$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa File: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (raw, json) Hash identifier: qAdtYdSMdla6RLr7bOqAQe/jaxXmAcOR1nTy3vg/Cz4= Subject key identifier: 80:55:58:5F:E6:01:EA:5C:DF:8C:11:C6:5A:C3:DA:93:B8:39:96:68 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 30154A2D99DABC06105D00C99AED98D7AECCC28A Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa Signing time: Thu 11 Apr 2024 10:00:52 +0000 ROA not before: Thu 11 Apr 2024 09:55:52 +0000 ROA not after: Thu 10 Apr 2025 10:00:52 +0000 asID: 149744 IP address blocks: 103.187.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:15:4a:2d:99:da:bc:06:10:5d:00:c9:9a:ed:98:d7:ae:cc:c2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Apr 11 09:55:52 2024 GMT Not After : Apr 10 10:00:52 2025 GMT Subject: CN=8055585FE601EA5CDF8C11C65AC3DA93B8399668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:fd:e4:14:64:6a:20:ee:79:91:25:56:97: 2f:29:f4:6d:c8:08:16:23:b9:ff:43:b0:ff:33:35: 87:bc:b2:37:98:c7:a6:f0:d2:bc:13:86:bb:d2:8b: 3b:c3:92:f0:6d:59:6b:e2:ac:26:5d:a7:b0:e2:1f: a9:ef:eb:63:a8:26:3e:a4:e8:d0:12:da:48:4d:3e: 09:72:48:72:7d:28:1b:19:c6:be:98:27:a5:10:53: 41:45:41:87:c4:53:aa:76:4a:6c:05:9f:f6:7c:e4: e5:bd:08:54:f2:4e:01:68:b3:b8:97:2a:47:6f:2c: 91:5b:39:75:a7:81:c8:5f:1b:a5:4b:e2:70:14:c7: 5b:d6:02:2c:ee:9a:5e:0d:7a:1e:24:ca:b9:0a:b4: 7b:0d:3d:55:de:15:90:d8:42:62:ca:b7:16:8d:0a: 60:04:dd:62:ea:40:ff:1c:3a:c3:25:5e:44:75:f1: 34:8e:aa:f8:aa:21:01:39:b7:fc:3a:43:a7:f1:09: 40:b9:94:05:7e:38:0e:58:cc:51:54:c7:c7:1c:11: e0:4b:f1:17:2e:ba:44:e8:2c:a8:7c:3c:3b:4e:06: 3b:a4:27:d4:62:32:03:2f:8a:2b:9d:a3:7c:27:1d: ee:12:65:d3:4f:f1:94:cd:46:cb:73:33:f4:5c:03: 13:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:55:58:5F:E6:01:EA:5C:DF:8C:11:C6:5A:C3:DA:93:B8:39:96:68 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.162.0/24 Signature Algorithm: sha256WithRSAEncryption 50:5b:78:da:5a:63:16:23:fe:d0:d3:b3:64:6a:ad:e3:51:c9: 36:86:b2:a4:fe:4f:33:74:e2:62:26:18:62:df:2f:dc:6a:2e: 96:03:e0:14:2f:02:e7:b0:e9:e1:7f:6b:3c:95:3f:20:0a:55: 2d:74:ff:05:80:a3:f5:74:7c:04:62:7f:59:01:46:8e:f0:2f: e2:eb:11:a8:3e:93:2c:92:62:88:1f:a1:1c:ff:7e:60:56:ee: 7b:2b:e9:0f:79:71:af:a6:2e:1e:65:95:6b:e4:c4:e7:00:dd: ed:74:1e:23:d2:bb:3a:79:ca:6b:f6:88:d1:f9:39:41:b2:7a: d9:31:7a:24:0b:1a:0e:e4:67:11:7e:b5:80:99:19:24:3a:fb: 86:11:fc:be:89:51:98:0b:66:84:a8:a6:0a:bc:8b:32:8b:d2: 5b:12:d9:51:ab:ea:00:c7:fa:aa:67:eb:6c:6c:2e:28:75:f9: 9d:ea:16:7b:54:55:70:9c:cc:a3:55:81:be:ac:e0:18:ff:aa: eb:9f:cc:a4:1e:8f:5f:d6:71:f3:6a:b5:58:32:09:7c:9c:a3: 20:4d:cb:aa:82:a9:a3:66:a5:f5:e3:04:f0:41:ac:78:aa:e4: d5:67:16:c8:0f:95:9e:b4:23:41:dc:dc:fb:75:2c:d7:c5:7d: 32:72:11:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMBVKLZnavAYQXQDJmu2Y167MwoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNDA0MTEwOTU1NTJaFw0yNTA0MTAxMDAwNTJaMDMxMTAvBgNV BAMTKDgwNTU1ODVGRTYwMUVBNUNERjhDMTFDNjVBQzNEQTkzQjgzOTk2NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxOf3kFGRqIO55kSVWly8p9G3I CBYjuf9DsP8zNYe8sjeYx6bw0rwThrvSizvDkvBtWWvirCZdp7DiH6nv62OoJj6k 6NAS2khNPglySHJ9KBsZxr6YJ6UQU0FFQYfEU6p2SmwFn/Z85OW9CFTyTgFos7iX KkdvLJFbOXWngchfG6VL4nAUx1vWAizuml4Neh4kyrkKtHsNPVXeFZDYQmLKtxaN CmAE3WLqQP8cOsMlXkR18TSOqviqIQE5t/w6Q6fxCUC5lAV+OA5YzFFUx8ccEeBL 8RcuukToLKh8PDtOBjukJ9RiMgMviiudo3wnHe4SZdNP8ZTNRstzM/RcAxMfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgFVYX+YB6lzfjBHGWsPak7g5lmgwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNWM3ZTFkLTgyZTgtNDEwMC1i NDM1LTk5NTQyNzJmYjdhOC8wLzMxMzAzMzJlMzEzODM3MmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnu6IwDQYJ KoZIhvcNAQELBQADggEBAFBbeNpaYxYj/tDTs2RqreNRyTaGsqT+TzN04mImGGLf L9xqLpYD4BQvAuew6eF/azyVPyAKVS10/wWAo/V0fARif1kBRo7wL+LrEag+kyyS YogfoRz/fmBW7nsr6Q95ca+mLh5llWvkxOcA3e10HiPSuzp5ymv2iNH5OUGyetkx eiQLGg7kZxF+tYCZGSQ6+4YR/L6JUZgLZoSopgq8izKL0lsS2VGr6gDH+qpn62xs Lih1+Z3qFntUVXCczKNVgb6s4Bj/quufzKQej1/WcfNqtVgyCXycoyBNy6qCqaNm pfXjBPBBrHiq5NVnFsgPlZ60I0Hc3Pt1LNfFfTJyEeM= -----END CERTIFICATE-----Generated at Wed Nov 20 18:42:09 2024 by rpki-client on console-fra.rpki-client.org