$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa File: 3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa (raw, json) Hash identifier: oKlrEOJj9KlrkKMOtF3PLyK4t1GFYgSEQOYgzjIIDbI= Subject key identifier: EC:10:83:73:12:33:13:2A:1A:56:52:AF:E6:3B:CF:7C:0D:11:39:76 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 7DE146A870D2DA91F46FEF0638927D3A9C0A1A32 Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa Signing time: Wed 15 May 2024 10:02:07 +0000 ROA not before: Wed 15 May 2024 09:57:07 +0000 ROA not after: Wed 14 May 2025 10:02:07 +0000 asID: 140478 IP address blocks: 103.154.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e1:46:a8:70:d2:da:91:f4:6f:ef:06:38:92:7d:3a:9c:0a:1a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 15 09:57:07 2024 GMT Not After : May 14 10:02:07 2025 GMT Subject: CN=EC1083731233132A1A5652AFE63BCF7C0D113976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4c:66:4c:da:8a:d8:48:17:c7:04:30:78:1e: 53:38:6f:f9:99:ae:a9:3c:86:26:ce:67:65:fc:c0: 52:3e:31:17:9c:70:cd:45:a9:1e:ef:bf:8d:ef:f9: d7:bd:92:a1:75:8f:35:4a:a1:d5:49:6d:de:92:ae: 6c:bf:81:e6:bd:e9:63:b8:ad:7c:3d:5a:e1:23:3f: bf:2f:7a:fd:14:82:a1:4a:8d:4b:e5:12:86:cb:ec: ff:b1:b6:63:c8:7c:b2:ea:c5:e9:e1:0d:de:13:50: e4:df:3a:1c:59:a9:b7:34:49:40:2e:ed:6b:dc:ca: 8d:86:58:e1:2d:10:c8:5e:fa:11:45:29:ec:9a:57: 43:da:1b:60:bd:3d:5a:13:1a:68:c9:7e:03:38:20: a2:cc:07:c6:60:14:73:fe:79:ee:ca:8f:11:97:84: f1:3b:08:3e:01:a0:d0:93:ba:05:b9:7e:28:0b:e4: ae:24:dc:62:e6:80:47:f9:13:1c:3c:9e:05:0e:eb: d5:d6:bd:ba:94:77:21:4d:9a:c6:89:57:7b:86:6d: 6f:02:74:85:31:5e:18:ad:0b:37:c1:20:ff:f5:9f: 7a:70:3a:6d:dd:1d:f0:a9:50:46:ff:84:af:9d:fa: a2:08:a8:4a:86:08:49:31:c5:ea:bb:85:c8:6f:83: 3b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:10:83:73:12:33:13:2A:1A:56:52:AF:E6:3B:CF:7C:0D:11:39:76 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32342d3234203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:8a:c1:17:2b:86:bf:ea:8a:d0:5a:4b:19:e9:c4:15:b1:c7: fc:5b:0a:88:e3:fe:cf:02:b2:eb:06:bf:85:75:ae:71:c0:68: de:10:6d:64:82:80:dd:e3:a5:34:5f:f5:c4:7e:90:52:7e:b3: 02:aa:5a:32:14:0a:23:fe:a3:70:0f:f8:a5:c3:90:2f:3f:a5: a9:3c:37:5e:40:16:0e:49:63:fd:20:2d:1e:26:f2:90:32:2d: 3a:5e:cc:71:1f:a4:2b:aa:d3:85:04:31:39:9d:b2:fd:1c:42: b1:8e:fd:73:ea:41:4b:ef:b8:60:8f:23:80:c3:24:a8:1c:1f: 33:6a:12:8e:db:e8:13:00:16:4a:9a:f5:c0:91:c9:ac:18:75: 9e:25:95:19:83:b0:44:12:fd:f4:22:9e:0b:c3:1b:ee:46:37: fc:4d:1b:d8:8a:77:47:d9:77:08:52:27:ed:4e:b2:84:27:12: 10:3c:37:5e:38:cc:cb:3a:fe:6f:3a:c2:6c:ca:ef:6a:9b:fd: 35:42:f2:46:e9:79:0e:e1:c0:79:1d:01:e2:2c:a3:33:fb:cb: 22:10:54:6f:80:91:a9:e9:d6:79:0a:fd:e2:72:48:c3:0c:61: 86:bc:5e:cb:38:2a:c6:f1:90:ba:29:17:bd:ac:f5:14:eb:df: b0:9c:f6:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfeFGqHDS2pH0b+8GOJJ9OpwKGjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNDA1MTUwOTU3MDdaFw0yNTA1MTQxMDAyMDdaMDMxMTAvBgNV BAMTKEVDMTA4MzczMTIzMzEzMkExQTU2NTJBRkU2M0JDRjdDMEQxMTM5NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjTGZM2orYSBfHBDB4HlM4b/mZ rqk8hibOZ2X8wFI+MReccM1FqR7vv43v+de9kqF1jzVKodVJbd6Srmy/gea96WO4 rXw9WuEjP78vev0UgqFKjUvlEobL7P+xtmPIfLLqxenhDd4TUOTfOhxZqbc0SUAu 7Wvcyo2GWOEtEMhe+hFFKeyaV0PaG2C9PVoTGmjJfgM4IKLMB8ZgFHP+ee7KjxGX hPE7CD4BoNCTugW5figL5K4k3GLmgEf5Exw8ngUO69XWvbqUdyFNmsaJV3uGbW8C dIUxXhitCzfBIP/1n3pwOm3dHfCpUEb/hK+d+qIIqEqGCEkxxeq7hchvgztlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7BCDcxIzEyoaVlKv5jvPfA0ROXYwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQAOisEXK4a/6orQWksZ6cQVscf8WwqI4/7PArLrBr+Fda5x wGjeEG1kgoDd46U0X/XEfpBSfrMCqloyFAoj/qNwD/ilw5AvP6WpPDdeQBYOSWP9 IC0eJvKQMi06XsxxH6QrqtOFBDE5nbL9HEKxjv1z6kFL77hgjyOAwySoHB8zahKO 2+gTABZKmvXAkcmsGHWeJZUZg7BEEv30Ip4LwxvuRjf8TRvYindH2XcIUiftTrKE JxIQPDdeOMzLOv5vOsJsyu9qm/01QvJG6XkO4cB5HQHiLKMz+8siEFRvgJGp6dZ5 Cv3ickjDDGGGvF7LOCrG8ZC6KRe9rPUU69+wnPbn -----END CERTIFICATE-----Generated at Sat Nov 23 20:31:24 2024 by rpki-client on console-fra.rpki-client.org