$ rpki-client -vvf repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36372e302f32342d3234203d3e20313530323635.roa File: 3130332e39302e36372e302f32342d3234203d3e20313530323635.roa (raw, json) Hash identifier: rSbPcUFwbUotF4iGb/0NgCE/rDZm6ThuOkAV/ZhbDr4= Subject key identifier: 8C:A2:F4:BE:27:91:AC:17:32:98:6A:ED:03:DF:10:F6:08:BA:5F:78 Certificate issuer: /CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Certificate serial: 2A8D58261019D1AE1CA896C35717D47C70BCC1F2 Authority key identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36372e302f32342d3234203d3e20313530323635.roa Signing time: Thu 17 Oct 2024 15:00:00 +0000 ROA not before: Thu 17 Oct 2024 14:55:00 +0000 ROA not after: Thu 16 Oct 2025 15:00:00 +0000 asID: 150265 IP address blocks: 103.90.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.crl rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:8d:58:26:10:19:d1:ae:1c:a8:96:c3:57:17:d4:7c:70:bc:c1:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Validity Not Before: Oct 17 14:55:00 2024 GMT Not After : Oct 16 15:00:00 2025 GMT Subject: CN=8CA2F4BE2791AC1732986AED03DF10F608BA5F78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:6b:bc:45:4d:b9:3e:fe:6e:c0:7b:33:b9: 53:87:ff:26:a7:14:cd:af:b1:6c:cc:30:15:de:11: 49:75:9b:26:1f:9d:96:1d:90:98:7f:e3:00:96:fc: 9f:51:5a:40:c7:88:de:e9:52:05:6c:b1:60:a4:c8: 63:f2:ac:de:6c:70:8a:e6:36:74:50:3f:59:7d:27: 16:3b:4f:13:0a:73:2b:b3:8c:89:b3:1b:af:12:b3: f0:96:51:51:c1:0d:04:e8:aa:a1:52:94:f8:eb:33: 6b:18:c1:7b:dd:23:98:3d:5a:51:cd:63:1d:09:3b: 79:81:e6:66:28:ae:b2:f3:2a:c4:37:5a:b9:06:5f: 0c:eb:71:3f:1a:55:c4:6f:ba:f5:86:ed:cd:5d:35: cf:a4:a1:df:7b:57:e2:3b:eb:a5:b4:1f:73:ef:dc: e2:a8:28:7b:77:04:e3:55:af:f7:c0:67:09:ce:86: 0c:cb:d4:61:9a:9a:4a:72:2f:27:d3:31:58:65:4c: a0:7c:88:97:a4:a5:aa:54:e3:a2:93:39:7e:88:72: 58:1d:e8:42:37:27:41:1a:1c:2e:8e:e1:2a:3d:14: 44:b9:96:bd:c5:6e:0c:ec:12:dc:fc:cc:02:76:7d: 82:c7:c4:5e:4c:22:7f:2a:37:f1:2d:53:0e:a9:1f: 13:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A2:F4:BE:27:91:AC:17:32:98:6A:ED:03:DF:10:F6:08:BA:5F:78 X509v3 Authority Key Identifier: keyid:5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36372e302f32342d3234203d3e20313530323635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.67.0/24 Signature Algorithm: sha256WithRSAEncryption b2:30:74:62:b2:6f:d3:1e:be:52:6b:b0:f2:af:fa:bd:67:2b: 03:0e:9d:34:bb:ba:f5:18:50:bd:b3:46:2c:f4:5c:3b:ac:34: db:86:27:d9:13:93:55:9b:31:93:bb:c2:fc:94:40:fb:94:6f: 33:1e:d9:a2:20:78:b6:33:69:72:8a:4e:e1:08:cc:47:e6:cb: 40:75:91:f1:4f:62:3c:85:93:53:5c:3a:e6:74:27:48:f4:09: 2f:92:99:5c:69:cc:87:53:db:5d:82:eb:ce:b0:8a:f0:39:83: c8:e2:b5:0a:5b:de:bb:7a:6b:72:0a:79:f7:63:f7:4c:33:31: 2e:47:ad:63:d9:60:ec:61:b5:2a:4c:b7:3d:37:75:57:fc:dd: 57:00:3f:b3:8b:e7:3b:f4:96:43:46:a4:be:63:e2:a8:7a:71: 6a:37:75:fa:5a:a5:c8:51:fc:a2:ca:6b:a8:48:8f:c5:6f:d6: 13:c3:14:d3:71:0b:ee:29:e6:34:a5:17:d6:0e:2b:ab:bc:1c: c3:c1:25:3b:ec:4c:85:f2:08:43:42:c7:6b:26:fb:4d:de:80: 9a:56:45:8c:2f:13:3a:b3:d1:66:54:47:0d:a9:a3:35:47:06: dd:3e:fc:c7:8e:09:b0:fd:61:a5:37:28:11:12:8b:a7:59:93: 15:bb:2a:26 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKo1YJhAZ0a4cqJbDVxfUfHC8wfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI4QzNBMjlFOTBDMjVDQkY0NjE1MTI0QjExN0JFN0ZD MDEzQzYxRTAeFw0yNDEwMTcxNDU1MDBaFw0yNTEwMTYxNTAwMDBaMDMxMTAvBgNV BAMTKDhDQTJGNEJFMjc5MUFDMTczMjk4NkFFRDAzREYxMEY2MDhCQTVGNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+Gu8RU25Pv5uwHszuVOH/yan FM2vsWzMMBXeEUl1myYfnZYdkJh/4wCW/J9RWkDHiN7pUgVssWCkyGPyrN5scIrm NnRQP1l9JxY7TxMKcyuzjImzG68Ss/CWUVHBDQToqqFSlPjrM2sYwXvdI5g9WlHN Yx0JO3mB5mYorrLzKsQ3WrkGXwzrcT8aVcRvuvWG7c1dNc+kod97V+I766W0H3Pv 3OKoKHt3BONVr/fAZwnOhgzL1GGamkpyLyfTMVhlTKB8iJekpapU46KTOX6Iclgd 6EI3J0EaHC6O4So9FES5lr3FbgzsEtz8zAJ2fYLHxF5MIn8qN/EtUw6pHxPrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjKL0vieRrBcymGrtA98Q9gi6X3gwHwYDVR0j BBgwFoAUW4w6KekMJcv0YVEksRe+f8ATxh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWYzYzc2OS1jZmIxLTQyMDYtOWY1NC1jMDU4N2U2M2JhNWIvMC81QjhDM0EyOUU5 MEMyNUNCRjQ2MTUxMjRCMTE3QkU3RkMwMTNDNjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI4QzNBMjlFOTBDMjVDQkY0NjE1MTI0QjExN0JFN0ZDMDEz QzYxRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZjNjNzY5LWNmYjEtNDIwNi05 ZjU0LWMwNTg3ZTYzYmE1Yi8wLzMxMzAzMzJlMzkzMDJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdaQzANBgkqhkiG 9w0BAQsFAAOCAQEAsjB0YrJv0x6+Umuw8q/6vWcrAw6dNLu69RhQvbNGLPRcO6w0 24Yn2ROTVZsxk7vC/JRA+5RvMx7ZoiB4tjNpcopO4QjMR+bLQHWR8U9iPIWTU1w6 5nQnSPQJL5KZXGnMh1PbXYLrzrCK8DmDyOK1Clveu3prcgp592P3TDMxLketY9lg 7GG1Kky3PTd1V/zdVwA/s4vnO/SWQ0akvmPiqHpxajd1+lqlyFH8osprqEiPxW/W E8MU03EL7inmNKUX1g4rq7wcw8ElO+xMhfIIQ0LHayb7Td6AmlZFjC8TOrPRZlRH DamjNUcG3T78x44JsP1hpTcoERKLp1mTFbsqJg== -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:03 2024 by rpki-client on console-ams.rpki-client.org