$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa File: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (raw, json) Hash identifier: CYRCxIMfYw8kr5hwucdBgVETX9ccYUsB+pGv5wRWbVU= Subject key identifier: 21:C9:27:E5:4B:BF:1E:40:B8:F8:AD:C2:D7:8B:E7:B1:D9:EA:75:43 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 739BA52A84907EE9D2444EA88FF835401B9AD72C Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa Signing time: Mon 26 Aug 2024 17:22:54 +0000 ROA not before: Mon 26 Aug 2024 17:17:54 +0000 ROA not after: Mon 25 Aug 2025 17:22:54 +0000 asID: 149749 IP address blocks: 103.189.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9b:a5:2a:84:90:7e:e9:d2:44:4e:a8:8f:f8:35:40:1b:9a:d7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Aug 26 17:17:54 2024 GMT Not After : Aug 25 17:22:54 2025 GMT Subject: CN=21C927E54BBF1E40B8F8ADC2D78BE7B1D9EA7543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:95:93:ef:03:09:bd:d5:05:26:2f:07:25: 8d:26:0e:f6:c2:b2:2e:46:b1:f4:f4:a5:c8:c0:b8: ea:be:c7:f8:03:27:b4:61:7b:53:9f:18:55:39:e8: 64:8a:e1:29:28:bd:0c:c9:93:e1:ab:06:03:d3:4f: d6:62:c8:bd:46:1e:97:a3:9c:fb:25:39:b5:ba:71: 0e:6a:ff:a6:65:6a:af:67:92:b6:79:a8:67:b7:f6: 48:13:99:fa:53:61:a0:fd:6d:cf:3a:d6:f7:06:06: 9b:b2:e3:76:b2:0b:29:c4:a0:23:b1:ab:b9:e4:1a: 86:4c:1b:db:c1:a9:64:ef:c3:b8:92:4e:56:e3:87: a7:58:0d:28:67:5e:82:d0:70:4b:fd:ed:dc:92:0c: be:17:19:dd:e8:31:27:b5:45:de:cd:b6:78:88:f9: 67:db:99:07:7b:62:16:a4:ba:be:fc:7b:d4:05:ab: 50:46:f1:60:63:b0:1e:81:b0:89:9e:92:d8:4d:14: 4d:83:70:7b:a2:39:d3:9e:0c:ed:e0:e9:fb:6e:39: 45:96:84:18:11:fd:89:87:af:95:67:17:39:47:99: 8e:13:35:12:9a:74:4e:81:0e:d7:e4:9a:2a:6c:b5: 27:43:f8:c3:1a:67:a9:77:62:7b:c6:26:c0:9e:1c: 4f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C9:27:E5:4B:BF:1E:40:B8:F8:AD:C2:D7:8B:E7:B1:D9:EA:75:43 X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.110.0/24 Signature Algorithm: sha256WithRSAEncryption 46:38:db:3c:bf:9e:03:32:e6:08:16:c6:63:34:cf:de:ef:25: 14:a0:70:d5:ce:28:0b:f5:68:5a:7f:56:ac:f5:45:02:2d:47: 36:29:c6:92:8b:28:f5:f9:43:10:b4:6c:0d:9d:ea:e8:32:c1: d8:0d:e3:f4:61:19:28:45:ed:4d:d4:64:b1:de:83:19:6e:5d: 8f:46:49:1e:4c:11:c3:6e:a0:77:2d:05:93:2f:ec:65:bd:17: 1d:a3:5c:82:14:01:11:7e:56:cd:ce:a8:5d:41:04:80:ae:9c: 2c:88:db:7f:31:8f:d9:8d:65:a3:d7:3c:71:5b:bc:39:81:a6: cd:38:46:a0:58:b1:fe:64:86:95:4f:1e:cc:82:2b:59:39:75: 76:20:c9:b7:51:e5:96:90:d3:2d:73:81:a5:40:5a:e9:19:e9: 86:68:4f:6f:eb:c5:a9:37:83:f7:49:5b:87:a8:a4:fa:33:6e: 5b:dd:1b:a0:5a:5e:86:9a:2a:6d:76:e9:98:d2:6b:8d:3a:c5: 39:32:b1:6e:62:34:2f:ea:3d:a0:9d:ad:c4:1f:10:b8:c9:c3: 5c:09:67:0c:c5:72:18:77:9a:3b:7f:cb:91:90:c1:e2:e8:a3: 24:0f:59:a6:1c:57:76:c4:5e:ae:ea:13:83:88:44:a0:bd:ad: 01:12:d7:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc5ulKoSQfunSRE6oj/g1QBua1ywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNDA4MjYxNzE3NTRaFw0yNTA4MjUxNzIyNTRaMDMxMTAvBgNV BAMTKDIxQzkyN0U1NEJCRjFFNDBCOEY4QURDMkQ3OEJFN0IxRDlFQTc1NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC86ZWT7wMJvdUFJi8HJY0mDvbC si5GsfT0pcjAuOq+x/gDJ7Rhe1OfGFU56GSK4SkovQzJk+GrBgPTT9ZiyL1GHpej nPslObW6cQ5q/6Zlaq9nkrZ5qGe39kgTmfpTYaD9bc861vcGBpuy43ayCynEoCOx q7nkGoZMG9vBqWTvw7iSTlbjh6dYDShnXoLQcEv97dySDL4XGd3oMSe1Rd7NtniI +WfbmQd7Yhakur78e9QFq1BG8WBjsB6BsImekthNFE2DcHuiOdOeDO3g6ftuOUWW hBgR/YmHr5VnFzlHmY4TNRKadE6BDtfkmipstSdD+MMaZ6l3YnvGJsCeHE9dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIckn5Uu/HkC4+K3C14vnsdnqdUMwHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNWU1YTMwLTA4MDItNGM1Yy05 NDdlLTk4ZWYyODVmNGY2Yi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvW4wDQYJ KoZIhvcNAQELBQADggEBAEY42zy/ngMy5ggWxmM0z97vJRSgcNXOKAv1aFp/Vqz1 RQItRzYpxpKLKPX5QxC0bA2d6ugywdgN4/RhGShF7U3UZLHegxluXY9GSR5MEcNu oHctBZMv7GW9Fx2jXIIUARF+Vs3OqF1BBICunCyI238xj9mNZaPXPHFbvDmBps04 RqBYsf5khpVPHsyCK1k5dXYgybdR5ZaQ0y1zgaVAWukZ6YZoT2/rxak3g/dJW4eo pPozblvdG6BaXoaaKm126ZjSa406xTkysW5iNC/qPaCdrcQfELjJw1wJZwzFchh3 mjt/y5GQweLooyQPWaYcV3bEXq7qE4OIRKC9rQES13s= -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:39 2024 by rpki-client on console-ams.rpki-client.org