$ rpki-client -vvf repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa File: 3130332e3135382e32302e302f32332d3234203d3e203236353631.roa (raw, json) Hash identifier: cJOBNoxIG+XdgkJa+RxEvdYzqEAiE0yonzEzhxIBb8I= Subject key identifier: FF:A5:81:BF:FC:99:37:AD:98:E7:65:00:4A:BB:91:EE:83:0B:67:26 Certificate issuer: /CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Certificate serial: 0D5BD8761FA186E71BB17365CC8344CA9E133BD0 Authority key identifier: BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa Signing time: Sun 13 Oct 2024 19:55:00 +0000 ROA not before: Sun 13 Oct 2024 19:50:00 +0000 ROA not after: Sun 12 Oct 2025 19:55:00 +0000 asID: 26561 IP address blocks: 103.158.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5b:d8:76:1f:a1:86:e7:1b:b1:73:65:cc:83:44:ca:9e:13:3b:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Validity Not Before: Oct 13 19:50:00 2024 GMT Not After : Oct 12 19:55:00 2025 GMT Subject: CN=FFA581BFFC9937AD98E765004ABB91EE830B6726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6e:f7:96:6b:ac:f5:6d:17:af:b0:b3:e6:5e: 7f:36:5d:57:70:75:a0:ac:23:8f:be:0c:bc:17:04: b2:ce:5c:d9:34:dd:43:84:27:e5:cd:43:86:51:cc: 50:02:0f:c4:ea:6b:28:0c:68:e5:56:99:02:c4:5d: b6:2b:11:ed:cc:78:83:8a:0b:4c:f8:52:00:e7:1e: a4:d8:b9:64:49:00:a5:cb:b5:52:f1:83:92:dc:68: 24:f4:82:73:e5:87:36:a0:b2:30:4e:b0:2d:0d:78: ab:09:54:e9:15:9b:db:d4:8e:87:66:ed:a1:9a:b3: df:81:4f:f6:d4:96:bc:28:95:36:1a:f8:11:3a:e0: 04:c4:42:65:51:85:c0:0b:08:07:4c:05:6b:55:3b: de:1a:78:ab:80:66:cf:f6:d4:aa:0b:1e:3c:cd:f5: 2e:bc:2e:bc:4f:98:45:0d:6d:6b:07:13:76:ba:7c: 2d:1d:c8:1c:09:45:f8:a9:da:15:35:4a:e4:29:2b: fa:9b:42:63:dd:b6:3a:46:11:e3:36:2e:59:49:75: cf:ce:fd:bd:6c:f6:89:ee:97:49:cd:28:85:b6:3a: 5e:6c:61:c4:1e:d9:e1:1c:69:80:1f:ec:33:53:bd: 5c:57:71:31:c9:cf:4c:74:8f:64:2e:eb:fe:dc:ae: 0d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A5:81:BF:FC:99:37:AD:98:E7:65:00:4A:BB:91:EE:83:0B:67:26 X509v3 Authority Key Identifier: keyid:BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.20.0/23 Signature Algorithm: sha256WithRSAEncryption b3:46:36:5d:7f:1a:03:99:9a:72:df:ea:66:09:e2:b8:1a:6a: a7:38:9d:5d:8a:a6:8a:71:6f:8d:6a:45:db:2d:fc:d5:3f:ab: e1:aa:90:63:1d:f3:8c:ab:e4:62:d4:8f:93:64:72:b7:f6:1f: 89:e7:e6:49:6a:7e:3b:c7:f4:03:75:00:fa:41:af:be:09:08: 68:89:d9:b0:9b:25:7b:92:c3:cc:54:29:50:6a:7e:5a:8b:da: 20:43:13:92:34:02:42:a8:b9:ea:d5:89:39:92:38:83:3c:94: a6:04:08:0c:40:aa:72:be:d4:2e:0a:3f:4f:76:e1:2f:21:a5: 38:87:f2:7e:10:c8:b6:17:7b:aa:97:eb:fc:88:a8:0f:79:5b: 6f:1c:94:61:a9:fc:a5:59:2b:14:bc:26:2c:0c:87:ad:8e:8a: 4d:24:ef:2f:42:7f:d0:12:8b:fd:40:76:26:97:a1:14:77:e7: b3:da:61:71:d2:d4:95:e0:bf:a3:d1:b9:8f:f8:6c:ce:4e:0f: ea:ec:f3:ab:af:e8:ac:9e:0a:c2:b3:37:b4:2a:56:63:77:ca: 7f:bc:8e:3f:cc:6e:f0:9e:67:35:b8:4a:ca:82:36:f9:73:3a: 4b:be:a3:9d:5a:bf:ac:89:d5:72:6f:10:bc:aa:61:9a:d3:86: 41:63:18:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDVvYdh+hhucbsXNlzINEyp4TO9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1 MzVBMUFENDAeFw0yNDEwMTMxOTUwMDBaFw0yNTEwMTIxOTU1MDBaMDMxMTAvBgNV BAMTKEZGQTU4MUJGRkM5OTM3QUQ5OEU3NjUwMDRBQkI5MUVFODMwQjY3MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCybveWa6z1bRevsLPmXn82XVdw daCsI4++DLwXBLLOXNk03UOEJ+XNQ4ZRzFACD8TqaygMaOVWmQLEXbYrEe3MeIOK C0z4UgDnHqTYuWRJAKXLtVLxg5LcaCT0gnPlhzagsjBOsC0NeKsJVOkVm9vUjodm 7aGas9+BT/bUlrwolTYa+BE64ATEQmVRhcALCAdMBWtVO94aeKuAZs/21KoLHjzN 9S68LrxPmEUNbWsHE3a6fC0dyBwJRfip2hU1SuQpK/qbQmPdtjpGEeM2LllJdc/O /b1s9onul0nNKIW2Ol5sYcQe2eEcaYAf7DNTvVxXcTHJz0x0j2Qu6/7crg3jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/6WBv/yZN62Y52UASruR7oMLZyYwHwYDVR0j BBgwFoAUvoK0aZmKnoKfiCZVyZpaBVNaGtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDgxYWMwMS1mMzAyLTQ2ZWQtOWUxYi02NTkzNDU2ZjJkNTkvMC9CRTgyQjQ2OTk5 OEE5RTgyOUY4ODI2NTVDOTlBNUEwNTUzNUExQUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1MzVB MUFENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzNjM1MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeeFDANBgkqhkiG 9w0BAQsFAAOCAQEAs0Y2XX8aA5mact/qZgniuBpqpzidXYqminFvjWpF2y381T+r 4aqQYx3zjKvkYtSPk2Ryt/YfiefmSWp+O8f0A3UA+kGvvgkIaInZsJsle5LDzFQp UGp+WovaIEMTkjQCQqi56tWJOZI4gzyUpgQIDECqcr7ULgo/T3bhLyGlOIfyfhDI thd7qpfr/IioD3lbbxyUYan8pVkrFLwmLAyHrY6KTSTvL0J/0BKL/UB2JpehFHfn s9phcdLUleC/o9G5j/hszk4P6uzzq6/orJ4KwrM3tCpWY3fKf7yOP8xu8J5nNbhK yoI2+XM6S76jnVq/rInVcm8QvKphmtOGQWMYUA== -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:15 2024 by rpki-client on console-fra.rpki-client.org