$ rpki-client -vvf repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa File: 3130332e3135332e322e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: 68P9YRj7qWLqaHnz/V408axn37EsS6cGwdElOJnZDvc= Subject key identifier: 50:BA:3F:5A:44:36:BE:8E:9F:06:7D:CC:9C:BE:49:33:46:A3:09:11 Certificate issuer: /CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Certificate serial: 4BA828A3588F8EB6FC1F242A81B251D726533110 Authority key identifier: E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa Signing time: Mon 01 Jul 2024 01:03:11 +0000 ROA not before: Mon 01 Jul 2024 00:58:11 +0000 ROA not after: Mon 30 Jun 2025 01:03:11 +0000 asID: 140389 IP address blocks: 103.153.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a8:28:a3:58:8f:8e:b6:fc:1f:24:2a:81:b2:51:d7:26:53:31:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Validity Not Before: Jul 1 00:58:11 2024 GMT Not After : Jun 30 01:03:11 2025 GMT Subject: CN=50BA3F5A4436BE8E9F067DCC9CBE493346A30911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:51:02:5e:16:8f:b0:94:52:1b:06:e7:86: 62:2d:74:8e:9d:15:0c:27:c5:c1:97:1e:da:03:57: 88:7b:8a:9c:04:07:47:b4:ee:3b:03:d4:9f:f3:47: 42:d6:b7:21:cb:a2:ad:16:9e:cf:bc:38:65:8f:25: af:54:3e:81:f0:f4:7f:8e:4b:6a:49:9f:c2:9e:6d: 9b:5f:5d:39:34:9c:c8:52:3b:94:73:0f:6b:4f:9a: 69:e6:74:3e:36:f4:4b:66:4d:74:96:d4:34:6f:01: e4:ee:2a:ed:7e:d4:d0:a8:c2:9e:9c:07:a4:2d:4b: b2:4f:b7:d1:7c:cd:ce:28:09:ec:4e:7f:2e:7c:34: 49:62:09:9f:68:a8:e0:ab:76:f4:5f:bf:6e:87:21: 14:21:8d:24:13:c1:e9:6a:49:2f:12:52:07:6c:04: cb:6d:7f:17:1c:89:23:50:07:28:63:43:d6:aa:ef: 1a:99:95:23:06:22:1e:c6:44:fc:02:2f:b6:29:05: 9c:54:54:4e:43:a1:76:63:c4:6d:ad:e1:9f:57:63: e3:52:d8:6b:ef:04:4c:64:dd:69:a4:db:70:40:ab: cc:04:63:6b:69:89:df:28:30:83:80:84:72:94:74: 56:de:5d:62:f5:55:3a:8e:d2:2e:6c:fc:39:72:c7: b7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BA:3F:5A:44:36:BE:8E:9F:06:7D:CC:9C:BE:49:33:46:A3:09:11 X509v3 Authority Key Identifier: keyid:E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e322e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.2.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:7e:80:c1:55:01:e8:19:a7:33:64:20:db:9e:cc:fa:ad:b4: f0:12:b7:fd:cd:4f:73:68:ab:aa:a0:33:ca:54:3c:5a:6f:5e: 08:a8:08:f0:06:45:84:fd:d3:b2:78:79:59:42:48:9c:9e:b2: 9d:ce:59:6d:8b:19:75:53:2b:68:4a:7d:2d:38:24:92:91:6e: 1d:1f:23:4b:36:a1:79:24:47:f7:64:9c:69:aa:2b:c8:2d:37: eb:5f:8d:f7:cc:0e:be:48:7d:e4:4e:2f:8d:06:aa:fa:39:d6: 86:36:9b:a8:5f:a5:4d:f4:f3:f1:8d:2f:14:98:5c:ea:33:23: 1d:05:b8:26:02:d5:72:ce:11:d1:95:a3:09:44:38:e2:52:8b: e8:c7:7e:1a:13:ec:be:7e:04:0d:0c:96:c0:24:ea:d2:d4:03: 92:98:dc:d9:7a:6f:1e:2f:8c:ea:42:97:ba:90:19:42:a1:cd: 59:d3:a2:f7:83:41:25:fc:68:59:3f:34:fc:c1:22:31:ac:2b: 23:4b:cc:fb:05:72:43:55:93:6c:ce:5a:06:86:50:a7:e0:65: 3e:42:17:77:87:13:0a:16:8a:d8:6c:93:48:13:89:88:d8:1b: ad:57:04:38:2a:68:e3:80:88:ea:03:b7:7a:e1:1d:f4:4d:7d: 3a:b8:f7:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS6goo1iPjrb8HyQqgbJR1yZTMRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZE ODBDRjk3NzAeFw0yNDA3MDEwMDU4MTFaFw0yNTA2MzAwMTAzMTFaMDMxMTAvBgNV BAMTKDUwQkEzRjVBNDQzNkJFOEU5RjA2N0RDQzlDQkU0OTMzNDZBMzA5MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4F1ECXhaPsJRSGwbnhmItdI6d FQwnxcGXHtoDV4h7ipwEB0e07jsD1J/zR0LWtyHLoq0Wns+8OGWPJa9UPoHw9H+O S2pJn8KebZtfXTk0nMhSO5RzD2tPmmnmdD429EtmTXSW1DRvAeTuKu1+1NCowp6c B6QtS7JPt9F8zc4oCexOfy58NEliCZ9oqOCrdvRfv26HIRQhjSQTwelqSS8SUgds BMttfxcciSNQByhjQ9aq7xqZlSMGIh7GRPwCL7YpBZxUVE5DoXZjxG2t4Z9XY+NS 2GvvBExk3Wmk23BAq8wEY2tpid8oMIOAhHKUdFbeXWL1VTqO0i5s/Dlyx7evAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUULo/WkQ2vo6fBn3MnL5JM0ajCREwHwYDVR0j BBgwFoAU4ia0+oQtzmw4ZEnxT4whz9gM+XcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmMxYWI3MS05MWQwLTRmMGItYmIyOS1jYmI3ZDM1ZTc0YmEvMC9FMjI2QjRGQTg0 MkRDRTZDMzg2NDQ5RjE0RjhDMjFDRkQ4MENGOTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZEODBD Rjk3Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYzFhYjcxLTkxZDAtNGYwYi1i YjI5LWNiYjdkMzVlNzRiYS8wLzMxMzAzMzJlMzEzNTMzMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeZAjANBgkqhkiG 9w0BAQsFAAOCAQEAin6AwVUB6BmnM2Qg257M+q208BK3/c1Pc2irqqAzylQ8Wm9e CKgI8AZFhP3Tsnh5WUJInJ6ync5ZbYsZdVMraEp9LTgkkpFuHR8jSzaheSRH92Sc aaoryC0361+N98wOvkh95E4vjQaq+jnWhjabqF+lTfTz8Y0vFJhc6jMjHQW4JgLV cs4R0ZWjCUQ44lKL6Md+GhPsvn4EDQyWwCTq0tQDkpjc2XpvHi+M6kKXupAZQqHN WdOi94NBJfxoWT80/MEiMawrI0vM+wVyQ1WTbM5aBoZQp+BlPkIXd4cTChaK2GyT SBOJiNgbrVcEOCpo44CI6gO3euEd9E19Orj3Zg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org