$ rpki-client -vvf repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231362e302f32342d3234203d3e203338373538.roa File: 3130332e3133312e3231362e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: 2M7ym4x+2EoAnsRwKsCD8M2xKS4VnhZ8DePxWflgvZ4= Subject key identifier: 73:AB:B1:F7:A5:6A:EF:15:4D:87:C6:B8:27:CA:AE:ED:10:33:09:52 Certificate issuer: /CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Certificate serial: 5EEF7DA2194F3D411B71EAE7C3977FA3CD7B913A Authority key identifier: 49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231362e302f32342d3234203d3e203338373538.roa Signing time: Thu 17 Oct 2024 10:02:22 +0000 ROA not before: Thu 17 Oct 2024 09:57:22 +0000 ROA not after: Thu 16 Oct 2025 10:02:22 +0000 asID: 38758 IP address blocks: 103.131.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ef:7d:a2:19:4f:3d:41:1b:71:ea:e7:c3:97:7f:a3:cd:7b:91:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Validity Not Before: Oct 17 09:57:22 2024 GMT Not After : Oct 16 10:02:22 2025 GMT Subject: CN=73ABB1F7A56AEF154D87C6B827CAAEED10330952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a7:b1:11:ca:6a:7d:26:42:40:d5:cb:7e:79: 09:bf:66:ae:de:14:f2:5d:ce:c8:49:b5:0b:e8:77: 41:86:d5:db:0b:4f:f1:04:1b:74:cc:34:a5:a2:1c: 6f:ff:b3:67:6b:5c:57:90:72:50:89:63:cd:3f:de: f1:7b:39:62:da:1b:52:6c:61:b4:bd:14:db:e3:71: 45:f9:e3:ad:b6:45:ca:1d:d1:a3:6a:7d:3c:68:f3: b9:69:e6:03:90:76:38:8b:f2:63:39:a0:c5:2b:2d: 44:fd:3a:ef:20:a3:26:d1:b2:eb:bf:c0:ef:da:2f: 65:95:2e:c4:0f:30:36:ad:a1:48:2f:6e:87:28:ad: 58:89:d3:68:6f:14:8a:6d:d9:e1:de:b4:cc:77:34: ea:9a:a0:ff:0e:bd:8b:bd:31:2f:7b:ad:61:02:51: 59:61:89:23:79:08:c1:bf:19:fb:28:10:72:17:ee: 2d:38:bb:a5:26:d7:85:84:c0:df:7e:2b:9e:5f:07: dd:b1:38:ca:df:1e:2a:1e:45:ba:7d:49:01:95:e3: a6:a9:0b:68:e6:b6:eb:d1:02:39:4d:b0:32:98:52: 40:f9:d7:dc:a4:7c:f9:7f:0a:8f:2c:93:be:23:74: a9:de:9f:49:96:b3:60:9e:c8:b9:9c:8b:7e:6c:82: 76:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AB:B1:F7:A5:6A:EF:15:4D:87:C6:B8:27:CA:AE:ED:10:33:09:52 X509v3 Authority Key Identifier: keyid:49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231362e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.216.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:22:03:b4:2e:4a:ca:b7:e9:f8:55:68:8e:b1:fb:a2:49:f4: 64:48:27:00:e4:de:03:b4:11:98:cc:bc:e9:42:ac:99:b1:5c: 5e:20:5f:7c:ea:9a:bc:1d:24:4e:90:b7:73:18:d1:45:ad:f7: f1:79:0b:bf:06:d3:4f:7b:ba:f0:3c:e5:b2:5a:60:da:b3:e3: c0:9e:0e:3f:fd:3d:37:cc:5c:41:cf:78:f9:a5:5d:37:89:1e: cd:db:89:2f:cc:42:9f:71:3f:9f:02:76:2e:fb:ea:69:2c:b0: 22:6b:b1:d2:de:90:2d:bc:32:e8:03:6b:ee:6e:59:32:fc:77: 9f:5d:b8:8a:d8:56:87:f2:00:4f:7f:3c:f7:ab:75:52:91:0a: 1d:f6:e8:f8:3b:16:35:86:3b:cc:0a:77:21:0d:47:63:bd:cd: f1:6d:e1:3e:5e:07:a0:62:dd:12:4a:4a:4b:b7:db:76:22:8d: 36:f0:e8:da:c7:6e:13:9f:73:db:8b:95:bb:eb:d1:e9:66:d0: 34:f4:14:bc:c4:ba:cb:a1:1f:8c:02:99:ab:2b:e1:1b:2f:0c: 2c:47:33:04:84:bb:f0:b7:a1:2e:33:3e:a2:b1:4e:b7:6e:93: 7a:1c:27:cb:6d:29:cf:e2:e1:50:fc:e2:ed:5d:81:36:b0:c0: 67:e1:c3:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXu99ohlPPUEbcernw5d/o817kTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4 MTc0OEE3MTAeFw0yNDEwMTcwOTU3MjJaFw0yNTEwMTYxMDAyMjJaMDMxMTAvBgNV BAMTKDczQUJCMUY3QTU2QUVGMTU0RDg3QzZCODI3Q0FBRUVEMTAzMzA5NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSp7ERymp9JkJA1ct+eQm/Zq7e FPJdzshJtQvod0GG1dsLT/EEG3TMNKWiHG//s2drXFeQclCJY80/3vF7OWLaG1Js YbS9FNvjcUX54622Rcod0aNqfTxo87lp5gOQdjiL8mM5oMUrLUT9Ou8goybRsuu/ wO/aL2WVLsQPMDatoUgvbocorViJ02hvFIpt2eHetMx3NOqaoP8OvYu9MS97rWEC UVlhiSN5CMG/GfsoEHIX7i04u6Um14WEwN9+K55fB92xOMrfHioeRbp9SQGV46ap C2jmtuvRAjlNsDKYUkD519ykfPl/Co8sk74jdKnen0mWs2CeyLmci35sgnZdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc6ux96Vq7xVNh8a4J8qu7RAzCVIwHwYDVR0j BBgwFoAUSeEuXN1XsuNDpWDKaBbJPIF0inEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTUzZWRhYi00YTNkLTQ0ZTQtOGQ5Ni02MjVhMWMyMDM3OGQvMC80OUUxMkU1Q0RE NTdCMkUzNDNBNTYwQ0E2ODE2QzkzQzgxNzQ4QTcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4MTc0 OEE3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PYMA0GCSqG SIb3DQEBCwUAA4IBAQCLIgO0LkrKt+n4VWiOsfuiSfRkSCcA5N4DtBGYzLzpQqyZ sVxeIF986pq8HSROkLdzGNFFrffxeQu/BtNPe7rwPOWyWmDas+PAng4//T03zFxB z3j5pV03iR7N24kvzEKfcT+fAnYu++ppLLAia7HS3pAtvDLoA2vublky/HefXbiK 2FaH8gBPfzz3q3VSkQod9uj4OxY1hjvMCnchDUdjvc3xbeE+XgegYt0SSkpLt9t2 Io028Ojax24Tn3Pbi5W769HpZtA09BS8xLrLoR+MApmrK+EbLwwsRzMEhLvwt6Eu Mz6isU63bpN6HCfLbSnP4uFQ/OLtXYE2sMBn4cPr -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org