$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa File: 3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa (raw, json) Hash identifier: bN9NbqyRu4lQ+Okmxo+MD9ITEKt3VwrIkrq6ODkSbg0= Subject key identifier: 39:70:2E:76:48:B2:51:16:14:CA:FD:90:6B:F7:08:A4:B2:B8:A2:B1 Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 23A913F512F626368B5CDB68DA8FBC32807CCC21 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa Signing time: Thu 19 Sep 2024 02:34:18 +0000 ROA not before: Thu 19 Sep 2024 02:29:18 +0000 ROA not after: Thu 18 Sep 2025 02:34:18 +0000 asID: 149736 IP address blocks: 103.188.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a9:13:f5:12:f6:26:36:8b:5c:db:68:da:8f:bc:32:80:7c:cc:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Sep 19 02:29:18 2024 GMT Not After : Sep 18 02:34:18 2025 GMT Subject: CN=39702E7648B2511614CAFD906BF708A4B2B8A2B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:03:3a:88:5b:a1:bc:b5:bc:1f:99:0b:f6: dc:9c:c4:14:37:ef:c1:9e:32:12:34:31:67:b5:54: de:6d:46:eb:b6:b1:fa:20:77:70:08:43:53:ea:37: cd:04:c8:c7:a4:f9:b9:ef:45:09:66:5f:cd:e3:47: e7:38:94:ef:60:8d:49:61:e7:b3:5e:81:58:fe:dc: 71:81:b9:92:29:fb:70:40:cd:99:d8:d4:ac:41:8b: f3:8d:6a:cd:22:69:80:4e:f4:f0:1f:92:5a:87:a1: 62:eb:a1:07:4f:b1:f5:7f:ab:d8:2f:27:09:3b:8d: 14:72:cc:6f:53:d1:94:3f:37:fb:31:7f:93:22:29: a4:4d:fd:d0:12:ef:3f:c2:57:a2:90:02:10:84:20: 3c:d0:39:2d:b6:16:ab:88:00:73:3e:bb:1e:88:3c: 36:7c:8e:42:0f:bd:f6:da:28:be:82:50:dc:1c:6a: 22:c8:54:59:cc:ed:9e:fa:26:51:aa:52:00:40:d9: 20:76:ab:5b:b2:cd:4b:c5:2f:50:61:ac:94:e5:a3: 10:09:64:27:8f:f3:1f:b1:cc:aa:44:c8:30:13:15: 94:06:98:58:d6:c7:51:b8:e0:a9:7e:34:94:86:0c: 56:3e:7f:af:cd:18:d0:07:57:b3:46:73:a9:45:3b: 1f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:70:2E:76:48:B2:51:16:14:CA:FD:90:6B:F7:08:A4:B2:B8:A2:B1 X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.172.0/24 Signature Algorithm: sha256WithRSAEncryption b8:14:01:7b:90:6a:f3:9a:66:15:76:f2:60:0c:6d:83:e9:20: 00:3a:d7:53:ef:8a:94:f0:96:f0:4e:87:23:2c:4b:8f:55:27: 0a:45:0a:ae:08:90:e0:3a:3e:78:c3:4d:e3:0d:40:3e:47:1e: 6c:52:5d:85:50:ea:f3:f7:9d:73:fa:a7:db:26:75:e8:2b:01: 2f:ff:c1:ad:8f:2e:9b:28:64:1c:ee:1d:a2:99:15:46:53:dd: bd:85:cd:36:a3:f2:17:db:67:eb:63:35:5a:e8:23:61:b9:44: c8:51:7d:54:a5:3e:e9:a6:56:3b:a7:d6:5f:0d:6b:17:d2:aa: af:00:06:51:e9:56:30:e3:3a:90:48:b8:bc:f2:25:18:15:bd: 64:d2:c5:da:d1:3a:df:e3:9b:f1:34:6c:9b:58:ae:f7:48:25: 9c:a1:a4:49:12:31:94:a6:e6:27:98:09:c6:a7:b3:dd:ae:21: 4c:9f:35:b5:21:1a:d2:06:22:3e:b5:13:1c:90:98:5f:42:88: 38:7f:60:49:32:59:3c:6f:52:0a:3d:05:67:82:03:40:95:64: 79:ad:04:d9:40:ac:5d:9d:a1:9e:22:b7:21:91:1a:d0:62:e9: 2d:b2:b3:16:62:6e:d1:f1:c9:07:9c:27:8f:ce:2c:b8:03:c1: 54:7c:1e:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI6kT9RL2JjaLXNto2o+8MoB8zCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNDA5MTkwMjI5MThaFw0yNTA5MTgwMjM0MThaMDMxMTAvBgNV BAMTKDM5NzAyRTc2NDhCMjUxMTYxNENBRkQ5MDZCRjcwOEE0QjJCOEEyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/oQM6iFuhvLW8H5kL9tycxBQ3 78GeMhI0MWe1VN5tRuu2sfogd3AIQ1PqN80EyMek+bnvRQlmX83jR+c4lO9gjUlh 57NegVj+3HGBuZIp+3BAzZnY1KxBi/ONas0iaYBO9PAfklqHoWLroQdPsfV/q9gv Jwk7jRRyzG9T0ZQ/N/sxf5MiKaRN/dAS7z/CV6KQAhCEIDzQOS22FquIAHM+ux6I PDZ8jkIPvfbaKL6CUNwcaiLIVFnM7Z76JlGqUgBA2SB2q1uyzUvFL1BhrJTloxAJ ZCeP8x+xzKpEyDATFZQGmFjWx1G44Kl+NJSGDFY+f6/NGNAHV7NGc6lFOx8hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOXAudkiyURYUyv2Qa/cIpLK4orEwHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvKwwDQYJ KoZIhvcNAQELBQADggEBALgUAXuQavOaZhV28mAMbYPpIAA611PvipTwlvBOhyMs S49VJwpFCq4IkOA6PnjDTeMNQD5HHmxSXYVQ6vP3nXP6p9smdegrAS//wa2PLpso ZBzuHaKZFUZT3b2FzTaj8hfbZ+tjNVroI2G5RMhRfVSlPummVjun1l8NaxfSqq8A BlHpVjDjOpBIuLzyJRgVvWTSxdrROt/jm/E0bJtYrvdIJZyhpEkSMZSm5ieYCcan s92uIUyfNbUhGtIGIj61ExyQmF9CiDh/YEkyWTxvUgo9BWeCA0CVZHmtBNlArF2d oZ4ityGRGtBi6S2ysxZibtHxyQecJ4/OLLgDwVR8Hus= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org