$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa File: 3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa (raw, json) Hash identifier: 5qpVCvjI9PjIophhb0DrKlY1ZzQUC1Gd5jsIbY8iF5Y= Subject key identifier: F5:61:A8:BD:9E:3C:70:CE:0C:05:DF:D9:A7:01:C0:57:3D:B9:F5:BB Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 2DE86758BC6F628AD026A95757EC0298DBE0BA82 Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa Signing time: Wed 28 Aug 2024 08:00:06 +0000 ROA not before: Wed 28 Aug 2024 07:55:06 +0000 ROA not after: Wed 27 Aug 2025 08:00:06 +0000 asID: 138129 IP address blocks: 103.132.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e8:67:58:bc:6f:62:8a:d0:26:a9:57:57:ec:02:98:db:e0:ba:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Aug 28 07:55:06 2024 GMT Not After : Aug 27 08:00:06 2025 GMT Subject: CN=F561A8BD9E3C70CE0C05DFD9A701C0573DB9F5BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:6d:e4:1a:ac:a8:93:fe:53:47:cc:ab:e9: 1b:56:25:a1:be:cf:33:36:02:fa:bb:77:e2:ff:6e: 8e:c0:22:a2:d3:ac:71:37:ae:fb:b1:cd:b7:60:55: 3f:15:79:5b:a3:02:5b:c2:d0:a1:1c:d6:ba:5f:d4: a1:16:a8:e0:a3:af:b5:58:ce:48:f8:cd:a5:7a:ad: 83:04:a0:7d:28:e0:18:44:1c:5e:8c:73:1b:f1:4e: e3:6b:7f:23:3f:f2:86:58:79:8a:cc:ec:2c:53:d8: 03:e3:9e:8a:7e:30:80:00:c8:d1:ae:14:85:42:e5: 50:56:2a:10:7c:56:08:00:83:2a:c8:82:1e:4e:46: ec:08:f6:a5:b6:a1:d0:97:3e:e2:db:cd:99:01:3e: da:e7:3e:ae:93:55:52:3d:68:d3:f9:2d:41:0b:ad: c0:b0:c3:f4:90:ef:32:18:c3:04:5d:18:0e:c4:b9: 87:dd:66:6b:66:9b:a9:19:a9:68:bf:e4:4f:f6:2f: 66:d1:85:34:20:ca:ab:88:42:64:a5:54:4a:aa:25: 64:0d:4a:bb:be:c2:94:ea:67:bd:15:87:e5:76:90: 5a:11:b7:34:c9:26:f7:0b:f9:92:7c:ad:04:40:84: 04:f1:14:96:05:2e:df:30:b3:03:ef:07:64:09:26: dd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:61:A8:BD:9E:3C:70:CE:0C:05:DF:D9:A7:01:C0:57:3D:B9:F5:BB X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/3130332e3133322e3233362e302f32322d3234203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.236.0/22 Signature Algorithm: sha256WithRSAEncryption 79:7e:3a:39:00:cb:a1:b8:20:98:28:9d:97:9a:cc:12:3c:be: 2e:89:ba:02:48:0f:ab:2b:40:3c:d9:c5:72:38:f4:95:5c:05: 5a:45:4b:1d:ef:61:c9:bd:a8:96:76:f0:30:4c:a5:73:94:e3: be:d2:99:85:4d:c8:37:6c:b4:f1:19:6f:1b:f5:6c:03:75:5d: 45:b8:fc:14:b8:1c:08:42:31:8a:a5:a7:72:35:1d:e4:fa:dc: c5:53:bf:55:0c:70:7a:d7:e7:fa:68:4b:f8:e8:60:41:57:75: 26:94:7e:a3:a0:a7:72:0b:45:c7:82:de:08:b4:ed:eb:52:21: b2:29:a0:72:9c:db:d3:72:39:6b:92:96:cd:20:b1:53:81:96: 71:c2:5a:0e:ce:46:b9:33:32:83:0d:b6:5e:bb:83:27:d4:ed: 8e:6f:1d:c4:f5:71:6b:83:66:c9:ad:ca:32:51:1e:82:c9:ac: ad:50:80:c5:f4:52:1d:6f:3f:d2:b5:bc:7c:13:e8:5b:53:5d: aa:cd:c3:20:91:84:41:15:43:2e:5f:5e:32:b1:1a:3b:78:d7: 10:b6:01:b8:5f:80:cd:68:00:30:f9:ab:51:1c:87:83:63:e0: da:40:db:f2:24:44:cc:2c:58:d7:07:df:7c:62:0f:31:02:3d: 69:a6:54:78 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULehnWLxvYorQJqlXV+wCmNvguoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNDA4MjgwNzU1MDZaFw0yNTA4MjcwODAwMDZaMDMxMTAvBgNV BAMTKEY1NjFBOEJEOUUzQzcwQ0UwQzA1REZEOUE3MDFDMDU3M0RCOUY1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGJW3kGqyok/5TR8yr6RtWJaG+ zzM2Avq7d+L/bo7AIqLTrHE3rvuxzbdgVT8VeVujAlvC0KEc1rpf1KEWqOCjr7VY zkj4zaV6rYMEoH0o4BhEHF6McxvxTuNrfyM/8oZYeYrM7CxT2APjnop+MIAAyNGu FIVC5VBWKhB8VggAgyrIgh5ORuwI9qW2odCXPuLbzZkBPtrnPq6TVVI9aNP5LUEL rcCww/SQ7zIYwwRdGA7EuYfdZmtmm6kZqWi/5E/2L2bRhTQgyquIQmSlVEqqJWQN Sru+wpTqZ70Vh+V2kFoRtzTJJvcL+ZJ8rQRAhATxFJYFLt8wswPvB2QJJt0NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9WGovZ48cM4MBd/ZpwHAVz259bswHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnhOwwDQYJ KoZIhvcNAQELBQADggEBAHl+OjkAy6G4IJgonZeazBI8vi6JugJID6srQDzZxXI4 9JVcBVpFSx3vYcm9qJZ28DBMpXOU477SmYVNyDdstPEZbxv1bAN1XUW4/BS4HAhC MYqlp3I1HeT63MVTv1UMcHrX5/poS/joYEFXdSaUfqOgp3ILRceC3gi07etSIbIp oHKc29NyOWuSls0gsVOBlnHCWg7ORrkzMoMNtl67gyfU7Y5vHcT1cWuDZsmtyjJR HoLJrK1QgMX0Uh1vP9K1vHwT6FtTXarNwyCRhEEVQy5fXjKxGjt41xC2AbhfgM1o ADD5q1Ech4Nj4NpA2/IkRMwsWNcH33xiDzECPWmmVHg= -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org