$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa File: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (raw, json) Hash identifier: k8LPKavn2jpgCCIKamnb82qp+kRRRyndZdhtxlhOO+I= Subject key identifier: 07:E0:C4:5F:2C:5F:88:C7:23:1B:CA:8F:38:FD:12:6D:57:86:17:51 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 774A18097AD2000F3FAC7AC7684C596EDBD2C957 Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa Signing time: Thu 11 Apr 2024 10:00:52 +0000 ROA not before: Thu 11 Apr 2024 09:55:52 +0000 ROA not after: Thu 10 Apr 2025 10:00:52 +0000 asID: 149744 IP address blocks: 103.187.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4a:18:09:7a:d2:00:0f:3f:ac:7a:c7:68:4c:59:6e:db:d2:c9:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Apr 11 09:55:52 2024 GMT Not After : Apr 10 10:00:52 2025 GMT Subject: CN=07E0C45F2C5F88C7231BCA8F38FD126D57861751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6d:26:fa:97:5b:65:bb:89:21:91:19:52:d6: 75:2c:1a:2c:9d:17:d0:95:b7:23:d7:6e:16:21:30: d6:ec:98:40:7f:d5:93:79:d2:19:2f:97:52:fc:c7: 4a:90:05:fe:67:86:15:f1:c9:c5:b2:99:d6:b0:00: 7d:01:dd:d9:69:06:4b:dd:5e:7f:8c:81:b6:05:59: dc:f9:33:d5:d4:90:25:e4:cd:ec:b6:cb:68:ad:22: 1e:4e:cb:82:3c:42:dc:21:93:46:18:30:0c:4a:60: 88:71:38:5c:05:f4:ad:40:09:e3:4a:47:6c:59:6e: 92:46:c5:71:47:dd:f8:3a:1b:aa:09:4a:74:f8:45: eb:2a:f8:01:3f:2e:2c:2a:ad:d6:1d:9f:6d:00:da: be:78:39:62:88:90:1e:ed:c4:3a:17:d7:92:4a:43: ad:bc:80:cc:fb:5f:f5:ff:2a:16:49:b7:b8:b8:77: 09:6c:e5:8c:05:55:68:08:e1:c5:f5:a3:c3:30:38: b7:6e:21:dd:f3:ef:38:45:f3:89:92:7c:b7:5c:65: 54:eb:1a:b7:14:14:34:1f:f1:bc:c9:3e:58:75:8c: c8:73:7f:82:41:87:86:55:a4:bb:6d:5d:0b:36:e9: 39:bf:a8:e4:88:08:9f:31:99:db:8c:79:12:d3:2d: c1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E0:C4:5F:2C:5F:88:C7:23:1B:CA:8F:38:FD:12:6D:57:86:17:51 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.162.0/23 Signature Algorithm: sha256WithRSAEncryption ac:37:5c:94:37:67:82:e3:6e:90:d1:98:39:3b:f2:5d:2b:6d: c9:eb:ba:26:da:47:b1:71:88:37:5c:79:18:b2:c8:cb:8d:9c: 39:71:91:e5:ea:b7:dd:4e:90:2b:38:52:41:d7:69:e3:aa:4b: 2f:d0:8f:1b:b0:a6:8a:28:67:92:d0:3a:bd:44:97:d1:01:60: c5:cb:6b:08:16:a5:ab:09:b8:8c:ef:ca:46:46:e8:ff:e2:ae: 45:f3:33:9f:a8:89:31:71:92:42:af:45:f7:cf:c7:69:c1:b7: 4d:21:a3:d3:05:50:57:0f:d7:f6:58:0b:24:2a:dc:6b:d5:64: c9:1e:10:0c:c4:47:2b:db:90:8a:65:f2:21:60:20:26:77:95: 84:af:3e:8a:3f:f4:60:b3:95:2a:f9:8f:e1:3e:54:ab:bf:27: 0e:56:cd:c1:09:bd:c2:50:34:78:4f:f1:32:ef:43:66:ca:5e: b0:9f:37:fe:f2:5a:f6:26:02:b8:7d:3b:f6:a9:2b:a9:aa:e3: 64:5c:de:0f:88:0e:45:e6:d0:99:44:a1:66:35:86:6a:fe:a7: 2e:aa:14:86:0f:b7:48:29:fc:4a:b7:e8:ce:28:d4:28:6d:af: 2c:c3:00:27:95:f4:47:18:e5:e7:a0:9a:f0:3c:f7:2a:3f:5d: fb:a7:77:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd0oYCXrSAA8/rHrHaExZbtvSyVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNDA0MTEwOTU1NTJaFw0yNTA0MTAxMDAwNTJaMDMxMTAvBgNV BAMTKDA3RTBDNDVGMkM1Rjg4QzcyMzFCQ0E4RjM4RkQxMjZENTc4NjE3NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbSb6l1tlu4khkRlS1nUsGiyd F9CVtyPXbhYhMNbsmEB/1ZN50hkvl1L8x0qQBf5nhhXxycWymdawAH0B3dlpBkvd Xn+MgbYFWdz5M9XUkCXkzey2y2itIh5Oy4I8Qtwhk0YYMAxKYIhxOFwF9K1ACeNK R2xZbpJGxXFH3fg6G6oJSnT4Resq+AE/LiwqrdYdn20A2r54OWKIkB7txDoX15JK Q628gMz7X/X/KhZJt7i4dwls5YwFVWgI4cX1o8MwOLduId3z7zhF84mSfLdcZVTr GrcUFDQf8bzJPlh1jMhzf4JBh4ZVpLttXQs26Tm/qOSICJ8xmduMeRLTLcFdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUB+DEXyxfiMcjG8qPOP0SbVeGF1EwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNWM3ZTFkLTgyZTgtNDEwMC1i NDM1LTk5NTQyNzJmYjdhOC8wLzMxMzAzMzJlMzEzODM3MmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnu6IwDQYJ KoZIhvcNAQELBQADggEBAKw3XJQ3Z4LjbpDRmDk78l0rbcnruibaR7FxiDdceRiy yMuNnDlxkeXqt91OkCs4UkHXaeOqSy/QjxuwpoooZ5LQOr1El9EBYMXLawgWpasJ uIzvykZG6P/irkXzM5+oiTFxkkKvRffPx2nBt00ho9MFUFcP1/ZYCyQq3GvVZMke EAzERyvbkIpl8iFgICZ3lYSvPoo/9GCzlSr5j+E+VKu/Jw5WzcEJvcJQNHhP8TLv Q2bKXrCfN/7yWvYmArh9O/apK6mq42Rc3g+IDkXm0JlEoWY1hmr+py6qFIYPt0gp /Eq36M4o1ChtryzDACeV9EcY5eegmvA89yo/Xfund6Q= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:47 2024 by rpki-client on console-ams.rpki-client.org