$ rpki-client -vvf repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa File: 3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: YxaDZLCtEd6765W57K9rQNj4eCM9jJLjg9heaTI3rgA= Subject key identifier: 37:EA:9A:4D:B6:BD:E6:B7:F7:01:31:D0:65:79:70:24:5F:8E:86:FE Certificate issuer: /CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Certificate serial: 104893E0C775BCC40F080CF62A677E871E2E8840 Authority key identifier: 8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa Signing time: Sat 18 May 2024 17:00:00 +0000 ROA not before: Sat 18 May 2024 16:55:00 +0000 ROA not after: Sat 17 May 2025 17:00:00 +0000 asID: 149707 IP address blocks: 103.186.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:48:93:e0:c7:75:bc:c4:0f:08:0c:f6:2a:67:7e:87:1e:2e:88:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DBECF314BD3C829923A3A97BFC62113A61F8EE1 Validity Not Before: May 18 16:55:00 2024 GMT Not After : May 17 17:00:00 2025 GMT Subject: CN=37EA9A4DB6BDE6B7F70131D0657970245F8E86FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:4b:92:1a:b2:73:cd:15:7b:96:cf:a7:17: 81:f7:06:35:fd:e5:5d:9e:16:c6:ba:c2:e7:21:e3: 58:95:7f:a6:af:73:a2:90:66:87:b7:81:30:17:2c: 49:f0:fd:ef:56:d7:8e:13:64:8d:12:e2:d0:70:7a: fd:25:2e:3e:57:61:c8:ca:35:5e:ad:85:d2:c6:8e: 4a:54:c8:d2:0e:5c:c6:08:e1:b9:28:86:2e:ad:1d: c8:c6:29:a3:ed:a7:26:76:7b:d2:0b:38:ed:82:a2: 9a:e3:38:98:84:fc:c5:d2:5b:d4:cb:8b:21:0e:6f: d6:d8:c4:5b:70:7f:83:42:d5:bb:f0:87:26:72:eb: 59:fa:fe:48:35:56:51:83:48:8f:29:5c:15:82:64: 01:d4:70:44:91:d5:53:62:bb:0f:c3:38:09:fc:97: 51:ab:00:35:9c:38:a2:a9:c3:df:20:84:01:e1:f0: 8e:f9:4b:2b:a7:94:13:48:e9:ee:c5:18:38:19:0d: f0:2e:08:c4:70:20:95:f6:8c:1d:60:78:13:b8:13: dd:0b:d9:e2:9f:b4:46:f9:ff:90:5b:cd:61:31:7f: 80:53:36:e3:9a:be:78:24:88:6a:65:19:ca:10:9b: 3e:1a:96:d2:80:9f:83:23:92:85:66:f8:61:85:08: 5f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EA:9A:4D:B6:BD:E6:B7:F7:01:31:D0:65:79:70:24:5F:8E:86:FE X509v3 Authority Key Identifier: keyid:8D:BE:CF:31:4B:D3:C8:29:92:3A:3A:97:BF:C6:21:13:A6:1F:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DBECF314BD3C829923A3A97BFC62113A61F8EE1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b94c1e95-a738-4e47-8e5c-7af681b36b00/0/3130332e3138362e39312e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.91.0/24 Signature Algorithm: sha256WithRSAEncryption 43:57:fe:5b:d6:2c:b7:86:41:e4:77:27:b6:58:99:f9:5a:63: b3:bf:63:ee:ca:36:99:6c:48:f0:d3:02:88:78:96:0d:62:06: fa:da:7c:bb:6c:3f:26:28:75:e6:21:86:99:3c:6a:cf:f9:27: 7b:41:7c:f0:e3:a9:a9:81:73:9d:bc:77:06:d8:00:ea:a0:67: 98:51:54:e4:70:1c:81:be:d6:b2:08:7d:bd:f7:e8:c7:7c:8b: 6d:cb:42:a7:a0:b9:cd:bd:c4:3f:2a:62:44:a3:b0:97:ee:91: 94:a9:d5:e8:94:78:ec:e5:22:dc:32:ee:da:3d:96:94:69:ab: 45:92:b4:47:f4:4a:76:0d:d3:35:75:32:1a:70:bd:db:ad:d7: 49:57:b3:d0:aa:19:f5:ea:d0:f0:98:fa:a3:c4:84:a4:65:21: ce:19:79:87:ea:a4:02:5b:0b:c3:9f:fd:31:18:ba:74:35:43: a3:3d:7b:d8:02:f0:d6:db:47:aa:7b:5a:91:cb:50:1c:2d:c5: 44:27:13:39:f8:27:be:c6:27:69:5a:13:fd:ba:99:3c:4b:de: 60:c8:ff:05:e1:bd:64:e6:3d:7c:4e:c4:4d:1d:43:45:98:01: b4:0a:84:5e:4a:ad:cb:be:b0:72:0e:f7:90:69:bb:35:38:dd: 10:61:e2:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEEiT4Md1vMQPCAz2Kmd+hx4uiEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNB NjFGOEVFMTAeFw0yNDA1MTgxNjU1MDBaFw0yNTA1MTcxNzAwMDBaMDMxMTAvBgNV BAMTKDM3RUE5QTREQjZCREU2QjdGNzAxMzFEMDY1Nzk3MDI0NUY4RTg2RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9kEuSGrJzzRV7ls+nF4H3BjX9 5V2eFsa6wuch41iVf6avc6KQZoe3gTAXLEnw/e9W144TZI0S4tBwev0lLj5XYcjK NV6thdLGjkpUyNIOXMYI4bkohi6tHcjGKaPtpyZ2e9ILOO2CoprjOJiE/MXSW9TL iyEOb9bYxFtwf4NC1bvwhyZy61n6/kg1VlGDSI8pXBWCZAHUcESR1VNiuw/DOAn8 l1GrADWcOKKpw98ghAHh8I75SyunlBNI6e7FGDgZDfAuCMRwIJX2jB1geBO4E90L 2eKftEb5/5BbzWExf4BTNuOavngkiGplGcoQmz4altKAn4MjkoVm+GGFCF8nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN+qaTba95rf3ATHQZXlwJF+Ohv4wHwYDVR0j BBgwFoAUjb7PMUvTyCmSOjqXv8YhE6YfjuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTRjMWU5NS1hNzM4LTRlNDctOGU1Yy03YWY2ODFiMzZiMDAvMC84REJFQ0YzMTRC RDNDODI5OTIzQTNBOTdCRkM2MjExM0E2MUY4RUUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERCRUNGMzE0QkQzQzgyOTkyM0EzQTk3QkZDNjIxMTNBNjFG OEVFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5NGMxZTk1LWE3MzgtNGU0Ny04 ZTVjLTdhZjY4MWIzNmIwMC8wLzMxMzAzMzJlMzEzODM2MmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pbMA0GCSqG SIb3DQEBCwUAA4IBAQBDV/5b1iy3hkHkdye2WJn5WmOzv2PuyjaZbEjw0wKIeJYN Ygb62ny7bD8mKHXmIYaZPGrP+Sd7QXzw46mpgXOdvHcG2ADqoGeYUVTkcByBvtay CH299+jHfItty0KnoLnNvcQ/KmJEo7CX7pGUqdXolHjs5SLcMu7aPZaUaatFkrRH 9Ep2DdM1dTIacL3brddJV7PQqhn16tDwmPqjxISkZSHOGXmH6qQCWwvDn/0xGLp0 NUOjPXvYAvDW20eqe1qRy1AcLcVEJxM5+Ce+xidpWhP9upk8S95gyP8F4b1k5j18 TsRNHUNFmAG0CoReSq3LvrByDveQabs1ON0QYeKo -----END CERTIFICATE-----Generated at Fri Jun 21 15:51:02 2024 by rpki-client on console-ams.rpki-client.org