$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/3130332e3138362e322e302f32342d3234203d3e20313439383837.roa File: 3130332e3138362e322e302f32342d3234203d3e20313439383837.roa (raw, json) Hash identifier: S9YfwHbBOeLYtckM2KOtj4SHPK2f8huT/U75BsSnHuM= Subject key identifier: 2C:EB:8B:13:11:47:BA:5A:4F:AC:76:A3:DC:D1:BB:37:0B:E8:00:B1 Certificate issuer: /CN=C19B133025B2D947034F2B0FC582B9F2ABC7A6B2 Certificate serial: 0D71A6947FC38A3A25401F5369A9D915147AAC6E Authority key identifier: C1:9B:13:30:25:B2:D9:47:03:4F:2B:0F:C5:82:B9:F2:AB:C7:A6:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/3130332e3138362e322e302f32342d3234203d3e20313439383837.roa Signing time: Mon 01 Jan 2024 05:02:48 +0000 ROA not before: Mon 01 Jan 2024 04:57:48 +0000 ROA not after: Mon 30 Dec 2024 05:02:48 +0000 asID: 149887 IP address blocks: 103.186.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.crl rsync://repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:71:a6:94:7f:c3:8a:3a:25:40:1f:53:69:a9:d9:15:14:7a:ac:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C19B133025B2D947034F2B0FC582B9F2ABC7A6B2 Validity Not Before: Jan 1 04:57:48 2024 GMT Not After : Dec 30 05:02:48 2024 GMT Subject: CN=2CEB8B131147BA5A4FAC76A3DCD1BB370BE800B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:74:85:a7:a8:f9:8d:91:19:1d:9c:44:c5: 35:13:90:77:42:e3:aa:65:b0:68:0c:11:09:54:a4: 7b:3f:25:01:ea:0d:34:16:70:7a:c6:de:03:44:27: 1d:3a:24:7e:ef:b4:60:43:a1:38:20:f9:20:58:94: ba:d5:b0:b7:24:1c:ad:26:2a:52:df:00:19:94:15: f2:c2:73:6a:b5:f4:a9:7b:0c:96:e5:44:48:46:f9: 2d:22:11:c0:d8:b6:c7:71:37:d1:64:f7:02:b0:74: 9a:1e:41:f6:87:b4:a4:3b:23:87:26:e4:53:d0:e3: f4:bb:6c:74:cb:1d:1a:d7:08:9e:d8:c1:04:d1:8c: 28:76:08:3e:2d:f0:58:23:a3:5d:cd:8f:67:5c:da: 70:70:4c:84:ac:52:5d:fa:3e:ae:d8:85:18:db:2e: 9b:aa:8b:bc:19:53:7e:3d:74:cb:11:e8:c2:24:b8: 3d:6c:6a:29:ce:ce:0b:d6:6d:13:37:04:3e:b4:b7: 7b:b5:25:1b:54:43:33:99:45:5b:57:a3:52:96:0d: 77:ef:26:d4:d8:c3:62:2d:2e:a0:36:e3:27:ed:9e: 81:1b:96:35:7a:03:2c:bd:65:a5:da:61:ef:81:e6: a3:5a:8a:67:89:dc:35:f1:6d:95:4e:7b:54:7e:16: ec:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:EB:8B:13:11:47:BA:5A:4F:AC:76:A3:DC:D1:BB:37:0B:E8:00:B1 X509v3 Authority Key Identifier: keyid:C1:9B:13:30:25:B2:D9:47:03:4F:2B:0F:C5:82:B9:F2:AB:C7:A6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C19B133025B2D947034F2B0FC582B9F2ABC7A6B2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f6d86b-e3df-4e2f-936f-ed9b963503a1/0/3130332e3138362e322e302f32342d3234203d3e20313439383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.2.0/24 Signature Algorithm: sha256WithRSAEncryption a1:2e:32:86:88:74:8e:4c:ca:83:fc:0c:76:c9:09:65:04:ad: 60:20:08:91:97:c7:d7:46:da:84:46:ed:bd:15:c6:51:65:f1: 17:9d:ca:c5:d0:ff:3f:ab:11:c1:09:d6:e5:a5:18:21:a4:1f: 6e:64:1b:ed:a2:63:4a:e9:84:ce:53:75:d9:e0:88:c1:b0:4f: 6a:9b:14:a7:4a:5d:c1:98:fe:c1:53:d5:03:f8:0e:f1:44:32: fb:2d:7d:33:f9:fb:14:5f:31:11:1c:b0:55:f2:59:8c:a3:64: 13:be:a7:7f:5e:4d:4d:9f:2a:44:1f:b8:40:19:39:ac:2c:61: 77:0a:30:67:9f:ae:d4:71:f4:c5:cd:c3:53:84:bc:09:10:f5: c1:54:fd:01:84:9a:4f:da:c2:25:3c:fd:22:fd:21:5a:19:6d: 36:14:bf:52:65:65:09:d9:e5:42:28:a1:f7:64:d9:8f:60:2e: ad:c8:61:d2:06:ca:a6:7c:b8:a6:78:c1:3d:8a:f9:47:0e:f7: 96:0b:6c:05:f6:57:4a:36:78:40:b1:a5:02:95:33:60:cf:22: ba:44:06:e7:91:4f:b9:1f:d6:c9:9a:8f:40:10:6c:f2:73:2b: c8:a9:08:7a:69:3f:ef:ff:17:4e:97:d5:c6:51:79:db:c6:d4: d2:e2:19:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDXGmlH/DijolQB9TaanZFRR6rG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE5QjEzMzAyNUIyRDk0NzAzNEYyQjBGQzU4MkI5RjJB QkM3QTZCMjAeFw0yNDAxMDEwNDU3NDhaFw0yNDEyMzAwNTAyNDhaMDMxMTAvBgNV BAMTKDJDRUI4QjEzMTE0N0JBNUE0RkFDNzZBM0RDRDFCQjM3MEJFODAwQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7nnSFp6j5jZEZHZxExTUTkHdC 46plsGgMEQlUpHs/JQHqDTQWcHrG3gNEJx06JH7vtGBDoTgg+SBYlLrVsLckHK0m KlLfABmUFfLCc2q19Kl7DJblREhG+S0iEcDYtsdxN9Fk9wKwdJoeQfaHtKQ7I4cm 5FPQ4/S7bHTLHRrXCJ7YwQTRjCh2CD4t8Fgjo13Nj2dc2nBwTISsUl36Pq7YhRjb Lpuqi7wZU349dMsR6MIkuD1sainOzgvWbRM3BD60t3u1JRtUQzOZRVtXo1KWDXfv JtTYw2ItLqA24yftnoEbljV6Ayy9ZaXaYe+B5qNaimeJ3DXxbZVOe1R+FuxBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULOuLExFHulpPrHaj3NG7NwvoALEwHwYDVR0j BBgwFoAUwZsTMCWy2UcDTysPxYK58qvHprIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGY2ZDg2Yi1lM2RmLTRlMmYtOTM2Zi1lZDliOTYzNTAzYTEvMC9DMTlCMTMzMDI1 QjJEOTQ3MDM0RjJCMEZDNTgyQjlGMkFCQzdBNkIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE5QjEzMzAyNUIyRDk0NzAzNEYyQjBGQzU4MkI5RjJBQkM3 QTZCMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjZkODZiLWUzZGYtNGUyZi05 MzZmLWVkOWI5NjM1MDNhMS8wLzMxMzAzMzJlMzEzODM2MmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM4MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe6AjANBgkqhkiG 9w0BAQsFAAOCAQEAoS4yhoh0jkzKg/wMdskJZQStYCAIkZfH10bahEbtvRXGUWXx F53KxdD/P6sRwQnW5aUYIaQfbmQb7aJjSumEzlN12eCIwbBPapsUp0pdwZj+wVPV A/gO8UQy+y19M/n7FF8xERywVfJZjKNkE76nf15NTZ8qRB+4QBk5rCxhdwowZ5+u 1HH0xc3DU4S8CRD1wVT9AYSaT9rCJTz9Iv0hWhltNhS/UmVlCdnlQiih92TZj2Au rchh0gbKpny4pnjBPYr5Rw73lgtsBfZXSjZ4QLGlApUzYM8iukQG55FPuR/WyZqP QBBs8nMryKkIemk/7/8XTpfVxlF528bU0uIZow== -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org