$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa File: 3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: eQag8HLHZu1kiCQwBVORmEZkcS9c5Ry+vEgpFVk0Re8= Subject key identifier: 06:8F:22:18:DC:2B:02:23:76:01:C7:65:18:D1:0E:4B:98:FF:62:D0 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 5A74ED7DCB4621D6687167B672941A4266BC453E Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa Signing time: Fri 12 Jul 2024 09:00:02 +0000 ROA not before: Fri 12 Jul 2024 08:55:02 +0000 ROA not after: Fri 11 Jul 2025 09:00:02 +0000 asID: 140407 IP address blocks: 103.151.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:74:ed:7d:cb:46:21:d6:68:71:67:b6:72:94:1a:42:66:bc:45:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Jul 12 08:55:02 2024 GMT Not After : Jul 11 09:00:02 2025 GMT Subject: CN=068F2218DC2B02237601C76518D10E4B98FF62D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f9:bd:bc:14:9c:93:f2:01:fd:57:04:dd:8a: d4:31:90:f1:ad:d5:d9:4e:fc:5e:40:6d:a4:44:f3: 5d:90:a5:de:88:81:5a:7f:67:de:2e:08:3d:1a:4d: 34:f0:33:f5:8b:e4:57:5c:c0:dd:0a:5b:27:f7:2f: df:bb:5f:4a:37:70:90:92:60:89:30:81:17:ab:71: 94:b4:56:e9:c9:73:69:33:60:3d:f8:e7:26:dd:2c: 0f:b0:55:29:af:5f:7f:9a:29:b0:32:0e:01:81:5f: c8:9c:d4:a8:9a:80:b3:33:da:6f:1f:09:0c:16:e6: 79:3b:ca:21:6d:d7:0d:fc:34:a6:af:7d:ea:c1:01: c4:14:39:1a:35:f7:67:43:9e:bb:29:06:3b:70:ab: 54:3b:19:74:7f:0d:e5:fc:ba:90:94:bd:b2:92:70: b3:aa:da:e3:3c:d8:c7:b5:66:09:46:4f:03:6f:d4: 2c:d4:ea:fb:48:75:dc:73:b1:ec:d5:25:27:db:90: 7e:88:72:85:e3:e1:4c:48:c1:2e:be:ff:4e:31:8c: 1a:42:8a:48:35:52:41:d8:ae:18:05:44:e7:39:80: 7d:e6:44:68:af:c9:fd:2c:53:a0:eb:2d:e1:56:a7: 67:25:72:88:3f:27:6b:34:c3:7a:ec:5b:d0:f4:da: 20:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8F:22:18:DC:2B:02:23:76:01:C7:65:18:D1:0E:4B:98:FF:62:D0 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.33.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:8b:29:3c:30:d4:14:e2:de:56:eb:46:9f:71:7b:58:ae:90: 8e:d6:ca:a5:0b:8a:12:02:03:12:58:1c:02:1f:d6:9a:2c:be: b9:fa:b8:c1:2b:05:df:b7:6e:c6:03:a5:87:2f:6f:ef:25:61: a3:27:0a:c2:cd:ab:8c:1e:6f:02:29:da:8f:a2:1e:41:02:d5: 50:4b:79:e2:19:2a:3d:5d:b0:e2:aa:5c:5f:e4:45:aa:52:4d: bc:90:7f:18:fd:1c:34:f7:1e:de:17:ac:1d:4d:77:c4:6e:4f: b9:ec:91:be:b0:1d:27:fb:57:df:8a:f8:a1:63:d2:f2:64:91: db:03:04:7f:66:ec:07:87:1d:33:ba:9c:a3:d6:24:2b:58:cd: dd:a9:02:8a:fa:87:8c:6f:44:c0:a6:ff:08:58:2b:b2:fa:66: a7:3b:4a:fb:53:b0:5f:ec:b0:a7:0e:55:05:59:cb:7c:b4:07: e6:81:48:c8:21:c4:d4:e8:69:04:dd:e0:47:0e:22:37:94:41: 75:93:33:ef:97:78:c2:35:53:cf:33:b7:32:6e:26:3f:f1:f1: 75:78:a2:6c:7b:31:8b:4c:b1:02:5e:2b:00:45:9d:93:5c:d4: c0:17:f2:ae:f0:6f:de:98:04:b5:bb:f0:1b:14:d9:4e:a1:22: 0d:fd:a1:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWnTtfctGIdZocWe2cpQaQma8RT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNDA3MTIwODU1MDJaFw0yNTA3MTEwOTAwMDJaMDMxMTAvBgNV BAMTKDA2OEYyMjE4REMyQjAyMjM3NjAxQzc2NTE4RDEwRTRCOThGRjYyRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF+b28FJyT8gH9VwTditQxkPGt 1dlO/F5AbaRE812Qpd6IgVp/Z94uCD0aTTTwM/WL5FdcwN0KWyf3L9+7X0o3cJCS YIkwgRercZS0VunJc2kzYD345ybdLA+wVSmvX3+aKbAyDgGBX8ic1KiagLMz2m8f CQwW5nk7yiFt1w38NKavferBAcQUORo192dDnrspBjtwq1Q7GXR/DeX8upCUvbKS cLOq2uM82Me1ZglGTwNv1CzU6vtIddxzsezVJSfbkH6IcoXj4UxIwS6+/04xjBpC ikg1UkHYrhgFROc5gH3mRGivyf0sU6DrLeFWp2clcog/J2s0w3rsW9D02iBpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBo8iGNwrAiN2AcdlGNEOS5j/YtAwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMxMzAzMzJlMzEzNTMxMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5chMA0GCSqG SIb3DQEBCwUAA4IBAQBbiyk8MNQU4t5W60afcXtYrpCO1sqlC4oSAgMSWBwCH9aa LL65+rjBKwXft27GA6WHL2/vJWGjJwrCzauMHm8CKdqPoh5BAtVQS3niGSo9XbDi qlxf5EWqUk28kH8Y/Rw09x7eF6wdTXfEbk+57JG+sB0n+1ffivihY9LyZJHbAwR/ ZuwHhx0zupyj1iQrWM3dqQKK+oeMb0TApv8IWCuy+manO0r7U7Bf7LCnDlUFWct8 tAfmgUjIIcTU6GkE3eBHDiI3lEF1kzPvl3jCNVPPM7cybiY/8fF1eKJsezGLTLEC XisARZ2TXNTAF/Ku8G/emAS1u/AbFNlOoSIN/aHG -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org