$ rpki-client -vvf repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31382e302f32342d3234203d3e20313338303839.roa File: 3130332e3133312e31382e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: Xf34jGkxVo3XvTaFp3TimXxxSY4P5vn0e8EVY+2zxgw= Subject key identifier: 50:2E:3C:6D:95:82:53:63:AB:BC:B6:7A:36:03:13:1E:C8:21:04:6E Certificate issuer: /CN=62DD415142DDD76FB165A3918E09BA5891D6ADD0 Certificate serial: 0DF63937984BF932923E2F4A295DA22F63DE1A50 Authority key identifier: 62:DD:41:51:42:DD:D7:6F:B1:65:A3:91:8E:09:BA:58:91:D6:AD:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31382e302f32342d3234203d3e20313338303839.roa Signing time: Sat 07 Sep 2024 04:00:02 +0000 ROA not before: Sat 07 Sep 2024 03:55:02 +0000 ROA not after: Sat 06 Sep 2025 04:00:02 +0000 asID: 138089 IP address blocks: 103.131.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.crl rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f6:39:37:98:4b:f9:32:92:3e:2f:4a:29:5d:a2:2f:63:de:1a:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62DD415142DDD76FB165A3918E09BA5891D6ADD0 Validity Not Before: Sep 7 03:55:02 2024 GMT Not After : Sep 6 04:00:02 2025 GMT Subject: CN=502E3C6D95825363ABBCB67A3603131EC821046E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:16:e1:70:51:81:01:19:dd:8a:90:78:0c:dd: 0f:49:b3:18:e1:fd:0d:b8:a6:23:ed:f7:e6:90:df: 5a:68:dd:ed:78:7b:1c:da:9a:3a:cc:a2:1c:01:14: 9a:94:fe:9d:c2:63:a6:0b:ae:29:ac:90:b1:5c:a4: a6:b6:e5:81:ae:10:0e:55:a2:cb:64:3d:3b:51:44: ee:e8:82:f1:62:fd:9a:e8:90:a1:a6:62:e0:b3:08: 6d:a9:e3:f1:78:34:c4:ab:e1:76:b5:8c:f2:c1:47: 03:9b:c0:7e:de:7a:a7:70:42:c5:c8:8d:84:8b:8a: 4c:54:70:68:63:22:bd:da:a6:86:24:e7:7c:c7:32: 6a:f7:7e:76:48:bc:4f:d0:46:fa:ff:86:7d:e8:04: b8:0a:f5:91:18:8b:b4:e9:ad:c0:98:a6:e4:96:8b: a1:07:3b:3e:36:1e:7b:ee:20:f6:31:75:fd:24:b2: 58:5e:f8:f3:14:66:1d:14:35:21:fe:45:55:68:ac: 21:bb:15:dd:50:ee:0f:41:47:dd:5e:27:d1:69:73: 2c:85:f8:d2:ce:66:8e:cd:4f:6d:5e:62:40:f8:c5: 88:3c:4c:b3:46:8b:bf:04:49:02:1d:ff:84:a4:5e: 96:c4:16:f2:6c:3e:11:24:c3:b8:a6:6a:a1:a0:75: fb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2E:3C:6D:95:82:53:63:AB:BC:B6:7A:36:03:13:1E:C8:21:04:6E X509v3 Authority Key Identifier: keyid:62:DD:41:51:42:DD:D7:6F:B1:65:A3:91:8E:09:BA:58:91:D6:AD:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/62DD415142DDD76FB165A3918E09BA5891D6ADD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/62DD415142DDD76FB165A3918E09BA5891D6ADD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9904f670-7dac-4cf4-991d-50539e3d3f5e/0/3130332e3133312e31382e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.18.0/24 Signature Algorithm: sha256WithRSAEncryption 28:b1:dd:01:cc:5f:25:d6:b1:9d:a7:33:70:a0:23:74:f7:d7: 2e:59:a5:29:53:ec:dc:dc:88:14:cd:13:99:2d:da:d0:5f:be: ec:9b:7e:0c:c8:fc:e3:67:b6:e2:38:72:1b:fa:75:5c:a5:9a: fc:0d:ba:8e:3f:41:4b:6d:c3:8c:cc:6f:94:61:10:89:ee:ca: 51:c7:5e:0e:b1:d4:1e:a4:9d:d7:e6:b6:cb:b3:cd:76:a0:a3: bc:a4:bf:f8:fb:2d:5d:15:06:e5:8c:58:d7:20:9e:5b:01:3a: 5a:e0:f0:bf:fa:74:ec:d4:ee:cf:a8:7b:13:0a:ce:59:80:4b: 16:05:a1:60:e3:99:84:c5:1d:a8:ba:39:35:ee:f7:f2:be:05: 2b:a4:27:13:bc:63:51:db:eb:92:04:95:de:24:c7:51:48:47: a8:93:37:21:12:fb:e6:3f:40:cd:4f:67:a4:3d:d3:9d:e4:7e: 1b:44:72:52:24:84:b6:3c:63:7b:28:5a:c7:8a:95:fd:e0:8c: f7:b5:6b:f2:b6:77:34:f2:3f:1e:98:c5:46:b1:6a:4b:cc:78: 69:c9:5b:af:6a:00:24:c8:bd:e0:85:05:e1:5a:f2:76:7a:7c: ce:25:28:3c:6d:e1:ee:36:57:1b:cf:a5:bb:a2:d0:cb:ed:c2: 68:6e:45:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDfY5N5hL+TKSPi9KKV2iL2PeGlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJERDQxNTE0MkRERDc2RkIxNjVBMzkxOEUwOUJBNTg5 MUQ2QUREMDAeFw0yNDA5MDcwMzU1MDJaFw0yNTA5MDYwNDAwMDJaMDMxMTAvBgNV BAMTKDUwMkUzQzZEOTU4MjUzNjNBQkJDQjY3QTM2MDMxMzFFQzgyMTA0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVFuFwUYEBGd2KkHgM3Q9Jsxjh /Q24piPt9+aQ31po3e14exzamjrMohwBFJqU/p3CY6YLrimskLFcpKa25YGuEA5V ostkPTtRRO7ogvFi/ZrokKGmYuCzCG2p4/F4NMSr4Xa1jPLBRwObwH7eeqdwQsXI jYSLikxUcGhjIr3apoYk53zHMmr3fnZIvE/QRvr/hn3oBLgK9ZEYi7TprcCYpuSW i6EHOz42HnvuIPYxdf0kslhe+PMUZh0UNSH+RVVorCG7Fd1Q7g9BR91eJ9FpcyyF +NLOZo7NT21eYkD4xYg8TLNGi78ESQId/4SkXpbEFvJsPhEkw7imaqGgdfv7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUC48bZWCU2OrvLZ6NgMTHsghBG4wHwYDVR0j BBgwFoAUYt1BUULd12+xZaORjgm6WJHWrdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTA0ZjY3MC03ZGFjLTRjZjQtOTkxZC01MDUzOWUzZDNmNWUvMC82MkRENDE1MTQy RERENzZGQjE2NUEzOTE4RTA5QkE1ODkxRDZBREQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjJERDQxNTE0MkRERDc2RkIxNjVBMzkxOEUwOUJBNTg5MUQ2 QUREMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5MDRmNjcwLTdkYWMtNGNmNC05 OTFkLTUwNTM5ZTNkM2Y1ZS8wLzMxMzAzMzJlMzEzMzMxMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4MSMA0GCSqG SIb3DQEBCwUAA4IBAQAosd0BzF8l1rGdpzNwoCN099cuWaUpU+zc3IgUzROZLdrQ X77sm34MyPzjZ7biOHIb+nVcpZr8DbqOP0FLbcOMzG+UYRCJ7spRx14OsdQepJ3X 5rbLs812oKO8pL/4+y1dFQbljFjXIJ5bATpa4PC/+nTs1O7PqHsTCs5ZgEsWBaFg 45mExR2oujk17vfyvgUrpCcTvGNR2+uSBJXeJMdRSEeokzchEvvmP0DNT2ekPdOd 5H4bRHJSJIS2PGN7KFrHipX94Iz3tWvytnc08j8emMVGsWpLzHhpyVuvagAkyL3g hQXhWvJ2enzOJSg8beHuNlcbz6W7otDL7cJobkWF -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org