$ rpki-client -vvf repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31342e302f32342d3234203d3e20313336383635.roa File: 3130332e3130322e31342e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: dUXFtPIF61cMsxlijUdeGn+XAjJGBrV/EpzRTuOKE9M= Subject key identifier: 32:59:6E:D9:BC:25:CA:D1:DF:A1:2D:54:ED:E2:9D:B0:86:17:CD:0C Certificate issuer: /CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Certificate serial: 067C9FE87D1C28C9A629F2F8A23723EE1F2A77DE Authority key identifier: 08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31342e302f32342d3234203d3e20313336383635.roa Signing time: Mon 04 Nov 2024 07:01:24 +0000 ROA not before: Mon 04 Nov 2024 06:56:24 +0000 ROA not after: Mon 03 Nov 2025 07:01:24 +0000 asID: 136865 IP address blocks: 103.102.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7c:9f:e8:7d:1c:28:c9:a6:29:f2:f8:a2:37:23:ee:1f:2a:77:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Validity Not Before: Nov 4 06:56:24 2024 GMT Not After : Nov 3 07:01:24 2025 GMT Subject: CN=32596ED9BC25CAD1DFA12D54EDE29DB08617CD0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f7:15:5e:2c:7d:09:b1:d8:6c:57:6f:bf:d4: ed:de:66:69:b3:ce:17:9c:0b:14:5b:7b:79:21:04: 32:77:ec:e0:08:7c:90:96:6e:aa:14:27:27:88:ce: 02:9c:80:c0:3a:f3:b8:2b:3e:96:c1:d7:98:15:9e: 1f:ae:9f:87:a4:10:ae:02:c3:5b:99:5c:0a:37:92: 50:cb:10:b8:14:55:18:4b:32:66:17:4f:6f:67:c0: 96:44:1d:10:74:cf:12:46:18:dc:01:76:5a:75:88: a7:88:4c:4f:ae:3b:de:ad:de:be:b1:c2:1b:1f:77: a6:32:16:ea:95:4c:03:95:a8:39:68:17:f1:bf:ce: 4b:31:fe:ed:a5:ec:ff:4f:3d:27:3b:b9:87:65:99: d5:31:2d:7a:6e:14:21:5f:b5:29:b5:d5:47:03:7c: 14:49:e6:e4:03:af:56:ae:ce:1b:c5:8b:d6:37:80: aa:d4:ec:ad:d1:34:cb:bf:b2:02:1f:52:a4:2f:e4: b7:28:d4:d5:04:38:ba:3c:7c:07:82:ea:fd:5c:a3: 13:35:a4:71:ef:d2:e6:ff:6a:f0:fb:09:f2:b7:86: 9a:c9:26:c2:0d:8c:da:13:c0:fa:74:e4:6d:b8:90: 05:10:3c:02:9d:8c:a5:07:13:de:b7:e3:f8:57:57: d2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:59:6E:D9:BC:25:CA:D1:DF:A1:2D:54:ED:E2:9D:B0:86:17:CD:0C X509v3 Authority Key Identifier: keyid:08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31342e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.14.0/24 Signature Algorithm: sha256WithRSAEncryption 20:0a:d1:00:93:4d:94:2e:a4:2c:4c:fc:52:78:d2:67:ea:c4: 32:7b:e0:5b:33:bc:2f:17:c5:e0:91:9c:9c:e2:c6:2b:56:15: e2:37:57:37:52:e4:35:b2:70:43:93:a4:d3:50:f7:89:cb:92: f5:d6:a8:83:65:f4:6a:1b:14:6d:24:7b:6c:41:6d:4a:e5:45: 93:c7:da:ce:4c:b6:4a:34:02:17:32:13:fd:87:66:9c:7b:c0: 57:8e:a3:bc:7d:9f:fe:38:70:0b:1a:ed:c0:71:e3:7b:7c:1c: c3:c7:e5:79:a9:93:6d:75:3a:5f:b0:cd:c5:0a:70:32:b2:68: ce:33:15:43:cf:56:3e:c1:86:9f:3f:a2:b6:40:2b:bd:1a:e5: f1:4b:b1:e4:e9:5e:55:6d:54:56:cc:d4:fc:58:e1:fa:01:4c: d2:81:f0:b0:10:93:e1:68:b1:20:a2:37:ef:81:87:0f:4f:05: 8c:f8:90:b7:27:15:25:30:3d:81:7b:90:be:41:45:da:c4:20: eb:1b:42:d3:eb:7f:bd:54:36:ab:0f:27:f7:aa:19:3c:2f:44: 8c:d6:80:2b:d9:c8:e9:c9:43:56:a1:b6:e4:1a:39:4a:b9:ac: 45:75:a9:f7:85:8b:21:77:78:91:34:af:a2:96:f8:7f:ca:e5: de:1b:36:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBnyf6H0cKMmmKfL4ojcj7h8qd94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4 N0Y2M0MyNTAeFw0yNDExMDQwNjU2MjRaFw0yNTExMDMwNzAxMjRaMDMxMTAvBgNV BAMTKDMyNTk2RUQ5QkMyNUNBRDFERkExMkQ1NEVERTI5REIwODYxN0NEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv9xVeLH0JsdhsV2+/1O3eZmmz zhecCxRbe3khBDJ37OAIfJCWbqoUJyeIzgKcgMA687grPpbB15gVnh+un4ekEK4C w1uZXAo3klDLELgUVRhLMmYXT29nwJZEHRB0zxJGGNwBdlp1iKeITE+uO96t3r6x whsfd6YyFuqVTAOVqDloF/G/zksx/u2l7P9PPSc7uYdlmdUxLXpuFCFftSm11UcD fBRJ5uQDr1auzhvFi9Y3gKrU7K3RNMu/sgIfUqQv5Lco1NUEOLo8fAeC6v1coxM1 pHHv0ub/avD7CfK3hprJJsINjNoTwPp05G24kAUQPAKdjKUHE9634/hXV9L5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMllu2bwlytHfoS1U7eKdsIYXzQwwHwYDVR0j BBgwFoAUCHcxkfv8IaPIYVo+NqKssYf2PCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Zjg2YjEyZS1lNTc0LTQyNmItYWE2Yi00OTM5ZTNiMDMwYmEvMC8wODc3MzE5MUZC RkMyMUEzQzg2MTVBM0UzNkEyQUNCMTg3RjYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4N0Y2 M0MyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmODZiMTJlLWU1NzQtNDI2Yi1h YTZiLTQ5MzllM2IwMzBiYS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2YOMA0GCSqG SIb3DQEBCwUAA4IBAQAgCtEAk02ULqQsTPxSeNJn6sQye+BbM7wvF8XgkZyc4sYr VhXiN1c3UuQ1snBDk6TTUPeJy5L11qiDZfRqGxRtJHtsQW1K5UWTx9rOTLZKNAIX MhP9h2ace8BXjqO8fZ/+OHALGu3AceN7fBzDx+V5qZNtdTpfsM3FCnAysmjOMxVD z1Y+wYafP6K2QCu9GuXxS7Hk6V5VbVRWzNT8WOH6AUzSgfCwEJPhaLEgojfvgYcP TwWM+JC3JxUlMD2Be5C+QUXaxCDrG0LT63+9VDarDyf3qhk8L0SM1oAr2cjpyUNW obbkGjlKuaxFdan3hYshd3iRNK+ilvh/yuXeGzax -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org