$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39382e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: XLazE5Vn7z334jOwYoK8rFCOURJrA8ecY+QUwxwWDNY= Subject key identifier: C6:8D:19:7B:5B:7B:76:96:45:00:3B:6C:5C:3C:F8:CA:C9:F3:B0:9B Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 4C15B24CEF577FB089A0D30925022EB0079E638F Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:05:15 +0000 ROA not before: Mon 01 Jul 2024 01:00:15 +0000 ROA not after: Mon 30 Jun 2025 01:05:15 +0000 asID: 17538 IP address blocks: 103.151.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:15:b2:4c:ef:57:7f:b0:89:a0:d3:09:25:02:2e:b0:07:9e:63:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 1 01:00:15 2024 GMT Not After : Jun 30 01:05:15 2025 GMT Subject: CN=C68D197B5B7B769645003B6C5C3CF8CAC9F3B09B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:be:6e:96:21:c3:91:b5:0c:1e:28:38:e9:82: 86:df:15:fb:78:4e:ea:1a:9a:b7:28:65:59:95:3f: 38:3c:fa:c3:ff:68:b4:25:ee:df:e0:30:f9:6d:6b: ef:df:59:cf:fd:98:78:ac:9a:5f:9c:85:b1:ca:1b: de:c6:1f:e7:64:ef:21:33:0f:cb:16:74:27:81:be: fb:62:4e:6a:b6:3d:c2:29:17:ab:5b:41:b7:6b:c3: 29:86:a8:de:da:c5:c0:42:21:2b:56:04:0a:ce:6a: 53:4c:db:3e:8e:18:fe:54:fb:e2:4c:70:02:22:4c: 2c:3a:c1:b5:0f:ee:ba:1e:a4:ea:78:10:a4:70:98: 39:0b:d8:dc:70:bb:14:9f:22:6d:01:ba:c4:b1:ce: c7:ca:c2:40:52:60:06:82:2c:b6:9b:fe:48:24:1a: f4:0a:d8:60:04:52:df:3f:01:34:83:46:ab:a2:27: 37:a1:35:5b:af:b4:51:5b:37:6d:1b:02:17:d2:57: 75:b5:2a:e2:75:70:f0:f1:96:1e:9c:74:12:e5:83: 4f:05:05:42:a9:1a:9d:ec:60:52:2d:c4:77:86:ce: ca:12:e6:a4:39:fa:af:af:26:3d:c3:fb:03:07:cd: 5d:85:39:33:e9:47:b5:4c:6a:f5:31:81:74:f2:29: 57:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8D:19:7B:5B:7B:76:96:45:00:3B:6C:5C:3C:F8:CA:C9:F3:B0:9B X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39382e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.98.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:81:e7:aa:16:63:f6:e3:ed:d6:9a:95:9f:e1:3e:24:ac:31: ea:02:09:f6:73:c9:e8:53:20:7c:41:d4:1a:1b:fe:ff:8b:2b: a4:e1:05:b1:04:5f:14:8f:99:55:7e:2e:ac:c0:ff:ed:6b:2a: 5d:55:dc:b9:c7:ea:44:21:fb:6d:4e:9b:e4:fc:bf:3a:13:5c: da:54:2b:b7:93:b4:de:3d:8e:cb:ec:65:e9:03:24:70:31:31: 7e:e5:d0:32:33:05:3a:2e:bc:d7:67:1e:8c:8c:94:cc:ab:3a: a4:69:8e:df:b2:8a:bb:9a:f2:34:35:0d:db:6d:18:8d:59:7c: 29:3e:cc:23:10:71:44:74:89:d5:9d:70:67:d0:cb:28:38:d6: b2:8a:03:78:8a:b9:62:fc:83:56:5e:03:f9:e4:f8:2d:0d:24: 07:9f:3c:09:63:1f:dc:7c:4e:3c:1b:d0:76:6c:56:01:4a:26: 67:df:bd:a5:7a:30:07:1d:fc:22:7f:3e:6d:f8:ef:77:61:ce: 46:70:1b:76:d3:4c:05:63:dc:73:53:f6:9c:60:e4:45:9a:52: fc:be:b6:6e:e8:cd:5e:7c:3a:2b:d1:ee:cc:a9:2c:a2:da:a5: 2d:7a:bd:c8:63:1a:0b:ed:fb:e9:9f:07:15:15:a4:3c:49:77: b1:2c:ca:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTBWyTO9Xf7CJoNMJJQIusAeeY48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNDA3MDEwMTAwMTVaFw0yNTA2MzAwMTA1MTVaMDMxMTAvBgNV BAMTKEM2OEQxOTdCNUI3Qjc2OTY0NTAwM0I2QzVDM0NGOENBQzlGM0IwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8vm6WIcORtQweKDjpgobfFft4 TuoamrcoZVmVPzg8+sP/aLQl7t/gMPlta+/fWc/9mHisml+chbHKG97GH+dk7yEz D8sWdCeBvvtiTmq2PcIpF6tbQbdrwymGqN7axcBCIStWBArOalNM2z6OGP5U++JM cAIiTCw6wbUP7roepOp4EKRwmDkL2NxwuxSfIm0BusSxzsfKwkBSYAaCLLab/kgk GvQK2GAEUt8/ATSDRquiJzehNVuvtFFbN20bAhfSV3W1KuJ1cPDxlh6cdBLlg08F BUKpGp3sYFItxHeGzsoS5qQ5+q+vJj3D+wMHzV2FOTPpR7VMavUxgXTyKVdrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxo0Ze1t7dpZFADtsXDz4ysnzsJswHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYjANBgkqhkiG 9w0BAQsFAAOCAQEALYHnqhZj9uPt1pqVn+E+JKwx6gIJ9nPJ6FMgfEHUGhv+/4sr pOEFsQRfFI+ZVX4urMD/7WsqXVXcucfqRCH7bU6b5Py/OhNc2lQrt5O03j2Oy+xl 6QMkcDExfuXQMjMFOi6812cejIyUzKs6pGmO37KKu5ryNDUN220YjVl8KT7MIxBx RHSJ1Z1wZ9DLKDjWsooDeIq5YvyDVl4D+eT4LQ0kB588CWMf3HxOPBvQdmxWAUom Z9+9pXowBx38In8+bfjvd2HORnAbdtNMBWPcc1P2nGDkRZpS/L62bujNXnw6K9Hu zKksotqlLXq9yGMaC+376Z8HFRWkPEl3sSzKfg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org