$ rpki-client -vvf repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa File: 3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: RkBfllGvEefotMCbBX+M6tjX7qjYPoT7phVfnxdgKbU= Subject key identifier: 2E:48:B6:EC:65:1F:C6:1F:E2:17:8E:3B:15:0F:D1:36:4A:48:00:46 Certificate issuer: /CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Certificate serial: 4D14BA7C8FEB01AF81143AA553F3699A6A220A74 Authority key identifier: B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa Signing time: Thu 21 Nov 2024 10:00:02 +0000 ROA not before: Thu 21 Nov 2024 09:55:02 +0000 ROA not after: Thu 20 Nov 2025 10:00:02 +0000 asID: 141898 IP address blocks: 103.158.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:14:ba:7c:8f:eb:01:af:81:14:3a:a5:53:f3:69:9a:6a:22:0a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B563D708A094B24FC361EDD11C91EE7979AB0471 Validity Not Before: Nov 21 09:55:02 2024 GMT Not After : Nov 20 10:00:02 2025 GMT Subject: CN=2E48B6EC651FC61FE2178E3B150FD1364A480046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f0:d6:cc:78:dd:ba:8f:ac:bf:73:32:45:2f: 78:c1:59:05:fa:bd:c4:d7:c1:0f:72:4e:be:76:b4: e0:a6:fb:4e:39:11:9a:43:f8:23:50:89:26:73:bb: 91:4d:1d:f5:3f:ae:01:ac:f1:16:ae:76:1f:49:72: cf:31:52:65:b0:d5:66:bd:9b:46:e2:ae:7e:fd:cd: dc:4b:08:a9:ee:c0:2b:da:fc:fa:65:af:91:65:91: 18:6f:94:ef:10:bc:12:2f:98:f1:31:0d:99:e2:5b: 50:f9:8a:a4:0d:48:70:e3:c5:93:fb:52:cb:9d:6f: 06:36:de:42:32:4d:b0:80:08:ce:44:39:29:69:f6: a5:a6:0a:26:51:66:f8:75:b2:cb:73:d0:f1:dd:24: ce:36:5a:3e:5a:28:b1:52:ff:86:75:c6:f8:1a:76: 1e:47:02:7d:7f:e3:63:53:b6:3a:c9:95:c2:21:01: 73:95:19:fa:ca:ab:68:fe:05:9f:d5:00:76:bf:2b: b2:d8:b0:ac:d6:d0:63:89:4f:5c:bf:2e:cb:4f:3c: 0f:bd:35:f4:a0:ff:31:66:70:5e:b1:c8:d0:bc:68: e5:09:a2:23:ab:0e:70:11:f1:eb:51:92:0e:71:4e: 03:07:90:77:7e:51:55:32:06:fb:d1:20:1f:57:cd: dc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:48:B6:EC:65:1F:C6:1F:E2:17:8E:3B:15:0F:D1:36:4A:48:00:46 X509v3 Authority Key Identifier: keyid:B5:63:D7:08:A0:94:B2:4F:C3:61:ED:D1:1C:91:EE:79:79:AB:04:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/B563D708A094B24FC361EDD11C91EE7979AB0471.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B563D708A094B24FC361EDD11C91EE7979AB0471.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9036e07c-8283-43d3-9164-3e0e6cacf499/0/3130332e3135382e3233352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.235.0/24 Signature Algorithm: sha256WithRSAEncryption 19:b9:00:ed:52:d2:74:33:90:a7:14:0d:57:de:c1:04:20:b7: 3f:78:cc:b6:15:b5:39:5d:ad:b9:36:1d:ce:de:4f:74:67:52: 4b:ec:ca:64:a7:e3:1f:8b:06:7b:fc:a2:e4:21:09:c6:f1:0c: 70:3f:64:c8:1d:ab:24:b4:bd:21:c5:76:66:2b:10:03:27:29: 12:52:60:a2:05:33:27:83:6f:1f:24:4f:09:0c:f9:88:d7:07: cb:1e:76:54:5e:c8:49:9b:f6:86:7c:57:13:de:89:69:33:4c: b6:25:43:1d:8f:2e:39:d0:06:2c:08:e0:1e:47:fd:be:55:44: 48:73:bd:39:65:1e:5f:70:41:ab:c9:98:f2:26:a8:25:5c:68: 5e:46:9c:7a:2c:18:28:19:de:ef:ec:08:d1:d8:a5:19:f0:f5: c9:29:52:1e:3c:24:06:bd:a4:cf:0f:b2:0f:bd:90:ee:28:09: 96:31:5d:b7:dc:56:43:43:27:32:71:dc:05:90:11:b0:81:a6: 34:84:ac:fe:58:cd:ab:96:35:14:af:02:63:07:8f:df:52:93: 64:33:01:81:b9:48:9a:29:16:fe:61:5d:35:0f:69:4c:63:1e: 00:a3:4b:d1:61:fb:b4:c9:c7:8e:45:f7:1c:1a:91:dc:7c:a1: 42:19:23:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTRS6fI/rAa+BFDqlU/NpmmoiCnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3 OUFCMDQ3MTAeFw0yNDExMjEwOTU1MDJaFw0yNTExMjAxMDAwMDJaMDMxMTAvBgNV BAMTKDJFNDhCNkVDNjUxRkM2MUZFMjE3OEUzQjE1MEZEMTM2NEE0ODAwNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN8NbMeN26j6y/czJFL3jBWQX6 vcTXwQ9yTr52tOCm+045EZpD+CNQiSZzu5FNHfU/rgGs8Raudh9Jcs8xUmWw1Wa9 m0birn79zdxLCKnuwCva/Pplr5FlkRhvlO8QvBIvmPExDZniW1D5iqQNSHDjxZP7 UsudbwY23kIyTbCACM5EOSlp9qWmCiZRZvh1sstz0PHdJM42Wj5aKLFS/4Z1xvga dh5HAn1/42NTtjrJlcIhAXOVGfrKq2j+BZ/VAHa/K7LYsKzW0GOJT1y/LstPPA+9 NfSg/zFmcF6xyNC8aOUJoiOrDnAR8etRkg5xTgMHkHd+UVUyBvvRIB9XzdzjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULki27GUfxh/iF447FQ/RNkpIAEYwHwYDVR0j BBgwFoAUtWPXCKCUsk/DYe3RHJHueXmrBHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDM2ZTA3Yy04MjgzLTQzZDMtOTE2NC0zZTBlNmNhY2Y0OTkvMC9CNTYzRDcwOEEw OTRCMjRGQzM2MUVERDExQzkxRUU3OTc5QUIwNDcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU2M0Q3MDhBMDk0QjI0RkMzNjFFREQxMUM5MUVFNzk3OUFC MDQ3MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwMzZlMDdjLTgyODMtNDNkMy05 MTY0LTNlMGU2Y2FjZjQ5OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnuswDQYJ KoZIhvcNAQELBQADggEBABm5AO1S0nQzkKcUDVfewQQgtz94zLYVtTldrbk2Hc7e T3RnUkvsymSn4x+LBnv8ouQhCcbxDHA/ZMgdqyS0vSHFdmYrEAMnKRJSYKIFMyeD bx8kTwkM+YjXB8sedlReyEmb9oZ8VxPeiWkzTLYlQx2PLjnQBiwI4B5H/b5VREhz vTllHl9wQavJmPImqCVcaF5GnHosGCgZ3u/sCNHYpRnw9ckpUh48JAa9pM8Psg+9 kO4oCZYxXbfcVkNDJzJx3AWQEbCBpjSErP5YzauWNRSvAmMHj99Sk2QzAYG5SJop Fv5hXTUPaUxjHgCjS9Fh+7TJx45F9xwakdx8oUIZI7E= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org