$ rpki-client -vvf repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/3130332e3134392e3136342e302f32342d3234203d3e20313430303232.roa File: 3130332e3134392e3136342e302f32342d3234203d3e20313430303232.roa (raw, json) Hash identifier: K58hS10IRX+zau5OGGRyu9JQqy2xuB39owD+O8xQ0hc= Subject key identifier: B8:8D:30:3B:51:D9:90:4A:A3:31:DE:6A:B4:73:92:68:D9:0E:80:43 Certificate issuer: /CN=D8F283D13C79D458461D8E83A481638975B3D90B Certificate serial: 7A8853111295D9BA931AFFB6D8304C5F7046182D Authority key identifier: D8:F2:83:D1:3C:79:D4:58:46:1D:8E:83:A4:81:63:89:75:B3:D9:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D8F283D13C79D458461D8E83A481638975B3D90B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/3130332e3134392e3136342e302f32342d3234203d3e20313430303232.roa Signing time: Sat 28 Sep 2024 07:00:02 +0000 ROA not before: Sat 28 Sep 2024 06:55:02 +0000 ROA not after: Sat 27 Sep 2025 07:00:02 +0000 asID: 140022 IP address blocks: 103.149.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/D8F283D13C79D458461D8E83A481638975B3D90B.crl rsync://repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/D8F283D13C79D458461D8E83A481638975B3D90B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D8F283D13C79D458461D8E83A481638975B3D90B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:88:53:11:12:95:d9:ba:93:1a:ff:b6:d8:30:4c:5f:70:46:18:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F283D13C79D458461D8E83A481638975B3D90B Validity Not Before: Sep 28 06:55:02 2024 GMT Not After : Sep 27 07:00:02 2025 GMT Subject: CN=B88D303B51D9904AA331DE6AB4739268D90E8043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0b:0a:6a:aa:c3:a8:01:e3:fe:d3:8c:3d:bc: d1:f9:f5:49:32:34:24:68:55:ef:a8:1b:49:14:78: b1:2a:29:fe:cd:fc:b7:be:6b:16:f8:81:d7:61:c1: 0f:48:96:58:42:5d:f2:4b:30:d1:b6:92:c7:da:a5: 62:b7:df:fe:a5:18:ae:01:5d:c5:17:c8:7d:3b:45: 22:87:ed:f0:1e:c1:09:cc:84:49:84:e8:b4:35:27: 41:9d:a4:0a:79:75:ea:a4:b8:6c:ad:86:42:15:36: 73:00:01:35:0e:d0:fb:ad:50:42:61:53:97:a1:b6: 05:16:1e:79:8c:5e:d6:54:2f:2f:bb:80:1f:30:a7: 19:ea:a6:ee:e0:fb:cd:39:e0:26:41:ad:1f:74:7e: 57:c5:4e:84:47:62:7c:e3:14:16:d4:90:1b:d8:52: 0f:a1:c7:1f:0b:74:f7:df:52:d6:f8:7e:e6:54:2d: 21:7c:08:c6:e3:9b:4e:be:c2:51:a4:bc:fb:6f:ea: 90:e9:aa:75:c3:09:47:bb:88:a6:b7:1c:ff:05:34: ee:57:70:cb:0d:61:2e:0e:0b:19:f3:9e:b9:05:f5: 95:37:02:10:e0:94:2e:15:78:8e:60:f6:7f:a8:6c: 9d:ac:10:9b:91:79:84:4c:0e:db:48:29:bb:3b:c9: 98:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8D:30:3B:51:D9:90:4A:A3:31:DE:6A:B4:73:92:68:D9:0E:80:43 X509v3 Authority Key Identifier: keyid:D8:F2:83:D1:3C:79:D4:58:46:1D:8E:83:A4:81:63:89:75:B3:D9:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/D8F283D13C79D458461D8E83A481638975B3D90B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D8F283D13C79D458461D8E83A481638975B3D90B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9f9c446f-d971-4b5e-b269-1e83d3a14fef/0/3130332e3134392e3136342e302f32342d3234203d3e20313430303232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.164.0/24 Signature Algorithm: sha256WithRSAEncryption b0:47:42:12:a3:14:d1:55:0c:b7:f1:43:27:3f:d0:c9:45:90: 53:b0:8d:4f:18:64:cc:5f:dd:d0:f0:cd:72:cc:69:cc:aa:3d: 96:c8:14:81:df:15:8f:ac:62:ed:0d:8b:bf:d1:d7:ea:eb:88: 54:7a:3b:54:a1:d7:01:4d:06:bc:8b:80:5d:4d:1a:1c:94:ff: 4a:7d:15:29:21:7a:74:04:03:55:d1:7f:8c:e3:10:23:6d:ff: e2:8e:16:35:cc:25:3a:4f:d1:a3:31:a3:8e:51:61:ad:9f:1e: 06:31:89:0a:76:57:45:5b:94:37:92:42:39:79:47:1a:32:4b: 66:40:ba:25:35:56:d1:bc:43:8f:d2:3b:ae:1c:53:39:19:02: 0b:9d:bd:c6:71:bf:e9:a4:5e:d7:d3:84:14:e8:75:db:cc:23: 70:f0:15:40:c5:0e:da:6a:4b:c4:cc:ff:86:d2:0f:af:b8:b9: fd:14:62:fa:18:20:90:c4:79:02:5a:74:a6:a6:0c:eb:5f:28: 3b:a0:c1:03:60:27:05:4a:34:cf:6a:62:3d:3c:c9:3c:d2:39: 2e:4c:43:a3:1e:41:47:d1:dd:0f:ae:28:6d:b0:62:3c:99:13: 4c:e5:80:23:01:81:9a:0f:30:a8:2e:2c:23:c5:e2:7c:89:9a: 27:56:cf:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeohTERKV2bqTGv+22DBMX3BGGC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhGMjgzRDEzQzc5RDQ1ODQ2MUQ4RTgzQTQ4MTYzODk3 NUIzRDkwQjAeFw0yNDA5MjgwNjU1MDJaFw0yNTA5MjcwNzAwMDJaMDMxMTAvBgNV BAMTKEI4OEQzMDNCNTFEOTkwNEFBMzMxREU2QUI0NzM5MjY4RDkwRTgwNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJCwpqqsOoAeP+04w9vNH59Uky NCRoVe+oG0kUeLEqKf7N/Le+axb4gddhwQ9IllhCXfJLMNG2ksfapWK33/6lGK4B XcUXyH07RSKH7fAewQnMhEmE6LQ1J0GdpAp5deqkuGythkIVNnMAATUO0PutUEJh U5ehtgUWHnmMXtZULy+7gB8wpxnqpu7g+8054CZBrR90flfFToRHYnzjFBbUkBvY Ug+hxx8LdPffUtb4fuZULSF8CMbjm06+wlGkvPtv6pDpqnXDCUe7iKa3HP8FNO5X cMsNYS4OCxnznrkF9ZU3AhDglC4VeI5g9n+obJ2sEJuReYRMDttIKbs7yZhHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuI0wO1HZkEqjMd5qtHOSaNkOgEMwHwYDVR0j BBgwFoAU2PKD0Tx51FhGHY6DpIFjiXWz2QswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZjljNDQ2Zi1kOTcxLTRiNWUtYjI2OS0xZTgzZDNhMTRmZWYvMC9EOEYyODNEMTND NzlENDU4NDYxRDhFODNBNDgxNjM4OTc1QjNEOTBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDhGMjgzRDEzQzc5RDQ1ODQ2MUQ4RTgzQTQ4MTYzODk3NUIz RDkwQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmOWM0NDZmLWQ5NzEtNGI1ZS1i MjY5LTFlODNkM2ExNGZlZi8wLzMxMzAzMzJlMzEzNDM5MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlaQwDQYJ KoZIhvcNAQELBQADggEBALBHQhKjFNFVDLfxQyc/0MlFkFOwjU8YZMxf3dDwzXLM acyqPZbIFIHfFY+sYu0Ni7/R1+rriFR6O1Sh1wFNBryLgF1NGhyU/0p9FSkhenQE A1XRf4zjECNt/+KOFjXMJTpP0aMxo45RYa2fHgYxiQp2V0VblDeSQjl5RxoyS2ZA uiU1VtG8Q4/SO64cUzkZAgudvcZxv+mkXtfThBToddvMI3DwFUDFDtpqS8TM/4bS D6+4uf0UYvoYIJDEeQJadKamDOtfKDugwQNgJwVKNM9qYj08yTzSOS5MQ6MeQUfR 3Q+uKG2wYjyZE0zlgCMBgZoPMKguLCPF4nyJmidWz44= -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:15 2024 by rpki-client on console-fra.rpki-client.org