$ rpki-client -vvf repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa File: 3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa (raw, json) Hash identifier: mvaN8XLvKPCnEJm4vDmbpI0VnR/980VlcmdkNSSA5kU= Subject key identifier: 54:DC:1A:B6:4C:06:7E:B0:2D:F2:47:6B:71:1E:79:55:0B:9F:E9:3F Certificate issuer: /CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7 Certificate serial: 575D4B9CD300AAB48027A8A275B1BB0DE624353C Authority key identifier: AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa Signing time: Mon 11 Mar 2024 07:00:00 +0000 ROA not before: Mon 11 Mar 2024 06:55:00 +0000 ROA not after: Mon 10 Mar 2025 07:00:00 +0000 asID: 149704 IP address blocks: 103.186.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:5d:4b:9c:d3:00:aa:b4:80:27:a8:a2:75:b1:bb:0d:e6:24:35:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7 Validity Not Before: Mar 11 06:55:00 2024 GMT Not After : Mar 10 07:00:00 2025 GMT Subject: CN=54DC1AB64C067EB02DF2476B711E79550B9FE93F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:dc:18:65:18:56:a6:d6:7f:d1:7d:8e:7e: c5:ff:d6:fc:98:ba:ee:5a:dd:62:ad:e8:3f:53:ff: b3:37:7d:b4:89:23:25:7f:1d:12:20:51:0a:02:d3: 0b:34:69:68:f8:81:45:7f:03:c1:7e:93:12:10:d4: 73:2d:fa:70:1c:59:f5:80:3f:16:df:05:1e:ef:f6: 2b:a6:18:bc:cb:23:d9:78:97:fb:38:4d:26:27:d5: ec:89:d7:5c:03:ff:58:ab:26:fb:0e:f7:c4:f3:6c: db:1a:d1:14:ce:9e:ae:53:0d:80:24:0d:d2:5d:93: 1a:4c:dc:8b:3c:05:9f:fd:aa:c0:d8:d4:be:d8:5a: 2c:90:f8:1a:7d:e1:7a:ac:5f:32:1e:da:71:76:61: 77:02:02:bc:f4:e2:68:85:30:e9:6d:a7:32:a8:66: 71:22:37:e2:5b:2b:a7:c1:22:f3:0a:0d:95:ef:6f: 52:28:35:d0:50:e6:12:d6:e8:fc:ce:b7:d2:a2:f4: d7:ac:18:ba:15:0e:cd:8b:e8:f1:36:d3:62:8e:87: 02:ac:eb:33:50:ae:30:60:11:72:d5:1e:96:71:50: e5:7c:13:f5:f6:ab:71:2e:96:b8:05:1d:91:9e:66: a1:94:25:88:c9:6e:51:05:88:8a:95:3b:5f:fc:c1: 73:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:1A:B6:4C:06:7E:B0:2D:F2:47:6B:71:1E:79:55:0B:9F:E9:3F X509v3 Authority Key Identifier: keyid:AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.59.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e8:56:aa:a1:71:c1:d0:93:aa:df:3e:fb:45:09:ed:a5:16: 23:94:26:24:aa:d3:25:e0:13:cb:81:43:81:f8:4d:f6:28:50: 01:b0:92:4d:c7:88:bc:18:21:09:24:75:f7:02:39:cb:25:b5: 8e:9a:b8:23:fe:69:57:6c:86:aa:9e:f5:40:a3:35:38:4f:99: b9:f0:a3:21:5f:94:b4:9f:51:b1:ca:a8:22:16:71:4e:ab:c6: f4:c1:59:48:ad:1e:eb:8c:91:24:60:74:b6:ee:b5:eb:45:b7: 9a:bb:d6:35:30:40:52:33:29:89:cd:33:a4:82:f0:82:b3:5b: b6:8c:bd:31:dc:62:d1:26:7e:7d:f6:6f:03:5e:d5:a2:c7:49: 81:24:c1:24:4d:8f:9b:ef:17:e2:32:e4:9e:72:de:8e:5f:3d: 55:e7:81:2b:c8:46:80:9d:e1:46:05:4b:c4:d4:c8:5e:4c:ba: ab:b5:c7:a4:6e:c6:3d:2f:2e:fe:28:fc:4c:e1:44:41:97:81: f1:cb:a3:02:62:83:dc:ef:93:ff:66:44:d5:ea:5a:4b:ce:9d: 79:cc:6d:93:69:c5:7c:44:f1:7e:97:72:59:4f:2e:dd:b4:3f: e4:44:aa:3d:4f:c7:8a:16:59:57:c5:9f:97:0e:dc:e3:4e:f3: 1c:92:17:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV11LnNMAqrSAJ6iidbG7DeYkNTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY3QjkzOEUwNjQ0RTU1RkUwMjBFNzlDNTNCRjExRkQ0 QjE0QzlCNzAeFw0yNDAzMTEwNjU1MDBaFw0yNTAzMTAwNzAwMDBaMDMxMTAvBgNV BAMTKDU0REMxQUI2NEMwNjdFQjAyREYyNDc2QjcxMUU3OTU1MEI5RkU5M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNiNwYZRhWptZ/0X2OfsX/1vyY uu5a3WKt6D9T/7M3fbSJIyV/HRIgUQoC0ws0aWj4gUV/A8F+kxIQ1HMt+nAcWfWA PxbfBR7v9iumGLzLI9l4l/s4TSYn1eyJ11wD/1irJvsO98TzbNsa0RTOnq5TDYAk DdJdkxpM3Is8BZ/9qsDY1L7YWiyQ+Bp94XqsXzIe2nF2YXcCArz04miFMOltpzKo ZnEiN+JbK6fBIvMKDZXvb1IoNdBQ5hLW6PzOt9Ki9NesGLoVDs2L6PE202KOhwKs 6zNQrjBgEXLVHpZxUOV8E/X2q3EulrgFHZGeZqGUJYjJblEFiIqVO1/8wXMvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVNwatkwGfrAt8kdrcR55VQuf6T8wHwYDVR0j BBgwFoAUr3uTjgZE5V/gIOecU78R/UsUybcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTBlZGRjZC03ZDM4LTQ3NjUtYWEyNi03ZTQ1NzY3MDQyM2MvMC9BRjdCOTM4RTA2 NDRFNTVGRTAyMEU3OUM1M0JGMTFGRDRCMTRDOUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY3QjkzOEUwNjQ0RTU1RkUwMjBFNzlDNTNCRjExRkQ0QjE0 QzlCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMGVkZGNkLTdkMzgtNDc2NS1h YTI2LTdlNDU3NjcwNDIzYy8wLzMxMzAzMzJlMzEzODM2MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7o7MA0GCSqG SIb3DQEBCwUAA4IBAQBj6FaqoXHB0JOq3z77RQntpRYjlCYkqtMl4BPLgUOB+E32 KFABsJJNx4i8GCEJJHX3AjnLJbWOmrgj/mlXbIaqnvVAozU4T5m58KMhX5S0n1Gx yqgiFnFOq8b0wVlIrR7rjJEkYHS27rXrRbeau9Y1MEBSMymJzTOkgvCCs1u2jL0x 3GLRJn599m8DXtWix0mBJMEkTY+b7xfiMuSect6OXz1V54EryEaAneFGBUvE1Mhe TLqrtcekbsY9Ly7+KPxM4URBl4Hxy6MCYoPc75P/ZkTV6lpLzp15zG2TacV8RPF+ l3JZTy7dtD/kRKo9T8eKFllXxZ+XDtzjTvMckhci -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org