$ rpki-client -vvf repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32342d3234203d3e20313439373037.roa File: 3130332e3138362e39302e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: mIA20ESyl4KKYuwdfrUDidaIJJPuyQio0oL7Y/aetX8= Subject key identifier: 44:E4:FC:A8:3C:3C:92:B2:D8:D2:9F:22:FA:59:67:51:3C:AF:AF:9A Certificate issuer: /CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Certificate serial: 561DBD5DC1FA5C9333CB262AF95C5CCA8B89AF93 Authority key identifier: 8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32342d3234203d3e20313439373037.roa Signing time: Sat 18 May 2024 17:00:00 +0000 ROA not before: Sat 18 May 2024 16:55:00 +0000 ROA not after: Sat 17 May 2025 17:00:00 +0000 asID: 149707 IP address blocks: 103.186.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:1d:bd:5d:c1:fa:5c:93:33:cb:26:2a:f9:5c:5c:ca:8b:89:af:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Validity Not Before: May 18 16:55:00 2024 GMT Not After : May 17 17:00:00 2025 GMT Subject: CN=44E4FCA83C3C92B2D8D29F22FA5967513CAFAF9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ed:d9:e1:3f:f4:42:e9:34:c0:88:45:55:62: a7:a1:c0:3d:06:be:12:64:49:62:9c:5d:b9:b8:2f: 93:8f:a0:4f:4f:2c:4a:a7:90:29:e7:97:03:e8:6d: cf:8d:df:b3:8a:5c:d2:b4:e5:21:ce:eb:99:09:df: 6e:07:c9:79:17:be:0a:ce:0b:67:b3:0d:81:f5:2b: d5:04:48:7b:c8:b9:bb:2b:1d:b1:61:c2:38:19:ac: 92:d4:8b:2e:99:97:26:d1:ff:ca:e8:8d:90:45:17: d5:b1:69:aa:ae:6e:90:bf:4e:64:d6:ee:73:e2:35: 52:4b:a9:34:a5:66:da:96:27:11:37:62:5f:5d:27: 85:9b:a2:94:ca:13:82:40:ad:6a:74:3a:85:f1:dc: 50:f1:c9:31:3f:47:12:18:19:9a:f6:cb:e8:40:54: ce:db:5a:2f:1f:83:33:58:b7:4a:ab:1e:3c:2e:c2: f5:dd:3c:0e:19:23:ff:f8:55:d9:a4:30:2a:bc:a1: 34:08:bb:f6:2a:f0:42:e3:98:27:b3:f3:0a:92:dc: 53:c2:d9:4b:51:58:12:20:09:63:8a:ad:9d:6a:e3: 15:a4:ba:20:0e:e1:7d:fb:bf:35:b6:2f:59:78:5f: 39:87:4e:c5:b3:32:89:46:60:7d:74:10:4a:2e:48: 03:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E4:FC:A8:3C:3C:92:B2:D8:D2:9F:22:FA:59:67:51:3C:AF:AF:9A X509v3 Authority Key Identifier: keyid:8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39302e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.90.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:ce:f2:f6:ad:05:3f:19:cc:8e:ea:25:34:a1:ee:8f:fb:79: fa:9d:5a:7b:9e:d9:71:a1:a6:60:50:7a:60:4d:44:e6:ca:50: f0:e6:07:69:bd:6f:e9:d5:38:50:6d:6f:d6:11:6a:ec:7d:e8: b5:8e:6b:85:b9:15:02:8e:85:40:51:57:bf:06:11:df:27:97: a0:31:77:95:f8:70:57:d0:cd:db:38:b5:0f:b8:a7:42:48:e9: 6e:c5:60:e0:09:95:1d:d1:80:bd:62:a8:13:f9:b6:2d:6e:45: 46:bd:fa:18:eb:b6:2f:de:0b:bc:93:13:f1:e5:d6:03:72:fd: 89:bd:e8:bd:ae:e2:b4:d5:89:a5:f4:fa:5b:12:81:34:13:07: b5:e8:f3:b2:84:8f:f4:09:0e:8b:26:46:c0:f2:ef:f2:99:20: 19:11:02:5d:8b:48:94:7b:78:e1:a4:f9:ab:82:4d:f0:fd:a6: d9:d6:cf:bc:d5:cc:d1:dd:7e:a2:b7:1a:ef:e7:97:e6:f8:7c: 43:db:13:7d:ea:b2:b0:bf:0c:71:e3:ef:c1:13:97:fc:7b:9d: 1a:4d:f9:3f:32:20:40:e7:07:4a:62:01:2d:bd:c6:75:29:3b: e7:7b:06:ef:03:aa:df:13:d4:31:fb:57:70:7f:21:f6:32:80: c9:d2:ff:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVh29XcH6XJMzyyYq+VxcyouJr5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNB NjFGOEVFMTAeFw0yNDA1MTgxNjU1MDBaFw0yNTA1MTcxNzAwMDBaMDMxMTAvBgNV BAMTKDQ0RTRGQ0E4M0MzQzkyQjJEOEQyOUYyMkZBNTk2NzUxM0NBRkFGOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7dnhP/RC6TTAiEVVYqehwD0G vhJkSWKcXbm4L5OPoE9PLEqnkCnnlwPobc+N37OKXNK05SHO65kJ324HyXkXvgrO C2ezDYH1K9UESHvIubsrHbFhwjgZrJLUiy6ZlybR/8rojZBFF9WxaaqubpC/TmTW 7nPiNVJLqTSlZtqWJxE3Yl9dJ4WbopTKE4JArWp0OoXx3FDxyTE/RxIYGZr2y+hA VM7bWi8fgzNYt0qrHjwuwvXdPA4ZI//4VdmkMCq8oTQIu/Yq8ELjmCez8wqS3FPC 2UtRWBIgCWOKrZ1q4xWkuiAO4X37vzW2L1l4XzmHTsWzMolGYH10EEouSANHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUROT8qDw8krLY0p8i+llnUTyvr5owHwYDVR0j BBgwFoAUjb7PMUvTyCmSOjqXv8YhE6YfjuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTRjMWU5NS1hNzM4LTRlNDctOGU1Yy03YWY2ODFiMzZiMDAvMC84REJFQ0YzMTRC RDNDODI5OTIzQTNBOTdCRkM2MjExM0E2MUY4RUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNBNjFG OEVFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5NGMxZTk1LWE3MzgtNGU0Ny04 ZTVjLTdhZjY4MWIzNmIwMC8wLzMxMzAzMzJlMzEzODM2MmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7paMA0GCSqG SIb3DQEBCwUAA4IBAQBMzvL2rQU/GcyO6iU0oe6P+3n6nVp7ntlxoaZgUHpgTUTm ylDw5gdpvW/p1ThQbW/WEWrsfei1jmuFuRUCjoVAUVe/BhHfJ5egMXeV+HBX0M3b OLUPuKdCSOluxWDgCZUd0YC9YqgT+bYtbkVGvfoY67Yv3gu8kxPx5dYDcv2Jvei9 ruK01Yml9PpbEoE0Ewe16POyhI/0CQ6LJkbA8u/ymSAZEQJdi0iUe3jhpPmrgk3w /abZ1s+81czR3X6itxrv55fm+HxD2xN96rKwvwxx4+/BE5f8e50aTfk/MiBA5wdK YgEtvcZ1KTvnewbvA6rfE9Qx+1dwfyH2MoDJ0v8x -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org