$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa File: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (raw, json) Hash identifier: yfirY/IdmmUBXQP+agxLPC5R2mzKmb/7B1nbgYo1Od4= Subject key identifier: 9C:80:E9:FD:36:C9:60:6C:4D:F2:35:39:4D:4F:4B:E9:D0:55:0F:60 Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 40A07DBC941D89AF71000DACB6A31852E7E7D8B9 Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa Signing time: Fri 09 Aug 2024 04:02:59 +0000 ROA not before: Fri 09 Aug 2024 03:57:59 +0000 ROA not after: Fri 08 Aug 2025 04:02:59 +0000 asID: 149923 IP address blocks: 103.191.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a0:7d:bc:94:1d:89:af:71:00:0d:ac:b6:a3:18:52:e7:e7:d8:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Aug 9 03:57:59 2024 GMT Not After : Aug 8 04:02:59 2025 GMT Subject: CN=9C80E9FD36C9606C4DF235394D4F4BE9D0550F60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:73:18:11:0c:ad:6e:39:17:6c:2b:30:81:95: 94:e7:c2:12:7c:89:02:e6:ea:76:0d:3d:f1:1f:2c: 86:8a:b9:83:9f:b8:c1:fd:25:26:10:29:77:6a:b2: 5f:63:b1:87:ef:71:97:fd:32:ad:11:dd:f9:98:a3: af:8c:df:2e:43:e5:d2:8b:43:8f:cb:02:1b:da:e7: 34:47:f1:14:be:53:32:3a:a5:b2:90:17:0b:0c:b2: f6:26:d3:c3:c5:1d:fb:cc:bf:69:81:41:97:81:96: 47:09:0e:86:51:0b:55:55:a6:1c:00:61:67:d5:30: c4:13:73:97:54:f4:f6:4c:42:57:6c:87:97:4f:3c: 96:85:44:34:41:48:6a:6c:92:e9:b5:91:d0:08:74: f0:09:18:59:9f:c7:fa:2b:03:f4:07:a2:4d:82:29: 64:32:69:47:a9:58:cf:b7:a0:68:92:5a:63:cb:6b: e3:65:d6:74:06:4e:be:cc:e2:98:f5:36:d8:61:93: 07:d2:d5:8c:ef:bb:30:b7:e2:37:ad:61:b3:b3:7c: 81:41:37:6e:15:1d:89:9b:ed:42:af:bc:85:eb:a0: 57:ab:dc:83:48:75:a2:b2:2a:27:cd:d1:5a:d3:4e: 87:86:e6:76:fe:5e:58:92:10:2d:68:db:1e:5b:e3: ad:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:80:E9:FD:36:C9:60:6C:4D:F2:35:39:4D:4F:4B:E9:D0:55:0F:60 X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.39.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:0f:86:4d:75:89:aa:ad:c1:79:65:78:2a:71:13:69:e6:c7: fd:c3:82:11:12:7f:90:0e:06:e3:64:d3:a7:65:58:cd:e0:71: e5:dc:6c:cd:72:e2:f6:fd:ec:8c:10:de:2c:e0:29:14:ca:f2: d3:d2:09:28:5c:83:fd:e1:19:b0:ea:4b:ff:ef:dd:a6:b1:fe: e5:3e:e6:a3:f4:a4:d2:0d:c3:d1:c5:6f:f1:f6:09:ca:c4:d3: 9a:ee:20:4c:fc:39:ec:61:37:49:0e:4a:8a:f5:1f:75:74:09: af:c7:5b:1b:b0:15:49:73:40:17:f8:be:86:ef:37:52:07:5f: 96:e9:42:43:2a:1b:2a:ae:63:87:2e:e9:aa:c2:30:1c:75:40: 2c:2a:30:3b:1f:35:c0:bb:d4:b5:10:af:3a:1e:a6:0b:d6:e5: d9:03:26:d0:2f:01:c2:f6:70:37:f4:04:20:95:8a:ef:52:1e: 0b:28:d2:6c:b3:30:4c:f4:99:73:82:5f:f9:9a:ce:c9:f3:74: 95:5b:65:5b:65:5e:1a:cb:53:3d:da:cd:17:19:e6:b2:2e:65: 28:7e:18:9e:30:43:34:5a:91:e2:07:32:10:b2:2c:73:1c:bd: ce:59:a6:6f:66:1f:f2:e0:e7:4a:d8:bb:3b:2a:c4:91:d9:b7: 71:18:9a:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQKB9vJQdia9xAA2stqMYUufn2LkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNDA4MDkwMzU3NTlaFw0yNTA4MDgwNDAyNTlaMDMxMTAvBgNV BAMTKDlDODBFOUZEMzZDOTYwNkM0REYyMzUzOTRENEY0QkU5RDA1NTBGNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfcxgRDK1uORdsKzCBlZTnwhJ8 iQLm6nYNPfEfLIaKuYOfuMH9JSYQKXdqsl9jsYfvcZf9Mq0R3fmYo6+M3y5D5dKL Q4/LAhva5zRH8RS+UzI6pbKQFwsMsvYm08PFHfvMv2mBQZeBlkcJDoZRC1VVphwA YWfVMMQTc5dU9PZMQldsh5dPPJaFRDRBSGpskum1kdAIdPAJGFmfx/orA/QHok2C KWQyaUepWM+3oGiSWmPLa+Nl1nQGTr7M4pj1NthhkwfS1YzvuzC34jetYbOzfIFB N24VHYmb7UKvvIXroFer3INIdaKyKifN0VrTToeG5nb+XliSEC1o2x5b461FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnIDp/TbJYGxN8jU5TU9L6dBVD2AwHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1Zjg0Mjc4LWUwNmQtNDExOS1i YTQ0LTVjMzI5NjhhOGJiZC8wLzMxMzAzMzJlMzEzOTMxMmUzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ78nMA0GCSqG SIb3DQEBCwUAA4IBAQA9D4ZNdYmqrcF5ZXgqcRNp5sf9w4IREn+QDgbjZNOnZVjN 4HHl3GzNcuL2/eyMEN4s4CkUyvLT0gkoXIP94Rmw6kv/792msf7lPuaj9KTSDcPR xW/x9gnKxNOa7iBM/DnsYTdJDkqK9R91dAmvx1sbsBVJc0AX+L6G7zdSB1+W6UJD KhsqrmOHLumqwjAcdUAsKjA7HzXAu9S1EK86HqYL1uXZAybQLwHC9nA39AQglYrv Uh4LKNJsszBM9Jlzgl/5ms7J83SVW2VbZV4ay1M92s0XGeayLmUofhieMEM0WpHi BzIQsixzHL3OWaZvZh/y4OdK2Ls7KsSR2bdxGJpI -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org