$ rpki-client -vvf repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39392e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: bRRSscYjeY2YxaSN5983EHi4JM8B0mDZlHR23US7qhc= Subject key identifier: D8:03:A8:56:9D:F2:45:AE:33:9D:13:7A:AF:09:66:B8:9B:4C:C8:D0 Certificate issuer: /CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Certificate serial: 3EC4E425AEC167FF3255E76E6440668ECBE216C4 Authority key identifier: 95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:05:15 +0000 ROA not before: Mon 01 Jul 2024 01:00:15 +0000 ROA not after: Mon 30 Jun 2025 01:05:15 +0000 asID: 17538 IP address blocks: 103.151.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c4:e4:25:ae:c1:67:ff:32:55:e7:6e:64:40:66:8e:cb:e2:16:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95D9136845FAFA0795735D4A9B0FF9F746461AB3 Validity Not Before: Jul 1 01:00:15 2024 GMT Not After : Jun 30 01:05:15 2025 GMT Subject: CN=D803A8569DF245AE339D137AAF0966B89B4CC8D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:d8:e5:34:bd:e5:7a:f3:de:ce:db:20:f9: 21:a2:9c:71:d0:38:f1:94:b0:f5:68:ba:84:49:fc: fd:8e:59:9d:30:f2:77:d7:67:70:3e:22:fc:81:c6: 2a:53:22:32:97:f8:00:17:95:9a:8b:32:9f:ee:86: f4:e7:eb:c0:95:0d:85:f1:a0:36:a6:8d:13:e5:cb: 2e:8e:48:da:d7:ee:2a:0d:ca:5b:a1:a2:5e:62:43: 73:56:f7:f3:41:90:2d:af:0f:d8:52:d0:1a:ae:08: 35:92:87:07:46:5e:d6:41:0c:57:06:ef:8e:5d:af: 5c:bd:5f:24:72:19:6b:b5:c0:7c:df:36:c8:80:3b: 93:5a:ec:32:0c:bd:ea:12:4b:97:7b:5a:a7:a2:06: 8b:39:bd:d9:c9:12:df:fd:70:8f:24:24:d0:92:ac: 19:8e:97:a5:d1:1b:15:c7:61:65:a3:8a:8f:7b:28: 0e:41:c6:70:1a:62:12:af:99:c5:dc:28:c7:75:d4: be:77:89:dc:28:4c:3f:65:f6:c5:32:54:56:93:8f: c4:26:6f:36:e4:a4:4c:b5:f8:d2:05:72:11:2a:1d: 6b:cc:5c:dd:21:8a:1e:b7:09:eb:7f:77:26:4e:a6: 70:06:81:e1:4d:f4:55:e9:50:1b:70:12:67:90:78: 5f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:03:A8:56:9D:F2:45:AE:33:9D:13:7A:AF:09:66:B8:9B:4C:C8:D0 X509v3 Authority Key Identifier: keyid:95:D9:13:68:45:FA:FA:07:95:73:5D:4A:9B:0F:F9:F7:46:46:1A:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/95D9136845FAFA0795735D4A9B0FF9F746461AB3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95D9136845FAFA0795735D4A9B0FF9F746461AB3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/3130332e3135312e39392e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.99.0/24 Signature Algorithm: sha256WithRSAEncryption 02:de:36:a9:c0:c0:5f:0e:f1:1d:e5:ed:6c:46:01:4c:99:00: 9c:7d:73:27:09:f4:a5:c0:42:df:25:fa:34:39:d9:2b:e6:e7: 79:79:e6:9e:07:94:2b:28:8e:b8:79:4a:b4:56:f1:12:cb:ae: ba:ec:af:2e:85:8f:3f:71:58:6b:f5:bc:01:93:a6:80:88:8f: fb:fc:56:5b:be:b3:a1:7c:f8:3b:80:1e:13:0e:78:0a:99:6c: cd:ae:15:f2:e6:13:2f:34:a7:a9:94:e2:48:b0:01:cc:e4:3a: d3:d6:68:6d:fc:39:08:da:8c:fb:bd:8c:8a:03:7d:38:7a:a3: 6c:22:42:4f:24:6f:05:0b:fc:b4:b5:e4:e0:3a:17:ec:95:73: 0d:ca:38:03:6a:5e:f0:94:ad:13:c7:a9:ec:9c:a4:ed:8b:22: 4f:3d:4c:c6:44:bf:cf:be:3e:da:d2:86:e1:87:82:61:cc:90: 28:3c:6b:9d:5e:e5:a5:03:b9:eb:ff:75:53:11:bf:ad:b9:90: 4f:ad:fe:c1:11:83:00:71:32:7d:0e:06:da:28:b0:13:be:28: b8:bf:ab:02:b8:4e:b8:70:a2:1f:12:bf:ee:4e:88:79:8b:11: 9d:a5:f0:f8:d0:73:00:4a:a0:da:80:f1:4a:7a:59:45:77:44: 7b:b6:6a:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPsTkJa7BZ/8yVeduZEBmjsviFsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0 NjQ2MUFCMzAeFw0yNDA3MDEwMTAwMTVaFw0yNTA2MzAwMTA1MTVaMDMxMTAvBgNV BAMTKEQ4MDNBODU2OURGMjQ1QUUzMzlEMTM3QUFGMDk2NkI4OUI0Q0M4RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVdjlNL3levPeztsg+SGinHHQ OPGUsPVouoRJ/P2OWZ0w8nfXZ3A+IvyBxipTIjKX+AAXlZqLMp/uhvTn68CVDYXx oDamjRPlyy6OSNrX7ioNyluhol5iQ3NW9/NBkC2vD9hS0BquCDWShwdGXtZBDFcG 745dr1y9XyRyGWu1wHzfNsiAO5Na7DIMveoSS5d7WqeiBos5vdnJEt/9cI8kJNCS rBmOl6XRGxXHYWWjio97KA5BxnAaYhKvmcXcKMd11L53idwoTD9l9sUyVFaTj8Qm bzbkpEy1+NIFchEqHWvMXN0hih63Cet/dyZOpnAGgeFN9FXpUBtwEmeQeF/vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2AOoVp3yRa4znRN6rwlmuJtMyNAwHwYDVR0j BBgwFoAUldkTaEX6+geVc11Kmw/590ZGGrMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc4NWU2NS01MWUyLTRiMWItODJmOS1lNzUzYWQ0YjI0MGYvMC85NUQ5MTM2ODQ1 RkFGQTA3OTU3MzVENEE5QjBGRjlGNzQ2NDYxQUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVEOTEzNjg0NUZBRkEwNzk1NzM1RDRBOUIwRkY5Rjc0NjQ2 MUFCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzg1ZTY1LTUxZTItNGIxYi04 MmY5LWU3NTNhZDRiMjQwZi8wLzMxMzAzMzJlMzEzNTMxMmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXYzANBgkqhkiG 9w0BAQsFAAOCAQEAAt42qcDAXw7xHeXtbEYBTJkAnH1zJwn0pcBC3yX6NDnZK+bn eXnmngeUKyiOuHlKtFbxEsuuuuyvLoWPP3FYa/W8AZOmgIiP+/xWW76zoXz4O4Ae Ew54Cplsza4V8uYTLzSnqZTiSLABzOQ609Zobfw5CNqM+72MigN9OHqjbCJCTyRv BQv8tLXk4DoX7JVzDco4A2pe8JStE8ep7Jyk7YsiTz1MxkS/z74+2tKG4YeCYcyQ KDxrnV7lpQO56/91UxG/rbmQT63+wRGDAHEyfQ4G2iiwE74ouL+rArhOuHCiHxK/ 7k6IeYsRnaXw+NBzAEqg2oDxSnpZRXdEe7ZqcA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org