$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa File: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (raw, json) Hash identifier: k7X14J+QdS7MEz6uDJt6u3xkxSH91jVPDLJqXdryTNc= Subject key identifier: A4:25:A4:E5:C9:B5:DC:A8:8C:C7:19:53:B5:4C:CC:AF:77:E1:5E:35 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 1CAF75CDEFF99EC13A14244ACF085D2B3480B7E2 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa Signing time: Sat 26 Oct 2024 17:38:25 +0000 ROA not before: Sat 26 Oct 2024 17:33:25 +0000 ROA not after: Sat 25 Oct 2025 17:38:25 +0000 asID: 149930 IP address blocks: 103.191.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:af:75:cd:ef:f9:9e:c1:3a:14:24:4a:cf:08:5d:2b:34:80:b7:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Oct 26 17:33:25 2024 GMT Not After : Oct 25 17:38:25 2025 GMT Subject: CN=A425A4E5C9B5DCA88CC71953B54CCCAF77E15E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:c1:c8:97:b4:35:42:b5:91:1d:fb:af:0f: b2:59:56:ac:73:aa:85:b0:aa:d0:8a:10:a4:fb:07: 3c:02:97:41:ff:96:04:65:b0:86:d5:e4:44:d9:f1: 16:a8:c3:ff:72:65:68:ef:e4:99:67:12:a5:32:e6: f2:79:7a:9f:5a:71:c3:41:ce:fc:3e:98:a5:65:56: 75:25:3e:b9:9f:91:ca:2e:73:d3:5d:a9:a3:5a:db: 06:48:d0:c6:32:86:a6:f6:b2:fa:f3:35:1c:1d:aa: 8c:c0:36:93:fa:15:46:2a:16:1a:13:fb:d7:a3:83: 63:83:38:21:9f:e3:b7:21:e4:81:a7:33:0b:ee:d9: 42:a0:71:35:83:96:15:02:ef:c0:95:16:ac:04:95: af:53:f8:6c:fc:2e:6c:82:89:6a:32:c6:a2:a6:5f: 3d:06:3c:43:04:22:d6:72:8a:bf:cf:a0:bf:3f:37: 0a:21:93:68:f5:9a:e3:ac:b7:a0:17:03:e2:93:c5: e8:bd:70:16:6a:68:bb:65:4c:dc:c1:73:9b:11:5f: d6:1d:54:d2:00:70:58:bc:05:1b:37:df:56:c1:11: 94:35:f7:20:35:d4:82:8f:9b:92:bd:9e:16:66:52: 75:d9:9e:13:ac:30:02:03:08:0b:01:d4:13:bb:07: aa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:25:A4:E5:C9:B5:DC:A8:8C:C7:19:53:B5:4C:CC:AF:77:E1:5E:35 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.218.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:6b:06:49:8f:e0:dd:8c:d8:a8:6a:54:40:4d:42:74:b8:e1: 31:77:ab:15:ea:60:d0:ed:aa:53:b4:ad:bd:1a:1b:b3:c7:2f: c5:54:bd:ea:12:6d:c0:77:70:d7:7f:f2:0f:72:99:35:b0:3e: 57:c4:82:9d:77:b1:8c:95:b0:c1:d8:81:19:70:cd:63:fd:b3: 57:43:d4:1d:9e:00:a5:e9:aa:54:7f:b5:ce:e0:e8:13:07:97: 2d:f7:64:c4:22:99:77:ce:7a:e1:b5:71:0c:d7:86:29:59:3b: 76:bd:4f:5a:72:46:39:25:c3:a0:eb:c3:50:71:93:0e:01:5f: bd:0f:7d:03:be:a8:91:97:b6:88:26:88:a6:2f:e5:3e:13:bd: 3b:62:b8:04:dd:11:3b:d8:dd:09:e1:38:71:29:a4:f2:6c:a1: 9f:17:c0:c7:bd:ad:68:1b:7b:72:1d:ce:80:fd:f7:38:36:b7: e8:14:96:49:45:53:48:66:c3:5c:40:77:07:a2:8d:54:21:08: 56:64:ba:22:d4:30:d0:f8:8e:eb:89:e9:b6:c6:cd:28:95:01: 21:96:f0:2f:fd:88:db:f7:a9:f3:24:eb:61:1f:13:bd:fa:88: a2:7b:be:e3:39:84:b1:5a:77:6a:a9:25:ba:83:bb:29:66:36: bb:24:f1:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHK91ze/5nsE6FCRKzwhdKzSAt+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNDEwMjYxNzMzMjVaFw0yNTEwMjUxNzM4MjVaMDMxMTAvBgNV BAMTKEE0MjVBNEU1QzlCNURDQTg4Q0M3MTk1M0I1NENDQ0FGNzdFMTVFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7dMHIl7Q1QrWRHfuvD7JZVqxz qoWwqtCKEKT7BzwCl0H/lgRlsIbV5ETZ8Raow/9yZWjv5JlnEqUy5vJ5ep9accNB zvw+mKVlVnUlPrmfkcouc9NdqaNa2wZI0MYyhqb2svrzNRwdqozANpP6FUYqFhoT +9ejg2ODOCGf47ch5IGnMwvu2UKgcTWDlhUC78CVFqwEla9T+Gz8LmyCiWoyxqKm Xz0GPEMEItZyir/PoL8/Nwohk2j1muOst6AXA+KTxei9cBZqaLtlTNzBc5sRX9Yd VNIAcFi8BRs331bBEZQ19yA11IKPm5K9nhZmUnXZnhOsMAIDCAsB1BO7B6pxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpCWk5cm13KiMxxlTtUzMr3fhXjUwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzMzcwZDI0LWE2NTYtNDMzNi04 NDJiLTliZDVkY2EyYjQwYS8wLzMxMzAzMzJlMzEzOTMxMmUzMjMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnv9owDQYJ KoZIhvcNAQELBQADggEBAHxrBkmP4N2M2KhqVEBNQnS44TF3qxXqYNDtqlO0rb0a G7PHL8VUveoSbcB3cNd/8g9ymTWwPlfEgp13sYyVsMHYgRlwzWP9s1dD1B2eAKXp qlR/tc7g6BMHly33ZMQimXfOeuG1cQzXhilZO3a9T1pyRjklw6Drw1Bxkw4BX70P fQO+qJGXtogmiKYv5T4TvTtiuATdETvY3QnhOHEppPJsoZ8XwMe9rWgbe3IdzoD9 9zg2t+gUlklFU0hmw1xAdweijVQhCFZkuiLUMND4juuJ6bbGzSiVASGW8C/9iNv3 qfMk62EfE736iKJ7vuM5hLFad2qpJbqDuylmNrsk8UM= -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:10 2024 by rpki-client on console-fra.rpki-client.org