$ rpki-client -vvf repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa File: 3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa (raw, json) Hash identifier: LsWFyeKdfgBe/iPPZkWGpv1VWX1qt3/E1kTKxdlR6Ys= Subject key identifier: E1:FB:FD:1B:A3:11:B2:72:49:EB:0C:AF:3E:53:8A:C1:76:DA:F4:97 Certificate issuer: /CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7 Certificate serial: 53603F11C68358E2A29EB6D12BF75E4E55A745A8 Authority key identifier: AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa Signing time: Mon 11 Mar 2024 07:00:00 +0000 ROA not before: Mon 11 Mar 2024 06:55:00 +0000 ROA not after: Mon 10 Mar 2025 07:00:00 +0000 asID: 149704 IP address blocks: 103.186.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 07:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:60:3f:11:c6:83:58:e2:a2:9e:b6:d1:2b:f7:5e:4e:55:a7:45:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7 Validity Not Before: Mar 11 06:55:00 2024 GMT Not After : Mar 10 07:00:00 2025 GMT Subject: CN=E1FBFD1BA311B27249EB0CAF3E538AC176DAF497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e2:88:45:30:7a:99:11:a3:80:bb:ab:0b:7b: be:7f:c2:41:0c:15:03:40:7d:74:f5:bf:91:76:b8: e0:9a:b4:fe:05:d2:c1:9c:b6:cc:0f:e1:54:18:b9: 32:56:c0:38:82:09:33:df:61:05:42:97:cf:9c:18: 4a:64:f4:88:a9:ac:30:a9:b6:09:d5:0d:46:e2:85: ff:6e:5c:e0:f2:bb:bf:45:36:88:13:55:fd:b4:21: 5e:81:17:76:88:e1:5d:d7:a8:14:ae:38:50:7b:ca: 52:f6:7b:37:3d:5d:91:b8:a3:31:3c:e8:0c:12:a5: fe:94:28:d6:29:5a:6c:0c:85:cd:23:33:52:19:84: 02:30:26:b0:5c:03:65:7b:b7:28:15:63:65:40:8c: e5:72:da:47:a0:82:14:bd:29:8b:cf:cd:77:1e:5e: c8:4c:dc:92:ad:85:a5:85:3f:c1:eb:12:85:92:95: 67:05:28:34:28:81:25:2e:d4:f6:e3:f0:6a:f1:1c: 46:10:da:5b:da:a8:bd:33:73:61:b2:71:36:0a:13: 73:e1:15:39:70:76:8b:a1:aa:64:22:81:e3:de:c1: a8:ea:2b:e9:18:00:bb:7f:9f:60:5f:4f:22:c8:24: eb:df:43:6e:11:29:8c:ae:0b:f3:60:74:bc:70:e6: 59:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FB:FD:1B:A3:11:B2:72:49:EB:0C:AF:3E:53:8A:C1:76:DA:F4:97 X509v3 Authority Key Identifier: keyid:AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.58.0/24 Signature Algorithm: sha256WithRSAEncryption 80:c6:b4:98:90:ab:20:e3:dd:a8:f3:a3:f3:f6:ed:7e:9b:66: 45:90:9f:70:aa:60:f6:e3:2f:49:bb:83:9c:a5:de:12:2b:fb: 78:26:34:58:70:fa:df:44:de:95:4d:4f:d8:11:09:bb:21:d4: 3a:66:22:d9:5c:e1:6e:cc:08:4a:3c:88:47:bc:33:c5:93:bb: df:f0:77:ed:40:93:08:d9:57:6d:67:14:db:4c:35:94:2d:fa: 9d:92:83:37:cf:92:c1:e5:98:ee:2c:7a:28:a6:f4:fd:08:e1: 95:ce:31:10:fa:f3:1f:43:da:84:26:b6:c6:4b:dc:bc:91:98: 49:24:11:89:1c:f6:a4:4f:1a:22:3c:74:c4:85:9b:38:0a:cc: 18:16:65:34:37:43:f7:f2:04:d3:0d:2a:09:3d:1c:76:f2:ec: 63:93:93:7e:64:f5:52:8a:d8:c2:65:f8:d7:e1:52:92:7c:f1: c0:67:22:b2:d5:90:24:3d:63:f7:ff:40:24:08:66:fe:5c:ff: 20:f6:93:9e:a1:ef:40:c7:fb:fc:2c:8f:0d:48:0e:96:a6:ab: 69:b1:d6:44:3e:d5:23:97:4c:1c:99:35:38:41:a8:5f:60:b6: d2:31:d3:17:60:65:1f:2b:9b:6a:81:df:0b:b7:2e:e4:71:fc: 6d:70:24:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU2A/EcaDWOKinrbRK/deTlWnRagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY3QjkzOEUwNjQ0RTU1RkUwMjBFNzlDNTNCRjExRkQ0 QjE0QzlCNzAeFw0yNDAzMTEwNjU1MDBaFw0yNTAzMTAwNzAwMDBaMDMxMTAvBgNV BAMTKEUxRkJGRDFCQTMxMUIyNzI0OUVCMENBRjNFNTM4QUMxNzZEQUY0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+4ohFMHqZEaOAu6sLe75/wkEM FQNAfXT1v5F2uOCatP4F0sGctswP4VQYuTJWwDiCCTPfYQVCl8+cGEpk9IiprDCp tgnVDUbihf9uXODyu79FNogTVf20IV6BF3aI4V3XqBSuOFB7ylL2ezc9XZG4ozE8 6AwSpf6UKNYpWmwMhc0jM1IZhAIwJrBcA2V7tygVY2VAjOVy2kegghS9KYvPzXce XshM3JKthaWFP8HrEoWSlWcFKDQogSUu1Pbj8GrxHEYQ2lvaqL0zc2GycTYKE3Ph FTlwdouhqmQigePewajqK+kYALt/n2BfTyLIJOvfQ24RKYyuC/NgdLxw5lnHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4fv9G6MRsnJJ6wyvPlOKwXba9JcwHwYDVR0j BBgwFoAUr3uTjgZE5V/gIOecU78R/UsUybcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTBlZGRjZC03ZDM4LTQ3NjUtYWEyNi03ZTQ1NzY3MDQyM2MvMC9BRjdCOTM4RTA2 NDRFNTVGRTAyMEU3OUM1M0JGMTFGRDRCMTRDOUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY3QjkzOEUwNjQ0RTU1RkUwMjBFNzlDNTNCRjExRkQ0QjE0 QzlCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMGVkZGNkLTdkMzgtNDc2NS1h YTI2LTdlNDU3NjcwNDIzYy8wLzMxMzAzMzJlMzEzODM2MmUzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7o6MA0GCSqG SIb3DQEBCwUAA4IBAQCAxrSYkKsg492o86Pz9u1+m2ZFkJ9wqmD24y9Ju4Ocpd4S K/t4JjRYcPrfRN6VTU/YEQm7IdQ6ZiLZXOFuzAhKPIhHvDPFk7vf8HftQJMI2Vdt ZxTbTDWULfqdkoM3z5LB5ZjuLHoopvT9COGVzjEQ+vMfQ9qEJrbGS9y8kZhJJBGJ HPakTxoiPHTEhZs4CswYFmU0N0P38gTTDSoJPRx28uxjk5N+ZPVSitjCZfjX4VKS fPHAZyKy1ZAkPWP3/0AkCGb+XP8g9pOeoe9Ax/v8LI8NSA6WpqtpsdZEPtUjl0wc mTU4QahfYLbSMdMXYGUfK5tqgd8Lty7kcfxtcCSz -----END CERTIFICATE-----Generated at Sat Jun 1 07:07:12 2024 by rpki-client on console-ams.rpki-client.org