$ rpki-client -vvf repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/3130332e3234392e31382e302f32332d3234203d3e20313530323036.roa File: 3130332e3234392e31382e302f32332d3234203d3e20313530323036.roa (raw, json) Hash identifier: DosNBVvG/mNZrbfK8xOW4pKXn6U50/RnzhDzWQH4w3g= Subject key identifier: E4:79:20:F3:6A:CB:EA:0A:A7:A8:8D:FE:DC:00:9E:FF:53:5D:04:5F Certificate issuer: /CN=7550CB259B6FC4F92E6394C525534C077F5C7D27 Certificate serial: 10EEB77973714EC0BFBACBBDF8F7ABFC9CAB6AC6 Authority key identifier: 75:50:CB:25:9B:6F:C4:F9:2E:63:94:C5:25:53:4C:07:7F:5C:7D:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7550CB259B6FC4F92E6394C525534C077F5C7D27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/3130332e3234392e31382e302f32332d3234203d3e20313530323036.roa Signing time: Wed 18 Sep 2024 03:00:01 +0000 ROA not before: Wed 18 Sep 2024 02:55:01 +0000 ROA not after: Wed 17 Sep 2025 03:00:01 +0000 asID: 150206 IP address blocks: 103.249.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/7550CB259B6FC4F92E6394C525534C077F5C7D27.crl rsync://repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/7550CB259B6FC4F92E6394C525534C077F5C7D27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7550CB259B6FC4F92E6394C525534C077F5C7D27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ee:b7:79:73:71:4e:c0:bf:ba:cb:bd:f8:f7:ab:fc:9c:ab:6a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7550CB259B6FC4F92E6394C525534C077F5C7D27 Validity Not Before: Sep 18 02:55:01 2024 GMT Not After : Sep 17 03:00:01 2025 GMT Subject: CN=E47920F36ACBEA0AA7A88DFEDC009EFF535D045F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:0e:57:c9:4f:bd:61:47:c8:9c:f0:66:a9: 0c:5e:41:5f:42:f3:58:0a:ac:e9:dd:5f:c8:95:33: a9:38:db:51:d8:54:a4:01:29:b4:4b:00:cc:4e:7a: 46:a5:49:41:28:4a:a2:d0:98:e5:1e:36:18:1b:54: 4f:f8:4c:7d:ba:f0:25:16:38:11:21:10:5c:68:e7: d9:f5:5a:e1:42:bf:4e:66:6c:90:53:67:0d:5e:bf: 5b:b7:fa:b7:2a:13:d0:f0:e6:91:2a:a9:43:4a:61: d7:21:8f:a6:68:f0:f5:f5:45:b8:7c:9a:cc:20:a3: fd:77:e2:8f:e5:48:78:4a:9d:34:6e:20:6d:7c:eb: 34:f9:2a:28:80:fb:4b:d9:66:bd:b4:cc:28:0a:46: 97:7f:a1:a0:2b:60:ee:5f:48:e4:16:ee:aa:7a:b8: fe:c1:37:b1:79:8a:6f:44:0c:ae:64:e2:99:38:ff: 79:46:2a:38:d4:48:2b:b7:a5:11:aa:9a:40:58:39: f5:68:ea:0e:ab:c2:de:ee:b1:92:60:e6:3e:2c:26: 1a:0a:43:5f:70:55:a3:85:09:e9:18:dc:0e:f2:9f: 13:0f:29:5f:31:ca:f5:cb:ee:4f:9e:e3:b0:b8:ca: cf:cc:5c:d8:66:c3:94:2d:f3:5d:d9:0d:8b:fb:09: ab:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:79:20:F3:6A:CB:EA:0A:A7:A8:8D:FE:DC:00:9E:FF:53:5D:04:5F X509v3 Authority Key Identifier: keyid:75:50:CB:25:9B:6F:C4:F9:2E:63:94:C5:25:53:4C:07:7F:5C:7D:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/7550CB259B6FC4F92E6394C525534C077F5C7D27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7550CB259B6FC4F92E6394C525534C077F5C7D27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99104c50-40ff-4aaf-a209-be31ceda679b/0/3130332e3234392e31382e302f32332d3234203d3e20313530323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.249.18.0/23 Signature Algorithm: sha256WithRSAEncryption 02:15:a5:e8:77:e2:23:32:e5:81:a9:b7:60:08:e7:93:26:9f: ec:b5:46:c1:d0:8f:89:43:fa:9a:8f:05:5f:07:d2:80:40:09: ac:10:7c:ad:17:38:cc:c6:5a:67:9a:f8:21:53:a0:04:e0:dd: 43:0f:3e:49:15:9d:f8:11:5c:3f:dd:df:08:23:fc:d2:4d:6b: 66:dd:20:75:f1:f3:2c:74:2f:91:c4:a9:d5:3b:98:95:87:b7: 82:0b:0a:0d:1b:4a:55:f2:9b:49:9d:94:34:b6:e0:78:f7:0f: 2d:8e:6b:6a:7e:50:50:89:f9:95:56:5d:8c:e3:df:d0:91:dd: 13:11:14:f2:98:a1:71:7f:78:94:12:73:ab:fb:ed:5a:98:52: 05:02:16:4d:47:8e:ba:c2:ad:77:a8:98:46:40:2e:1d:57:73: ab:45:16:69:37:2e:aa:41:c0:a8:e2:b4:e7:89:1a:91:20:b6: e9:e2:b1:1a:9c:68:52:88:f4:08:a7:49:2f:b0:5d:bb:ee:cb: 38:a0:f6:6e:38:eb:4b:0f:9d:98:99:38:0b:3b:99:20:d0:c2: 4d:92:7c:97:94:a4:17:9f:65:aa:f2:2d:73:5a:03:b7:51:ef: 1b:d6:b6:1d:e6:fb:79:a5:77:0e:25:d3:c6:9b:e3:86:2e:6c: a6:71:b0:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEO63eXNxTsC/usu9+Per/JyrasYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU1MENCMjU5QjZGQzRGOTJFNjM5NEM1MjU1MzRDMDc3 RjVDN0QyNzAeFw0yNDA5MTgwMjU1MDFaFw0yNTA5MTcwMzAwMDFaMDMxMTAvBgNV BAMTKEU0NzkyMEYzNkFDQkVBMEFBN0E4OERGRURDMDA5RUZGNTM1RDA0NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRWw5XyU+9YUfInPBmqQxeQV9C 81gKrOndX8iVM6k421HYVKQBKbRLAMxOekalSUEoSqLQmOUeNhgbVE/4TH268CUW OBEhEFxo59n1WuFCv05mbJBTZw1ev1u3+rcqE9Dw5pEqqUNKYdchj6Zo8PX1Rbh8 mswgo/134o/lSHhKnTRuIG186zT5KiiA+0vZZr20zCgKRpd/oaArYO5fSOQW7qp6 uP7BN7F5im9EDK5k4pk4/3lGKjjUSCu3pRGqmkBYOfVo6g6rwt7usZJg5j4sJhoK Q19wVaOFCekY3A7ynxMPKV8xyvXL7k+e47C4ys/MXNhmw5Qt813ZDYv7Cau1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5Hkg82rL6gqnqI3+3ACe/1NdBF8wHwYDVR0j BBgwFoAUdVDLJZtvxPkuY5TFJVNMB39cfScwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTEwNGM1MC00MGZmLTRhYWYtYTIwOS1iZTMxY2VkYTY3OWIvMC83NTUwQ0IyNTlC NkZDNEY5MkU2Mzk0QzUyNTUzNEMwNzdGNUM3RDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU1MENCMjU5QjZGQzRGOTJFNjM5NEM1MjU1MzRDMDc3RjVD N0QyNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5MTA0YzUwLTQwZmYtNGFhZi1h MjA5LWJlMzFjZWRhNjc5Yi8wLzMxMzAzMzJlMzIzNDM5MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/kSMA0GCSqG SIb3DQEBCwUAA4IBAQACFaXod+IjMuWBqbdgCOeTJp/stUbB0I+JQ/qajwVfB9KA QAmsEHytFzjMxlpnmvghU6AE4N1DDz5JFZ34EVw/3d8II/zSTWtm3SB18fMsdC+R xKnVO5iVh7eCCwoNG0pV8ptJnZQ0tuB49w8tjmtqflBQifmVVl2M49/Qkd0TERTy mKFxf3iUEnOr++1amFIFAhZNR466wq13qJhGQC4dV3OrRRZpNy6qQcCo4rTniRqR ILbp4rEanGhSiPQIp0kvsF277ss4oPZuOOtLD52YmTgLO5kg0MJNknyXlKQXn2Wq 8i1zWgO3Ue8b1rYd5vt5pXcOJdPGm+OGLmymcbCZ -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org