$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa File: 3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa (raw, json) Hash identifier: bWoeXxpcULQJI+FL8P7bige1XkZqPOoPbJG66/nkyFc= Subject key identifier: 26:48:22:FD:B8:7D:19:DE:BD:2C:85:FA:28:9C:9E:28:CE:16:DD:AF Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: F36C01206B2CCE243DEC9460B06DC906B02444 Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa Signing time: Mon 30 Sep 2024 02:00:02 +0000 ROA not before: Mon 30 Sep 2024 01:55:02 +0000 ROA not after: Mon 29 Sep 2025 02:00:02 +0000 asID: 141132 IP address blocks: 103.158.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f3:6c:01:20:6b:2c:ce:24:3d:ec:94:60:b0:6d:c9:06:b0:24:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Sep 30 01:55:02 2024 GMT Not After : Sep 29 02:00:02 2025 GMT Subject: CN=264822FDB87D19DEBD2C85FA289C9E28CE16DDAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3a:bd:2b:cc:5f:f5:eb:4d:aa:1b:2b:71:fc: 00:18:16:c4:d7:84:d3:5d:8b:bc:89:15:7d:11:0f: 0d:dd:cb:5d:1a:dc:97:45:72:4b:44:79:01:73:e1: 11:45:7d:cc:a4:5e:89:bb:f4:32:68:76:02:d3:9d: 5f:b5:a4:d6:a3:71:98:88:08:51:e8:ee:b1:28:32: 51:9a:ec:1c:a9:ae:07:98:d7:19:92:5d:2e:99:37: b3:bf:e2:3f:9c:03:46:b1:52:f9:82:59:b2:d4:7a: 07:2b:3e:90:a9:07:3d:5f:69:e1:75:6a:13:77:38: 4e:cf:05:4d:7a:94:2c:86:03:5a:bb:1c:8e:c7:96: b9:9d:be:e6:b7:de:4f:6c:14:48:21:93:2e:21:11: f8:6d:a8:4a:fe:53:04:3a:c3:2d:51:ad:43:8a:7e: 82:07:fc:4f:5d:c9:bb:68:91:b3:6f:af:0e:60:3c: 94:63:8b:74:47:81:f5:ae:83:a9:1a:96:22:3d:81: 69:cb:e4:4b:bf:16:0f:20:3e:f5:01:15:64:26:47: 71:29:ce:6d:d7:1c:7f:d1:11:56:c5:d1:70:a7:99: 05:0d:58:79:0c:fd:48:3a:2f:ac:ac:55:2f:dc:c4: 68:18:3a:75:56:0a:d5:99:e7:95:b5:bd:bc:78:3d: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:48:22:FD:B8:7D:19:DE:BD:2C:85:FA:28:9C:9E:28:CE:16:DD:AF X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233342e302f32332d3233203d3e20313431313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.234.0/23 Signature Algorithm: sha256WithRSAEncryption 34:49:c8:02:38:37:3d:62:c1:77:80:ce:de:65:c4:40:8a:75: 7c:d4:04:7a:fb:97:18:b2:32:4a:8d:06:95:ba:aa:b3:8a:b3: 2e:42:91:f5:55:55:c4:70:a9:eb:f6:da:cd:03:ce:39:e9:cf: 75:5c:16:31:7a:e8:73:74:03:6f:39:03:7c:27:17:47:cd:77: 8c:c4:7e:40:2f:21:53:96:59:f9:92:7d:7f:57:b1:b5:4c:b1: bf:45:09:97:8f:d4:62:00:0e:38:6d:89:e2:1d:ec:92:33:85: 74:a7:b9:82:af:88:c1:ed:b2:aa:d3:fb:a8:18:28:58:15:1d: 94:f8:54:05:1e:02:ee:35:8c:7a:2f:47:c4:f7:a3:3c:03:eb: 2a:71:92:b5:70:87:60:14:16:a7:aa:e1:b7:5d:79:32:85:57: a6:a8:34:86:fd:6d:87:fa:b7:fa:59:57:d1:8c:e5:c4:db:ab: c4:06:72:86:cb:03:00:fe:ae:7f:57:d0:69:22:75:cb:51:9d: 9e:1d:b5:ea:18:99:b9:13:63:4c:1c:ce:c3:f5:69:43:d2:2c: ea:e3:78:be:7d:61:44:5a:49:f1:0c:4a:31:99:0c:b7:6e:c9: 4c:d1:6c:a1:73:d1:07:86:ff:ff:95:42:e0:3e:8c:f1:cb:ab: 6d:ec:73:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAPNsASBrLM4kPeyUYLBtyQawJEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNDA5MzAwMTU1MDJaFw0yNTA5MjkwMjAwMDJaMDMxMTAvBgNV BAMTKDI2NDgyMkZEQjg3RDE5REVCRDJDODVGQTI4OUM5RTI4Q0UxNkREQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEOr0rzF/1602qGytx/AAYFsTX hNNdi7yJFX0RDw3dy10a3JdFcktEeQFz4RFFfcykXom79DJodgLTnV+1pNajcZiI CFHo7rEoMlGa7ByprgeY1xmSXS6ZN7O/4j+cA0axUvmCWbLUegcrPpCpBz1faeF1 ahN3OE7PBU16lCyGA1q7HI7Hlrmdvua33k9sFEghky4hEfhtqEr+UwQ6wy1RrUOK foIH/E9dybtokbNvrw5gPJRji3RHgfWug6kaliI9gWnL5Eu/Fg8gPvUBFWQmR3Ep zm3XHH/REVbF0XCnmQUNWHkM/Ug6L6ysVS/cxGgYOnVWCtWZ55W1vbx4Pd5nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJkgi/bh9Gd69LIX6KJyeKM4W3a8wHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnuowDQYJ KoZIhvcNAQELBQADggEBADRJyAI4Nz1iwXeAzt5lxECKdXzUBHr7lxiyMkqNBpW6 qrOKsy5CkfVVVcRwqev22s0Dzjnpz3VcFjF66HN0A285A3wnF0fNd4zEfkAvIVOW WfmSfX9XsbVMsb9FCZeP1GIADjhtieId7JIzhXSnuYKviMHtsqrT+6gYKFgVHZT4 VAUeAu41jHovR8T3ozwD6ypxkrVwh2AUFqeq4bddeTKFV6aoNIb9bYf6t/pZV9GM 5cTbq8QGcobLAwD+rn9X0GkidctRnZ4dteoYmbkTY0wczsP1aUPSLOrjeL59YURa SfEMSjGZDLduyUzRbKFz0QeG//+VQuA+jPHLq23sc9Y= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org