$ rpki-client -vvf repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131372e302f32342d3234203d3e20313439383738.roa File: 3130332e3138392e3131372e302f32342d3234203d3e20313439383738.roa (raw, json) Hash identifier: DOr4kkGYLGRSmLcOevTF3B7Hy6DQ86EG8bZ/AC5agXc= Subject key identifier: 46:E1:B2:6D:D9:8B:CD:F2:0F:46:8F:30:0B:91:E1:12:FE:B0:1F:0F Certificate issuer: /CN=F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA Certificate serial: 7CEE46641E2A038AFEF963011ADB3AAD9BC3C3ED Authority key identifier: F8:B7:C8:E5:DD:BD:D0:36:51:3F:10:B8:7F:39:A9:4B:E1:DB:3D:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131372e302f32342d3234203d3e20313439383738.roa Signing time: Tue 09 Jul 2024 05:00:00 +0000 ROA not before: Tue 09 Jul 2024 04:55:00 +0000 ROA not after: Tue 08 Jul 2025 05:00:00 +0000 asID: 149878 IP address blocks: 103.189.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.crl rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ee:46:64:1e:2a:03:8a:fe:f9:63:01:1a:db:3a:ad:9b:c3:c3:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA Validity Not Before: Jul 9 04:55:00 2024 GMT Not After : Jul 8 05:00:00 2025 GMT Subject: CN=46E1B26DD98BCDF20F468F300B91E112FEB01F0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:54:2d:c6:0d:d1:94:f1:60:f3:f8:e3:df:6b: 4a:82:d6:2a:a2:9f:12:59:62:f4:f7:7b:83:5c:75: e8:02:f0:9e:0a:c4:4d:aa:ed:de:16:8c:ed:2b:67: c6:2b:03:46:0c:e6:18:c2:41:9a:78:18:a4:5f:31: d1:00:14:15:f7:17:7f:f5:ba:63:ba:97:c2:a1:ea: 90:db:df:ea:dc:0b:3a:2d:3f:0b:88:94:45:a7:e0: eb:f9:ad:af:d6:fa:06:ef:aa:57:8b:ce:6d:0f:92: 20:3e:82:c6:fe:df:51:a9:01:19:09:8e:9f:97:6f: e1:1d:15:99:03:60:26:c9:18:44:bf:44:f9:1e:c8: 48:33:56:f2:78:a2:0b:f6:16:53:41:b6:36:dd:bd: 95:ac:67:22:80:a0:e6:1e:0f:e3:be:de:46:bf:14: e0:b6:0a:4e:ca:cf:76:3d:3f:56:39:91:4a:25:fb: 5c:50:81:d4:4d:77:cd:e5:dc:1b:25:b3:3c:02:f8: 53:9e:09:15:e1:6f:53:c5:cf:81:26:95:ab:89:5a: 24:ce:75:e7:37:bc:83:51:95:39:4f:46:eb:36:9f: 76:6f:22:04:58:b8:5f:4b:c8:72:e2:8e:2d:8c:7e: b4:0a:10:fc:ab:74:0a:e6:3c:79:66:79:0b:da:c4: 30:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E1:B2:6D:D9:8B:CD:F2:0F:46:8F:30:0B:91:E1:12:FE:B0:1F:0F X509v3 Authority Key Identifier: keyid:F8:B7:C8:E5:DD:BD:D0:36:51:3F:10:B8:7F:39:A9:4B:E1:DB:3D:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8B7C8E5DDBDD036513F10B87F39A94BE1DB3DCA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7305ab30-5653-42bc-9c3f-aaf567eae701/0/3130332e3138392e3131372e302f32342d3234203d3e20313439383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.117.0/24 Signature Algorithm: sha256WithRSAEncryption 41:72:32:65:28:08:63:3d:64:d9:c1:ca:ee:94:33:a2:e8:a8: 8e:0b:96:f6:58:61:70:95:c5:6c:12:92:32:7d:46:a0:8b:29: eb:c3:58:33:38:96:45:b6:64:47:27:9c:b0:0a:aa:74:b8:3f: ed:2c:e0:4e:09:4e:ca:8f:d6:4b:7d:8e:f6:73:ed:f9:5f:4a: 2e:85:f6:e6:9a:d6:a2:19:31:e9:58:68:72:9f:26:d8:ab:5f: ea:cc:45:b0:a7:68:e2:a8:23:c0:ea:f5:15:54:ef:99:73:c9: dc:39:6a:c0:ca:8b:0d:d4:51:a0:28:00:8e:a8:a1:0f:ce:02: 26:9e:5d:82:33:74:ea:6b:71:53:9a:59:97:99:d6:a3:6a:60: 73:94:f5:e3:56:7a:8c:38:a7:09:2b:a8:6d:46:f2:0d:6f:16: af:97:69:9a:9c:cf:d1:0c:2e:bb:92:0f:37:62:f2:2b:9f:04: e1:be:dc:fa:63:bc:bd:36:3e:ae:a8:63:fd:20:5c:ac:0a:05: a4:8a:dd:10:42:5a:c2:b6:28:a9:c5:dd:a8:f0:fc:4f:b8:d7: e7:d8:79:44:f1:5a:98:15:a5:25:52:a9:39:09:2b:d0:b8:ce: 8d:9e:17:9a:a0:ed:41:68:0b:b3:09:5f:1d:94:c8:e6:fa:5e: 78:99:cb:a6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfO5GZB4qA4r++WMBGts6rZvDw+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhCN0M4RTVEREJERDAzNjUxM0YxMEI4N0YzOUE5NEJF MURCM0RDQTAeFw0yNDA3MDkwNDU1MDBaFw0yNTA3MDgwNTAwMDBaMDMxMTAvBgNV BAMTKDQ2RTFCMjZERDk4QkNERjIwRjQ2OEYzMDBCOTFFMTEyRkVCMDFGMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEVC3GDdGU8WDz+OPfa0qC1iqi nxJZYvT3e4NcdegC8J4KxE2q7d4WjO0rZ8YrA0YM5hjCQZp4GKRfMdEAFBX3F3/1 umO6l8Kh6pDb3+rcCzotPwuIlEWn4Ov5ra/W+gbvqleLzm0PkiA+gsb+31GpARkJ jp+Xb+EdFZkDYCbJGES/RPkeyEgzVvJ4ogv2FlNBtjbdvZWsZyKAoOYeD+O+3ka/ FOC2Ck7Kz3Y9P1Y5kUol+1xQgdRNd83l3BslszwC+FOeCRXhb1PFz4EmlauJWiTO dec3vINRlTlPRus2n3ZvIgRYuF9LyHLiji2MfrQKEPyrdArmPHlmeQvaxDARAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURuGybdmLzfIPRo8wC5HhEv6wHw8wHwYDVR0j BBgwFoAU+LfI5d290DZRPxC4fzmpS+HbPcowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzA1YWIzMC01NjUzLTQyYmMtOWMzZi1hYWY1NjdlYWU3MDEvMC9GOEI3QzhFNURE QkREMDM2NTEzRjEwQjg3RjM5QTk0QkUxREIzRENBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhCN0M4RTVEREJERDAzNjUxM0YxMEI4N0YzOUE5NEJFMURC M0RDQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMDVhYjMwLTU2NTMtNDJiYy05 YzNmLWFhZjU2N2VhZTcwMS8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXUwDQYJ KoZIhvcNAQELBQADggEBAEFyMmUoCGM9ZNnByu6UM6LoqI4LlvZYYXCVxWwSkjJ9 RqCLKevDWDM4lkW2ZEcnnLAKqnS4P+0s4E4JTsqP1kt9jvZz7flfSi6F9uaa1qIZ MelYaHKfJtirX+rMRbCnaOKoI8Dq9RVU75lzydw5asDKiw3UUaAoAI6ooQ/OAiae XYIzdOprcVOaWZeZ1qNqYHOU9eNWeow4pwkrqG1G8g1vFq+XaZqcz9EMLruSDzdi 8iufBOG+3PpjvL02Pq6oY/0gXKwKBaSK3RBCWsK2KKnF3ajw/E+41+fYeUTxWpgV pSVSqTkJK9C4zo2eF5qg7UFoC7MJXx2UyOb6XniZy6Y= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org