$ rpki-client -vvf repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa File: 3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa (raw, json) Hash identifier: nhFMFvBp5l4hFwfNcz8qQC8VyYobSR/yoLXSfTog1iI= Subject key identifier: E9:E9:C9:BB:F8:73:03:76:F4:49:DD:E8:0D:E6:33:EA:AF:58:6E:77 Certificate issuer: /CN=A203777786215EACE763209954A241380D9D9512 Certificate serial: 4D9AE833E106EDD39FBFD2FDF57588A904F5A2D7 Authority key identifier: A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa Signing time: Mon 22 Apr 2024 10:00:00 +0000 ROA not before: Mon 22 Apr 2024 09:55:00 +0000 ROA not after: Mon 21 Apr 2025 10:00:00 +0000 asID: 149754 IP address blocks: 103.189.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:9a:e8:33:e1:06:ed:d3:9f:bf:d2:fd:f5:75:88:a9:04:f5:a2:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A203777786215EACE763209954A241380D9D9512 Validity Not Before: Apr 22 09:55:00 2024 GMT Not After : Apr 21 10:00:00 2025 GMT Subject: CN=E9E9C9BBF8730376F449DDE80DE633EAAF586E77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9b:12:f6:5f:2f:72:e4:f9:0f:33:e8:9c:92: 4b:1f:ef:43:c2:52:47:5e:eb:72:ca:a3:c1:87:a2: 2f:29:19:46:7b:69:c9:f8:30:fa:85:50:25:ef:46: d3:32:1d:63:e8:6d:d5:8c:ee:5e:27:81:ec:94:1d: 93:1f:4f:c6:8c:98:79:1f:b5:16:36:2d:c7:32:d8: 7c:98:03:78:86:a3:58:35:ce:6f:15:d9:93:87:cb: 6b:ab:f5:77:03:6b:f5:a0:0a:15:5a:e3:90:fb:d7: db:35:82:57:cd:af:dc:c0:1f:6e:8d:90:c5:29:e2: 31:66:c5:16:b7:0c:04:73:0c:1a:09:f3:00:a6:9a: e6:83:83:e6:1b:30:31:06:01:52:02:cf:0e:b3:5d: b9:05:b6:05:01:16:42:0c:8d:fc:f1:cf:96:fc:eb: a0:63:73:e4:45:bb:fd:5d:b8:03:46:06:4a:0a:de: 7a:63:d4:29:8d:77:10:7f:3a:66:a7:25:c5:3d:af: 98:09:21:1d:7c:d3:5d:1e:8b:f0:56:83:42:1d:6e: 6f:c9:e1:71:81:6f:67:30:50:53:c9:c7:da:13:34: c5:40:7a:d4:24:c0:0d:b0:4c:dc:b8:14:66:b6:7e: 3c:00:22:91:fa:0e:cd:a1:de:18:17:27:43:e1:2b: 8e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E9:C9:BB:F8:73:03:76:F4:49:DD:E8:0D:E6:33:EA:AF:58:6E:77 X509v3 Authority Key Identifier: keyid:A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.165.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:7d:04:9c:9e:30:f4:07:f9:81:ad:a4:0d:a7:82:52:fb:bd: 14:39:ec:da:e6:17:d5:53:01:b2:db:97:4b:1c:32:f3:ba:1f: 46:b6:e2:1a:44:0e:6e:bb:4d:c3:62:1c:1e:a2:e5:fb:ef:18: d1:74:dd:cf:92:32:78:03:31:02:69:98:3a:f5:aa:a8:ef:dc: 84:53:22:6e:29:d6:80:62:78:8b:98:e1:51:fa:6b:50:39:91: 09:08:ed:a2:eb:ee:65:68:11:54:b1:af:3a:f0:db:b8:73:d2: a4:d6:49:43:0d:3f:06:18:0d:f8:8c:eb:5f:d1:23:79:35:ff: ab:16:fd:80:e5:2e:0b:6a:6e:5b:77:eb:f9:26:bc:5d:16:4a: 92:7e:d9:9b:3b:78:ad:95:67:67:cc:6e:c2:42:19:79:04:7c: 98:9e:05:b2:cf:1f:b8:b0:f1:63:43:64:ce:f7:53:c8:37:1e: b9:42:ba:7e:9f:c8:13:47:0c:40:f9:80:01:0e:11:44:3a:80: 74:70:88:b3:cf:88:06:b2:c4:e7:c8:49:8e:f4:36:97:92:02: dd:85:96:85:0a:70:44:ae:2e:a9:91:5c:b5:62:0c:30:69:14: 68:34:14:b0:c7:eb:13:a5:47:14:eb:7c:3c:cd:5b:76:19:f3: 62:d9:81:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTZroM+EG7dOfv9L99XWIqQT1otcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgw RDlEOTUxMjAeFw0yNDA0MjIwOTU1MDBaFw0yNTA0MjExMDAwMDBaMDMxMTAvBgNV BAMTKEU5RTlDOUJCRjg3MzAzNzZGNDQ5RERFODBERTYzM0VBQUY1ODZFNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDamxL2Xy9y5PkPM+ickksf70PC Ukde63LKo8GHoi8pGUZ7acn4MPqFUCXvRtMyHWPobdWM7l4ngeyUHZMfT8aMmHkf tRY2Lccy2HyYA3iGo1g1zm8V2ZOHy2ur9XcDa/WgChVa45D719s1glfNr9zAH26N kMUp4jFmxRa3DARzDBoJ8wCmmuaDg+YbMDEGAVICzw6zXbkFtgUBFkIMjfzxz5b8 66Bjc+RFu/1duANGBkoK3npj1CmNdxB/OmanJcU9r5gJIR18010ei/BWg0Idbm/J 4XGBb2cwUFPJx9oTNMVAetQkwA2wTNy4FGa2fjwAIpH6Ds2h3hgXJ0PhK44vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6enJu/hzA3b0Sd3oDeYz6q9YbncwHwYDVR0j BBgwFoAUogN3d4YhXqznYyCZVKJBOA2dlRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmY2YzUxNi1lZjExLTRjMTUtOGIzMy0yZWIxMDQwMzA0M2IvMC9BMjAzNzc3Nzg2 MjE1RUFDRTc2MzIwOTk1NEEyNDEzODBEOUQ5NTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgwRDlE OTUxMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZjZjNTE2LWVmMTEtNGMxNS04 YjMzLTJlYjEwNDAzMDQzYi8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvaUwDQYJ KoZIhvcNAQELBQADggEBABp9BJyeMPQH+YGtpA2nglL7vRQ57NrmF9VTAbLbl0sc MvO6H0a24hpEDm67TcNiHB6i5fvvGNF03c+SMngDMQJpmDr1qqjv3IRTIm4p1oBi eIuY4VH6a1A5kQkI7aLr7mVoEVSxrzrw27hz0qTWSUMNPwYYDfiM61/RI3k1/6sW /YDlLgtqblt36/kmvF0WSpJ+2Zs7eK2VZ2fMbsJCGXkEfJieBbLPH7iw8WNDZM73 U8g3HrlCun6fyBNHDED5gAEOEUQ6gHRwiLPPiAayxOfISY70NpeSAt2FloUKcESu LqmRXLViDDBpFGg0FLDH6xOlRxTrfDzNW3YZ82LZgdY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org