$ rpki-client -vvf repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232362e302f32342d3234203d3e20313430343032.roa File: 3130332e3135302e3232362e302f32342d3234203d3e20313430343032.roa (raw, json) Hash identifier: rrPHzA78yuwvUrOHC735jgsht0uhyJKhl6X4YZMdm8Q= Subject key identifier: 9E:9D:61:DF:81:5D:F5:0E:81:CC:AD:F1:32:F7:CF:23:30:D5:A2:67 Certificate issuer: /CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Certificate serial: 010FE293FC250465F95698552279D2C35778522A Authority key identifier: AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject info access: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232362e302f32342d3234203d3e20313430343032.roa Signing time: Tue 12 Nov 2024 11:01:58 +0000 ROA not before: Tue 12 Nov 2024 10:56:58 +0000 ROA not after: Tue 11 Nov 2025 11:01:58 +0000 asID: 140402 IP address blocks: 103.150.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0f:e2:93:fc:25:04:65:f9:56:98:55:22:79:d2:c3:57:78:52:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Validity Not Before: Nov 12 10:56:58 2024 GMT Not After : Nov 11 11:01:58 2025 GMT Subject: CN=9E9D61DF815DF50E81CCADF132F7CF2330D5A267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:aa:c1:9a:8e:49:07:ff:78:d8:a0:8a:3c: b2:16:f7:77:32:4b:57:55:0b:84:c4:03:33:67:4b: f3:e9:25:ca:63:6a:27:66:4f:03:7d:2b:1d:39:94: 1b:59:a8:73:4c:ae:d0:e8:c5:6b:81:ea:a7:8a:d2: f1:0e:1c:e1:28:45:ef:b6:cd:2f:d0:82:37:b3:8a: 1c:46:7c:c6:28:e0:b7:03:ce:a5:c5:0c:4b:d9:69: 78:be:69:06:77:60:9c:82:5c:ca:0e:c9:7e:d4:9e: 0d:a0:14:b9:9e:58:69:1b:de:9b:a7:5c:98:db:8d: 65:49:b4:61:1b:00:4d:f0:4a:22:53:ec:c7:9c:3a: a2:8d:73:18:d8:2b:70:28:75:63:51:d5:e5:ec:9f: 36:2d:65:53:5c:37:5c:21:c7:b0:93:4f:19:80:81: bb:b0:2e:df:a5:e3:94:ce:88:c3:cd:ff:df:52:cc: ff:44:39:36:4e:99:70:00:1d:05:7d:6d:57:85:90: dd:02:20:fa:e2:83:e0:16:15:40:68:18:eb:7a:30: eb:00:05:b1:a4:0d:b2:84:3c:ce:28:2d:e9:09:ba: 00:11:07:3b:96:45:b6:32:b9:71:b0:de:05:f8:c5: 85:58:a4:c1:dc:83:df:d0:dc:d8:6d:86:66:44:d2: 1c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9D:61:DF:81:5D:F5:0E:81:CC:AD:F1:32:F7:CF:23:30:D5:A2:67 X509v3 Authority Key Identifier: keyid:AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/3130332e3135302e3232362e302f32342d3234203d3e20313430343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.226.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:a1:18:a4:2c:64:7f:d2:74:f7:a8:65:8a:a6:e8:9b:59:53: f8:69:a6:be:f0:28:87:63:c0:d1:ba:0c:6d:27:ca:3b:d3:1f: 54:bc:12:f7:4e:3b:bc:a1:51:aa:ee:ce:2d:10:9d:20:9f:26: 8c:33:6a:80:e3:16:cb:3a:32:8a:0c:41:be:df:3f:c8:f2:6e: e9:86:93:12:d5:d7:f6:82:df:db:b3:d1:9c:02:ff:7a:86:e9: 49:ce:2e:e9:8c:de:3c:54:1f:4a:46:53:d8:15:07:34:a3:18: df:57:22:2f:71:93:e8:c0:ae:ab:80:8c:17:64:c5:45:4d:b5: 43:3c:51:67:90:bb:d9:70:9a:9d:74:19:b1:64:37:90:35:c9: 27:12:d2:40:57:9d:0c:2f:5c:a9:5c:8a:cd:22:05:ad:41:48: 7e:be:d7:90:e5:4e:f1:c6:ae:0a:a8:d8:fe:35:38:2b:dc:8b: 95:56:ab:5f:de:89:31:6d:e0:dd:69:50:67:48:b7:42:08:62: 6d:ee:34:9c:ae:ed:8e:5a:1f:17:8e:48:5a:ff:cc:ef:4b:dd: 98:53:bb:7f:57:77:41:fd:37:20:48:33:ff:87:0f:9f:09:7d: 78:6f:6b:e7:0d:d3:7b:cd:e2:f2:d0:23:47:e8:38:3b:a6:f4: 6d:2e:43:32 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAQ/ik/wlBGX5VphVInnSw1d4UiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkw NTY4RjQ5NDAeFw0yNDExMTIxMDU2NThaFw0yNTExMTExMTAxNThaMDMxMTAvBgNV BAMTKDlFOUQ2MURGODE1REY1MEU4MUNDQURGMTMyRjdDRjIzMzBENUEyNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+WKrBmo5JB/942KCKPLIW93cy S1dVC4TEAzNnS/PpJcpjaidmTwN9Kx05lBtZqHNMrtDoxWuB6qeK0vEOHOEoRe+2 zS/QgjezihxGfMYo4LcDzqXFDEvZaXi+aQZ3YJyCXMoOyX7Ung2gFLmeWGkb3pun XJjbjWVJtGEbAE3wSiJT7MecOqKNcxjYK3AodWNR1eXsnzYtZVNcN1whx7CTTxmA gbuwLt+l45TOiMPN/99SzP9EOTZOmXAAHQV9bVeFkN0CIPrig+AWFUBoGOt6MOsA BbGkDbKEPM4oLekJugARBzuWRbYyuXGw3gX4xYVYpMHcg9/Q3NhthmZE0hwLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnp1h34Fd9Q6BzK3xMvfPIzDVomcwHwYDVR0j BBgwFoAUrV6nbXq72GF8Mj8G4k71GQVo9JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjllNzA2NC1iMzUyLTQzYjYtOWYwOS01MTRkNjhhMjczOWUvMC9BRDVFQTc2RDdB QkJEODYxN0MzMjNGMDZFMjRFRjUxOTA1NjhGNDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkwNTY4 RjQ5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyOWU3MDY0LWIzNTItNDNiNi05 ZjA5LTUxNGQ2OGEyNzM5ZS8wLzMxMzAzMzJlMzEzNTMwMmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnluIwDQYJ KoZIhvcNAQELBQADggEBACqhGKQsZH/SdPeoZYqm6JtZU/hppr7wKIdjwNG6DG0n yjvTH1S8EvdOO7yhUaruzi0QnSCfJowzaoDjFss6MooMQb7fP8jybumGkxLV1/aC 39uz0ZwC/3qG6UnOLumM3jxUH0pGU9gVBzSjGN9XIi9xk+jArquAjBdkxUVNtUM8 UWeQu9lwmp10GbFkN5A1yScS0kBXnQwvXKlcis0iBa1BSH6+15DlTvHGrgqo2P41 OCvci5VWq1/eiTFt4N1pUGdIt0IIYm3uNJyu7Y5aHxeOSFr/zO9L3ZhTu39Xd0H9 NyBIM/+HD58JfXhva+cN03vN4vLQI0foODum9G0uQzI= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org