$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa File: 3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa (raw, json) Hash identifier: c/6M07w25lMPdFZsQEiGsbFHOgyjdKi77jGVx678XmE= Subject key identifier: 37:65:3C:D2:29:BE:D7:BD:B0:61:CE:98:A7:CB:3E:C3:2C:F8:91:1F Certificate issuer: /CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Certificate serial: 3BA40FF38F3D7E8E3D1573169603E26A5491F503 Authority key identifier: 84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa Signing time: Mon 01 Jul 2024 01:02:49 +0000 ROA not before: Mon 01 Jul 2024 00:57:49 +0000 ROA not after: Mon 30 Jun 2025 01:02:49 +0000 asID: 140401 IP address blocks: 103.150.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a4:0f:f3:8f:3d:7e:8e:3d:15:73:16:96:03:e2:6a:54:91:f5:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5 Validity Not Before: Jul 1 00:57:49 2024 GMT Not After : Jun 30 01:02:49 2025 GMT Subject: CN=37653CD229BED7BDB061CE98A7CB3EC32CF8911F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:56:c2:71:0c:04:ba:01:bc:dc:db:1b:72:3d: 9a:c0:79:59:19:09:2f:f4:38:8d:08:6a:97:93:d4: 62:ed:9f:93:96:5c:78:68:e0:84:11:2a:5e:67:ef: c1:7f:11:4b:38:6f:29:13:7c:b3:6c:46:f6:fe:cc: 9e:5d:3b:93:41:9b:5d:9e:b7:44:ef:6e:6d:75:5b: 6f:a8:71:f1:18:dc:4d:aa:2e:b4:b7:dc:0c:e4:6d: 1c:9e:8d:94:2c:33:f3:0f:8a:c8:21:a6:4b:21:ef: 89:83:6f:a9:45:0c:86:00:ef:82:b2:03:7e:5e:cb: 61:72:5d:e5:70:14:25:a6:f4:b6:8e:62:c4:6d:74: 22:43:29:c6:eb:41:e0:78:b0:a8:29:13:64:b6:2f: e3:da:bf:a5:d5:4d:91:60:1e:c7:12:86:c1:7a:64: cb:a2:92:90:a4:29:32:52:2b:a7:40:4a:93:93:f1: 55:de:03:34:ae:6e:0f:f5:a3:03:32:0e:f4:0c:b0: c5:14:dc:62:74:5f:53:ef:1c:76:8a:2b:98:42:4d: 6d:9f:59:f3:7e:0b:ff:f7:d1:bd:7c:d3:7b:1c:59: a0:6b:ee:0a:1c:ff:c6:3e:97:2a:4a:14:2c:4c:85: af:9d:da:06:ec:74:64:2c:2c:9a:86:1d:a4:9d:9b: f1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:65:3C:D2:29:BE:D7:BD:B0:61:CE:98:A7:CB:3E:C3:2C:F8:91:1F X509v3 Authority Key Identifier: keyid:84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231392e302f32342d3234203d3e20313430343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.219.0/24 Signature Algorithm: sha256WithRSAEncryption 74:36:3b:89:c3:0a:f5:51:ff:05:37:a9:15:f7:d4:6b:ff:e3: df:b9:50:78:0a:0c:36:5d:71:ba:b8:db:da:81:c4:98:9f:b7: 03:e4:e7:70:d7:ce:9f:f9:52:0a:29:f5:03:1a:90:67:6c:23: 59:32:18:aa:fe:07:c2:0e:bb:15:e4:84:af:40:40:48:3e:0f: 38:c4:45:be:a9:ad:29:ac:72:b4:9c:51:8b:a5:9f:8d:0d:cd: fc:f8:d8:31:17:f0:3e:6f:39:76:9a:3f:2b:33:e5:12:bd:20: d1:d6:51:79:a2:3a:85:07:86:79:f0:81:2f:b0:21:84:db:7b: 7d:3b:34:df:7c:70:6e:8a:44:2e:ea:c5:9f:b1:cb:1c:fc:76: 4d:e3:76:a8:4f:75:fa:61:d8:df:d0:cb:a0:db:14:fa:e5:aa: dc:66:e4:97:72:62:24:d5:94:36:78:39:e6:de:61:46:46:7c: 35:a1:c5:3b:13:74:96:24:da:cd:5a:0f:e0:0d:2d:e7:a2:25: e1:8e:21:25:55:51:95:f2:44:ba:08:02:01:a0:c1:9e:e4:e4: 2f:76:83:72:d1:80:50:a5:ca:c1:7c:cf:65:6c:cc:a7:65:64: eb:1a:ae:e2:83:95:0b:11:bf:ed:c9:20:9c:6d:a9:4f:2b:3d: 52:6f:06:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO6QP8489fo49FXMWlgPialSR9QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNB RUYwNjdDNTAeFw0yNDA3MDEwMDU3NDlaFw0yNTA2MzAwMTAyNDlaMDMxMTAvBgNV BAMTKDM3NjUzQ0QyMjlCRUQ3QkRCMDYxQ0U5OEE3Q0IzRUMzMkNGODkxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNVsJxDAS6Abzc2xtyPZrAeVkZ CS/0OI0IapeT1GLtn5OWXHho4IQRKl5n78F/EUs4bykTfLNsRvb+zJ5dO5NBm12e t0Tvbm11W2+ocfEY3E2qLrS33AzkbRyejZQsM/MPisghpksh74mDb6lFDIYA74Ky A35ey2FyXeVwFCWm9LaOYsRtdCJDKcbrQeB4sKgpE2S2L+Pav6XVTZFgHscShsF6 ZMuikpCkKTJSK6dASpOT8VXeAzSubg/1owMyDvQMsMUU3GJ0X1PvHHaKK5hCTW2f WfN+C//30b1803scWaBr7goc/8Y+lypKFCxMha+d2gbsdGQsLJqGHaSdm/HvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUN2U80im+172wYc6Yp8s+wyz4kR8wHwYDVR0j BBgwFoAUhH6+1dLVn38feRy5wN+pM67wZ8UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjVkNzJmMy0yZGIyLTRiY2MtOWY3Ny1kMTQ0MmI2MzJkMDQvMC84NDdFQkVENUQy RDU5RjdGMUY3OTFDQjlDMERGQTkzM0FFRjA2N0M1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ3RUJFRDVEMkQ1OUY3RjFGNzkxQ0I5QzBERkE5MzNBRUYw NjdDNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNWQ3MmYzLTJkYjItNGJjYy05 Zjc3LWQxNDQyYjYzMmQwNC8wLzMxMzAzMzJlMzEzNTMwMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnltswDQYJ KoZIhvcNAQELBQADggEBAHQ2O4nDCvVR/wU3qRX31Gv/49+5UHgKDDZdcbq429qB xJiftwPk53DXzp/5Ugop9QMakGdsI1kyGKr+B8IOuxXkhK9AQEg+DzjERb6prSms crScUYuln40Nzfz42DEX8D5vOXaaPysz5RK9INHWUXmiOoUHhnnwgS+wIYTbe307 NN98cG6KRC7qxZ+xyxz8dk3jdqhPdfph2N/Qy6DbFPrlqtxm5JdyYiTVlDZ4Oebe YUZGfDWhxTsTdJYk2s1aD+ANLeeiJeGOISVVUZXyRLoIAgGgwZ7k5C92g3LRgFCl ysF8z2VszKdlZOsaruKDlQsRv+3JIJxtqU8rPVJvBkg= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org