$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134382e302f32342d3234203d3e20313336383533.roa File: 3130332e3130322e3134382e302f32342d3234203d3e20313336383533.roa (raw, json) Hash identifier: XC4DJTC5TXfJiRmf88bzdSttttfS17ZVr5eZVV+CORQ= Subject key identifier: F4:37:1B:B2:43:10:51:A5:18:B0:01:D0:93:A2:88:D6:93:1C:AB:E8 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 7AB1AB7E871E4A021E1679FEB7B8AB898B0A3CE9 Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134382e302f32342d3234203d3e20313336383533.roa Signing time: Mon 01 Jul 2024 01:05:12 +0000 ROA not before: Mon 01 Jul 2024 01:00:12 +0000 ROA not after: Mon 30 Jun 2025 01:05:12 +0000 asID: 136853 IP address blocks: 103.102.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:b1:ab:7e:87:1e:4a:02:1e:16:79:fe:b7:b8:ab:89:8b:0a:3c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jul 1 01:00:12 2024 GMT Not After : Jun 30 01:05:12 2025 GMT Subject: CN=F4371BB2431051A518B001D093A288D6931CABE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:61:6b:d5:e1:40:78:6f:1d:6b:1a:91:5c:b8: b5:78:06:a4:d7:91:5f:d0:ad:02:34:78:f0:0b:53: 35:13:d9:22:9c:58:21:11:d8:5c:45:70:84:86:d1: a4:90:24:76:a3:5d:75:aa:c2:8a:5d:7e:80:db:69: bc:03:01:fe:c8:ef:a6:1e:59:68:2d:5b:28:b7:d9: 2a:50:6f:e6:37:91:9b:02:1d:91:0a:6b:a5:48:4d: a8:04:8f:07:fd:00:ea:8b:9c:a8:9e:25:c6:8c:be: fe:6c:a8:cc:02:f5:2d:0a:c5:15:79:df:ec:08:f7: ad:fc:51:21:44:a6:86:ab:49:03:c7:02:8a:eb:40: e7:53:cd:28:e8:fe:2e:8a:e2:9b:92:0b:de:2b:8f: fe:ea:a0:9e:2e:e9:3f:ad:bd:0b:be:1f:52:73:68: eb:83:bd:2e:a8:14:23:0e:16:c0:d0:63:c4:fe:dc: 9e:94:95:5c:08:f0:d4:cd:92:ad:36:f7:ca:bb:fb: 61:ec:48:20:a5:33:ea:d1:2c:e8:36:af:da:6d:1f: 5a:51:77:ea:e1:8b:1e:d7:97:fd:8b:07:4d:53:ce: bf:3f:c5:ce:38:34:f9:77:64:48:06:57:a6:ce:21: 17:34:17:e4:d8:b1:6e:45:e7:b0:c6:d4:77:b0:fb: 66:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:37:1B:B2:43:10:51:A5:18:B0:01:D0:93:A2:88:D6:93:1C:AB:E8 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134382e302f32342d3234203d3e20313336383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.148.0/24 Signature Algorithm: sha256WithRSAEncryption 41:64:a6:4d:02:f6:54:f2:3b:08:22:18:fe:e2:a3:44:fe:80: 34:0d:2e:6b:e0:3d:77:74:b9:ec:c7:54:e6:5a:07:01:9c:14: a9:b7:0a:2c:ba:13:23:bf:83:a3:32:40:57:f9:cf:8b:1e:b4: ed:cf:d0:84:53:32:f0:05:30:79:e4:02:45:2d:88:94:1b:7f: a9:30:14:92:db:b0:b8:96:fc:56:33:85:08:40:9f:89:c6:fe: 5e:31:5d:e9:63:3b:0f:31:3a:92:e6:d6:a9:00:bc:b0:25:33: 36:9d:6a:04:5b:da:cb:12:0c:6b:cf:3a:f0:0a:59:d8:5f:00: b7:c6:04:79:e7:38:49:6f:33:5f:2d:67:44:71:a7:6b:f8:25: 23:84:35:fe:81:c2:ae:7b:fd:bf:14:b6:53:4d:7f:8f:af:6c: 92:16:31:83:6a:b2:02:00:8d:b2:44:7a:ec:7d:55:79:e9:4a: 1a:a7:c2:cb:b4:25:4c:2d:77:df:ad:f2:d6:9f:cd:2d:11:72: 8b:d4:c7:7d:4c:23:a0:ca:ec:64:14:8e:d8:8d:43:0f:16:7c: 2d:ac:f0:54:c9:66:02:6f:45:4d:58:36:53:4f:05:e5:77:90: 58:81:61:91:3f:45:f2:0b:f1:e4:7f:fb:72:b5:c7:f8:94:05: 16:30:31:26 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUerGrfoceSgIeFnn+t7iriYsKPOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNDA3MDEwMTAwMTJaFw0yNTA2MzAwMTA1MTJaMDMxMTAvBgNV BAMTKEY0MzcxQkIyNDMxMDUxQTUxOEIwMDFEMDkzQTI4OEQ2OTMxQ0FCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZYWvV4UB4bx1rGpFcuLV4BqTX kV/QrQI0ePALUzUT2SKcWCER2FxFcISG0aSQJHajXXWqwopdfoDbabwDAf7I76Ye WWgtWyi32SpQb+Y3kZsCHZEKa6VITagEjwf9AOqLnKieJcaMvv5sqMwC9S0KxRV5 3+wI9638USFEpoarSQPHAorrQOdTzSjo/i6K4puSC94rj/7qoJ4u6T+tvQu+H1Jz aOuDvS6oFCMOFsDQY8T+3J6UlVwI8NTNkq0298q7+2HsSCClM+rRLOg2r9ptH1pR d+rhix7Xl/2LB01Tzr8/xc44NPl3ZEgGV6bOIRc0F+TYsW5F57DG1Hew+2YdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9DcbskMQUaUYsAHQk6KI1pMcq+gwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpQwDQYJ KoZIhvcNAQELBQADggEBAEFkpk0C9lTyOwgiGP7io0T+gDQNLmvgPXd0uezHVOZa BwGcFKm3Ciy6EyO/g6MyQFf5z4setO3P0IRTMvAFMHnkAkUtiJQbf6kwFJLbsLiW /FYzhQhAn4nG/l4xXeljOw8xOpLm1qkAvLAlMzadagRb2ssSDGvPOvAKWdhfALfG BHnnOElvM18tZ0Rxp2v4JSOENf6Bwq57/b8UtlNNf4+vbJIWMYNqsgIAjbJEeux9 VXnpShqnwsu0JUwtd9+t8tafzS0RcovUx31MI6DK7GQUjtiNQw8WfC2s8FTJZgJv RU1YNlNPBeV3kFiBYZE/RfIL8eR/+3K1x/iUBRYwMSY= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org