$ rpki-client -vvf repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35392e302f32342d3234203d3e20313439343039.roa File: 3130332e3138332e35392e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: mM9Mp3qdiTE3IUfaxzFCgLOJ49dHx/DcYiQXrHcL7wk= Subject key identifier: 17:18:AF:9E:63:77:57:2C:F0:7A:F1:5D:C4:E7:6E:DB:B0:6B:A8:35 Certificate issuer: /CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Certificate serial: 1AC5E7CE6F0C384BE458E3EE5B043FE10A3FA171 Authority key identifier: D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35392e302f32342d3234203d3e20313439343039.roa Signing time: Wed 20 Mar 2024 04:00:02 +0000 ROA not before: Wed 20 Mar 2024 03:55:02 +0000 ROA not after: Wed 19 Mar 2025 04:00:02 +0000 asID: 149409 IP address blocks: 103.183.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c5:e7:ce:6f:0c:38:4b:e4:58:e3:ee:5b:04:3f:e1:0a:3f:a1:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Validity Not Before: Mar 20 03:55:02 2024 GMT Not After : Mar 19 04:00:02 2025 GMT Subject: CN=1718AF9E6377572CF07AF15DC4E76EDBB06BA835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:34:dc:af:9e:9d:37:b4:4f:06:b4:8e:f9:65: 1a:28:5b:d5:13:e5:f0:b6:03:3d:d4:1e:ab:29:05: 69:83:39:75:1f:18:9d:27:c7:d1:cc:6f:b4:3e:2b: 34:94:a2:18:04:7f:36:e1:15:9d:15:b9:ab:03:1f: 45:08:d5:6e:33:ec:4f:19:ed:cd:1d:fa:90:fb:a2: 60:a1:00:85:99:37:e2:ce:b5:06:56:a7:16:75:32: a1:af:68:5c:1b:20:42:18:b2:df:13:28:e9:a2:f6: bf:ab:46:58:ea:50:a8:c6:68:ac:f0:31:b4:2c:75: 34:7b:3c:8c:11:6a:af:87:16:06:35:1f:c9:57:1a: 0c:59:f7:e5:3d:fa:5e:59:b2:30:ff:30:ec:ca:68: 38:87:92:b1:5f:a4:7c:8f:60:8a:9e:d9:8d:f5:2f: d6:15:32:97:54:fe:d6:44:15:b0:3d:59:62:50:32: 10:6e:14:57:e4:b1:d2:aa:63:d1:18:34:3a:f2:fa: ce:68:52:60:6c:00:bf:d9:5a:49:19:ab:12:b9:ba: 40:44:72:5b:35:c6:0a:82:68:73:ad:57:01:e9:9f: e9:f1:21:36:bd:2c:ae:19:1e:e3:4a:8b:d9:df:d4: 63:1e:94:52:84:01:79:1d:d4:fc:47:04:ac:33:a1: dc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:18:AF:9E:63:77:57:2C:F0:7A:F1:5D:C4:E7:6E:DB:B0:6B:A8:35 X509v3 Authority Key Identifier: keyid:D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35392e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.59.0/24 Signature Algorithm: sha256WithRSAEncryption af:98:d6:76:71:a4:29:43:d6:19:78:55:76:ea:34:e9:3a:e9: e8:d0:98:b9:c5:dc:98:a2:bf:62:fe:a4:60:fa:6f:f9:de:66: bb:32:d0:20:f8:f5:c3:a9:d8:b6:79:c7:17:7d:62:1b:9a:67: fb:b2:32:21:65:e8:4a:36:6f:15:fc:0d:33:b4:5d:d5:72:20: 09:ed:cc:b6:10:ae:fa:63:f7:f2:45:a4:06:57:1e:18:40:c3: a0:13:a7:16:d0:aa:be:e6:5c:67:5e:56:0f:12:a7:ef:41:99: ed:c5:8d:63:c8:8e:90:30:19:85:f0:62:dd:7c:9e:d9:69:91: 3b:23:82:44:58:da:42:07:d3:fa:c7:a8:01:15:ee:10:99:f8: 47:9b:5b:e1:33:1e:2f:cb:ea:69:86:1d:2f:ab:aa:74:0d:99: 0b:32:35:0a:8c:c8:9d:19:a8:f0:36:90:59:c9:ab:d2:c0:84: ca:33:d3:3f:39:c8:e6:e2:34:d6:ee:f5:69:1e:95:47:14:6c: 8f:e1:47:6c:91:39:1e:26:b2:a6:3a:61:5b:4c:9d:8b:30:51: 56:6c:c0:49:8f:dc:63:bf:bb:d0:d3:a8:5d:0d:8a:ab:dc:eb: 13:2f:99:04:2c:29:9a:7a:93:43:a0:de:36:63:b6:3d:4d:a5: dc:44:79:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGsXnzm8MOEvkWOPuWwQ/4Qo/oXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVD QzkxMEExRjAeFw0yNDAzMjAwMzU1MDJaFw0yNTAzMTkwNDAwMDJaMDMxMTAvBgNV BAMTKDE3MThBRjlFNjM3NzU3MkNGMDdBRjE1REM0RTc2RURCQjA2QkE4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDENNyvnp03tE8GtI75ZRooW9UT 5fC2Az3UHqspBWmDOXUfGJ0nx9HMb7Q+KzSUohgEfzbhFZ0VuasDH0UI1W4z7E8Z 7c0d+pD7omChAIWZN+LOtQZWpxZ1MqGvaFwbIEIYst8TKOmi9r+rRljqUKjGaKzw MbQsdTR7PIwRaq+HFgY1H8lXGgxZ9+U9+l5ZsjD/MOzKaDiHkrFfpHyPYIqe2Y31 L9YVMpdU/tZEFbA9WWJQMhBuFFfksdKqY9EYNDry+s5oUmBsAL/ZWkkZqxK5ukBE cls1xgqCaHOtVwHpn+nxITa9LK4ZHuNKi9nf1GMelFKEAXkd1PxHBKwzodynAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFxivnmN3VyzwevFdxOdu27BrqDUwHwYDVR0j BBgwFoAU0VU/GbvTtwcZ5yAAX9sxRcyRCh8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OTliNjA0Zi0xNTc4LTRhMGItOGY3YS01OGQ5ZjEzYzk3NjkvMC9EMTU1M0YxOUJC RDNCNzA3MTlFNzIwMDA1RkRCMzE0NUNDOTEwQTFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVDQzkx MEExRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5OWI2MDRmLTE1NzgtNGEwYi04 ZjdhLTU4ZDlmMTNjOTc2OS8wLzMxMzAzMzJlMzEzODMzMmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7c7MA0GCSqG SIb3DQEBCwUAA4IBAQCvmNZ2caQpQ9YZeFV26jTpOuno0Ji5xdyYor9i/qRg+m/5 3ma7MtAg+PXDqdi2eccXfWIbmmf7sjIhZehKNm8V/A0ztF3VciAJ7cy2EK76Y/fy RaQGVx4YQMOgE6cW0Kq+5lxnXlYPEqfvQZntxY1jyI6QMBmF8GLdfJ7ZaZE7I4JE WNpCB9P6x6gBFe4QmfhHm1vhMx4vy+pphh0vq6p0DZkLMjUKjMidGajwNpBZyavS wITKM9M/Ocjm4jTW7vVpHpVHFGyP4UdskTkeJrKmOmFbTJ2LMFFWbMBJj9xjv7vQ 06hdDYqr3OsTL5kELCmaepNDoN42Y7Y9TaXcRHl9 -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org