$ rpki-client -vvf repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa File: 3130332e3135332e332e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: tOlwWAsQQh+xURJu8keK+zuzlpfYYojs9gT81FNdqI8= Subject key identifier: 87:C7:00:B6:47:5F:A7:ED:DF:55:07:66:51:3F:5E:A9:7F:48:12:7B Certificate issuer: /CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Certificate serial: 1BA6585703E8BA486D4A0A7163F428085A1107C1 Authority key identifier: E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa Signing time: Mon 01 Jul 2024 01:03:12 +0000 ROA not before: Mon 01 Jul 2024 00:58:12 +0000 ROA not after: Mon 30 Jun 2025 01:03:12 +0000 asID: 140389 IP address blocks: 103.153.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a6:58:57:03:e8:ba:48:6d:4a:0a:71:63:f4:28:08:5a:11:07:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E226B4FA842DCE6C386449F14F8C21CFD80CF977 Validity Not Before: Jul 1 00:58:12 2024 GMT Not After : Jun 30 01:03:12 2025 GMT Subject: CN=87C700B6475FA7EDDF550766513F5EA97F48127B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:2f:36:1e:b8:63:0f:29:d9:32:75:71:b6: 7d:8e:31:f2:3f:b8:34:04:7e:0d:57:75:26:80:ad: 78:8f:62:19:2d:58:80:fb:be:34:fd:fd:a0:c7:c0: b8:df:17:ae:b1:cc:4c:aa:7e:ce:c4:e3:0b:5f:74: a9:96:01:d5:94:26:18:11:b2:ab:0e:41:a1:e8:cc: fe:cb:45:78:05:9e:6f:f0:1b:67:72:81:56:ea:7b: 7c:57:9a:94:d0:64:fd:2b:81:45:f1:6a:35:2e:73: bc:62:e6:d4:81:ab:2d:92:85:f6:20:e8:01:42:31: a7:24:29:5b:67:69:cb:f6:2e:42:e3:a9:be:84:06: fd:2e:53:7c:e8:b4:2c:0d:73:bb:0f:bf:6d:00:e2: df:2f:39:01:6b:6a:02:22:4b:06:e3:65:55:0b:a6: 43:b8:6c:f9:6c:6d:92:3b:97:66:e7:c0:78:c8:6c: a1:99:83:f8:ef:59:fd:cf:eb:9b:f1:43:c3:98:f1: 10:c2:59:54:f1:81:36:1e:d1:f2:bc:72:17:63:92: d3:90:82:e3:45:e8:c7:e7:fe:37:6e:ab:7d:a7:5d: 5f:bf:20:6f:d9:ca:77:c5:fd:13:9f:3e:01:ca:38: 83:63:a3:06:2a:74:cb:25:dd:6a:94:ed:05:c9:af: fc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C7:00:B6:47:5F:A7:ED:DF:55:07:66:51:3F:5E:A9:7F:48:12:7B X509v3 Authority Key Identifier: keyid:E2:26:B4:FA:84:2D:CE:6C:38:64:49:F1:4F:8C:21:CF:D8:0C:F9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/E226B4FA842DCE6C386449F14F8C21CFD80CF977.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E226B4FA842DCE6C386449F14F8C21CFD80CF977.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebc1ab71-91d0-4f0b-bb29-cbb7d35e74ba/0/3130332e3135332e332e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.3.0/24 Signature Algorithm: sha256WithRSAEncryption 08:cd:89:03:80:f7:5f:e0:09:9e:5f:1e:e5:0f:51:9c:50:a6: 9b:1c:21:f8:3c:be:f8:f5:02:94:bb:48:7c:f7:c1:04:da:66: 7d:82:17:25:c6:a3:50:5e:23:89:bd:2c:4d:81:dc:d0:ab:57: df:66:f2:09:24:64:0d:94:8c:b1:da:42:1f:0e:42:bf:e5:a1: b8:6f:e2:c1:16:b2:79:45:d3:b7:71:54:b2:00:c7:84:bc:e8: 4a:65:07:dd:91:13:ef:fc:00:17:f9:a5:e9:83:54:c8:e9:e2: 47:c5:62:df:06:a1:40:fd:56:22:87:56:2e:ea:2f:9c:ba:85: 1e:a5:18:1e:bb:7a:de:20:66:21:ba:6f:05:26:a9:c7:a9:5c: 0c:d6:3d:93:23:33:38:8d:98:a4:52:ff:bb:25:1c:5e:bf:08: a6:73:97:63:ec:65:36:20:d2:e6:07:31:da:24:49:81:af:e3: 20:67:13:99:0a:96:58:40:1a:44:34:9a:b6:c0:68:f7:8a:a8: c5:e0:e6:2e:26:b0:c2:9a:07:60:ec:e9:ed:fc:8e:61:3e:bb: 00:c0:3c:02:8f:ff:70:ce:b6:f6:d7:e7:dc:6c:23:8c:7a:b3: 18:88:3e:76:0d:21:47:7a:f6:22:27:68:35:b4:f0:de:d5:3c: ff:d2:9f:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG6ZYVwPoukhtSgpxY/QoCFoRB8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZE ODBDRjk3NzAeFw0yNDA3MDEwMDU4MTJaFw0yNTA2MzAwMTAzMTJaMDMxMTAvBgNV BAMTKDg3QzcwMEI2NDc1RkE3RURERjU1MDc2NjUxM0Y1RUE5N0Y0ODEyN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63S82HrhjDynZMnVxtn2OMfI/ uDQEfg1XdSaArXiPYhktWID7vjT9/aDHwLjfF66xzEyqfs7E4wtfdKmWAdWUJhgR sqsOQaHozP7LRXgFnm/wG2dygVbqe3xXmpTQZP0rgUXxajUuc7xi5tSBqy2ShfYg 6AFCMackKVtnacv2LkLjqb6EBv0uU3zotCwNc7sPv20A4t8vOQFragIiSwbjZVUL pkO4bPlsbZI7l2bnwHjIbKGZg/jvWf3P65vxQ8OY8RDCWVTxgTYe0fK8chdjktOQ guNF6Mfn/jduq32nXV+/IG/ZynfF/ROfPgHKOINjowYqdMsl3WqU7QXJr/zRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUh8cAtkdfp+3fVQdmUT9eqX9IEnswHwYDVR0j BBgwFoAU4ia0+oQtzmw4ZEnxT4whz9gM+XcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmMxYWI3MS05MWQwLTRmMGItYmIyOS1jYmI3ZDM1ZTc0YmEvMC9FMjI2QjRGQTg0 MkRDRTZDMzg2NDQ5RjE0RjhDMjFDRkQ4MENGOTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIyNkI0RkE4NDJEQ0U2QzM4NjQ0OUYxNEY4QzIxQ0ZEODBD Rjk3Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYzFhYjcxLTkxZDAtNGYwYi1i YjI5LWNiYjdkMzVlNzRiYS8wLzMxMzAzMzJlMzEzNTMzMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeZAzANBgkqhkiG 9w0BAQsFAAOCAQEACM2JA4D3X+AJnl8e5Q9RnFCmmxwh+Dy++PUClLtIfPfBBNpm fYIXJcajUF4jib0sTYHc0KtX32byCSRkDZSMsdpCHw5Cv+WhuG/iwRayeUXTt3FU sgDHhLzoSmUH3ZET7/wAF/ml6YNUyOniR8Vi3wahQP1WIodWLuovnLqFHqUYHrt6 3iBmIbpvBSapx6lcDNY9kyMzOI2YpFL/uyUcXr8IpnOXY+xlNiDS5gcx2iRJga/j IGcTmQqWWEAaRDSatsBo94qoxeDmLiawwpoHYOzp7fyOYT67AMA8Ao//cM629tfn 3GwjjHqzGIg+dg0hR3r2IidoNbTw3tU8/9KfsA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org