$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa File: 3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: EGergzWDAprJ0pWqTKnjEV/FMMwX4Eg9ePrJ+3sYH/g= Subject key identifier: 0A:5C:B9:67:94:8D:C6:B7:8E:AE:DD:77:22:DD:57:C9:A5:67:CC:96 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 3DEEC3D06A7714238737F6655C6FF33D07AFD7C2 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa Signing time: Fri 12 Jul 2024 09:00:02 +0000 ROA not before: Fri 12 Jul 2024 08:55:02 +0000 ROA not after: Fri 11 Jul 2025 09:00:02 +0000 asID: 140407 IP address blocks: 103.151.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ee:c3:d0:6a:77:14:23:87:37:f6:65:5c:6f:f3:3d:07:af:d7:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Jul 12 08:55:02 2024 GMT Not After : Jul 11 09:00:02 2025 GMT Subject: CN=0A5CB967948DC6B78EAEDD7722DD57C9A567CC96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5b:15:15:da:52:3b:90:d6:93:90:88:14:71: 0e:9a:f3:f6:d4:4a:a6:e7:37:cc:fb:ca:16:9c:78: 51:a5:79:a2:e5:db:3b:e1:7c:a6:90:c9:d3:14:ac: 9c:e7:39:09:12:d7:17:0c:8f:f3:19:7f:a6:53:a3: 51:b1:f0:1a:b7:80:ca:e4:ae:f1:1d:7a:34:d7:04: b2:d1:59:e5:74:1c:fa:cc:c7:b0:96:b9:d1:11:12: 45:d5:0e:06:95:7d:2e:1a:4a:a5:41:1f:57:ef:64: 61:1a:bb:e5:e6:71:24:7d:f0:ed:d2:e8:0d:a9:00: 32:60:ff:b5:1f:26:02:2e:37:75:35:76:fb:0d:36: ea:5d:87:a0:05:04:1c:d1:61:66:5f:61:ba:ac:de: d2:d0:cd:c9:c7:a3:1a:db:f7:7b:b4:27:48:11:df: f9:25:cf:61:48:d5:bb:46:2e:5a:42:c4:b4:23:97: 02:0a:21:d5:91:f2:12:70:78:8d:db:65:92:18:47: 15:4a:9e:ca:09:f4:a1:e6:34:f2:dc:9e:30:59:68: 2b:90:ad:be:c5:de:5c:f3:11:c7:0b:c9:4b:57:20: 77:23:cf:1f:03:cd:b4:db:cc:19:ac:5a:94:12:56: 3d:38:62:7a:44:45:ad:27:dc:b5:3c:29:4d:9c:5e: 54:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5C:B9:67:94:8D:C6:B7:8E:AE:DD:77:22:DD:57:C9:A5:67:CC:96 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33322e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.32.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:8e:4a:77:af:ac:b6:62:5a:b5:8c:77:a7:02:d2:f8:49:0f: f5:49:4b:88:86:f5:e2:65:8d:6c:bc:6a:9a:a0:02:e2:1e:99: fa:1d:02:45:3c:ac:98:a7:1d:2b:58:65:25:c4:b6:a6:1d:78: ba:64:7d:ed:77:cf:e0:19:dc:6d:c8:e9:39:ff:17:6a:ec:87: 68:45:bc:b1:1e:bb:6a:a2:4c:f2:5c:8f:13:20:91:3f:0b:0e: 1a:84:6c:67:ad:be:60:fb:d8:09:86:a8:63:d4:d3:89:20:0a: 23:d8:21:e8:99:6a:9a:ee:50:b1:d3:1b:6e:21:78:28:af:2c: 38:dd:60:b7:b3:58:a7:e6:47:ac:8d:10:a4:fc:89:f6:c5:55: e7:e4:7f:4d:c1:ce:3f:b3:e8:eb:44:11:da:70:ff:65:ca:5b: 61:bf:6d:e5:2a:6a:36:91:0a:6d:e6:ff:35:81:0c:66:bd:5c: ad:8b:2a:8f:83:df:1b:60:fa:61:cc:07:20:66:d2:38:10:f2: 4a:4b:af:a3:c5:a5:e7:b5:33:70:d6:fc:19:e5:00:d2:ba:03: ce:6e:79:2d:79:25:f1:80:35:43:dc:24:38:c4:74:20:ba:01: 55:b8:29:71:c5:b4:17:cf:4b:c5:20:a7:22:89:0c:fc:07:7a: cd:55:5a:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPe7D0Gp3FCOHN/ZlXG/zPQev18IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNDA3MTIwODU1MDJaFw0yNTA3MTEwOTAwMDJaMDMxMTAvBgNV BAMTKDBBNUNCOTY3OTQ4REM2Qjc4RUFFREQ3NzIyREQ1N0M5QTU2N0NDOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+WxUV2lI7kNaTkIgUcQ6a8/bU SqbnN8z7yhaceFGleaLl2zvhfKaQydMUrJznOQkS1xcMj/MZf6ZTo1Gx8Bq3gMrk rvEdejTXBLLRWeV0HPrMx7CWudEREkXVDgaVfS4aSqVBH1fvZGEau+XmcSR98O3S 6A2pADJg/7UfJgIuN3U1dvsNNupdh6AFBBzRYWZfYbqs3tLQzcnHoxrb93u0J0gR 3/klz2FI1btGLlpCxLQjlwIKIdWR8hJweI3bZZIYRxVKnsoJ9KHmNPLcnjBZaCuQ rb7F3lzzEccLyUtXIHcjzx8DzbTbzBmsWpQSVj04YnpERa0n3LU8KU2cXlR3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCly5Z5SNxreOrt13It1XyaVnzJYwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5cgMA0GCSqG SIb3DQEBCwUAA4IBAQCLjkp3r6y2Ylq1jHenAtL4SQ/1SUuIhvXiZY1svGqaoALi Hpn6HQJFPKyYpx0rWGUlxLamHXi6ZH3td8/gGdxtyOk5/xdq7IdoRbyxHrtqokzy XI8TIJE/Cw4ahGxnrb5g+9gJhqhj1NOJIAoj2CHomWqa7lCx0xtuIXgoryw43WC3 s1in5kesjRCk/In2xVXn5H9Nwc4/s+jrRBHacP9lylthv23lKmo2kQpt5v81gQxm vVytiyqPg98bYPphzAcgZtI4EPJKS6+jxaXntTNw1vwZ5QDSugPObnkteSXxgDVD 3CQ4xHQgugFVuClxxbQXz0vFIKciiQz8B3rNVVpx -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org