$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa File: 3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa (raw, json) Hash identifier: WHK6Zz1i6Hc2LLq8L96O4VJFpX02HYc2gUchhiH6Le4= Subject key identifier: 88:85:D1:84:75:0D:A3:00:00:17:35:64:61:FC:B3:0A:A8:92:17:38 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 4AA5F6DEB538760207731B9FE582617B2F9C53A5 Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa Signing time: Wed 15 May 2024 10:02:07 +0000 ROA not before: Wed 15 May 2024 09:57:07 +0000 ROA not after: Wed 14 May 2025 10:02:07 +0000 asID: 140478 IP address blocks: 103.154.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a5:f6:de:b5:38:76:02:07:73:1b:9f:e5:82:61:7b:2f:9c:53:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: May 15 09:57:07 2024 GMT Not After : May 14 10:02:07 2025 GMT Subject: CN=8885D184750DA3000017356461FCB30AA8921738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:6a:70:1c:d4:b3:8f:cb:cf:08:9c:bb:b9: 3e:e7:e0:70:a9:31:aa:18:74:17:17:35:59:78:e1: aa:ee:ac:63:d6:1f:34:ca:e0:2b:4d:0f:bc:63:16: 8f:e5:e4:c6:f0:c4:ea:ff:93:b9:bb:24:f4:1d:ab: 25:59:61:4e:db:4c:0b:56:eb:bf:26:dd:c7:57:84: 0c:e1:98:32:7e:24:51:25:36:ee:1a:4d:e1:d7:7f: c6:61:41:e1:b9:a0:86:43:54:1f:09:cc:72:e3:1e: 8c:d1:69:a2:bb:81:5e:c3:a3:e1:42:ad:62:5b:55: d0:d3:31:9b:8d:22:ec:30:21:3f:8d:54:b1:71:a8: 3b:a6:a6:e2:e9:bd:6e:45:b4:cd:ed:29:50:c6:9a: 22:9c:3b:45:21:af:de:f6:7a:33:7e:cf:ab:9e:42: 2d:a7:19:3f:69:ea:d2:aa:f5:c2:1e:93:d2:34:d3: d2:19:18:a3:3d:ba:2f:de:8f:f4:2b:8b:36:09:93: ad:3e:55:fd:92:e3:40:e2:5b:3a:ef:8c:2a:7a:ab: 14:09:50:ca:bd:91:b9:83:85:e9:1a:50:dc:87:b2: b0:77:8e:cf:9a:ef:4f:3d:4c:25:04:e3:cc:ce:2f: 8e:1b:9c:ac:ba:8d:45:d5:ac:ff:32:23:39:f0:17: be:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:85:D1:84:75:0D:A3:00:00:17:35:64:61:FC:B3:0A:A8:92:17:38 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.25.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:9d:8c:43:2f:bd:b8:08:e9:43:ec:7b:a0:43:81:8b:42:53: 7c:cc:ba:34:23:ef:bd:63:b0:09:4a:77:cc:ed:cf:9e:20:22: a0:97:b7:e9:fe:f6:e5:90:4a:5c:22:4d:4a:e9:aa:c9:44:76: ef:e7:d3:ed:7c:11:79:a9:0b:a0:86:de:f3:91:86:85:85:57: c2:7b:ba:fa:64:64:ed:47:34:2f:d0:a2:e5:98:03:f8:c6:41: 4d:58:13:08:d3:33:b0:3a:3c:bc:53:24:f1:29:68:59:c7:26: c4:9f:8b:43:a3:3b:f8:dd:9d:e8:6a:21:4f:7a:7a:40:8e:9b: 25:9e:64:5e:c4:36:20:c8:73:c6:24:71:2d:7e:35:70:70:5d: e9:56:e3:de:20:54:e9:fc:59:98:82:f5:cb:ed:4b:76:d3:10: 6b:19:0c:a9:33:6d:d7:8d:d0:e5:95:a0:ad:d6:53:28:7e:5b: 25:ca:b2:56:14:3a:0f:a0:b6:5e:6c:cc:88:43:d6:dc:d7:2d: 38:9b:d2:b2:19:04:86:f1:89:8a:bb:12:a5:47:71:b2:37:c4: 62:5a:44:ba:d2:ec:1b:07:cf:d6:18:76:ec:2a:ac:3b:ee:c2: 34:09:58:0d:9e:f0:bb:ef:24:f7:37:8a:af:38:e9:ca:c8:a5: 65:a0:5c:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSqX23rU4dgIHcxuf5YJhey+cU6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNDA1MTUwOTU3MDdaFw0yNTA1MTQxMDAyMDdaMDMxMTAvBgNV BAMTKDg4ODVEMTg0NzUwREEzMDAwMDE3MzU2NDYxRkNCMzBBQTg5MjE3MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+uWpwHNSzj8vPCJy7uT7n4HCp MaoYdBcXNVl44arurGPWHzTK4CtND7xjFo/l5MbwxOr/k7m7JPQdqyVZYU7bTAtW 678m3cdXhAzhmDJ+JFElNu4aTeHXf8ZhQeG5oIZDVB8JzHLjHozRaaK7gV7Do+FC rWJbVdDTMZuNIuwwIT+NVLFxqDumpuLpvW5FtM3tKVDGmiKcO0Uhr972ejN+z6ue Qi2nGT9p6tKq9cIek9I009IZGKM9ui/ej/QrizYJk60+Vf2S40DiWzrvjCp6qxQJ UMq9kbmDhekaUNyHsrB3js+a7089TCUE48zOL44bnKy6jUXVrP8yIznwF77zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiIXRhHUNowAAFzVkYfyzCqiSFzgwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5oZMA0GCSqG SIb3DQEBCwUAA4IBAQBsnYxDL724COlD7HugQ4GLQlN8zLo0I++9Y7AJSnfM7c+e ICKgl7fp/vblkEpcIk1K6arJRHbv59PtfBF5qQught7zkYaFhVfCe7r6ZGTtRzQv 0KLlmAP4xkFNWBMI0zOwOjy8UyTxKWhZxybEn4tDozv43Z3oaiFPenpAjpslnmRe xDYgyHPGJHEtfjVwcF3pVuPeIFTp/FmYgvXL7Ut20xBrGQypM23XjdDllaCt1lMo flslyrJWFDoPoLZebMyIQ9bc1y04m9KyGQSG8YmKuxKlR3GyN8RiWkS60uwbB8/W GHbsKqw77sI0CVgNnvC77yT3N4qvOOnKyKVloFy4 -----END CERTIFICATE-----Generated at Sat Nov 23 20:31:24 2024 by rpki-client on console-fra.rpki-client.org