$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa File: 3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa (raw, json) Hash identifier: wu1R31TtfIFRPzZm0Pb0tIerh4jIibnO+i3KDJeQHqM= Subject key identifier: 1D:29:57:C4:48:07:44:06:1A:12:6A:33:1F:48:F7:58:26:87:76:4A Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 704D5C468BDB75487DCF327125AD36F82030FD60 Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa Signing time: Wed 13 Nov 2024 14:00:02 +0000 ROA not before: Wed 13 Nov 2024 13:55:02 +0000 ROA not after: Wed 12 Nov 2025 14:00:02 +0000 asID: 141132 IP address blocks: 103.158.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:4d:5c:46:8b:db:75:48:7d:cf:32:71:25:ad:36:f8:20:30:fd:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Nov 13 13:55:02 2024 GMT Not After : Nov 12 14:00:02 2025 GMT Subject: CN=1D2957C4480744061A126A331F48F7582687764A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1f:e5:d7:22:78:d6:ac:10:02:34:bf:b3:8a: 31:d5:8d:45:c7:22:c6:76:9f:cb:1c:78:a9:3e:b9: 7d:e1:28:c3:50:16:8f:c5:8b:90:a5:dc:45:3f:5e: d8:ea:6e:2b:07:ad:b9:87:4a:41:d9:40:2e:1f:0e: d2:bd:d3:35:57:3d:f5:e6:d5:39:b5:a9:38:d2:ad: db:2c:5a:a5:d9:99:cf:3e:6f:1d:fb:1f:c3:50:81: f7:0a:96:2c:8a:31:31:e7:1f:77:ae:d8:11:fe:a6: 7d:fc:da:fb:83:7f:32:f3:61:07:a2:12:bf:45:d2: 81:bb:4e:e4:8b:6f:48:ba:b2:ed:a7:15:c3:a3:2f: f0:86:1b:b5:42:f9:e5:5c:ae:ea:17:89:01:e2:f6: 65:98:51:47:95:66:73:2e:69:63:c4:95:f9:af:e1: 82:10:de:d1:76:4c:b8:60:37:13:e8:a6:62:7d:e0: 9f:82:51:0b:fd:29:7b:98:b2:f4:68:3d:eb:0a:4e: b0:b0:24:c8:6f:72:f2:a8:4a:0e:1d:8a:f5:0c:66: 30:25:5b:a8:d1:ae:07:2a:7e:36:b4:37:c8:f7:27: 4c:5b:c6:66:37:6e:79:12:a5:53:21:a8:89:d6:84: 74:f8:fd:a0:39:f1:67:8c:18:58:79:de:07:a0:31: 7f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:57:C4:48:07:44:06:1A:12:6A:33:1F:48:F7:58:26:87:76:4A X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431313332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.235.0/24 Signature Algorithm: sha256WithRSAEncryption 80:a1:62:d9:e7:fb:ed:d0:e9:a1:33:58:5b:d5:da:71:d8:c4: 9c:60:5b:10:4e:fc:70:56:fd:21:c7:e3:d9:64:63:a5:ef:a7: 58:c0:d4:63:b4:7c:f7:0f:7e:89:9c:f9:04:33:54:68:27:87: b1:22:11:03:97:28:a6:3a:cd:8e:19:aa:3b:a7:f4:52:69:2a: f5:a0:d8:33:86:94:6a:e7:1d:52:a9:0b:84:74:5e:48:64:d8: 77:17:a4:1b:39:72:83:a2:59:4a:b9:cc:e1:26:f1:20:4d:ef: c9:ae:6d:e4:27:36:c9:27:6e:7e:0d:e1:e0:0c:70:81:d3:1b: 58:c0:70:70:a6:04:7e:75:5f:c0:1e:f6:62:f8:39:f1:46:a7: 13:46:18:fe:ab:e9:79:77:36:9f:9e:da:e4:53:ad:da:b5:e8: 90:a2:5d:f5:49:12:9b:94:f4:0a:29:db:95:6f:2a:86:2a:32: 57:b7:c0:f8:27:96:ef:4f:04:f7:44:74:f5:c7:70:19:bc:3f: 07:63:16:8d:9c:de:51:7d:af:cb:01:d7:1a:b7:5f:bc:3f:ff: cf:58:ba:48:b7:d6:39:d8:b0:a1:be:2e:c1:f8:35:78:5f:60: c6:50:17:20:1d:43:a5:46:0e:b9:98:9b:58:9b:0f:49:af:8b: c8:40:65:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcE1cRovbdUh9zzJxJa02+CAw/WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNDExMTMxMzU1MDJaFw0yNTExMTIxNDAwMDJaMDMxMTAvBgNV BAMTKDFEMjk1N0M0NDgwNzQ0MDYxQTEyNkEzMzFGNDhGNzU4MjY4Nzc2NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCH+XXInjWrBACNL+zijHVjUXH IsZ2n8sceKk+uX3hKMNQFo/Fi5Cl3EU/XtjqbisHrbmHSkHZQC4fDtK90zVXPfXm 1Tm1qTjSrdssWqXZmc8+bx37H8NQgfcKliyKMTHnH3eu2BH+pn382vuDfzLzYQei Er9F0oG7TuSLb0i6su2nFcOjL/CGG7VC+eVcruoXiQHi9mWYUUeVZnMuaWPElfmv 4YIQ3tF2TLhgNxPopmJ94J+CUQv9KXuYsvRoPesKTrCwJMhvcvKoSg4divUMZjAl W6jRrgcqfja0N8j3J0xbxmY3bnkSpVMhqInWhHT4/aA58WeMGFh53gegMX9fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHSlXxEgHRAYaEmozH0j3WCaHdkowHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnuswDQYJ KoZIhvcNAQELBQADggEBAIChYtnn++3Q6aEzWFvV2nHYxJxgWxBO/HBW/SHH49lk Y6Xvp1jA1GO0fPcPfomc+QQzVGgnh7EiEQOXKKY6zY4Zqjun9FJpKvWg2DOGlGrn HVKpC4R0Xkhk2HcXpBs5coOiWUq5zOEm8SBN78mubeQnNsknbn4N4eAMcIHTG1jA cHCmBH51X8Ae9mL4OfFGpxNGGP6r6Xl3Np+e2uRTrdq16JCiXfVJEpuU9Aop25Vv KoYqMle3wPgnlu9PBPdEdPXHcBm8PwdjFo2c3lF9r8sB1xq3X7w//89Yuki31jnY sKG+LsH4NXhfYMZQFyAdQ6VGDrmYm1ibD0mvi8hAZRk= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org