$ rpki-client -vvf repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa File: 3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa (raw, json) Hash identifier: ZuytWq4PWrbArnGlNtL3kdcVQRo24jWxli7Scbb4h7Y= Subject key identifier: 36:CD:55:6A:AC:A7:FE:58:95:ED:0A:D8:7F:E5:F3:27:0C:24:3F:E0 Certificate issuer: /CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Certificate serial: 6C4281589F2A79CC52C64FAFFF94FBA7DBE80BC3 Authority key identifier: 69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa Signing time: Fri 27 Sep 2024 03:00:02 +0000 ROA not before: Fri 27 Sep 2024 02:55:02 +0000 ROA not after: Fri 26 Sep 2025 03:00:02 +0000 asID: 150211 IP address blocks: 103.196.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:42:81:58:9f:2a:79:cc:52:c6:4f:af:ff:94:fb:a7:db:e8:0b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69FF9AF34111CD4637ED8A6CB4351E516A59B5E7 Validity Not Before: Sep 27 02:55:02 2024 GMT Not After : Sep 26 03:00:02 2025 GMT Subject: CN=36CD556AACA7FE5895ED0AD87FE5F3270C243FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b2:4b:1e:32:27:df:bd:41:ba:7c:94:13:0d: c5:77:81:df:25:7c:0f:cb:bc:b1:41:48:cf:0b:0b: f6:31:dd:c6:51:84:2a:a3:c0:3d:c8:1f:07:9e:80: ce:91:8a:63:4e:f0:e3:76:67:a3:d8:e6:78:15:b2: aa:3e:03:f9:42:df:68:60:5e:26:9a:d5:f5:c3:6a: 73:d9:58:33:ba:dd:65:61:4a:ec:cf:ba:f4:31:7c: 6a:63:c7:a4:5f:64:bf:99:f7:16:ec:85:fe:8c:59: 8f:63:ca:6c:14:07:a2:0c:9b:7b:44:56:4b:01:27: 60:c6:05:0f:c4:fe:df:e0:72:b0:15:da:77:c7:c5: ce:dc:4f:33:11:82:be:52:46:5e:59:3c:78:c8:5e: 2a:04:c4:e6:a7:e0:9c:49:0c:70:ac:a0:ee:3f:78: 88:54:67:a2:22:17:4f:af:bf:d5:59:99:ad:be:3d: 64:22:0a:d6:59:89:04:81:17:97:9e:fa:85:02:96: f0:42:6d:3b:47:e5:02:1e:ad:3d:47:ef:fc:ec:01: 98:7d:4c:57:ed:bf:fe:c8:fb:69:39:31:79:28:f1: e6:96:35:d3:f0:6f:2f:02:cd:11:68:fb:47:2c:84: f0:30:17:d5:a2:0c:ec:ba:19:1d:3b:96:e9:91:d6: 47:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CD:55:6A:AC:A7:FE:58:95:ED:0A:D8:7F:E5:F3:27:0C:24:3F:E0 X509v3 Authority Key Identifier: keyid:69:FF:9A:F3:41:11:CD:46:37:ED:8A:6C:B4:35:1E:51:6A:59:B5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69FF9AF34111CD4637ED8A6CB4351E516A59B5E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a640abe6-8dee-4bd1-814c-2af31a3d9cdf/0/3130332e3139362e3131382e302f32332d3234203d3e20313530323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.118.0/23 Signature Algorithm: sha256WithRSAEncryption 82:cf:76:2e:d2:75:d1:77:30:16:ab:cd:c8:fb:7e:b7:fb:7e: 14:63:67:0c:3e:6e:65:94:89:96:ac:3a:d9:6b:0c:f0:2c:50: 1c:85:4b:fb:c7:fa:7c:f5:aa:86:14:62:0a:d9:ff:fd:e0:96: af:02:e9:d7:b3:39:e0:cc:28:bd:df:fe:06:6f:67:03:cd:64: 46:d9:d3:c5:bd:6e:06:3d:4b:f2:94:68:fc:9e:c8:97:7e:23: 5b:e4:ef:72:51:6f:7f:07:ec:4d:be:cc:a5:7a:7f:7a:71:b9: 29:b0:09:f8:f8:de:2f:fa:cb:b4:4d:30:6e:2e:c6:85:c3:e3: 87:3f:4a:03:c3:7c:8b:d1:d4:a7:f2:90:4e:ac:e5:52:c5:95: 97:7a:2f:75:af:f7:48:c2:bf:5d:75:cc:c1:54:16:a2:64:f1: a0:3a:83:e6:ae:08:24:ea:81:b0:d4:a5:fd:ec:54:4b:90:b0: 1f:bd:2f:30:96:d0:99:0c:b3:20:1b:64:6f:a0:5c:6f:6c:d8: d1:d2:d9:b0:5a:c1:88:73:fb:15:ae:4d:a9:07:d5:d9:09:09: 49:54:f0:a8:91:0b:4b:e0:48:e1:30:d6:9b:d2:96:95:66:9a: 86:0e:2e:1d:02:0d:d8:e4:ad:6d:65:75:8e:db:a9:34:ac:12: 9f:1c:91:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbEKBWJ8qecxSxk+v/5T7p9voC8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2 QTU5QjVFNzAeFw0yNDA5MjcwMjU1MDJaFw0yNTA5MjYwMzAwMDJaMDMxMTAvBgNV BAMTKDM2Q0Q1NTZBQUNBN0ZFNTg5NUVEMEFEODdGRTVGMzI3MEMyNDNGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsskseMiffvUG6fJQTDcV3gd8l fA/LvLFBSM8LC/Yx3cZRhCqjwD3IHweegM6RimNO8ON2Z6PY5ngVsqo+A/lC32hg Xiaa1fXDanPZWDO63WVhSuzPuvQxfGpjx6RfZL+Z9xbshf6MWY9jymwUB6IMm3tE VksBJ2DGBQ/E/t/gcrAV2nfHxc7cTzMRgr5SRl5ZPHjIXioExOan4JxJDHCsoO4/ eIhUZ6IiF0+vv9VZma2+PWQiCtZZiQSBF5ee+oUClvBCbTtH5QIerT1H7/zsAZh9 TFftv/7I+2k5MXko8eaWNdPwby8CzRFo+0cshPAwF9WiDOy6GR07lumR1kf7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNs1Vaqyn/liV7QrYf+XzJwwkP+AwHwYDVR0j BBgwFoAUaf+a80ERzUY37YpstDUeUWpZtecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjQwYWJlNi04ZGVlLTRiZDEtODE0Yy0yYWYzMWEzZDljZGYvMC82OUZGOUFGMzQx MTFDRDQ2MzdFRDhBNkNCNDM1MUU1MTZBNTlCNUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlGRjlBRjM0MTExQ0Q0NjM3RUQ4QTZDQjQzNTFFNTE2QTU5 QjVFNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NDBhYmU2LThkZWUtNGJkMS04 MTRjLTJhZjMxYTNkOWNkZi8wLzMxMzAzMzJlMzEzOTM2MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnxHYwDQYJ KoZIhvcNAQELBQADggEBAILPdi7SddF3MBarzcj7frf7fhRjZww+bmWUiZasOtlr DPAsUByFS/vH+nz1qoYUYgrZ//3glq8C6dezOeDMKL3f/gZvZwPNZEbZ08W9bgY9 S/KUaPyeyJd+I1vk73JRb38H7E2+zKV6f3pxuSmwCfj43i/6y7RNMG4uxoXD44c/ SgPDfIvR1KfykE6s5VLFlZd6L3Wv90jCv111zMFUFqJk8aA6g+auCCTqgbDUpf3s VEuQsB+9LzCW0JkMsyAbZG+gXG9s2NHS2bBawYhz+xWuTakH1dkJCUlU8KiRC0vg SOEw1pvSlpVmmoYOLh0CDdjkrW1ldY7bqTSsEp8ckYI= -----END CERTIFICATE-----Generated at Sun Nov 24 13:13:45 2024 by rpki-client on console-fra.rpki-client.org