$ rpki-client -vvf repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32332d3233203d3e20313338383831.roa File: 3130332e3136392e3233382e302f32332d3233203d3e20313338383831.roa (raw, json) Hash identifier: sO5tBOZ83r4S6y+tEqleOm7EoiIu4B6rsPL+acW3H2c= Subject key identifier: 41:AD:CE:9C:65:C0:E8:0F:67:0A:4C:60:9B:BE:E9:EE:D0:0A:74:DE Certificate issuer: /CN=48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8 Certificate serial: 5D12FF134F224E7B47D32FA60ABE3ECD4008DB3E Authority key identifier: 48:54:9F:5F:50:A2:AB:C9:3D:8E:6B:9E:C2:07:4F:11:6E:3D:73:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32332d3233203d3e20313338383831.roa Signing time: Wed 24 Jul 2024 10:00:01 +0000 ROA not before: Wed 24 Jul 2024 09:55:01 +0000 ROA not after: Wed 23 Jul 2025 10:00:01 +0000 asID: 138881 IP address blocks: 103.169.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.crl rsync://repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:12:ff:13:4f:22:4e:7b:47:d3:2f:a6:0a:be:3e:cd:40:08:db:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8 Validity Not Before: Jul 24 09:55:01 2024 GMT Not After : Jul 23 10:00:01 2025 GMT Subject: CN=41ADCE9C65C0E80F670A4C609BBEE9EED00A74DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:3d:46:17:28:33:78:ca:7c:bf:c1:c6:56: fa:8f:d6:0c:d0:74:a5:9b:e1:70:89:bd:bb:23:fb: 27:3e:99:1b:e0:54:fd:a1:29:9d:30:48:c9:c7:a2: c2:69:a8:1b:be:7e:56:43:5b:eb:2a:77:1f:81:65: bc:1e:94:4f:dc:67:ad:a7:e0:8c:66:a2:c0:ce:3e: 1d:ed:50:73:28:f5:7e:b0:0f:19:c7:b1:61:5e:00: 56:51:02:c8:24:b2:2f:86:43:c2:58:84:3c:0a:3c: 84:06:c5:63:6c:6c:43:f1:5b:7d:8f:0c:de:c2:25: fe:49:a7:0a:f1:53:c3:7f:bb:b7:ee:0b:21:90:17: 1c:f2:ce:73:57:2d:ac:0b:fc:96:17:dd:74:52:04: ce:f3:1a:77:31:d9:07:51:98:b0:1c:8e:e7:d9:09: c7:8c:24:42:d3:9e:2a:40:79:b2:1e:73:fb:36:05: 99:a9:b6:09:9e:6c:99:a3:86:a9:fa:a2:b1:29:7c: d6:69:d6:c1:71:fd:fd:f3:f2:f3:d1:b8:bf:e4:d8: 4d:41:c9:2d:19:1c:91:ff:8d:0d:bb:e8:85:a1:7f: 71:b3:c7:97:16:79:f6:12:97:5a:21:5d:2d:35:82: 9e:3a:c5:b8:60:0d:c0:30:bc:09:68:5c:ba:7f:b6: 1b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AD:CE:9C:65:C0:E8:0F:67:0A:4C:60:9B:BE:E9:EE:D0:0A:74:DE X509v3 Authority Key Identifier: keyid:48:54:9F:5F:50:A2:AB:C9:3D:8E:6B:9E:C2:07:4F:11:6E:3D:73:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48549F5F50A2ABC93D8E6B9EC2074F116E3D73B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b11ca620-dace-4a9f-b8e8-a3a2e581500e/0/3130332e3136392e3233382e302f32332d3233203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.238.0/23 Signature Algorithm: sha256WithRSAEncryption 75:28:b4:97:43:48:d0:8b:aa:7a:23:00:45:b8:4f:10:aa:a6: 1d:48:5e:20:09:d4:b7:b6:32:29:b8:91:e6:93:12:c6:cc:0f: ef:df:dd:50:2c:18:1a:80:37:16:6f:72:c4:35:3b:d8:0e:ec: 4b:d3:28:4b:92:9a:71:7f:76:e7:e6:6e:93:6a:79:6a:14:c3: e5:f4:95:0b:43:1a:ba:30:8c:59:93:3a:d1:2c:d7:c6:f6:2f: 35:31:16:cc:ea:66:ac:6a:26:fa:10:14:84:1d:43:b1:43:01: a0:46:00:9a:74:9a:f6:73:1c:54:2b:f6:bc:e4:ac:eb:12:e3: 72:3d:d0:1a:cf:38:25:16:df:4e:57:ea:56:53:80:60:e2:81: 03:c1:b9:89:f0:a6:d8:9c:39:72:30:95:e8:0f:75:6f:06:8c: 72:3e:6a:81:91:ef:d6:a2:d2:4f:50:7d:1d:a4:eb:61:65:ad: 91:2b:a3:39:84:95:bc:cb:b7:8a:b5:4f:53:52:83:7a:fe:2c: a8:34:9f:09:63:f6:f4:47:31:40:9f:19:dc:90:b4:aa:f6:4d: 8c:ec:30:4d:0f:40:9f:87:24:c3:7e:ac:e5:19:86:87:59:11: ed:14:ba:0c:b1:a9:a8:30:c0:17:dc:83:8e:d4:67:21:a1:0f: 62:70:b6:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXRL/E08iTntH0y+mCr4+zUAI2z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1NDlGNUY1MEEyQUJDOTNEOEU2QjlFQzIwNzRGMTE2 RTNENzNCODAeFw0yNDA3MjQwOTU1MDFaFw0yNTA3MjMxMDAwMDFaMDMxMTAvBgNV BAMTKDQxQURDRTlDNjVDMEU4MEY2NzBBNEM2MDlCQkVFOUVFRDAwQTc0REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHxj1GFygzeMp8v8HGVvqP1gzQ dKWb4XCJvbsj+yc+mRvgVP2hKZ0wSMnHosJpqBu+flZDW+sqdx+BZbwelE/cZ62n 4IxmosDOPh3tUHMo9X6wDxnHsWFeAFZRAsgksi+GQ8JYhDwKPIQGxWNsbEPxW32P DN7CJf5JpwrxU8N/u7fuCyGQFxzyznNXLawL/JYX3XRSBM7zGncx2QdRmLAcjufZ CceMJELTnipAebIec/s2BZmptgmebJmjhqn6orEpfNZp1sFx/f3z8vPRuL/k2E1B yS0ZHJH/jQ276IWhf3Gzx5cWefYSl1ohXS01gp46xbhgDcAwvAloXLp/thsBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQa3OnGXA6A9nCkxgm77p7tAKdN4wHwYDVR0j BBgwFoAUSFSfX1Ciq8k9jmuewgdPEW49c7gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTFjYTYyMC1kYWNlLTRhOWYtYjhlOC1hM2EyZTU4MTUwMGUvMC80ODU0OUY1RjUw QTJBQkM5M0Q4RTZCOUVDMjA3NEYxMTZFM0Q3M0I4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDg1NDlGNUY1MEEyQUJDOTNEOEU2QjlFQzIwNzRGMTE2RTNE NzNCOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxMWNhNjIwLWRhY2UtNGE5Zi1i OGU4LWEzYTJlNTgxNTAwZS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqe4wDQYJ KoZIhvcNAQELBQADggEBAHUotJdDSNCLqnojAEW4TxCqph1IXiAJ1Le2Mim4keaT EsbMD+/f3VAsGBqANxZvcsQ1O9gO7EvTKEuSmnF/dufmbpNqeWoUw+X0lQtDGrow jFmTOtEs18b2LzUxFszqZqxqJvoQFIQdQ7FDAaBGAJp0mvZzHFQr9rzkrOsS43I9 0BrPOCUW305X6lZTgGDigQPBuYnwpticOXIwlegPdW8GjHI+aoGR79ai0k9QfR2k 62FlrZErozmElbzLt4q1T1NSg3r+LKg0nwlj9vRHMUCfGdyQtKr2TYzsME0PQJ+H JMN+rOUZhodZEe0UugyxqagwwBfcg47UZyGhD2Jwtqc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org