$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32332d3233203d3e20313430343037.roa File: 3130332e3135312e33322e302f32332d3233203d3e20313430343037.roa (raw, json) Hash identifier: gglX1Ue7msHCOwrGTgIXx/95UkxFKDwgs3VTDwnAgLA= Subject key identifier: 30:E9:EC:3B:40:A8:13:5D:34:E2:8A:AF:12:CA:B0:41:16:EA:13:45 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 0916BAA86F3844FEA221136301618DBE841FC91F Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32332d3233203d3e20313430343037.roa Signing time: Fri 12 Jul 2024 09:00:02 +0000 ROA not before: Fri 12 Jul 2024 08:55:02 +0000 ROA not after: Fri 11 Jul 2025 09:00:02 +0000 asID: 140407 IP address blocks: 103.151.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:16:ba:a8:6f:38:44:fe:a2:21:13:63:01:61:8d:be:84:1f:c9:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Jul 12 08:55:02 2024 GMT Not After : Jul 11 09:00:02 2025 GMT Subject: CN=30E9EC3B40A8135D34E28AAF12CAB04116EA1345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:19:19:9c:57:b8:f0:2d:e3:b1:63:11:ec: 8b:80:1c:41:a7:15:36:6b:c7:2e:05:bf:6b:de:66: 59:0e:7d:18:e1:88:6c:78:07:77:f8:9d:ad:b6:6e: c0:b3:67:9c:c9:16:e0:4b:1e:d9:ee:3f:de:f4:c1: 32:0e:46:69:ea:2a:e9:46:42:1f:b7:bd:2c:e0:2c: 53:79:ef:d1:63:94:ed:b0:ee:71:c0:6e:b3:a3:88: ae:cb:51:98:76:07:fa:f5:bc:97:f7:90:3f:0e:a9: 32:39:54:38:e3:7b:61:2f:5c:1f:c4:20:82:64:83: 91:2c:2e:2b:1f:bf:fe:8a:1d:89:c4:8b:f2:58:98: b9:0f:92:35:dd:37:8a:91:b6:c0:c2:e1:09:9f:9f: 90:5a:d9:7a:f3:b3:b9:50:c1:d3:de:fd:a0:59:64: 07:04:88:31:f3:22:51:a1:5e:49:54:0d:ad:28:79: 57:54:4f:5e:a7:e2:85:b4:ed:b8:11:c1:a4:31:fd: 4c:48:1d:50:21:34:73:f0:69:32:b8:06:86:a9:06: 19:13:af:cf:2d:65:d9:94:d4:e6:d1:b5:51:98:94: cc:8d:d1:d4:83:55:85:99:88:bd:ec:b6:76:cd:a8: b5:c0:24:b2:eb:5e:8d:f3:c3:7a:61:8c:71:a8:f8: 11:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E9:EC:3B:40:A8:13:5D:34:E2:8A:AF:12:CA:B0:41:16:EA:13:45 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32332d3233203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.32.0/23 Signature Algorithm: sha256WithRSAEncryption 01:56:51:e8:08:e5:1e:13:b7:97:db:10:55:f2:d1:aa:05:a4: 5d:67:d2:97:5a:c1:98:d4:86:72:17:5c:59:37:55:9c:ab:82: c5:b7:18:45:32:2c:eb:7d:18:fd:1b:32:cf:ca:e9:30:1c:3d: dd:be:ce:38:39:b9:c7:d8:66:28:25:6a:dd:8c:be:bb:48:1a: 9d:90:ad:c3:e6:66:fe:84:24:d3:ab:75:2c:27:49:df:d2:a5: d6:5a:1c:00:5d:7a:d9:5e:a0:e0:b5:e5:d4:b2:0d:94:48:42: 0c:82:b6:09:42:68:98:f3:ba:fe:38:d0:b8:8b:c0:f5:68:0d: cf:cf:2a:55:51:2d:bc:a7:6d:9e:3f:cd:ba:0c:20:92:74:29: 88:45:f2:0c:03:a2:56:69:c4:f6:2e:4d:1b:94:0f:a8:e1:c7: 1d:02:4d:7c:74:18:ec:98:02:72:b9:5c:ae:85:50:02:27:7f: 05:93:11:04:5f:1f:31:86:06:99:8e:ba:4e:01:46:3b:0e:49: 0d:18:8b:64:c5:5f:63:cb:1b:b7:b2:d8:c6:40:57:bf:20:6d: ae:79:9c:e8:1e:a3:59:66:b7:3b:4f:c1:fa:20:e7:b1:e4:75: 1d:60:8e:12:9d:82:9c:ab:00:a9:59:e3:4f:43:16:f9:94:53: 87:b6:1d:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCRa6qG84RP6iIRNjAWGNvoQfyR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNDA3MTIwODU1MDJaFw0yNTA3MTEwOTAwMDJaMDMxMTAvBgNV BAMTKDMwRTlFQzNCNDBBODEzNUQzNEUyOEFBRjEyQ0FCMDQxMTZFQTEzNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoRhkZnFe48C3jsWMR7IuAHEGn FTZrxy4Fv2veZlkOfRjhiGx4B3f4na22bsCzZ5zJFuBLHtnuP970wTIORmnqKulG Qh+3vSzgLFN579FjlO2w7nHAbrOjiK7LUZh2B/r1vJf3kD8OqTI5VDjje2EvXB/E IIJkg5EsLisfv/6KHYnEi/JYmLkPkjXdN4qRtsDC4Qmfn5Ba2Xrzs7lQwdPe/aBZ ZAcEiDHzIlGhXklUDa0oeVdUT16n4oW07bgRwaQx/UxIHVAhNHPwaTK4BoapBhkT r88tZdmU1ObRtVGYlMyN0dSDVYWZiL3stnbNqLXAJLLrXo3zw3phjHGo+BFdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMOnsO0CoE1004oqvEsqwQRbqE0UwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5cgMA0GCSqG SIb3DQEBCwUAA4IBAQABVlHoCOUeE7eX2xBV8tGqBaRdZ9KXWsGY1IZyF1xZN1Wc q4LFtxhFMizrfRj9GzLPyukwHD3dvs44ObnH2GYoJWrdjL67SBqdkK3D5mb+hCTT q3UsJ0nf0qXWWhwAXXrZXqDgteXUsg2USEIMgrYJQmiY87r+ONC4i8D1aA3PzypV US28p22eP826DCCSdCmIRfIMA6JWacT2Lk0blA+o4ccdAk18dBjsmAJyuVyuhVAC J38FkxEEXx8xhgaZjrpOAUY7DkkNGItkxV9jyxu3stjGQFe/IG2ueZzoHqNZZrc7 T8H6IOex5HUdYI4SnYKcqwCpWeNPQxb5lFOHth0r -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org