$ rpki-client -vvf repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131362e302f32342d3234203d3e20313439383738.roa File: 3130332e3138392e3131362e302f32342d3234203d3e20313439383738.roa (raw, json) Hash identifier: KqXfnSM3Zf6qKcNW2AyH6vBJa4OplROJDu965qDaJhk= Subject key identifier: 93:EF:93:1D:47:DB:A6:14:18:FC:C8:78:AB:54:FB:2E:A9:6F:0C:7E Certificate issuer: /CN=F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA Certificate serial: 36C3D7423035BA9686F57CDDA72F64523DF3E5F8 Authority key identifier: F8:B7:C8:E5:DD:BD:D0:36:51:3F:10:B8:7F:39:A9:4B:E1:DB:3D:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131362e302f32342d3234203d3e20313439383738.roa Signing time: Wed 03 Jul 2024 10:00:00 +0000 ROA not before: Wed 03 Jul 2024 09:55:00 +0000 ROA not after: Wed 02 Jul 2025 10:00:00 +0000 asID: 149878 IP address blocks: 103.189.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.crl rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c3:d7:42:30:35:ba:96:86:f5:7c:dd:a7:2f:64:52:3d:f3:e5:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA Validity Not Before: Jul 3 09:55:00 2024 GMT Not After : Jul 2 10:00:00 2025 GMT Subject: CN=93EF931D47DBA61418FCC878AB54FB2EA96F0C7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:d5:19:ac:3c:06:24:33:af:bd:92:0b:cd: 9d:c2:ee:e0:bc:b8:fd:1f:47:43:e7:6b:f6:9e:f4: 5e:2b:26:de:fb:34:32:8f:ba:55:d6:0d:ba:07:84: bc:9b:29:ef:c7:18:19:b0:a1:8b:ec:51:fd:a5:37: 5e:69:bf:d0:d5:0a:b5:10:b5:8c:c1:79:26:0e:53: e3:b1:65:e3:ed:3e:0d:bb:e1:0d:4c:ea:88:32:1b: e3:7d:97:ee:b4:5b:88:3c:d3:f7:63:03:d1:44:e3: eb:9e:8f:3a:1d:3e:3a:37:c2:df:c8:a7:22:b6:42: 06:b3:5f:60:28:c0:99:25:ef:4e:af:57:75:8e:a3: b8:0f:72:3d:3d:a0:89:13:b9:24:b5:a7:ee:3f:ac: 17:1b:99:12:ea:41:35:02:7d:49:c1:90:67:a1:56: ce:ef:4c:aa:82:68:63:67:3e:ac:72:04:79:56:c0: 63:eb:bc:ef:ec:1a:46:12:83:f2:8f:a7:cc:aa:bd: 59:11:e3:e5:77:87:09:04:51:11:88:d0:c2:f2:99: fb:89:4d:ac:aa:3b:9f:b3:85:e8:19:13:19:36:34: 75:36:ff:b9:40:2e:d4:85:26:65:26:7d:80:08:41: 89:ce:83:a3:61:b1:50:4e:c9:c0:8e:6b:77:f8:15: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EF:93:1D:47:DB:A6:14:18:FC:C8:78:AB:54:FB:2E:A9:6F:0C:7E X509v3 Authority Key Identifier: keyid:F8:B7:C8:E5:DD:BD:D0:36:51:3F:10:B8:7F:39:A9:4B:E1:DB:3D:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131362e302f32342d3234203d3e20313439383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.116.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d0:8d:a8:57:97:48:11:6e:6e:65:76:34:8a:8d:a6:73:a8: 51:bf:4c:75:88:ef:2c:36:c8:6e:11:b2:05:df:e9:80:8a:d6: 24:bd:22:2a:4a:75:97:bb:f3:d0:df:18:d2:fc:83:ad:2e:78: f1:ec:69:8c:cf:fa:4d:e5:0b:0e:a7:f3:e5:bf:c2:31:5f:b1: 02:d1:22:e9:2d:46:0d:8c:b2:a6:33:38:44:c3:fc:ca:8b:dc: e3:01:24:c2:ff:32:f6:2a:61:2b:e1:9c:83:fb:0d:1a:44:f8: a0:9e:2a:32:e3:20:c2:d6:cc:75:28:39:c4:97:44:d1:af:5d: 4c:c5:1f:97:8b:d9:e5:0d:b3:3d:73:d2:64:cc:04:24:ac:89: b5:8c:4e:59:55:21:c7:27:30:cb:ef:16:3e:b2:66:12:18:10: 07:28:b7:70:47:e4:ef:8f:b0:51:97:44:80:66:03:97:00:8b: 53:02:e0:5e:48:95:18:ed:c7:53:14:6d:38:b1:6f:de:01:90: c9:87:1c:a0:5c:a6:6b:37:e0:2b:74:b8:0e:cc:09:ee:4d:23: 12:88:d0:dd:27:a4:72:58:7a:1a:a0:e0:c2:7f:03:f3:f3:6f: 82:05:e3:88:81:d6:ca:01:d0:17:2a:b1:c4:3b:d5:9b:5b:74: 58:20:01:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNsPXQjA1upaG9Xzdpy9kUj3z5fgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhCN0M4RTVEREJERDAzNjUxM0YxMEI4N0YzOUE5NEJF MURCM0RDQTAeFw0yNDA3MDMwOTU1MDBaFw0yNTA3MDIxMDAwMDBaMDMxMTAvBgNV BAMTKDkzRUY5MzFENDdEQkE2MTQxOEZDQzg3OEFCNTRGQjJFQTk2RjBDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKutUZrDwGJDOvvZILzZ3C7uC8 uP0fR0Pna/ae9F4rJt77NDKPulXWDboHhLybKe/HGBmwoYvsUf2lN15pv9DVCrUQ tYzBeSYOU+OxZePtPg274Q1M6ogyG+N9l+60W4g80/djA9FE4+uejzodPjo3wt/I pyK2QgazX2AowJkl706vV3WOo7gPcj09oIkTuSS1p+4/rBcbmRLqQTUCfUnBkGeh Vs7vTKqCaGNnPqxyBHlWwGPrvO/sGkYSg/KPp8yqvVkR4+V3hwkEURGI0MLymfuJ TayqO5+zhegZExk2NHU2/7lALtSFJmUmfYAIQYnOg6NhsVBOycCOa3f4FXdZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUk++THUfbphQY/Mh4q1T7LqlvDH4wHwYDVR0j BBgwFoAU+LfI5d290DZRPxC4fzmpS+HbPcowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzA1YWIzMC01NjUzLTQyYmMtOWMzZi1hYWY1NjdlYWU3MDEvMC9GOEI3QzhFNURE QkREMDM2NTEzRjEwQjg3RjM5QTk0QkUxREIzRENBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhCN0M4RTVEREJERDAzNjUxM0YxMEI4N0YzOUE5NEJFMURC M0RDQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMDVhYjMwLTU2NTMtNDJiYy05 YzNmLWFhZjU2N2VhZTcwMS8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXQwDQYJ KoZIhvcNAQELBQADggEBAADQjahXl0gRbm5ldjSKjaZzqFG/THWI7yw2yG4RsgXf 6YCK1iS9IipKdZe789DfGNL8g60uePHsaYzP+k3lCw6n8+W/wjFfsQLRIuktRg2M sqYzOETD/MqL3OMBJML/MvYqYSvhnIP7DRpE+KCeKjLjIMLWzHUoOcSXRNGvXUzF H5eL2eUNsz1z0mTMBCSsibWMTllVIccnMMvvFj6yZhIYEAcot3BH5O+PsFGXRIBm A5cAi1MC4F5IlRjtx1MUbTixb94BkMmHHKBcpms34Ct0uA7MCe5NIxKI0N0npHJY ehqg4MJ/A/Pzb4IF44iB1soB0BcqscQ71ZtbdFggAeY= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org