$ rpki-client -vvf repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa File: 3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa (raw, json) Hash identifier: P4N2tUhdv+XXmXUHdV/K1pZuUMXP31PU+chKdfkYMCQ= Subject key identifier: E5:C7:25:53:C0:88:7C:3E:19:5B:B5:0C:51:5E:0F:BB:F5:93:E2:1A Certificate issuer: /CN=1154D920B6A4209131871530AEE1F8B8A3D303D6 Certificate serial: 014668C33E6067DA9BCBE18DD3357D84A2482079 Authority key identifier: 11:54:D9:20:B6:A4:20:91:31:87:15:30:AE:E1:F8:B8:A3:D3:03:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1154D920B6A4209131871530AEE1F8B8A3D303D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa Signing time: Wed 22 May 2024 04:00:29 +0000 ROA not before: Wed 22 May 2024 03:55:29 +0000 ROA not after: Wed 21 May 2025 04:00:29 +0000 asID: 149908 IP address blocks: 103.188.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/1154D920B6A4209131871530AEE1F8B8A3D303D6.crl rsync://repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/1154D920B6A4209131871530AEE1F8B8A3D303D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1154D920B6A4209131871530AEE1F8B8A3D303D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:46:68:c3:3e:60:67:da:9b:cb:e1:8d:d3:35:7d:84:a2:48:20:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1154D920B6A4209131871530AEE1F8B8A3D303D6 Validity Not Before: May 22 03:55:29 2024 GMT Not After : May 21 04:00:29 2025 GMT Subject: CN=E5C72553C0887C3E195BB50C515E0FBBF593E21A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:c3:95:cd:fe:f3:73:ab:89:df:80:f6:3f: 5a:82:c9:d5:fb:f8:3c:2e:77:6d:14:a5:c5:4d:12: c5:27:e0:08:b0:ef:52:9a:f1:49:81:aa:e8:45:18: 3f:a0:cb:49:fe:c6:78:a5:1a:4b:4d:57:1d:d2:44: 11:ba:3e:df:fd:37:57:a6:32:5b:ac:64:d3:be:0e: 4d:65:68:78:51:48:a0:bc:e8:d5:68:7a:38:bd:88: 70:ff:39:48:f2:4a:ed:6d:4d:de:c0:a8:f6:66:0a: 03:32:22:a1:36:4a:07:83:34:0e:99:ab:db:00:a7: 2c:3a:31:26:b7:9e:a4:a5:21:b0:ce:b7:2a:83:36: 30:34:70:ba:63:02:27:71:0e:b1:38:76:a1:a5:92: 54:41:c0:bc:de:34:15:15:dd:0d:6a:bd:3c:0f:a2: 9d:0a:37:c9:2d:78:97:f7:21:23:75:b2:90:1b:6c: 15:62:46:1f:50:35:88:09:23:6f:8b:2f:87:13:6d: 2f:11:f8:9e:8f:5e:00:f9:9d:63:b0:2e:9c:39:71: ce:56:1f:53:11:f0:49:57:4a:a8:d1:12:61:d7:34: 0d:9c:d4:f6:84:4c:15:8f:e1:32:75:1f:f3:13:04: 7b:0a:ac:e6:93:d6:de:ac:59:ef:79:41:70:ac:12: 50:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C7:25:53:C0:88:7C:3E:19:5B:B5:0C:51:5E:0F:BB:F5:93:E2:1A X509v3 Authority Key Identifier: keyid:11:54:D9:20:B6:A4:20:91:31:87:15:30:AE:E1:F8:B8:A3:D3:03:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/1154D920B6A4209131871530AEE1F8B8A3D303D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1154D920B6A4209131871530AEE1F8B8A3D303D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7467ec33-5a72-4c65-9fd3-66ef8479394d/0/3130332e3138382e3234392e302f32342d3234203d3e20313439393038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.249.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:d3:2e:5f:a8:0c:48:ff:bd:ae:1f:53:d6:f4:ca:25:eb:5c: 57:fa:ce:e9:71:94:97:bc:bf:08:d2:5f:41:53:ae:14:df:74: bb:9b:93:5d:b5:72:10:0a:50:0a:85:79:f2:93:55:61:4c:2b: ae:3a:6f:22:d5:1e:01:ba:95:16:40:01:5e:f4:fa:ce:2d:ce: 21:d2:69:a3:11:7e:60:aa:6b:bd:4b:7a:52:4a:99:fa:54:c7: 4e:84:06:01:67:d1:82:15:91:7c:82:7c:ee:aa:09:3b:e7:73: 45:9d:23:95:c8:13:f0:36:c4:ce:5b:2f:ff:19:6f:49:a2:9a: fb:fa:44:c9:10:a3:aa:ba:6d:7f:8c:fa:50:b5:9f:87:c1:7a: 29:6f:cf:b6:d3:bd:15:9a:17:b8:95:06:e5:b4:dd:80:37:49: 2d:91:27:e4:2e:89:ff:64:21:6c:cb:9f:f4:69:9c:7c:cb:b8: 58:26:2d:93:90:de:d6:2b:f9:ee:c1:53:07:85:9a:8b:c9:2a: 0f:71:7a:f0:3c:e1:8b:37:57:46:3e:01:e2:be:a0:ed:35:8f: 0a:a6:e9:17:dd:ba:4f:08:9d:dd:77:7b:b3:ee:c1:90:26:02: 0a:36:ec:ee:e7:2f:7d:e9:2b:52:89:b2:74:c3:77:80:b2:12: 86:09:f5:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAUZowz5gZ9qby+GN0zV9hKJIIHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1NEQ5MjBCNkE0MjA5MTMxODcxNTMwQUVFMUY4QjhB M0QzMDNENjAeFw0yNDA1MjIwMzU1MjlaFw0yNTA1MjEwNDAwMjlaMDMxMTAvBgNV BAMTKEU1QzcyNTUzQzA4ODdDM0UxOTVCQjUwQzUxNUUwRkJCRjU5M0UyMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4PMOVzf7zc6uJ34D2P1qCydX7 +Dwud20UpcVNEsUn4Aiw71Ka8UmBquhFGD+gy0n+xnilGktNVx3SRBG6Pt/9N1em MlusZNO+Dk1laHhRSKC86NVoeji9iHD/OUjySu1tTd7AqPZmCgMyIqE2SgeDNA6Z q9sApyw6MSa3nqSlIbDOtyqDNjA0cLpjAidxDrE4dqGlklRBwLzeNBUV3Q1qvTwP op0KN8kteJf3ISN1spAbbBViRh9QNYgJI2+LL4cTbS8R+J6PXgD5nWOwLpw5cc5W H1MR8ElXSqjREmHXNA2c1PaETBWP4TJ1H/MTBHsKrOaT1t6sWe95QXCsElB5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5cclU8CIfD4ZW7UMUV4Pu/WT4howHwYDVR0j BBgwFoAUEVTZILakIJExhxUwruH4uKPTA9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDY3ZWMzMy01YTcyLTRjNjUtOWZkMy02NmVmODQ3OTM5NGQvMC8xMTU0RDkyMEI2 QTQyMDkxMzE4NzE1MzBBRUUxRjhCOEEzRDMwM0Q2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1NEQ5MjBCNkE0MjA5MTMxODcxNTMwQUVFMUY4QjhBM0Qz MDNENi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0NjdlYzMzLTVhNzItNGM2NS05 ZmQzLTY2ZWY4NDc5Mzk0ZC8wLzMxMzAzMzJlMzEzODM4MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvPkwDQYJ KoZIhvcNAQELBQADggEBAA3TLl+oDEj/va4fU9b0yiXrXFf6zulxlJe8vwjSX0FT rhTfdLubk121chAKUAqFefKTVWFMK646byLVHgG6lRZAAV70+s4tziHSaaMRfmCq a71LelJKmfpUx06EBgFn0YIVkXyCfO6qCTvnc0WdI5XIE/A2xM5bL/8Zb0mimvv6 RMkQo6q6bX+M+lC1n4fBeilvz7bTvRWaF7iVBuW03YA3SS2RJ+Quif9kIWzLn/Rp nHzLuFgmLZOQ3tYr+e7BUweFmovJKg9xevA84Ys3V0Y+AeK+oO01jwqm6Rfduk8I nd13e7PuwZAmAgo27O7nL33pK1KJsnTDd4CyEoYJ9aM= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org