$ rpki-client -vvf repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa File: 3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: 71RKMRkCzf+dsSgq8Q8+9kiI589hG8/JWQHbUqhmZBU= Subject key identifier: 57:37:71:39:22:E3:E9:33:47:46:76:E5:BB:78:62:6D:F6:00:1C:02 Certificate issuer: /CN=D807B5A7716CB56D036EDE4CE994632C0D3A2501 Certificate serial: 594709892533ED6A37800F7ACFB848EC82DF475A Authority key identifier: D8:07:B5:A7:71:6C:B5:6D:03:6E:DE:4C:E9:94:63:2C:0D:3A:25:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa Signing time: Mon 18 Nov 2024 07:00:00 +0000 ROA not before: Mon 18 Nov 2024 06:55:00 +0000 ROA not after: Mon 17 Nov 2025 07:00:00 +0000 asID: 142366 IP address blocks: 103.191.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.crl rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:47:09:89:25:33:ed:6a:37:80:0f:7a:cf:b8:48:ec:82:df:47:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D807B5A7716CB56D036EDE4CE994632C0D3A2501 Validity Not Before: Nov 18 06:55:00 2024 GMT Not After : Nov 17 07:00:00 2025 GMT Subject: CN=5737713922E3E933474676E5BB78626DF6001C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b7:80:12:8a:6e:e9:c1:cd:e5:2f:b8:06:f4: 97:fd:d1:6f:a6:3d:1d:55:6d:5b:07:6d:44:6e:d5: 2b:47:b4:a8:b5:ae:a7:77:48:60:9e:c5:1e:55:a3: ac:de:f2:4d:33:b5:3e:c4:8d:ac:f5:1d:8f:a9:49: 24:db:c6:18:5e:cd:1b:07:6d:9a:e2:78:64:3c:6e: 0e:ea:16:da:7b:e4:df:c7:c9:6d:92:15:5e:e1:ad: c2:08:fb:24:06:85:58:65:14:87:48:0d:80:c5:93: 0b:44:38:be:4c:30:e0:f6:eb:38:d0:5a:df:d8:02: 96:71:25:91:17:24:d6:53:27:d7:cb:42:db:46:59: d2:d2:b6:c7:ff:8b:9c:64:87:5a:22:00:a1:c6:94: a0:37:02:fb:95:7a:75:09:ef:c2:3e:8d:91:76:f6: 29:4c:db:d4:ae:af:b9:eb:b1:c1:37:6b:8e:a0:26: c2:0d:a7:e0:63:01:9b:53:95:0e:9f:7d:f4:35:50: 39:79:97:3b:f3:40:ad:99:6b:6f:b5:b6:fb:32:45: 58:ce:9d:ed:1d:5a:1a:7f:66:22:26:b0:e3:60:de: 45:63:71:7c:3b:30:24:86:27:fe:87:b4:5e:b1:4f: 6f:dd:fb:c2:31:18:2a:09:3b:bf:02:8d:f4:58:63: 7c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:37:71:39:22:E3:E9:33:47:46:76:E5:BB:78:62:6D:F6:00:1C:02 X509v3 Authority Key Identifier: keyid:D8:07:B5:A7:71:6C:B5:6D:03:6E:DE:4C:E9:94:63:2C:0D:3A:25:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/D807B5A7716CB56D036EDE4CE994632C0D3A2501.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D807B5A7716CB56D036EDE4CE994632C0D3A2501.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e03e71fe-ad33-4d12-8720-43143ff01dbf/0/3130332e3139312e3230302e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.200.0/24 Signature Algorithm: sha256WithRSAEncryption 23:85:42:75:74:11:7d:3d:cd:ee:d1:84:de:e7:ce:ea:bb:44: db:53:47:86:0b:90:88:a9:69:68:bf:64:bc:65:a1:2f:ad:be: c1:c5:ee:83:36:7e:d3:82:ad:92:77:eb:c7:d2:74:f9:72:34: 6f:dd:7e:78:82:61:86:38:63:14:83:ed:25:dd:0b:a0:0b:26: 4f:71:73:89:5a:f6:1f:8e:87:a6:48:df:e5:db:73:7c:ac:8d: e1:ec:9b:9f:c0:87:f0:fe:8c:80:16:d0:82:9a:17:b5:e1:5f: 70:9f:2f:f2:a5:42:a3:24:a7:89:09:28:c0:f2:42:f8:57:49: 79:5a:bf:86:41:cb:45:c8:88:50:ac:a0:23:e9:07:12:8f:2b: 79:48:d6:6a:63:28:42:b8:81:d6:0b:b6:88:7a:47:0e:60:7c: 39:37:61:35:e6:4c:3c:e5:6e:47:e5:5e:fa:07:e0:e1:f6:79: 71:30:e8:fc:82:0a:52:c2:50:0f:62:0b:ba:90:11:05:53:86: 1d:d6:71:7b:c3:d1:e9:43:16:9a:93:4c:48:4d:ae:90:76:13: 2e:e4:fa:4f:54:12:9f:23:39:1e:12:a1:62:40:f1:4c:3d:f4: f6:0c:78:25:4e:a1:39:4c:2b:0f:0a:92:3f:24:30:f3:56:9d: bd:df:71:7a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWUcJiSUz7Wo3gA96z7hI7ILfR1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDgwN0I1QTc3MTZDQjU2RDAzNkVERTRDRTk5NDYzMkMw RDNBMjUwMTAeFw0yNDExMTgwNjU1MDBaFw0yNTExMTcwNzAwMDBaMDMxMTAvBgNV BAMTKDU3Mzc3MTM5MjJFM0U5MzM0NzQ2NzZFNUJCNzg2MjZERjYwMDFDMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6t4ASim7pwc3lL7gG9Jf90W+m PR1VbVsHbURu1StHtKi1rqd3SGCexR5Vo6ze8k0ztT7Ejaz1HY+pSSTbxhhezRsH bZrieGQ8bg7qFtp75N/HyW2SFV7hrcII+yQGhVhlFIdIDYDFkwtEOL5MMOD26zjQ Wt/YApZxJZEXJNZTJ9fLQttGWdLStsf/i5xkh1oiAKHGlKA3AvuVenUJ78I+jZF2 9ilM29Sur7nrscE3a46gJsINp+BjAZtTlQ6fffQ1UDl5lzvzQK2Za2+1tvsyRVjO ne0dWhp/ZiImsONg3kVjcXw7MCSGJ/6HtF6xT2/d+8IxGCoJO78CjfRYY3w1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVzdxOSLj6TNHRnblu3hibfYAHAIwHwYDVR0j BBgwFoAU2Ae1p3FstW0Dbt5M6ZRjLA06JQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDNlNzFmZS1hZDMzLTRkMTItODcyMC00MzE0M2ZmMDFkYmYvMC9EODA3QjVBNzcx NkNCNTZEMDM2RURFNENFOTk0NjMyQzBEM0EyNTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDgwN0I1QTc3MTZDQjU2RDAzNkVERTRDRTk5NDYzMkMwRDNB MjUwMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwM2U3MWZlLWFkMzMtNGQxMi04 NzIwLTQzMTQzZmYwMWRiZi8wLzMxMzAzMzJlMzEzOTMxMmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv8gwDQYJ KoZIhvcNAQELBQADggEBACOFQnV0EX09ze7RhN7nzuq7RNtTR4YLkIipaWi/ZLxl oS+tvsHF7oM2ftOCrZJ368fSdPlyNG/dfniCYYY4YxSD7SXdC6ALJk9xc4la9h+O h6ZI3+Xbc3ysjeHsm5/Ah/D+jIAW0IKaF7XhX3CfL/KlQqMkp4kJKMDyQvhXSXla v4ZBy0XIiFCsoCPpBxKPK3lI1mpjKEK4gdYLtoh6Rw5gfDk3YTXmTDzlbkflXvoH 4OH2eXEw6PyCClLCUA9iC7qQEQVThh3WcXvD0elDFpqTTEhNrpB2Ey7k+k9UEp8j OR4SoWJA8Uw99PYMeCVOoTlMKw8Kkj8kMPNWnb3fcXo= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org