba:08:56:0a: 26:b2:cb:25:3b:17:b9:83:2c:67:14:67:bb:78:5f: 5c:11:05:4f:c3:c2:6f:62:61:e8:de:27:69:bd:76: 00:f3:fd:65:4c:1d:21:12:9e:49:ef:58:1f:4e:41: 52:6e:df:94:36:a3:a5:8b:6e:97:fa:d4:6d:69:f2: 7a:a6:d0:14:9e:3f:ee:83:98:50:84:6b:e9:42:4c: 21:53:ea:d2:94:b2:19:23:d5:13:4c:ab:70:44:92: 74:22:df:fb:62:ad:2f:f7:db:e2:07:88:8c:4b:79: 72:a3:fd:0f:95:80:0d:3d:a4:04:9a:6e:56:ff:41: 07:20:36:dd:a7:48:25:85:07:bd:6d:be:bf:51:5d: 2e:3a:0c:f8:2e:f2:c1:47:dc:c9:05:91:a6:d0:b6: 1c:0c:1c:e4:9b:78:d1:9d:7b:55:4f:05:ad:d1:e4: a1:2d:b9:df:c7:f5:fe:5c:16:42:e7:df:e5:af:04: 10:c0:7e:4b:74:2f:b1:84:c6:65:4b:e4:3b:3d:8d: ef:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:98:E8:23:C1:05:43:85:9E:34:EF:1B:0E:79:76:D3:C2:D9:9B:98 X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.60.0/24 Signature Algorithm: sha256WithRSAEncryption 91:99:23:93:36:c8:4a:00:c2:74:4d:8f:62:ec:4a:bd:75:c5: ff:01:49:19:1b:54:a2:13:9d:e0:1f:9d:05:07:06:97:d0:92: 00:c5:d8:cc:0f:1d:ed:5f:15:48:cb:3c:53:c9:28:eb:4f:4f: b8:c6:bc:59:e9:4b:f5:f9:95:ae:09:ce:d5:5f:32:da:ce:59: 61:63:52:02:db:84:5d:85:67:61:e6:ce:0b:58:4b:4c:e4:36: 64:26:e0:7a:51:ed:01:20:08:8b:49:96:10:ae:59:34:f3:15: 3c:7c:33:6b:d7:c1:81:df:ec:db:8a:c2:38:0d:c5:6e:c0:91: a2:0d:a9:54:86:c3:43:53:24:a9:5d:48:f6:0e:1e:02:be:29: 88:a2:fc:e2:17:e9:cf:d5:26:63:64:2c:2a:c6:34:70:d3:78: 76:25:ae:1f:1b:db:dc:aa:9a:ef:3b:2f:96:f7:fe:e5:b2:1e: 4a:14:6f:1a:5e:c2:8f:2a:0d:94:f3:2f:79:b9:cb:6e:80:80: 66:48:d9:ec:6b:5e:b8:29:2a:9c:52:3d:c6:8b:c8:ab:b4:d3: 32:59:b2:7b:56:6f:4d:f6:fa:c1:05:cb:65:be:99:f6:96:3f: f3:c9:f7:c8:65:15:d6:16:e6:fb:56:12:96:5e:c8:3c:7e:84: 40:7b:3d:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR8z6l5oXClB62s4v2cBAjDTr3+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNDA2MTIwMzU1MDBaFw0yNTA2MTEwNDAwMDBaMDMxMTAvBgNV BAMTKENEOThFODIzQzEwNTQzODU5RTM0RUYxQjBFNzk3NkQzQzJEOTlCOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpr2cU+/MflOE9Xw5Kkypk28bd 2vfj5Tv01Puh0hD7UcO6yiLfmKZcDeDz1MxuNgYi8z2J7MiDughWCiayyyU7F7mD LGcUZ7t4X1wRBU/Dwm9iYejeJ2m9dgDz/WVMHSESnknvWB9OQVJu35Q2o6WLbpf6 1G1p8nqm0BSeP+6DmFCEa+lCTCFT6tKUshkj1RNMq3BEknQi3/tirS/32+IHiIxL eXKj/Q+VgA09pASablb/QQcgNt2nSCWFB71tvr9RXS46DPgu8sFH3MkFkabQthwM HOSbeNGde1VPBa3R5KEtud/H9f5cFkLn3+WvBBDAfkt0L7GExmVL5Ds9je+pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzZjoI8EFQ4WeNO8bDnl208LZm5gwHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlMzE0ODU4LWIzM2EtNGI2NS05 YTU1LWRjZTQxZTIyMzg3My8wLzMxMzAzMzJlMzEzOTMwMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ748MA0GCSqG SIb3DQEBCwUAA4IBAQCRmSOTNshKAMJ0TY9i7Eq9dcX/AUkZG1SiE53gH50FBwaX 0JIAxdjMDx3tXxVIyzxTySjrT0+4xrxZ6Uv1+ZWuCc7VXzLazllhY1IC24RdhWdh 5s4LWEtM5DZkJuB6Ue0BIAiLSZYQrlk08xU8fDNr18GB3+zbisI4DcVuwJGiDalU hsNDUySpXUj2Dh4CvimIovziF+nP1SZjZCwqxjRw03h2Ja4fG9vcqprvOy+W9/7l sh5KFG8aXsKPKg2U8y95uctugIBmSNnsa164KSqcUj3Gi8irtNMyWbJ7Vm9N9vrB Bctlvpn2lj/zyffIZRXWFub7VhKWXsg8foRAez1T -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:44 2024 by rpki-client on console-fra.rpki-client.org