$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: lT4i2I1kp5QXvRWP6Y3CyMWdYfvPbMf8mprwGrOyT/s= Subject key identifier: 9A:10:30:86:74:CF:F3:96:B2:DD:B8:AC:50:50:56:93:AE:37:AA:DC Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 39A664C2051B78C00A835440A26F02A8AF564193 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa Signing time: Mon 27 May 2024 02:00:00 +0000 ROA not before: Mon 27 May 2024 01:55:00 +0000 ROA not after: Mon 26 May 2025 02:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a6:64:c2:05:1b:78:c0:0a:83:54:40:a2:6f:02:a8:af:56:41:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: May 27 01:55:00 2024 GMT Not After : May 26 02:00:00 2025 GMT Subject: CN=9A10308674CFF396B2DDB8AC50505693AE37AADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:9f:32:7e:9c:c4:78:80:da:1d:81:cb:35: 2c:ed:a5:dc:7c:a0:14:46:46:77:93:06:b4:26:8f: d8:e2:4e:f0:1f:b4:c0:c0:54:fb:59:6f:1d:b0:cc: 2d:9c:c1:12:21:71:43:f7:8f:96:29:2d:0c:27:ad: 33:7e:62:cd:f2:f5:f7:ae:13:9f:38:30:2a:54:6e: af:ac:6b:3b:ed:9a:59:f3:93:da:95:90:68:07:74: 98:73:f5:32:e9:f0:9d:d3:5f:17:65:18:41:fe:e7: 1d:c2:5c:c3:ad:4f:b5:5c:bf:18:e5:13:b0:05:9f: de:2e:b7:58:38:e5:39:69:36:06:5e:dd:33:a0:b4: 41:e5:2f:23:54:58:c0:24:18:07:75:42:98:47:e0: 2f:a4:89:f1:0b:e5:ac:ff:88:31:24:82:7c:c8:a6: 8a:5d:a2:b5:a2:75:0f:dc:92:40:c4:b8:ef:86:54: c7:dc:b4:5c:96:5f:ec:49:6a:90:a7:ba:fe:35:72: 43:a2:f7:2a:c0:a5:d6:01:08:3b:e5:d0:a2:36:bb: 38:0a:b2:74:57:e1:99:3c:53:89:69:b9:0d:8e:1c: 93:8a:25:1c:aa:8c:db:a1:e7:d5:3c:ca:eb:89:09: f9:33:6e:b9:73:75:ae:4b:7c:5a:db:d2:dd:6b:b3: e8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:10:30:86:74:CF:F3:96:B2:DD:B8:AC:50:50:56:93:AE:37:AA:DC X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:a1:1a:ae:79:f4:ad:1a:49:40:a6:88:c9:42:ee:f0:83:c2: 31:2f:0e:f0:27:6a:cc:5d:a0:d5:a3:0a:20:44:17:c7:53:ae: 5a:b8:e3:29:03:65:bf:e9:c4:ce:fd:98:11:e7:a3:11:e5:40: a1:b0:aa:0d:16:91:6f:b9:99:0a:76:59:ff:7e:ca:da:92:ec: 2a:d8:1b:7f:8d:cc:a3:d7:fc:15:b1:04:ac:2a:a7:bf:97:a4: 32:15:08:d3:dd:94:eb:14:62:82:ff:44:4c:86:14:fb:85:2c: fe:29:64:ec:e3:80:aa:ca:a4:ca:47:69:71:89:1d:39:0d:63: f9:59:8d:dd:02:55:dc:c5:0c:81:df:33:f1:dd:ff:b0:db:8c: 87:2e:b9:2e:18:fd:8a:b7:b2:3a:db:5d:9c:ce:4f:65:2e:12: b2:16:6a:4e:29:f1:8b:98:d0:65:85:d6:ed:f3:c8:ef:d5:df: 57:3c:47:99:97:c6:15:44:a5:28:34:76:53:9d:c4:0c:b9:4e: db:32:8a:aa:db:12:87:d9:70:23:bc:a5:4f:8a:44:1a:c0:20: df:e4:b1:c0:43:a4:a5:ef:b3:11:91:45:60:5d:2c:b5:76:c4: e7:2e:79:70:b0:de:d1:b7:4b:d7:e3:b0:bd:fe:e3:10:42:c4: f3:98:5a:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOaZkwgUbeMAKg1RAom8CqK9WQZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNDA1MjcwMTU1MDBaFw0yNTA1MjYwMjAwMDBaMDMxMTAvBgNV BAMTKDlBMTAzMDg2NzRDRkYzOTZCMkREQjhBQzUwNTA1NjkzQUUzN0FBREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA758yfpzEeIDaHYHLNSztpdx8 oBRGRneTBrQmj9jiTvAftMDAVPtZbx2wzC2cwRIhcUP3j5YpLQwnrTN+Ys3y9feu E584MCpUbq+sazvtmlnzk9qVkGgHdJhz9TLp8J3TXxdlGEH+5x3CXMOtT7Vcvxjl E7AFn94ut1g45TlpNgZe3TOgtEHlLyNUWMAkGAd1QphH4C+kifEL5az/iDEkgnzI popdorWidQ/ckkDEuO+GVMfctFyWX+xJapCnuv41ckOi9yrApdYBCDvl0KI2uzgK snRX4Zk8U4lpuQ2OHJOKJRyqjNuh59U8yuuJCfkzbrlzda5LfFrb0t1rs+jrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmhAwhnTP85ay3bisUFBWk643qtwwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlbAwDQYJ KoZIhvcNAQELBQADggEBAIyhGq559K0aSUCmiMlC7vCDwjEvDvAnasxdoNWjCiBE F8dTrlq44ykDZb/pxM79mBHnoxHlQKGwqg0WkW+5mQp2Wf9+ytqS7CrYG3+NzKPX /BWxBKwqp7+XpDIVCNPdlOsUYoL/REyGFPuFLP4pZOzjgKrKpMpHaXGJHTkNY/lZ jd0CVdzFDIHfM/Hd/7DbjIcuuS4Y/Yq3sjrbXZzOT2UuErIWak4p8YuY0GWF1u3z yO/V31c8R5mXxhVEpSg0dlOdxAy5TtsyiqrbEofZcCO8pU+KRBrAIN/kscBDpKXv sxGRRWBdLLV2xOcueXCw3tG3S9fjsL3+4xBCxPOYWjQ= -----END CERTIFICATE-----Generated at Wed Nov 20 14:21:28 2024 by rpki-client on console-fra.rpki-client.org