$ rpki-client -vvf repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231302e302f32342d3234203d3e20313439373136.roa File: 3130332e3138362e3231302e302f32342d3234203d3e20313439373136.roa (raw, json) Hash identifier: 3jA9f0ppafr8vZBbgunoMJIT5jw/2ee+NqURzJmhs3E= Subject key identifier: D6:7B:6A:97:FA:ED:BE:57:CD:F7:1C:3D:7D:36:9E:BC:75:84:74:6A Certificate issuer: /CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Certificate serial: 1E2B708E6EA1C4391ADEAF8F3ADC96C15714A240 Authority key identifier: 1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231302e302f32342d3234203d3e20313439373136.roa Signing time: Mon 13 May 2024 07:03:06 +0000 ROA not before: Mon 13 May 2024 06:58:06 +0000 ROA not after: Mon 12 May 2025 07:03:06 +0000 asID: 149716 IP address blocks: 103.186.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 23:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:2b:70:8e:6e:a1:c4:39:1a:de:af:8f:3a:dc:96:c1:57:14:a2:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Validity Not Before: May 13 06:58:06 2024 GMT Not After : May 12 07:03:06 2025 GMT Subject: CN=D67B6A97FAEDBE57CDF71C3D7D369EBC7584746A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:85:f3:4d:b9:7d:d0:41:c2:56:c8:be:21:e0: d2:8d:e4:84:30:b3:02:40:c8:2e:14:36:42:92:50: f0:00:70:e4:b6:65:3d:60:0b:d4:9c:31:41:5e:4a: 93:d2:86:0a:ca:23:6f:20:aa:34:4f:1b:24:67:4c: 83:a9:db:25:cf:74:7a:ec:f0:8b:fd:68:7a:8a:6c: 33:1c:eb:7a:9c:2d:49:54:02:12:c6:21:5b:11:ef: 29:b1:55:17:63:8d:00:7d:2e:03:56:9c:8f:3c:31: 84:19:9f:e7:f9:40:69:3f:42:48:45:ca:16:2b:a8: 1b:e0:0f:45:65:ab:b9:24:f4:24:71:49:f7:b5:70: 42:cc:ae:11:46:d9:95:01:be:e7:f7:5c:38:13:3b: b8:55:e9:83:ba:ba:23:5c:14:44:37:8d:89:c5:b4: bc:a7:4f:c2:cb:6c:66:7a:6b:96:b9:06:d9:c6:5a: 6d:74:15:e0:3e:2d:49:dc:5e:c6:03:b0:dd:b3:69: 39:2e:8e:d3:87:c4:84:6c:77:33:71:af:50:ee:a0: e5:2c:e0:d3:58:52:da:67:4f:9d:b4:04:36:b6:1d: 55:bb:f9:d8:6c:86:0a:47:cf:b8:3c:3d:35:51:8d: 73:cc:aa:72:2b:7a:bc:7c:52:6d:49:4a:1b:39:9a: 4b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7B:6A:97:FA:ED:BE:57:CD:F7:1C:3D:7D:36:9E:BC:75:84:74:6A X509v3 Authority Key Identifier: keyid:1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231302e302f32342d3234203d3e20313439373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.210.0/24 Signature Algorithm: sha256WithRSAEncryption 32:73:94:ff:99:41:bb:9d:50:58:c5:fd:b7:cd:ad:0b:f7:8d: 51:f0:e4:4a:a6:12:5b:aa:bc:d1:f4:a3:bf:cc:87:f6:bb:43: 10:0c:31:f9:a0:18:9e:c9:2c:43:f1:0e:48:d3:0e:58:9c:96: c1:31:f2:f1:b2:6c:0d:29:5a:29:b3:7a:64:1e:88:b5:cc:81: 5e:38:ed:2c:f4:93:f9:be:67:10:ca:eb:53:32:84:14:a7:5d: ba:8a:50:a2:9f:55:21:c4:a7:8e:dc:e4:bc:ce:32:52:14:4b: 7e:55:6f:fa:5f:40:c3:e0:6f:65:95:0b:69:9a:4a:17:95:6c: 48:7b:8f:35:d3:2b:c9:4f:a3:f2:0d:c5:24:4d:c6:22:2b:b9: 3e:bd:e7:b2:11:03:d7:da:00:71:b5:11:26:99:ca:f5:83:9b: 0d:86:1b:bc:18:9a:8e:22:9c:09:8d:0e:66:bc:56:3a:71:6e: ff:84:62:72:92:d0:ce:d7:51:ee:84:01:4d:ee:bc:6c:1b:b0: f0:b4:60:14:75:ad:4e:07:aa:e2:6c:c7:eb:a3:30:02:bc:2a: 85:2c:f2:c2:1a:a4:9a:2a:a5:b6:40:65:8f:fd:57:ba:b4:58: 3d:35:2c:b0:96:1d:b7:54:6d:6a:97:05:84:a4:fd:54:1b:db: b9:26:88:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHitwjm6hxDka3q+POtyWwVcUokAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JF OEU4M0E3QjAeFw0yNDA1MTMwNjU4MDZaFw0yNTA1MTIwNzAzMDZaMDMxMTAvBgNV BAMTKEQ2N0I2QTk3RkFFREJFNTdDREY3MUMzRDdEMzY5RUJDNzU4NDc0NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqhfNNuX3QQcJWyL4h4NKN5IQw swJAyC4UNkKSUPAAcOS2ZT1gC9ScMUFeSpPShgrKI28gqjRPGyRnTIOp2yXPdHrs 8Iv9aHqKbDMc63qcLUlUAhLGIVsR7ymxVRdjjQB9LgNWnI88MYQZn+f5QGk/QkhF yhYrqBvgD0Vlq7kk9CRxSfe1cELMrhFG2ZUBvuf3XDgTO7hV6YO6uiNcFEQ3jYnF tLynT8LLbGZ6a5a5BtnGWm10FeA+LUncXsYDsN2zaTkujtOHxIRsdzNxr1DuoOUs 4NNYUtpnT520BDa2HVW7+dhshgpHz7g8PTVRjXPMqnIrerx8Um1JShs5mkvFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1ntql/rtvlfN9xw9fTaevHWEdGowHwYDVR0j BBgwFoAUHSE4XrWz+Cx9GrXH/T7ye+joOnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGRjZWY2NS01ZGUzLTQxMjktYWMyNy03NzA2ZDcyNjYwMDEvMC8xRDIxMzg1RUI1 QjNGODJDN0QxQUI1QzdGRDNFRjI3QkU4RTgzQTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JFOEU4 M0E3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0ZGNlZjY1LTVkZTMtNDEyOS1h YzI3LTc3MDZkNzI2NjAwMS8wLzMxMzAzMzJlMzEzODM2MmUzMjMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnutIwDQYJ KoZIhvcNAQELBQADggEBADJzlP+ZQbudUFjF/bfNrQv3jVHw5EqmEluqvNH0o7/M h/a7QxAMMfmgGJ7JLEPxDkjTDliclsEx8vGybA0pWimzemQeiLXMgV447Sz0k/m+ ZxDK61MyhBSnXbqKUKKfVSHEp47c5LzOMlIUS35Vb/pfQMPgb2WVC2maSheVbEh7 jzXTK8lPo/INxSRNxiIruT6957IRA9faAHG1ESaZyvWDmw2GG7wYmo4inAmNDma8 Vjpxbv+EYnKS0M7XUe6EAU3uvGwbsPC0YBR1rU4HquJsx+ujMAK8KoUs8sIapJoq pbZAZY/9V7q0WD01LLCWHbdUbWqXBYSk/VQb27kmiLE= -----END CERTIFICATE-----Generated at Thu Sep 26 21:10:34 2024 by rpki-client on console-ams.rpki-client.org