$ rpki-client -vvf repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa File: 3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa (raw, json) Hash identifier: L7LqVXyoSRg8DgNZpOS04vg4NVwWiWJGcA0KRd2HUBQ= Subject key identifier: 08:6B:6F:D5:D0:CA:AF:71:68:2C:43:33:7C:70:F8:4F:A7:8A:B5:58 Certificate issuer: /CN=9FB9D7ED833E1CA6E4053773AC164214889108CB Certificate serial: 3CF8175760C083EDF88C008C9B620FC431383936 Authority key identifier: 9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa Signing time: Wed 16 Oct 2024 15:00:01 +0000 ROA not before: Wed 16 Oct 2024 14:55:01 +0000 ROA not after: Wed 15 Oct 2025 15:00:01 +0000 asID: 140003 IP address blocks: 103.148.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.crl rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f8:17:57:60:c0:83:ed:f8:8c:00:8c:9b:62:0f:c4:31:38:39:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FB9D7ED833E1CA6E4053773AC164214889108CB Validity Not Before: Oct 16 14:55:01 2024 GMT Not After : Oct 15 15:00:01 2025 GMT Subject: CN=086B6FD5D0CAAF71682C43337C70F84FA78AB558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b6:f2:89:9a:0d:78:f8:41:fb:1c:f8:e7:dd: 7a:16:88:76:bf:9a:78:34:a1:17:d2:4c:a4:d2:34: 68:68:82:c8:80:40:d6:e1:6b:11:10:71:8c:ec:47: 90:3f:bd:8b:8a:ed:c9:70:1b:8b:ca:34:e3:1f:1b: 12:d5:d4:d1:75:b6:d4:c9:d8:cd:94:e4:d5:ed:ab: 50:31:e9:d4:fe:b4:dc:2f:6c:f5:e8:8f:66:45:7e: af:cf:36:34:b5:e9:3e:37:45:0b:a1:5c:4a:bb:3b: 0e:fd:f8:65:b6:4b:af:5f:62:27:0e:d5:5e:c8:7c: 3d:54:48:4a:a9:f2:6f:2c:60:7b:e4:aa:f0:9f:3f: dd:ac:9a:98:5e:99:27:a3:01:1a:53:a2:86:d9:a5: 75:ca:74:2f:3a:9e:64:02:29:bb:a5:b6:56:2b:28: 57:af:fa:dd:74:72:c9:94:9f:25:3d:ec:77:9b:d8: 17:c7:84:18:0d:56:a1:e3:06:12:5d:be:0c:89:c3: 8a:fc:8d:6f:a1:2a:44:75:08:2c:d2:b2:b3:45:96: da:22:98:c1:b8:d7:0b:63:4e:d8:1c:75:ef:e5:25: 4a:a0:4e:e3:fa:df:45:71:c0:79:6b:33:d6:7a:b2: 9e:cd:44:55:b6:13:b7:9d:7d:60:30:9e:c5:a8:e9: 63:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6B:6F:D5:D0:CA:AF:71:68:2C:43:33:7C:70:F8:4F:A7:8A:B5:58 X509v3 Authority Key Identifier: keyid:9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.194.0/24 Signature Algorithm: sha256WithRSAEncryption 35:9a:ab:53:86:ea:cc:76:1b:4f:b2:53:9d:9c:37:db:97:7b: da:04:3d:81:e3:bb:ae:cd:b1:74:ab:a3:4e:18:db:77:4c:51: c7:45:b1:a5:c4:69:d1:36:2f:f6:30:50:07:f2:05:6e:75:01: f7:da:05:ab:ca:af:4a:5c:ba:b3:0e:d6:8a:ae:95:98:fa:48: c8:24:9d:39:51:a7:31:24:f6:9a:8d:e3:93:16:71:7e:96:ec: ed:86:a1:65:10:a9:5d:c1:ff:42:48:be:1d:8a:3a:c2:2a:f4: 23:79:c5:53:ca:92:f1:ed:5c:3b:9a:bb:42:ed:e0:05:b0:47: 51:38:6b:3b:5e:a7:cf:8d:59:53:fa:16:fb:51:31:5e:0f:4b: 48:0c:07:ee:f5:1d:bf:ce:26:6f:1c:64:1b:71:2c:a5:d8:86: c9:fa:ca:fd:6f:8a:03:d6:15:4d:0a:b2:b4:2b:e5:99:13:98: 72:de:78:ef:44:54:2f:79:42:c9:68:b2:52:e5:2f:f3:53:b8: 09:39:3d:c6:34:e1:48:3b:ba:b1:d2:81:d6:48:99:d1:fd:59: 58:4e:f0:83:96:7c:3f:8a:66:73:4e:ee:df:e5:f9:a6:15:7b: e0:d9:f0:43:f6:07:62:b3:5a:f9:3f:fb:b1:45:ea:03:ad:79: af:09:c0:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPPgXV2DAg+34jACMm2IPxDE4OTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZCOUQ3RUQ4MzNFMUNBNkU0MDUzNzczQUMxNjQyMTQ4 ODkxMDhDQjAeFw0yNDEwMTYxNDU1MDFaFw0yNTEwMTUxNTAwMDFaMDMxMTAvBgNV BAMTKDA4NkI2RkQ1RDBDQUFGNzE2ODJDNDMzMzdDNzBGODRGQTc4QUI1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmtvKJmg14+EH7HPjn3XoWiHa/ mng0oRfSTKTSNGhogsiAQNbhaxEQcYzsR5A/vYuK7clwG4vKNOMfGxLV1NF1ttTJ 2M2U5NXtq1Ax6dT+tNwvbPXoj2ZFfq/PNjS16T43RQuhXEq7Ow79+GW2S69fYicO 1V7IfD1USEqp8m8sYHvkqvCfP92smphemSejARpToobZpXXKdC86nmQCKbultlYr KFev+t10csmUnyU97Heb2BfHhBgNVqHjBhJdvgyJw4r8jW+hKkR1CCzSsrNFltoi mMG41wtjTtgcde/lJUqgTuP630VxwHlrM9Z6sp7NRFW2E7edfWAwnsWo6WMBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCGtv1dDKr3FoLEMzfHD4T6eKtVgwHwYDVR0j BBgwFoAUn7nX7YM+HKbkBTdzrBZCFIiRCMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Y2I5YmE3Zi1lZmQxLTQ5OTQtYTJhMy03Nzk5MzMzOGIyNDIvMC85RkI5RDdFRDgz M0UxQ0E2RTQwNTM3NzNBQzE2NDIxNDg4OTEwOENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZCOUQ3RUQ4MzNFMUNBNkU0MDUzNzczQUMxNjQyMTQ4ODkx MDhDQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjYjliYTdmLWVmZDEtNDk5NC1h MmEzLTc3OTkzMzM4YjI0Mi8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlMIwDQYJ KoZIhvcNAQELBQADggEBADWaq1OG6sx2G0+yU52cN9uXe9oEPYHju67NsXSro04Y 23dMUcdFsaXEadE2L/YwUAfyBW51AffaBavKr0pcurMO1oqulZj6SMgknTlRpzEk 9pqN45MWcX6W7O2GoWUQqV3B/0JIvh2KOsIq9CN5xVPKkvHtXDuau0Lt4AWwR1E4 aztep8+NWVP6FvtRMV4PS0gMB+71Hb/OJm8cZBtxLKXYhsn6yv1vigPWFU0KsrQr 5ZkTmHLeeO9EVC95QsloslLlL/NTuAk5PcY04Ug7urHSgdZImdH9WVhO8IOWfD+K ZnNO7t/l+aYVe+DZ8EP2B2KzWvk/+7FF6gOtea8JwOE= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org