$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa File: 3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: fvUsqEu1yJ3rrNA9ZlZ2N09GYSY/mZUEmLm5vWqlHGo= Subject key identifier: 25:40:60:6D:A5:B7:BF:D3:94:9B:3E:E1:6E:EA:B6:58:67:03:5D:B5 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 4DE8025F2E39F3B709220B9CC4E7D160AF7481DD Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa Signing time: Tue 13 Aug 2024 05:15:59 +0000 ROA not before: Tue 13 Aug 2024 05:10:59 +0000 ROA not after: Tue 12 Aug 2025 05:15:59 +0000 asID: 23679 IP address blocks: 103.238.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e8:02:5f:2e:39:f3:b7:09:22:0b:9c:c4:e7:d1:60:af:74:81:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Aug 13 05:10:59 2024 GMT Not After : Aug 12 05:15:59 2025 GMT Subject: CN=2540606DA5B7BFD3949B3EE16EEAB65867035DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:a7:09:18:a4:fd:f9:03:b0:57:8a:c1:19: d5:c1:21:eb:66:2f:33:f9:09:e6:87:83:48:ac:b0: 53:86:ea:2d:6f:7e:29:6b:55:82:34:93:d2:cc:9b: 48:dc:f7:2e:5c:94:41:cb:ea:e8:4b:7c:cb:c8:0f: 75:c4:2f:28:16:7e:51:fe:04:be:eb:d8:9f:fa:26: 82:c2:47:00:52:e0:bc:9c:17:c5:51:83:ad:fe:8d: 94:73:91:69:6c:a9:8c:60:10:e6:29:6d:9d:74:25: dd:1e:dc:e0:26:68:d0:4d:da:f8:09:be:00:66:3d: 29:8a:a0:96:50:37:dd:99:38:a3:23:db:ad:39:08: 43:e3:d7:12:a1:7d:48:7a:df:82:4f:40:b9:94:77: 53:fe:dc:e5:dd:3d:5d:66:23:42:f8:e4:e7:21:8c: d9:7f:e3:7e:c1:91:26:6a:ef:3d:3d:04:fc:59:48: b2:b7:c5:03:ca:22:35:6d:4e:51:6b:81:e9:31:9f: fe:0f:10:28:a7:fb:df:1d:36:4b:c0:83:79:51:f4: cf:e9:73:53:1d:19:b5:c4:b3:e8:6e:4e:5d:0e:cd: 5d:15:b7:33:c5:b9:81:cb:3f:ec:a0:4a:3f:69:0b: 19:55:0b:d0:5a:80:04:55:f8:86:27:59:50:d9:40: c3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:40:60:6D:A5:B7:BF:D3:94:9B:3E:E1:6E:EA:B6:58:67:03:5D:B5 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/3130332e3233382e3230302e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.200.0/24 Signature Algorithm: sha256WithRSAEncryption c7:63:6e:e1:9e:cb:3d:f4:71:1f:59:16:7c:50:f2:0f:0b:8b: 8c:09:d7:23:f6:bd:82:22:2d:90:34:0a:fa:d5:3f:94:c3:8f: 31:85:47:f6:73:b0:3a:c5:72:d4:75:79:a7:ab:c6:88:76:90: d2:d9:2f:30:3d:cc:98:1e:fb:8d:16:ee:28:58:c9:27:0f:4d: 27:4d:11:29:72:dd:48:f4:ed:f2:cc:76:65:48:61:a8:c9:0e: 02:29:b8:94:f6:b8:f6:e6:1a:10:eb:4d:ac:f5:35:36:9f:b3: c6:6c:4d:84:73:1b:26:bf:9a:4a:81:ed:e6:39:e8:dd:24:6f: b0:ff:d2:11:a4:9e:82:d3:f2:83:64:bf:b2:18:37:f8:6f:3f: db:97:13:fc:d5:72:62:53:5a:9e:7a:12:5f:ff:11:ff:bd:fb: ee:ba:74:86:38:06:f4:b5:ee:90:e5:55:ac:14:51:34:1b:54: 8b:b2:79:64:dd:79:2e:d9:77:11:30:ba:ef:35:80:f1:a3:6a: af:29:94:d2:0b:64:09:b1:e9:89:89:cb:af:6d:2f:79:be:25: 86:d7:df:f9:5c:a8:81:4a:24:28:67:ac:9c:95:ae:28:46:58: 2d:e8:d8:9b:d8:20:09:93:33:a6:97:03:12:6a:52:97:b2:0f: aa:45:6c:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTegCXy4587cJIgucxOfRYK90gd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNDA4MTMwNTEwNTlaFw0yNTA4MTIwNTE1NTlaMDMxMTAvBgNV BAMTKDI1NDA2MDZEQTVCN0JGRDM5NDlCM0VFMTZFRUFCNjU4NjcwMzVEQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEuacJGKT9+QOwV4rBGdXBIetm LzP5CeaHg0issFOG6i1vfilrVYI0k9LMm0jc9y5clEHL6uhLfMvID3XELygWflH+ BL7r2J/6JoLCRwBS4LycF8VRg63+jZRzkWlsqYxgEOYpbZ10Jd0e3OAmaNBN2vgJ vgBmPSmKoJZQN92ZOKMj2605CEPj1xKhfUh634JPQLmUd1P+3OXdPV1mI0L45Och jNl/437BkSZq7z09BPxZSLK3xQPKIjVtTlFrgekxn/4PECin+98dNkvAg3lR9M/p c1MdGbXEs+huTl0OzV0VtzPFuYHLP+ygSj9pCxlVC9BagARV+IYnWVDZQMMtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJUBgbaW3v9OUmz7hbuq2WGcDXbUwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMxMzAzMzJlMzIzMzM4MmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+7IMA0GCSqG SIb3DQEBCwUAA4IBAQDHY27hnss99HEfWRZ8UPIPC4uMCdcj9r2CIi2QNAr61T+U w48xhUf2c7A6xXLUdXmnq8aIdpDS2S8wPcyYHvuNFu4oWMknD00nTREpct1I9O3y zHZlSGGoyQ4CKbiU9rj25hoQ602s9TU2n7PGbE2Ecxsmv5pKge3mOejdJG+w/9IR pJ6C0/KDZL+yGDf4bz/blxP81XJiU1qeehJf/xH/vfvuunSGOAb0te6Q5VWsFFE0 G1SLsnlk3Xku2XcRMLrvNYDxo2qvKZTSC2QJsemJicuvbS95viWG19/5XKiBSiQo Z6ycla4oRlgt6Nib2CAJkzOmlwMSalKXsg+qRWwd -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org