$ rpki-client -vvf repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa File: 3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa (raw, json) Hash identifier: pbtnRnaTH+DVJ0tZdjXb84dD832WiM9IiHWW1QnzvZE= Subject key identifier: B3:A9:F9:D2:C1:BD:3A:6A:35:3F:8E:0A:1B:40:BF:FB:28:51:FE:18 Certificate issuer: /CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Certificate serial: 5CAEFDF4F2232C6D27A273235FEF61D696B586D4 Authority key identifier: 96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa Signing time: Wed 10 Apr 2024 08:01:27 +0000 ROA not before: Wed 10 Apr 2024 07:56:27 +0000 ROA not after: Wed 09 Apr 2025 08:01:27 +0000 asID: 138854 IP address blocks: 103.138.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ae:fd:f4:f2:23:2c:6d:27:a2:73:23:5f:ef:61:d6:96:b5:86:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Validity Not Before: Apr 10 07:56:27 2024 GMT Not After : Apr 9 08:01:27 2025 GMT Subject: CN=B3A9F9D2C1BD3A6A353F8E0A1B40BFFB2851FE18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:68:49:0f:bd:8e:10:7d:5c:8d:db:45:4f:17: 07:74:3b:14:d7:42:23:29:c3:a5:0e:15:be:33:f0: 45:99:5b:7c:12:58:c0:05:39:30:b9:8e:ca:ab:b6: 6d:d6:30:9d:3a:57:d8:36:52:db:1c:c0:c2:35:07: e8:e5:28:2e:14:fc:ce:b6:c9:f7:8c:fe:95:45:1c: fc:ad:f8:0f:48:03:9a:b5:ab:21:75:35:a8:d4:17: b1:f7:97:c7:80:a4:0a:11:1a:97:4f:5b:70:6f:87: 36:e5:14:3e:c9:91:91:48:c7:7d:41:73:ad:75:58: eb:3a:51:47:46:ea:91:3b:92:f0:a0:65:cb:1a:ef: 6c:9e:38:f8:f8:f1:78:4b:e9:7e:48:7d:97:33:83: d2:b3:f7:3f:08:e8:f3:bf:3f:a7:25:55:2a:8b:8d: 40:a9:66:82:da:f9:d7:08:51:72:27:ac:86:33:da: 78:23:09:7f:27:67:19:ea:39:8e:73:54:12:38:fb: e6:59:77:34:5d:72:53:db:d3:c6:e4:f7:a1:41:14: 3a:98:4b:ce:50:8c:08:d9:5d:5b:f3:f1:33:35:fa: 5b:9e:2f:16:56:95:85:bb:fc:c0:ef:0a:13:e0:7b: 8c:1c:ef:dd:ce:07:9b:13:31:3d:d0:4a:b6:46:80: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A9:F9:D2:C1:BD:3A:6A:35:3F:8E:0A:1B:40:BF:FB:28:51:FE:18 X509v3 Authority Key Identifier: keyid:96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.218.0/23 Signature Algorithm: sha256WithRSAEncryption 20:8c:66:b3:f9:9f:00:65:8a:8b:e5:4d:51:2a:74:da:c5:2d: 58:55:6f:6f:67:90:4e:97:08:1b:ef:71:40:6a:ad:62:ee:26: b8:f9:f6:75:36:62:f0:3c:1f:79:4a:28:51:bc:7f:ab:bf:3d: 08:b4:06:a0:fb:0a:46:5a:23:1a:66:34:74:d6:01:4e:5a:b5: c0:3d:53:e2:81:56:b2:4b:b5:57:e5:ac:ec:8a:b5:16:0d:d8: df:72:b2:6b:af:a5:a6:1e:2c:be:63:3f:75:f1:c6:24:c2:43: a5:f5:91:36:b1:ef:0d:3b:63:6f:d6:60:90:85:01:87:5b:d2: 96:91:6b:27:52:a6:3d:e7:45:72:19:0b:18:c2:dc:f1:3c:a7: cb:4b:07:8f:27:56:8f:50:b2:f6:26:6a:16:46:84:d8:32:f9: cd:cb:a0:a4:9f:e4:f8:00:ac:06:6c:20:58:89:1c:31:51:c4: 86:9f:63:3a:01:d7:71:64:4e:42:14:4e:d4:bd:25:16:56:03: 00:08:3a:0e:5e:80:c1:02:eb:9b:bc:48:48:6e:cc:14:26:36: 62:6e:25:4d:07:7f:98:7c:72:e3:c9:dc:3d:f4:c6:52:c6:b4: c8:b3:c8:7f:7a:df:c9:27:9d:eb:1d:df:07:a1:75:d5:6d:6a: 97:3d:08:bf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXK799PIjLG0nonMjX+9h1pa1htQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0 MTExNzNEOTAeFw0yNDA0MTAwNzU2MjdaFw0yNTA0MDkwODAxMjdaMDMxMTAvBgNV BAMTKEIzQTlGOUQyQzFCRDNBNkEzNTNGOEUwQTFCNDBCRkZCMjg1MUZFMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQaEkPvY4QfVyN20VPFwd0OxTX QiMpw6UOFb4z8EWZW3wSWMAFOTC5jsqrtm3WMJ06V9g2UtscwMI1B+jlKC4U/M62 yfeM/pVFHPyt+A9IA5q1qyF1NajUF7H3l8eApAoRGpdPW3BvhzblFD7JkZFIx31B c611WOs6UUdG6pE7kvCgZcsa72yeOPj48XhL6X5IfZczg9Kz9z8I6PO/P6clVSqL jUCpZoLa+dcIUXInrIYz2ngjCX8nZxnqOY5zVBI4++ZZdzRdclPb08bk96FBFDqY S85QjAjZXVvz8TM1+lueLxZWlYW7/MDvChPge4wc793OB5sTMT3QSrZGgL2jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs6n50sG9Omo1P44KG0C/+yhR/hgwHwYDVR0j BBgwFoAUlsQc/id/aG40dqUz/a5aD0ERc9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjUwMjIwNS01YzU0LTQ3ZGItYWU2Zi05ZDQ4ZTE4MzI0MWMvMC85NkM0MUNGRTI3 N0Y2ODZFMzQ3NkE1MzNGREFFNUEwRjQxMTE3M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0MTEx NzNEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNTAyMjA1LTVjNTQtNDdkYi1h ZTZmLTlkNDhlMTgzMjQxYy8wLzMxMzAzMzJlMzEzMzM4MmUzMjMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnitowDQYJ KoZIhvcNAQELBQADggEBACCMZrP5nwBliovlTVEqdNrFLVhVb29nkE6XCBvvcUBq rWLuJrj59nU2YvA8H3lKKFG8f6u/PQi0BqD7CkZaIxpmNHTWAU5atcA9U+KBVrJL tVflrOyKtRYN2N9ysmuvpaYeLL5jP3XxxiTCQ6X1kTax7w07Y2/WYJCFAYdb0paR aydSpj3nRXIZCxjC3PE8p8tLB48nVo9QsvYmahZGhNgy+c3LoKSf5PgArAZsIFiJ HDFRxIafYzoB13FkTkIUTtS9JRZWAwAIOg5egMEC65u8SEhuzBQmNmJuJU0Hf5h8 cuPJ3D30xlLGtMizyH9638knnesd3wehddVtapc9CL8= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:39 2024 by rpki-client on console-fra.rpki-client.org