$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa File: 3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa (raw, json) Hash identifier: Mwvu/CaE5deApG/isN7cjUZhnbfHoZ3qdsbJEM4tty0= Subject key identifier: E9:39:FF:61:39:CA:11:9A:BE:AF:F3:B9:20:6B:64:43:68:89:F5:36 Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 4E603F4900323D75410E48927D77F965CAB64D14 Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa Signing time: Sat 16 Nov 2024 04:00:01 +0000 ROA not before: Sat 16 Nov 2024 03:55:01 +0000 ROA not after: Sat 15 Nov 2025 04:00:01 +0000 asID: 138077 IP address blocks: 103.130.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:60:3f:49:00:32:3d:75:41:0e:48:92:7d:77:f9:65:ca:b6:4d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Nov 16 03:55:01 2024 GMT Not After : Nov 15 04:00:01 2025 GMT Subject: CN=E939FF6139CA119ABEAFF3B9206B64436889F536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:b1:2c:71:db:0f:1d:d2:b3:13:0a:50:4a: bc:8e:84:8c:8d:ee:db:fb:c3:8a:cf:3b:a6:c6:f3: 93:ae:66:97:bb:7e:ce:da:17:cd:b3:85:7c:0e:82: 04:b0:3c:f9:c9:88:d2:ee:a1:f7:b1:10:51:de:31: c9:1d:0c:36:7d:12:4f:67:70:40:d7:ba:93:a2:b8: 56:53:39:d7:e6:d0:5d:40:7b:bb:5c:15:7a:f7:07: 14:a7:8b:35:e1:95:2f:85:1d:6c:6a:13:2b:8d:c6: 6d:05:d5:a1:97:60:23:df:94:10:23:af:e9:69:b4: f4:32:13:09:67:19:05:26:b2:b8:78:4d:19:95:7a: d6:a0:b9:bc:86:1c:2a:99:ee:85:81:de:4c:4e:ca: be:42:89:09:6f:ed:16:a1:b5:0e:db:00:96:f4:b7: 67:d2:22:91:33:2b:78:3c:b3:e0:7c:6b:5d:22:db: ba:ae:17:ba:e8:50:70:de:53:26:87:89:b8:3d:79: c9:20:fd:5c:29:e5:91:dd:5a:24:44:87:58:78:25: ff:dc:70:8b:3a:99:6e:98:46:56:94:7d:c4:30:93: dc:64:3b:71:67:e4:f7:16:1a:72:6f:34:43:33:37: 88:77:de:01:5a:88:83:42:ce:73:01:a1:c6:d4:d1: 7d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:39:FF:61:39:CA:11:9A:BE:AF:F3:B9:20:6B:64:43:68:89:F5:36 X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.198.0/23 Signature Algorithm: sha256WithRSAEncryption 02:32:92:0d:2d:a8:b2:99:4f:6a:bc:53:c8:51:ef:b8:c5:48: 87:45:0b:79:2a:c4:dd:45:e6:6a:78:b8:35:87:de:f8:62:24: ca:65:7c:b4:86:b6:7f:95:e0:11:4a:0b:9e:94:6a:35:17:34: dc:5c:a7:ac:cb:0b:27:15:e3:01:38:51:2d:6c:de:7f:42:ac: 8c:93:4c:5a:70:04:27:ae:eb:9d:35:e2:b1:5c:dc:36:8c:3a: ed:d0:80:e6:8e:3f:d5:14:5f:ca:34:da:9a:55:a4:4c:47:a6: bf:ba:eb:2d:73:58:42:df:e3:07:59:e3:22:26:9a:64:50:08: 32:4c:3d:9e:d1:ea:2c:25:f3:ba:1d:83:4d:e0:0b:b4:cc:28: cd:4a:e3:01:c2:cb:3e:8d:a5:4a:5f:c4:09:78:8a:2c:40:8a: 5e:0c:e3:04:b4:de:a1:8e:fe:70:f7:b4:44:18:35:fb:95:48: 7b:a9:8a:7b:49:8a:a0:48:51:2f:f3:51:1d:57:3a:43:5c:ce: ad:f5:d2:ae:4d:e1:fd:f2:6a:2d:55:f3:00:41:5a:35:64:33: e6:99:76:a4:7c:14:5d:a5:a9:b2:6d:02:42:8d:c0:d8:65:c6: ff:26:50:ff:28:2c:7c:c0:78:1f:1c:a8:47:0f:90:53:10:9f: dd:14:d0:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTmA/SQAyPXVBDkiSfXf5Zcq2TRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yNDExMTYwMzU1MDFaFw0yNTExMTUwNDAwMDFaMDMxMTAvBgNV BAMTKEU5MzlGRjYxMzlDQTExOUFCRUFGRjNCOTIwNkI2NDQzNjg4OUY1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1D7EscdsPHdKzEwpQSryOhIyN 7tv7w4rPO6bG85OuZpe7fs7aF82zhXwOggSwPPnJiNLuofexEFHeMckdDDZ9Ek9n cEDXupOiuFZTOdfm0F1Ae7tcFXr3BxSnizXhlS+FHWxqEyuNxm0F1aGXYCPflBAj r+lptPQyEwlnGQUmsrh4TRmVetagubyGHCqZ7oWB3kxOyr5CiQlv7RahtQ7bAJb0 t2fSIpEzK3g8s+B8a10i27quF7roUHDeUyaHibg9eckg/Vwp5ZHdWiREh1h4Jf/c cIs6mW6YRlaUfcQwk9xkO3Fn5PcWGnJvNEMzN4h33gFaiINCznMBocbU0X3LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6Tn/YTnKEZq+r/O5IGtkQ2iJ9TYwHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzAzMzJlMzEzMzMwMmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFngsYwDQYJ KoZIhvcNAQELBQADggEBAAIykg0tqLKZT2q8U8hR77jFSIdFC3kqxN1F5mp4uDWH 3vhiJMplfLSGtn+V4BFKC56UajUXNNxcp6zLCycV4wE4US1s3n9CrIyTTFpwBCeu 65014rFc3DaMOu3QgOaOP9UUX8o02ppVpExHpr+66y1zWELf4wdZ4yImmmRQCDJM PZ7R6iwl87odg03gC7TMKM1K4wHCyz6NpUpfxAl4iixAil4M4wS03qGO/nD3tEQY NfuVSHupintJiqBIUS/zUR1XOkNczq310q5N4f3yai1V8wBBWjVkM+aZdqR8FF2l qbJtAkKNwNhlxv8mUP8oLHzAeB8cqEcPkFMQn90U0Fo= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:38 2024 by rpki-client on console-fra.rpki-client.org