$ rpki-client -vvf repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/3130332e3134332e36392e302f32342d3234203d3e20313339333931.roa File: 3130332e3134332e36392e302f32342d3234203d3e20313339333931.roa (raw, json) Hash identifier: 617B49ZlXhGk82stAiewN3YrmDgkhS7z3S8GVYVN5mw= Subject key identifier: 5C:6C:AD:92:92:87:B2:4B:C5:8D:54:D5:A5:08:46:FF:DD:E6:3F:8A Certificate issuer: /CN=8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492 Certificate serial: 1CCC2B32F2A65F2EBF3BB23B07CD412E5F031BA0 Authority key identifier: 8B:4A:0C:10:F8:8A:0B:6E:F9:E4:51:0F:0F:61:27:AD:75:DB:C4:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/3130332e3134332e36392e302f32342d3234203d3e20313339333931.roa Signing time: Mon 19 Aug 2024 05:00:00 +0000 ROA not before: Mon 19 Aug 2024 04:55:00 +0000 ROA not after: Mon 18 Aug 2025 05:00:00 +0000 asID: 139391 IP address blocks: 103.143.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.crl rsync://repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:cc:2b:32:f2:a6:5f:2e:bf:3b:b2:3b:07:cd:41:2e:5f:03:1b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492 Validity Not Before: Aug 19 04:55:00 2024 GMT Not After : Aug 18 05:00:00 2025 GMT Subject: CN=5C6CAD929287B24BC58D54D5A50846FFDDE63F8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:30:2e:44:76:24:d9:09:cb:5d:4b:ae:1b:d9: c4:a4:0c:d9:35:8a:1d:a4:2e:5a:49:63:5d:e8:17: c0:1e:7a:bf:64:8a:08:a1:c1:ac:5a:22:fc:35:d0: 8c:f3:30:44:33:c9:ba:32:39:4a:76:a6:40:3b:50: 20:37:7d:d0:d0:8e:e4:a6:9f:07:4d:95:7b:46:c7: 29:78:82:b2:31:f4:57:12:47:6e:8a:59:32:e2:db: 85:9d:c2:27:86:d8:e4:34:29:09:e0:6a:5b:41:64: 6f:8d:cf:69:23:ae:f5:bf:7e:76:2a:51:0d:18:25: 4c:6b:6f:a9:24:f1:ba:0c:72:6a:8d:08:dc:40:bd: d7:5d:af:d4:37:14:6c:78:db:f9:62:39:7d:50:14: d0:2c:27:48:7a:0b:08:5a:5a:57:79:ec:9d:b4:54: 3b:af:12:c2:b9:08:25:c9:98:e0:9a:8a:03:c6:fc: f1:10:a5:e7:4b:68:43:fd:db:e7:ee:2f:48:66:42: d7:b9:e9:5c:0b:b9:ab:e1:a6:f1:32:cb:d4:fb:02: 3e:2d:a5:47:ac:60:b4:5a:17:4d:99:70:60:7d:ae: 6b:45:25:b7:78:44:f8:30:62:83:50:02:c9:09:71: ad:97:a7:c8:50:0c:41:42:25:8e:18:1b:e0:d8:27: 9b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6C:AD:92:92:87:B2:4B:C5:8D:54:D5:A5:08:46:FF:DD:E6:3F:8A X509v3 Authority Key Identifier: keyid:8B:4A:0C:10:F8:8A:0B:6E:F9:E4:51:0F:0F:61:27:AD:75:DB:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B4A0C10F88A0B6EF9E4510F0F6127AD75DBC492.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5424280-33be-4eb7-8db9-e03d417c4d97/0/3130332e3134332e36392e302f32342d3234203d3e20313339333931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.69.0/24 Signature Algorithm: sha256WithRSAEncryption 28:34:96:a9:34:13:07:64:58:19:91:ef:43:9d:56:80:68:a0: 21:f0:95:d0:d1:c7:f1:a3:82:15:5c:15:30:1f:07:2b:39:86: 6b:81:20:7d:1e:1b:7e:cc:1c:18:5c:c1:63:28:14:2f:28:55: ba:b8:de:f9:86:e4:62:40:b5:68:45:da:34:22:45:6e:8a:80: 3a:9e:fc:4f:1b:a6:e5:4d:37:4a:78:9f:8f:62:16:17:e3:ac: fe:cf:82:83:5a:78:98:87:89:6e:59:41:b6:d9:1f:44:eb:58: f4:7e:0e:23:1a:4e:a7:e5:04:36:16:ef:ad:f4:bd:46:f8:97: 0f:40:c3:d0:9a:a6:86:da:10:4e:7a:40:28:d3:07:46:2f:96: 09:16:79:fa:a3:81:85:5e:0b:23:8f:7a:6f:92:7d:28:a4:14: 0b:d3:39:a9:ce:39:60:f7:71:16:cd:41:4e:ec:0f:b8:22:80: 13:22:b7:ba:bc:96:81:24:20:e7:b8:18:e4:99:68:95:e7:aa: cf:45:39:29:80:a5:98:bd:29:8b:92:f0:48:a3:04:65:8a:cb: 2a:64:e2:a1:ec:ab:55:72:db:d7:50:c9:ef:ac:18:9c:96:7d: 91:03:e5:56:2b:ff:8f:4e:72:33:34:05:98:7f:83:18:5d:3b: ca:dd:83:f9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHMwrMvKmXy6/O7I7B81BLl8DG6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEI0QTBDMTBGODhBMEI2RUY5RTQ1MTBGMEY2MTI3QUQ3 NURCQzQ5MjAeFw0yNDA4MTkwNDU1MDBaFw0yNTA4MTgwNTAwMDBaMDMxMTAvBgNV BAMTKDVDNkNBRDkyOTI4N0IyNEJDNThENTRENUE1MDg0NkZGRERFNjNGOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIMC5EdiTZCctdS64b2cSkDNk1 ih2kLlpJY13oF8Aeer9kigihwaxaIvw10IzzMEQzyboyOUp2pkA7UCA3fdDQjuSm nwdNlXtGxyl4grIx9FcSR26KWTLi24WdwieG2OQ0KQngaltBZG+Nz2kjrvW/fnYq UQ0YJUxrb6kk8boMcmqNCNxAvdddr9Q3FGx42/liOX1QFNAsJ0h6CwhaWld57J20 VDuvEsK5CCXJmOCaigPG/PEQpedLaEP92+fuL0hmQte56VwLuavhpvEyy9T7Aj4t pUesYLRaF02ZcGB9rmtFJbd4RPgwYoNQAskJca2Xp8hQDEFCJY4YG+DYJ5shAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXGytkpKHskvFjVTVpQhG/93mP4owHwYDVR0j BBgwFoAUi0oMEPiKC2755FEPD2EnrXXbxJIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTQyNDI4MC0zM2JlLTRlYjctOGRiOS1lMDNkNDE3YzRkOTcvMC84QjRBMEMxMEY4 OEEwQjZFRjlFNDUxMEYwRjYxMjdBRDc1REJDNDkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEI0QTBDMTBGODhBMEI2RUY5RTQ1MTBGMEY2MTI3QUQ3NURC QzQ5Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NDI0MjgwLTMzYmUtNGViNy04 ZGI5LWUwM2Q0MTdjNGQ5Ny8wLzMxMzAzMzJlMzEzNDMzMmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ49FMA0GCSqG SIb3DQEBCwUAA4IBAQAoNJapNBMHZFgZke9DnVaAaKAh8JXQ0cfxo4IVXBUwHwcr OYZrgSB9Hht+zBwYXMFjKBQvKFW6uN75huRiQLVoRdo0IkVuioA6nvxPG6blTTdK eJ+PYhYX46z+z4KDWniYh4luWUG22R9E61j0fg4jGk6n5QQ2Fu+t9L1G+JcPQMPQ mqaG2hBOekAo0wdGL5YJFnn6o4GFXgsjj3pvkn0opBQL0zmpzjlg93EWzUFO7A+4 IoATIre6vJaBJCDnuBjkmWiV56rPRTkpgKWYvSmLkvBIowRlissqZOKh7KtVctvX UMnvrBicln2RA+VWK/+PTnIzNAWYf4MYXTvK3YP5 -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org