$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: j8OvebUImpIJJ2+WqOUtRsS/Lczxkx5d22kPjma9xr8= Subject key identifier: BA:E3:33:F1:05:13:D7:FB:26:4E:18:C7:57:DF:00:7C:A1:8B:9D:EA Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 45B4E1D451E58D084EB7A80827052ABB570F26A0 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa Signing time: Mon 01 Jul 2024 01:05:40 +0000 ROA not before: Mon 01 Jul 2024 01:00:40 +0000 ROA not after: Mon 30 Jun 2025 01:05:40 +0000 asID: 136840 IP address blocks: 103.100.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:b4:e1:d4:51:e5:8d:08:4e:b7:a8:08:27:05:2a:bb:57:0f:26:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jul 1 01:00:40 2024 GMT Not After : Jun 30 01:05:40 2025 GMT Subject: CN=BAE333F10513D7FB264E18C757DF007CA18B9DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:33:3a:80:88:95:55:2d:34:98:69:4d:67:0a: e6:ff:cf:2a:39:78:e6:a3:cb:bc:28:a5:76:76:f5: 4f:f1:4a:52:71:96:23:78:81:35:92:42:07:d8:a9: ad:9e:7c:94:1e:d4:17:b9:c4:9f:da:45:c9:72:1d: 2a:7f:53:5b:6d:a7:7a:41:d9:49:12:6a:c8:73:9f: e7:87:8d:dc:93:80:5e:40:08:9d:58:37:b8:63:ea: 05:37:ce:25:4a:3e:fb:9c:8d:2b:e7:8e:17:09:42: 15:ce:65:9e:3f:47:5c:2c:24:9c:c4:bd:27:ae:dc: ef:bd:0d:65:7f:60:26:00:6b:59:78:75:aa:e4:3c: 68:9f:1c:db:11:bf:4c:1b:57:5f:66:b5:22:0d:4e: 14:4e:53:8b:9d:75:aa:a3:c9:56:dd:12:3f:27:e7: c8:b2:3f:32:19:b6:20:c2:a4:b9:ad:f4:dc:4e:cd: ca:72:79:de:9f:5c:50:de:49:a6:16:01:93:db:00: 99:4c:59:58:6a:82:3c:42:81:d9:a0:c2:be:85:95: 64:35:85:a5:8d:27:61:7b:31:47:0d:d7:5f:45:65: 60:dd:6b:6e:67:5a:f1:6a:6c:42:85:8d:d4:dc:33: e0:2e:bd:9a:23:d8:8f:1b:8f:a7:51:db:dd:52:e5: a3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E3:33:F1:05:13:D7:FB:26:4E:18:C7:57:DF:00:7C:A1:8B:9D:EA X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138312e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.181.0/24 Signature Algorithm: sha256WithRSAEncryption a8:1a:8a:ec:60:f8:a2:0b:a3:95:1b:1a:9f:5d:4d:b7:64:01: 47:14:6f:52:c7:54:57:93:dd:b2:cd:9b:11:15:08:fc:95:47: 2f:72:0e:04:98:9f:4d:c9:1f:f1:77:0e:df:10:31:40:3e:bc: 42:ea:90:d7:2c:b8:ba:b7:fd:a3:31:a3:2e:6f:99:23:69:c5: a9:9a:aa:29:5e:50:7c:26:f6:0b:a4:65:5a:cf:ad:f2:6f:58: f4:ec:6b:7a:9a:16:99:3a:22:01:79:02:f2:7b:15:0e:49:0c: dc:3e:28:8e:a5:be:60:da:02:26:f4:81:ed:8b:81:8d:b3:53: 3b:e2:4d:0c:87:32:4f:64:47:86:ac:f7:a5:50:91:b2:e9:7d: d9:4c:00:c6:71:eb:29:79:ac:92:4f:11:19:c2:5a:ca:d4:b8: 2d:fd:b1:96:3b:15:5b:56:24:7e:bb:49:d3:51:1b:69:6d:ef: 21:d0:c0:99:05:c9:5a:16:8f:cf:f7:9a:2f:d1:ef:19:c1:dc: 34:b7:f1:fc:ab:c3:5e:98:88:e9:d1:24:69:df:8a:e0:79:0d: 13:80:7b:91:19:33:09:a7:1e:92:7d:c9:ef:94:79:40:9e:5a: 6b:a9:f5:2e:35:3a:d8:5e:22:a2:b4:d1:2a:d2:f6:d1:a8:d6: fb:59:ce:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURbTh1FHljQhOt6gIJwUqu1cPJqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA3MDEwMTAwNDBaFw0yNTA2MzAwMTA1NDBaMDMxMTAvBgNV BAMTKEJBRTMzM0YxMDUxM0Q3RkIyNjRFMThDNzU3REYwMDdDQTE4QjlERUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFMzqAiJVVLTSYaU1nCub/zyo5 eOajy7wopXZ29U/xSlJxliN4gTWSQgfYqa2efJQe1Be5xJ/aRclyHSp/U1ttp3pB 2UkSashzn+eHjdyTgF5ACJ1YN7hj6gU3ziVKPvucjSvnjhcJQhXOZZ4/R1wsJJzE vSeu3O+9DWV/YCYAa1l4darkPGifHNsRv0wbV19mtSINThROU4uddaqjyVbdEj8n 58iyPzIZtiDCpLmt9NxOzcpyed6fXFDeSaYWAZPbAJlMWVhqgjxCgdmgwr6FlWQ1 haWNJ2F7MUcN119FZWDda25nWvFqbEKFjdTcM+AuvZoj2I8bj6dR291S5aMPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuuMz8QUT1/smThjHV98AfKGLneowHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLUwDQYJ KoZIhvcNAQELBQADggEBAKgaiuxg+KILo5UbGp9dTbdkAUcUb1LHVFeT3bLNmxEV CPyVRy9yDgSYn03JH/F3Dt8QMUA+vELqkNcsuLq3/aMxoy5vmSNpxamaqileUHwm 9gukZVrPrfJvWPTsa3qaFpk6IgF5AvJ7FQ5JDNw+KI6lvmDaAib0ge2LgY2zUzvi TQyHMk9kR4as96VQkbLpfdlMAMZx6yl5rJJPERnCWsrUuC39sZY7FVtWJH67SdNR G2lt7yHQwJkFyVoWj8/3mi/R7xnB3DS38fyrw16YiOnRJGnfiuB5DROAe5EZMwmn HpJ9ye+UeUCeWmup9S41OtheIqK00SrS9tGo1vtZzrQ= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org