$ rpki-client -vvf repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa File: 3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: EC4pdeKS6m2DS2kb8wXXQcTFTqrjCCiW8l5re1PpeaY= Subject key identifier: 4D:07:80:6E:0D:B5:B8:DD:09:A7:C1:F0:5E:DA:C7:0C:4B:17:B3:05 Certificate issuer: /CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Certificate serial: 2E38B26B6572F7B4A7F112884384EC1D01FE55F5 Authority key identifier: 49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa Signing time: Thu 17 Oct 2024 10:02:22 +0000 ROA not before: Thu 17 Oct 2024 09:57:22 +0000 ROA not after: Thu 16 Oct 2025 10:02:22 +0000 asID: 38758 IP address blocks: 103.131.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:38:b2:6b:65:72:f7:b4:a7:f1:12:88:43:84:ec:1d:01:fe:55:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49E12E5CDD57B2E343A560CA6816C93C81748A71 Validity Not Before: Oct 17 09:57:22 2024 GMT Not After : Oct 16 10:02:22 2025 GMT Subject: CN=4D07806E0DB5B8DD09A7C1F05EDAC70C4B17B305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8f:23:a5:11:af:c9:51:b2:64:38:6b:1b:c3: e6:26:49:6a:5d:ea:c4:86:1a:ef:ff:cf:5a:31:b7: cf:e5:44:c2:49:e9:d4:88:dc:ac:b5:75:f3:f0:5f: b0:7e:2b:74:80:a9:e3:64:b1:98:f7:dc:99:e9:ca: c2:1f:86:06:52:b9:46:ed:68:c0:15:90:fd:5f:01: 18:d8:c0:46:49:68:b1:7f:56:cc:4b:c2:fc:af:e0: 73:3a:89:db:a5:39:2a:7f:88:12:e9:c4:c6:20:41: 6f:aa:5f:04:02:d6:d0:e4:43:62:b6:81:03:7d:8e: d3:07:49:0a:bd:6a:38:64:9a:d7:f3:82:8a:ca:af: 6e:d7:27:d5:67:5d:ee:b2:34:a0:e6:a9:a5:f9:da: 13:64:0c:1d:c3:5e:e3:d3:1f:91:4e:55:46:a3:70: 35:a9:91:76:05:1e:d2:bc:b8:3e:0c:42:69:c5:02: 70:6d:82:22:b0:06:8b:55:b3:ec:91:5a:6d:5e:11: d8:ad:90:c8:75:b3:a7:fd:72:15:dc:b9:a9:09:a0: fe:95:de:f3:15:72:fb:d5:a7:06:3a:e4:b9:dc:09: 43:bf:31:c5:22:0f:ec:be:2c:8d:27:90:93:9a:05: 9d:e1:e4:89:b6:af:94:5b:88:50:73:92:d6:04:73: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:07:80:6E:0D:B5:B8:DD:09:A7:C1:F0:5E:DA:C7:0C:4B:17:B3:05 X509v3 Authority Key Identifier: keyid:49:E1:2E:5C:DD:57:B2:E3:43:A5:60:CA:68:16:C9:3C:81:74:8A:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/49E12E5CDD57B2E343A560CA6816C93C81748A71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E12E5CDD57B2E343A560CA6816C93C81748A71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d553edab-4a3d-44e4-8d96-625a1c20378d/0/3130332e3133312e3231392e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.219.0/24 Signature Algorithm: sha256WithRSAEncryption 82:56:03:cc:35:96:d3:40:dd:fa:ea:2e:41:d0:a8:f4:fb:c6: 95:eb:52:4f:91:83:57:f8:55:1f:44:fa:4d:37:57:fb:e1:40: d6:bf:06:e8:4d:e3:d5:42:5e:11:17:6e:6a:4f:e3:ea:9e:24: 22:88:01:21:1e:ed:53:17:b0:86:a5:ec:bb:95:5f:a1:1e:bb: 53:e1:11:55:52:1b:69:54:3f:86:c8:f7:59:75:b4:43:e7:88: af:17:68:d9:25:00:da:58:f8:b4:4e:4a:9b:5a:4e:56:1d:7a: 5d:dd:fa:1d:84:b2:48:6f:32:c6:4c:1e:ab:98:b4:b6:7c:9c: 6a:25:4a:e9:cd:da:07:26:0d:f9:55:3e:f2:24:e2:92:dc:4d: b8:24:c3:be:cc:ca:62:7c:d2:fc:d1:a6:43:8f:d2:9b:34:97: c8:d9:f0:39:0b:3f:63:ac:0c:c1:ff:0e:b5:40:a0:a6:0b:d3: ac:4c:f4:d9:a0:aa:05:f4:8a:ca:cb:ae:03:76:a0:f0:17:07: a3:6b:35:8b:34:19:53:f6:d4:52:e7:71:a5:ca:6d:e8:8e:01: 1a:21:69:33:47:a1:b2:36:2b:34:31:b5:94:9e:23:6e:4c:47: 0f:ba:08:b0:64:7a:92:fa:39:c0:c3:0d:53:0e:1e:f0:aa:3c: 3b:cb:2f:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULjiya2Vy97Sn8RKIQ4TsHQH+VfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4 MTc0OEE3MTAeFw0yNDEwMTcwOTU3MjJaFw0yNTEwMTYxMDAyMjJaMDMxMTAvBgNV BAMTKDREMDc4MDZFMERCNUI4REQwOUE3QzFGMDVFREFDNzBDNEIxN0IzMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPjyOlEa/JUbJkOGsbw+YmSWpd 6sSGGu//z1oxt8/lRMJJ6dSI3Ky1dfPwX7B+K3SAqeNksZj33JnpysIfhgZSuUbt aMAVkP1fARjYwEZJaLF/VsxLwvyv4HM6idulOSp/iBLpxMYgQW+qXwQC1tDkQ2K2 gQN9jtMHSQq9ajhkmtfzgorKr27XJ9VnXe6yNKDmqaX52hNkDB3DXuPTH5FOVUaj cDWpkXYFHtK8uD4MQmnFAnBtgiKwBotVs+yRWm1eEditkMh1s6f9chXcuakJoP6V 3vMVcvvVpwY65LncCUO/McUiD+y+LI0nkJOaBZ3h5Im2r5RbiFBzktYEc0KDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTQeAbg21uN0Jp8HwXtrHDEsXswUwHwYDVR0j BBgwFoAUSeEuXN1XsuNDpWDKaBbJPIF0inEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTUzZWRhYi00YTNkLTQ0ZTQtOGQ5Ni02MjVhMWMyMDM3OGQvMC80OUUxMkU1Q0RE NTdCMkUzNDNBNTYwQ0E2ODE2QzkzQzgxNzQ4QTcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlFMTJFNUNERDU3QjJFMzQzQTU2MENBNjgxNkM5M0M4MTc0 OEE3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NTNlZGFiLTRhM2QtNDRlNC04 ZDk2LTYyNWExYzIwMzc4ZC8wLzMxMzAzMzJlMzEzMzMxMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4PbMA0GCSqG SIb3DQEBCwUAA4IBAQCCVgPMNZbTQN366i5B0Kj0+8aV61JPkYNX+FUfRPpNN1f7 4UDWvwboTePVQl4RF25qT+PqniQiiAEhHu1TF7CGpey7lV+hHrtT4RFVUhtpVD+G yPdZdbRD54ivF2jZJQDaWPi0TkqbWk5WHXpd3fodhLJIbzLGTB6rmLS2fJxqJUrp zdoHJg35VT7yJOKS3E24JMO+zMpifNL80aZDj9KbNJfI2fA5Cz9jrAzB/w61QKCm C9OsTPTZoKoF9IrKy64DdqDwFwejazWLNBlT9tRS53Glym3ojgEaIWkzR6GyNis0 MbWUniNuTEcPugiwZHqS+jnAww1TDh7wqjw7yy9r -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org