$ rpki-client -vvf repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39332e302f32342d3234203d3e20313431313339.roa File: 3130332e3135392e39332e302f32342d3234203d3e20313431313339.roa (raw, json) Hash identifier: BgUfjlBOik3lVreb6x1VhcmAzB8os2FuzbKBtvTz7gM= Subject key identifier: 8D:40:EC:81:16:4D:6B:7A:4C:EF:5C:31:B0:C8:9B:9A:C7:16:64:2D Certificate issuer: /CN=42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE Certificate serial: 6D67E72CB6829967B63113614BC599AD6CC90C27 Authority key identifier: 42:C6:E1:0C:B4:D5:AF:0F:92:CC:A6:A9:59:5C:CC:05:E2:E8:29:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39332e302f32342d3234203d3e20313431313339.roa Signing time: Tue 17 Sep 2024 18:53:30 +0000 ROA not before: Tue 17 Sep 2024 18:48:30 +0000 ROA not after: Tue 16 Sep 2025 18:53:30 +0000 asID: 141139 IP address blocks: 103.159.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.crl rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:67:e7:2c:b6:82:99:67:b6:31:13:61:4b:c5:99:ad:6c:c9:0c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE Validity Not Before: Sep 17 18:48:30 2024 GMT Not After : Sep 16 18:53:30 2025 GMT Subject: CN=8D40EC81164D6B7A4CEF5C31B0C89B9AC716642D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:eb:72:7a:01:94:39:68:30:71:4f:71:53: 37:f8:0b:7d:1e:e1:cc:12:07:26:14:97:1b:97:dc: 1b:73:8c:62:85:c1:43:a5:82:a2:5c:6b:82:cf:38: 9a:df:0c:62:17:fd:09:67:26:77:81:2f:2d:b0:e7: a4:72:bf:b1:40:58:c8:0c:e8:d4:63:93:15:d5:88: ac:73:1a:11:df:59:20:48:29:5e:3d:d2:b3:73:b4: 40:21:fc:57:1b:81:30:93:c0:ae:0b:7b:f1:cb:00: 27:63:95:2c:bf:4b:5d:3d:d6:a7:ab:e5:a6:11:52: b6:d9:fd:85:cc:03:57:27:fd:cb:6e:95:fc:b7:7f: 05:37:49:66:1e:71:f0:0c:0f:c7:39:42:28:fa:5b: a2:d1:5b:36:b9:b0:ff:7d:ab:36:32:ef:9c:8e:55: ed:ed:7f:e4:b1:00:1d:e0:eb:28:79:61:d5:a1:94: 3f:0f:08:94:c2:d1:f6:cd:bf:f9:63:84:98:bc:53: 19:0b:5e:1c:8a:e3:9b:10:a2:ed:bb:18:46:75:f4: e9:d2:14:f4:12:f8:be:de:9f:a2:64:c3:2c:bb:0a: 5e:93:be:0d:2c:a8:42:53:5a:18:41:cf:78:a2:40: 05:13:6d:94:80:bd:b0:a5:b6:a8:fe:30:42:4c:c4: b7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:40:EC:81:16:4D:6B:7A:4C:EF:5C:31:B0:C8:9B:9A:C7:16:64:2D X509v3 Authority Key Identifier: keyid:42:C6:E1:0C:B4:D5:AF:0F:92:CC:A6:A9:59:5C:CC:05:E2:E8:29:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42C6E10CB4D5AF0F92CCA6A9595CCC05E2E829AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e73419b9-5422-4fc2-a3e0-c49a8aa07f73/0/3130332e3135392e39332e302f32342d3234203d3e20313431313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.93.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:0a:7d:eb:92:a1:86:b1:85:fb:19:dc:f3:fe:4d:f4:f5:8d: 89:23:d5:af:19:2b:9f:a1:61:f0:3e:d9:76:9e:9d:ad:27:59: 94:d8:b9:fc:18:a5:60:71:20:18:cf:2e:6b:df:70:75:25:d7: 01:43:db:6f:61:f2:79:2e:7c:33:69:ff:99:24:ec:73:9f:d2: e4:35:82:dc:45:c0:65:12:1e:cd:8b:8c:d6:80:88:d1:24:a8: 0e:1c:3c:c7:72:c5:78:d4:0b:49:af:78:c6:20:80:02:d1:74: 71:09:6a:45:df:1f:c6:e9:d2:d1:e6:27:2d:1b:a4:d9:95:cd: d8:02:37:df:6f:69:f4:5c:c2:09:c6:6a:a3:1f:e6:99:5c:d0: 0f:0e:8d:3f:23:2f:7e:96:18:32:25:6c:98:aa:13:3b:56:a2: f7:45:c2:e8:29:a7:47:8b:92:8f:8a:10:f8:a1:57:5a:17:8b: 81:0a:b4:6f:f3:26:02:f6:50:57:4e:6f:d1:fa:88:14:17:fe: a8:6b:ae:ce:d3:2b:c0:71:10:0d:6c:ea:6d:24:76:9a:47:06: 5b:5a:75:31:93:3a:c4:7f:97:2d:6a:1a:ec:31:60:f5:70:4c: e3:60:e3:69:4b:a6:44:3a:0c:a4:e4:f4:28:29:cf:6d:58:a1: 96:86:35:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbWfnLLaCmWe2MRNhS8WZrWzJDCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDNkUxMENCNEQ1QUYwRjkyQ0NBNkE5NTk1Q0NDMDVF MkU4MjlBRTAeFw0yNDA5MTcxODQ4MzBaFw0yNTA5MTYxODUzMzBaMDMxMTAvBgNV BAMTKDhENDBFQzgxMTY0RDZCN0E0Q0VGNUMzMUIwQzg5QjlBQzcxNjY0MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+etyegGUOWgwcU9xUzf4C30e 4cwSByYUlxuX3BtzjGKFwUOlgqJca4LPOJrfDGIX/QlnJneBLy2w56Ryv7FAWMgM 6NRjkxXViKxzGhHfWSBIKV490rNztEAh/FcbgTCTwK4Le/HLACdjlSy/S1091qer 5aYRUrbZ/YXMA1cn/ctulfy3fwU3SWYecfAMD8c5Qij6W6LRWza5sP99qzYy75yO Ve3tf+SxAB3g6yh5YdWhlD8PCJTC0fbNv/ljhJi8UxkLXhyK45sQou27GEZ19OnS FPQS+L7en6Jkwyy7Cl6Tvg0sqEJTWhhBz3iiQAUTbZSAvbCltqj+MEJMxLfVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjUDsgRZNa3pM71wxsMibmscWZC0wHwYDVR0j BBgwFoAUQsbhDLTVrw+SzKapWVzMBeLoKa4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzM0MTliOS01NDIyLTRmYzItYTNlMC1jNDlhOGFhMDdmNzMvMC80MkM2RTEwQ0I0 RDVBRjBGOTJDQ0E2QTk1OTVDQ0MwNUUyRTgyOUFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDNkUxMENCNEQ1QUYwRjkyQ0NBNkE5NTk1Q0NDMDVFMkU4 MjlBRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3MzQxOWI5LTU0MjItNGZjMi1h M2UwLWM0OWE4YWEwN2Y3My8wLzMxMzAzMzJlMzEzNTM5MmUzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ59dMA0GCSqG SIb3DQEBCwUAA4IBAQBsCn3rkqGGsYX7Gdzz/k309Y2JI9WvGSufoWHwPtl2np2t J1mU2Ln8GKVgcSAYzy5r33B1JdcBQ9tvYfJ5Lnwzaf+ZJOxzn9LkNYLcRcBlEh7N i4zWgIjRJKgOHDzHcsV41AtJr3jGIIAC0XRxCWpF3x/G6dLR5ictG6TZlc3YAjff b2n0XMIJxmqjH+aZXNAPDo0/Iy9+lhgyJWyYqhM7VqL3RcLoKadHi5KPihD4oVda F4uBCrRv8yYC9lBXTm/R+ogUF/6oa67O0yvAcRANbOptJHaaRwZbWnUxkzrEf5ct ahrsMWD1cEzjYONpS6ZEOgyk5PQoKc9tWKGWhjXZ -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org