$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa File: 3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa (raw, json) Hash identifier: WsmI0rdfXmL0fWdst11niyZhvNmKpEwJDzCH1ijVhS8= Subject key identifier: 30:CE:5D:FD:E6:28:FF:BE:B8:EE:9A:7B:08:52:FE:B0:D3:C7:81:E1 Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 72631C46D681BDAB3E5CFBEB99C611F27947D4C6 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa Signing time: Tue 17 Sep 2024 11:01:03 +0000 ROA not before: Tue 17 Sep 2024 10:56:03 +0000 ROA not after: Tue 16 Sep 2025 11:01:03 +0000 asID: 140464 IP address blocks: 103.153.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:63:1c:46:d6:81:bd:ab:3e:5c:fb:eb:99:c6:11:f2:79:47:d4:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Sep 17 10:56:03 2024 GMT Not After : Sep 16 11:01:03 2025 GMT Subject: CN=30CE5DFDE628FFBEB8EE9A7B0852FEB0D3C781E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0d:2c:35:fa:fd:34:2a:5c:55:38:dc:f4:8f: fe:52:d7:cd:e1:d2:ea:34:a8:5a:e6:4d:b7:27:bc: 8a:67:0d:39:b9:5e:fc:cf:a6:9f:a5:1a:f2:61:0f: d5:c6:62:27:66:23:2d:18:32:46:d8:00:5b:6d:b2: ba:48:48:6d:fd:25:ba:21:43:dc:4a:31:1e:23:9b: 2d:5b:77:b2:06:33:93:fc:e0:e0:90:98:50:71:49: 41:e1:d8:9a:bd:7e:ef:f4:d5:c7:8e:18:ca:ed:5d: 30:04:49:d5:e3:12:d9:17:f0:a1:ae:6f:22:9b:36: cb:87:1f:24:1b:dc:38:35:14:b4:57:06:4f:cc:95: cd:b9:be:80:f0:25:a7:59:26:15:c5:fb:83:4a:b9: 42:a4:23:5b:de:b0:4b:5b:58:c8:6a:75:81:41:5d: 61:c6:0b:c5:be:61:51:5d:8e:af:00:a9:d6:dc:4d: 23:63:da:e1:54:ba:52:fe:d4:b1:b8:35:16:f0:84: 2d:72:b8:10:45:fa:cc:d7:bb:18:cc:8e:68:a5:c1: 7e:3e:71:ef:fb:b7:1b:7d:0c:a9:8a:bf:0f:cd:3d: 5a:eb:02:ee:08:f4:c5:a1:f6:51:01:5b:c8:dd:70: a4:80:c2:fd:77:d1:64:e5:2e:42:64:4e:29:1d:b7: 4e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CE:5D:FD:E6:28:FF:BE:B8:EE:9A:7B:08:52:FE:B0:D3:C7:81:E1 X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133352e302f32342d3234203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.135.0/24 Signature Algorithm: sha256WithRSAEncryption d1:e1:43:ba:59:79:0b:e5:36:31:cb:7a:07:9d:98:9f:60:44: a5:b2:bd:ca:08:d3:41:1d:26:c0:91:8e:d2:3e:e6:8f:54:c5: 74:ee:65:a8:17:4a:c7:c6:5c:63:7e:27:03:86:98:55:cb:28: 29:56:64:5c:4a:3b:03:8b:2b:14:4a:78:6b:45:6b:50:c9:65: 35:39:c1:2a:94:45:03:93:1e:dc:70:67:9a:06:a5:83:45:62: 33:b1:e8:7d:39:f5:3d:65:e9:d1:0b:5b:c8:a1:04:c4:eb:9b: 0c:a9:1c:45:05:5f:34:c5:15:45:be:f5:ec:38:f8:98:c0:ca: ce:90:b2:7f:8a:e5:2e:ae:1a:a1:50:a4:5d:9c:92:e4:80:79: 9d:b9:cc:f7:ea:f8:7a:95:98:ce:b0:a3:f6:a1:8c:78:bb:73: 2d:82:7a:0b:e9:c5:eb:0b:bb:07:f1:f0:0b:49:a1:d5:0c:a0: 37:49:70:b1:25:f6:54:6e:a7:91:e4:80:a9:1c:a4:51:16:71: 75:93:31:1f:c3:41:25:17:20:36:58:cb:de:56:21:34:55:5d: e7:16:33:b0:5c:45:a1:6f:31:2d:44:55:f6:80:a8:39:cd:b8: 39:ea:00:33:36:cd:dd:7a:62:52:0a:c4:bd:b6:37:ac:db:0b: 6d:96:91:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcmMcRtaBvas+XPvrmcYR8nlH1MYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNDA5MTcxMDU2MDNaFw0yNTA5MTYxMTAxMDNaMDMxMTAvBgNV BAMTKDMwQ0U1REZERTYyOEZGQkVCOEVFOUE3QjA4NTJGRUIwRDNDNzgxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfDSw1+v00KlxVONz0j/5S183h 0uo0qFrmTbcnvIpnDTm5XvzPpp+lGvJhD9XGYidmIy0YMkbYAFttsrpISG39Jboh Q9xKMR4jmy1bd7IGM5P84OCQmFBxSUHh2Jq9fu/01ceOGMrtXTAESdXjEtkX8KGu byKbNsuHHyQb3Dg1FLRXBk/Mlc25voDwJadZJhXF+4NKuUKkI1vesEtbWMhqdYFB XWHGC8W+YVFdjq8AqdbcTSNj2uFUulL+1LG4NRbwhC1yuBBF+szXuxjMjmilwX4+ ce/7txt9DKmKvw/NPVrrAu4I9MWh9lEBW8jdcKSAwv130WTlLkJkTikdt06PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMM5d/eYo/7647pp7CFL+sNPHgeEwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmYcwDQYJ KoZIhvcNAQELBQADggEBANHhQ7pZeQvlNjHLegedmJ9gRKWyvcoI00EdJsCRjtI+ 5o9UxXTuZagXSsfGXGN+JwOGmFXLKClWZFxKOwOLKxRKeGtFa1DJZTU5wSqURQOT HtxwZ5oGpYNFYjOx6H059T1l6dELW8ihBMTrmwypHEUFXzTFFUW+9ew4+JjAys6Q sn+K5S6uGqFQpF2ckuSAeZ25zPfq+HqVmM6wo/ahjHi7cy2CegvpxesLuwfx8AtJ odUMoDdJcLEl9lRup5HkgKkcpFEWcXWTMR/DQSUXIDZYy95WITRVXecWM7BcRaFv MS1EVfaAqDnNuDnqADM2zd16YlIKxL22N6zbC22WkSo= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org