$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa File: 3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa (raw, json) Hash identifier: 8fcVvUOnHnEDxc1LP+W4ikZfxvy9KJkdRccQg7Mp1b8= Subject key identifier: B3:10:8C:C3:A8:63:56:3C:54:36:D5:E2:34:BA:76:18:70:6E:C9:D8 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 116C162159A9B907A67A739C494F462C59545A1E Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa Signing time: Sat 28 Sep 2024 13:39:21 +0000 ROA not before: Sat 28 Sep 2024 13:34:21 +0000 ROA not after: Sat 27 Sep 2025 13:39:21 +0000 asID: 151527 IP address blocks: 103.58.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:6c:16:21:59:a9:b9:07:a6:7a:73:9c:49:4f:46:2c:59:54:5a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Sep 28 13:34:21 2024 GMT Not After : Sep 27 13:39:21 2025 GMT Subject: CN=B3108CC3A863563C5436D5E234BA7618706EC9D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:aa:ff:6c:72:a0:c9:aa:f6:42:5f:db:91:bb: 8c:8d:3c:b9:af:21:a6:d2:f3:48:38:9c:c1:07:67: a4:a2:cf:d2:c9:f1:2c:38:07:46:a4:50:34:1d:24: a3:d7:2f:e6:74:18:44:7b:95:d6:f7:50:51:1a:a4: 08:5a:86:ac:b8:94:0b:25:bc:67:80:4c:58:4b:06: 04:3b:84:21:c7:e2:98:b8:b6:aa:53:d0:3e:27:46: bd:00:80:a8:09:b9:65:61:5b:9e:31:1f:e0:88:19: e3:fc:85:12:62:78:9b:61:7c:ef:7c:33:cf:00:b6: 6b:ea:33:d0:a6:b5:c6:b5:e6:57:24:44:03:f4:e2: 7a:41:62:64:23:56:51:0c:01:55:bb:d6:d6:c6:3e: 14:9c:ec:bb:0a:4d:19:a7:2e:d3:8b:e7:ef:c5:0a: 6d:17:e9:9d:ba:8e:bf:90:57:8f:db:66:f9:5b:43: e0:fd:27:fe:5e:a2:93:7c:55:e0:7f:fe:c4:fe:e5: 82:e7:6f:a0:66:5a:87:df:59:77:77:fa:f5:c4:a8: 91:40:6f:c5:d8:86:6a:ba:50:57:ea:4a:48:42:d0: 5e:fe:9f:2f:73:ca:ce:a5:27:bb:e1:09:ff:f7:7e: 7c:b6:e6:2b:ce:cc:4f:f2:fe:e1:11:89:d7:3f:e0: 74:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:10:8C:C3:A8:63:56:3C:54:36:D5:E2:34:BA:76:18:70:6E:C9:D8 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.199.0/24 Signature Algorithm: sha256WithRSAEncryption 72:6c:7a:78:b1:18:41:15:4b:8e:42:66:0e:9a:8f:a0:6b:25: 71:97:76:28:cd:6f:dc:cf:98:cb:3f:c4:09:b9:27:5d:63:04: 87:c6:2e:21:c3:c0:de:9c:42:40:34:a3:43:7a:d9:28:1f:46: 22:7e:53:8c:d5:9e:48:aa:ec:60:9c:91:0e:0c:89:f4:4d:73: 46:cd:e6:73:dc:a3:c4:25:5a:1b:1f:07:af:99:0b:78:a5:5a: 36:e8:99:61:c5:c5:85:d8:ed:cf:b4:67:25:95:a9:34:a2:82: aa:48:1a:7f:ee:c5:3b:3e:a5:a5:90:ce:a4:39:cd:6b:a6:a3: 9b:0b:fa:97:f9:3e:1b:22:63:86:9c:b2:40:71:3b:3e:a6:8a: de:55:d4:7d:09:b1:9c:8a:7b:ae:00:15:5f:e4:ab:8b:9e:5f: ab:46:b5:a2:13:cd:eb:8b:db:68:6e:75:ab:bd:2a:f5:e5:63: 1a:17:ab:c0:eb:48:0c:b2:0b:58:60:b2:27:7f:99:78:d7:c9: ed:ab:e4:e8:5e:c1:2d:dd:9c:1c:eb:1c:67:07:e8:41:38:d6: ae:2a:fd:3a:b1:e3:61:1b:9e:ac:d7:8e:ef:48:39:6c:13:7b: fa:2f:34:00:d7:15:0d:04:1a:cd:2f:f8:55:2d:be:92:97:ac: fb:09:00:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEWwWIVmpuQemenOcSU9GLFlUWh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNDA5MjgxMzM0MjFaFw0yNTA5MjcxMzM5MjFaMDMxMTAvBgNV BAMTKEIzMTA4Q0MzQTg2MzU2M0M1NDM2RDVFMjM0QkE3NjE4NzA2RUM5RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtqv9scqDJqvZCX9uRu4yNPLmv IabS80g4nMEHZ6Siz9LJ8Sw4B0akUDQdJKPXL+Z0GER7ldb3UFEapAhahqy4lAsl vGeATFhLBgQ7hCHH4pi4tqpT0D4nRr0AgKgJuWVhW54xH+CIGeP8hRJieJthfO98 M88AtmvqM9Cmtca15lckRAP04npBYmQjVlEMAVW71tbGPhSc7LsKTRmnLtOL5+/F Cm0X6Z26jr+QV4/bZvlbQ+D9J/5eopN8VeB//sT+5YLnb6BmWoffWXd3+vXEqJFA b8XYhmq6UFfqSkhC0F7+ny9zys6lJ7vhCf/3fny25ivOzE/y/uERidc/4HTjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsxCMw6hjVjxUNtXiNLp2GHBuydgwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrHMA0GCSqG SIb3DQEBCwUAA4IBAQBybHp4sRhBFUuOQmYOmo+gayVxl3YozW/cz5jLP8QJuSdd YwSHxi4hw8DenEJANKNDetkoH0YiflOM1Z5IquxgnJEODIn0TXNGzeZz3KPEJVob HwevmQt4pVo26JlhxcWF2O3PtGcllak0ooKqSBp/7sU7PqWlkM6kOc1rpqObC/qX +T4bImOGnLJAcTs+poreVdR9CbGcinuuABVf5KuLnl+rRrWiE83ri9tobnWrvSr1 5WMaF6vA60gMsgtYYLInf5l418ntq+ToXsEt3Zwc6xxnB+hBONauKv06seNhG56s 147vSDlsE3v6LzQA1xUNBBrNL/hVLb6Sl6z7CQAl -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:09 2024 by rpki-client on console-fra.rpki-client.org