$ rpki-client -vvf repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa File: 3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa (raw, json) Hash identifier: i9P3BUfAWtkH95rW98va5S26/GuOy0kNU/0qkQxgQNw= Subject key identifier: 69:65:95:34:58:A9:D8:A9:AF:BE:A6:02:70:81:3E:59:A4:90:95:30 Certificate issuer: /CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Certificate serial: 363BB1C5A06B88C9B465999FE0653D83307A3AB1 Authority key identifier: FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa Signing time: Thu 22 Aug 2024 06:00:02 +0000 ROA not before: Thu 22 Aug 2024 05:55:02 +0000 ROA not after: Thu 21 Aug 2025 06:00:02 +0000 asID: 141125 IP address blocks: 103.158.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3b:b1:c5:a0:6b:88:c9:b4:65:99:9f:e0:65:3d:83:30:7a:3a:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Validity Not Before: Aug 22 05:55:02 2024 GMT Not After : Aug 21 06:00:02 2025 GMT Subject: CN=6965953458A9D8A9AFBEA60270813E59A4909530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:86:db:c5:b9:a7:be:cb:3f:d9:9a:be:63: 7b:e4:98:bd:78:f8:1b:66:30:09:1e:ac:cd:15:b7: b5:81:89:9f:7d:c5:0d:ed:e7:ea:e8:6b:5f:7e:f3: e6:2f:ca:33:25:ae:9d:22:f9:44:50:93:e0:65:c3: 23:5f:b3:aa:64:42:e7:04:db:7c:f2:ff:d1:4e:ef: 2a:32:7d:a2:d2:cf:67:33:d9:be:61:79:80:5c:69: 2e:aa:2c:f1:7d:2b:39:79:bd:d2:c1:cf:25:b3:59: 2d:5c:db:27:20:26:48:28:c4:0f:17:bf:e7:9f:4a: 21:f8:9b:16:41:a8:b5:5f:2d:96:9f:ae:25:d5:4f: 58:ba:b1:29:b0:da:6c:d9:3b:43:9d:c4:bc:49:08: 0e:4c:7f:04:e5:94:0f:0d:1d:07:f3:e4:93:10:63: e2:cc:33:fa:d4:d1:eb:7b:ef:10:8b:af:4f:8d:6d: 63:51:8f:ea:b2:0c:6f:6e:c1:4d:38:35:4f:41:1f: bb:cc:af:a8:9d:95:04:c1:f3:06:02:5f:d1:fc:7f: d3:6b:8d:fd:23:40:89:fb:48:91:c7:2a:bd:dd:9c: 92:77:6e:54:90:92:fe:fc:ac:a9:96:88:29:55:d0: 52:f6:d7:e5:b0:1f:6e:84:8e:78:b4:68:c3:ac:be: 44:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:65:95:34:58:A9:D8:A9:AF:BE:A6:02:70:81:3E:59:A4:90:95:30 X509v3 Authority Key Identifier: keyid:FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.98.0/23 Signature Algorithm: sha256WithRSAEncryption a1:0e:35:d4:33:54:41:ed:aa:39:10:0b:bd:56:79:a8:83:a5: ae:76:3c:e6:5f:39:61:73:6f:30:d0:b8:d4:75:3a:ef:eb:4e: 97:e3:32:6d:3c:d5:8f:0c:12:c1:bd:9f:e1:5a:29:b3:ed:29: f9:b5:48:81:a9:de:9d:d3:8e:3e:d2:dc:19:8c:f3:6d:63:dc: a8:ca:26:ff:1b:cd:6d:c1:f0:e5:c6:fc:b1:6d:c5:94:dd:5f: 34:0a:d7:ad:fd:8b:a0:47:32:58:a2:63:a7:1d:ce:70:2b:ed: 8a:7b:1d:98:d6:dd:36:9f:b1:ab:ff:65:a4:ca:66:56:a9:23: a3:76:70:07:80:a1:d8:4b:c1:4a:f8:e1:1e:76:94:85:ed:22: e5:88:f1:57:ef:51:bc:ae:76:03:46:9d:46:c2:47:5e:d5:fb: b5:b8:a6:42:7e:d8:0a:fc:58:14:d3:7b:d1:91:6e:76:af:94: d4:93:15:f4:36:78:af:af:f1:dc:be:6b:3f:f9:4c:42:d2:fb: 03:cd:31:d0:68:32:52:eb:62:46:83:3b:37:d7:a0:4c:2a:72: 80:7e:21:0e:f4:fa:6d:b4:c0:b3:f6:a9:6e:71:c5:00:fc:ec: d0:ec:a3:d3:7f:68:c1:95:89:bb:33:70:1a:d8:09:cd:07:b6: d4:9a:30:cb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNjuxxaBriMm0ZZmf4GU9gzB6OrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZB Q0Q1QTNCQTAeFw0yNDA4MjIwNTU1MDJaFw0yNTA4MjEwNjAwMDJaMDMxMTAvBgNV BAMTKDY5NjU5NTM0NThBOUQ4QTlBRkJFQTYwMjcwODEzRTU5QTQ5MDk1MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2Ybbxbmnvss/2Zq+Y3vkmL14 +BtmMAkerM0Vt7WBiZ99xQ3t5+roa19+8+YvyjMlrp0i+URQk+BlwyNfs6pkQucE 23zy/9FO7yoyfaLSz2cz2b5heYBcaS6qLPF9Kzl5vdLBzyWzWS1c2ycgJkgoxA8X v+efSiH4mxZBqLVfLZafriXVT1i6sSmw2mzZO0OdxLxJCA5MfwTllA8NHQfz5JMQ Y+LMM/rU0et77xCLr0+NbWNRj+qyDG9uwU04NU9BH7vMr6idlQTB8wYCX9H8f9Nr jf0jQIn7SJHHKr3dnJJ3blSQkv78rKmWiClV0FL21+WwH26Ejni0aMOsvkRTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaWWVNFip2KmvvqYCcIE+WaSQlTAwHwYDVR0j BBgwFoAU/Q84l5I3FDoNRBZZEueeL6zVo7owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDY4NTAwYy00OWY4LTRmMDEtODc3NC1mN2MzMTY0YTBhNTgvMC9GRDBGMzg5Nzky MzcxNDNBMEQ0NDE2NTkxMkU3OUUyRkFDRDVBM0JBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZBQ0Q1 QTNCQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNjg1MDBjLTQ5ZjgtNGYwMS04 Nzc0LWY3YzMxNjRhMGE1OC8wLzMxMzAzMzJlMzEzNTM4MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55iMA0GCSqG SIb3DQEBCwUAA4IBAQChDjXUM1RB7ao5EAu9Vnmog6WudjzmXzlhc28w0LjUdTrv 606X4zJtPNWPDBLBvZ/hWimz7Sn5tUiBqd6d044+0twZjPNtY9yoyib/G81twfDl xvyxbcWU3V80Ctet/YugRzJYomOnHc5wK+2Kex2Y1t02n7Gr/2WkymZWqSOjdnAH gKHYS8FK+OEedpSF7SLliPFX71G8rnYDRp1Gwkde1fu1uKZCftgK/FgU03vRkW52 r5TUkxX0Nnivr/Hcvms/+UxC0vsDzTHQaDJS62JGgzs316BMKnKAfiEO9PpttMCz 9qluccUA/OzQ7KPTf2jBlYm7M3Aa2AnNB7bUmjDL -----END CERTIFICATE-----Generated at Sun Nov 24 04:28:52 2024 by rpki-client on console-fra.rpki-client.org