$ rpki-client -vvf repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32342d3234203d3e20313439373532.roa File: 3130332e3138392e3133382e302f32342d3234203d3e20313439373532.roa (raw, json) Hash identifier: Qxvz6cLTsvkF/5QoPFib9ZcEBwW2jqzLdFAQealXxXU= Subject key identifier: F3:03:D4:34:85:BB:BE:50:DF:CF:19:9A:1E:CB:48:B2:DF:E3:8F:23 Certificate issuer: /CN=27575AEBC443417C31FDF4A1DDFE016557A835F4 Certificate serial: 0D91B621F18FD998268EABEE7686C6A0C22E8BA7 Authority key identifier: 27:57:5A:EB:C4:43:41:7C:31:FD:F4:A1:DD:FE:01:65:57:A8:35:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27575AEBC443417C31FDF4A1DDFE016557A835F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32342d3234203d3e20313439373532.roa Signing time: Thu 10 Oct 2024 13:00:00 +0000 ROA not before: Thu 10 Oct 2024 12:55:00 +0000 ROA not after: Thu 09 Oct 2025 13:00:00 +0000 asID: 149752 IP address blocks: 103.189.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/27575AEBC443417C31FDF4A1DDFE016557A835F4.crl rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/27575AEBC443417C31FDF4A1DDFE016557A835F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27575AEBC443417C31FDF4A1DDFE016557A835F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:91:b6:21:f1:8f:d9:98:26:8e:ab:ee:76:86:c6:a0:c2:2e:8b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27575AEBC443417C31FDF4A1DDFE016557A835F4 Validity Not Before: Oct 10 12:55:00 2024 GMT Not After : Oct 9 13:00:00 2025 GMT Subject: CN=F303D43485BBBE50DFCF199A1ECB48B2DFE38F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:81:c3:d1:67:35:57:31:34:9e:e7:67:be:59: d7:ed:c2:1d:87:00:45:16:28:97:a1:26:56:db:3a: b1:54:c4:eb:1d:43:e5:0c:6d:7e:c0:e9:36:c7:c2: 02:7e:a4:a4:0f:4a:14:4b:ea:aa:07:38:bf:47:60: 31:dd:90:33:59:cf:3b:81:d1:77:d0:a8:ac:8a:7c: 38:4b:52:b5:db:c0:f0:b8:1f:05:4e:39:31:89:be: bf:a7:7d:14:29:1c:69:d3:94:da:f1:07:00:4d:42: ca:f1:fe:dc:69:c8:ff:e9:07:60:90:ce:86:61:8f: 5e:9d:25:c3:43:00:94:7a:80:c2:77:fa:cd:18:d0: eb:df:e4:25:c8:c5:38:c5:75:5c:9b:20:58:a8:c6: 0a:98:57:19:1c:cf:11:c4:b6:f0:82:2b:53:4e:5c: 7b:c2:77:33:8c:63:28:a9:98:34:86:57:38:cb:03: 32:12:32:30:de:72:e1:f5:9c:c8:cf:0d:0e:d1:8a: 5b:b4:42:ff:9d:b7:05:e8:83:ba:6c:e4:b0:ee:46: 28:8c:59:95:27:45:95:86:96:2e:c6:44:65:6f:d2: 7f:27:b4:10:e2:de:fb:6b:2c:74:b1:cb:27:be:33: d8:52:dd:13:39:25:92:ef:6a:3a:50:bc:38:7e:fe: 78:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:03:D4:34:85:BB:BE:50:DF:CF:19:9A:1E:CB:48:B2:DF:E3:8F:23 X509v3 Authority Key Identifier: keyid:27:57:5A:EB:C4:43:41:7C:31:FD:F4:A1:DD:FE:01:65:57:A8:35:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/27575AEBC443417C31FDF4A1DDFE016557A835F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27575AEBC443417C31FDF4A1DDFE016557A835F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec6b597c-9547-4c1e-ac87-3a434a300a67/0/3130332e3138392e3133382e302f32342d3234203d3e20313439373532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.138.0/24 Signature Algorithm: sha256WithRSAEncryption 72:cc:d4:30:6b:f8:0a:bd:38:a6:ca:38:83:f7:7e:f8:c6:2b: b2:40:e5:7f:99:2c:dc:78:fa:c3:00:78:51:a9:99:0a:c6:8a: f6:65:25:b8:57:47:7f:46:2e:55:21:67:dd:37:30:93:97:fc: 92:ed:fc:cb:bf:36:b6:6b:c4:7e:b2:33:c6:9c:e4:2c:f6:d6: f5:74:5e:40:b7:fd:e7:ec:35:50:5b:ba:08:21:4a:69:d4:a1: eb:d5:90:8c:f0:6c:ef:6f:53:95:2c:c5:29:16:4b:5c:b5:66: 03:33:f5:b5:f3:d6:4c:24:13:e9:41:29:a8:58:46:d9:04:2f: da:dc:23:94:b5:ee:ad:94:83:be:dd:c6:b4:5c:31:35:b2:4f: 49:ce:7a:e7:c9:fd:01:e5:67:76:31:47:c6:a8:41:3c:65:d1: f0:51:a1:60:de:61:83:1a:b5:33:50:64:df:18:ef:f6:b9:6e: 4c:b6:53:20:e4:6d:8a:73:73:04:da:d1:04:75:41:34:31:a2: 07:c1:fd:d1:1f:50:d0:87:d2:09:e8:05:0f:2b:de:29:52:02: 17:62:3a:72:fb:d4:b5:56:4a:69:a6:e9:02:a5:4c:40:34:e5: 59:9d:f4:c7:6e:41:cb:ef:b1:37:63:34:58:a8:69:63:c9:b2: 50:c5:eb:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDZG2IfGP2ZgmjqvudobGoMIui6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc1NzVBRUJDNDQzNDE3QzMxRkRGNEExRERGRTAxNjU1 N0E4MzVGNDAeFw0yNDEwMTAxMjU1MDBaFw0yNTEwMDkxMzAwMDBaMDMxMTAvBgNV BAMTKEYzMDNENDM0ODVCQkJFNTBERkNGMTk5QTFFQ0I0OEIyREZFMzhGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpgcPRZzVXMTSe52e+Wdftwh2H AEUWKJehJlbbOrFUxOsdQ+UMbX7A6TbHwgJ+pKQPShRL6qoHOL9HYDHdkDNZzzuB 0XfQqKyKfDhLUrXbwPC4HwVOOTGJvr+nfRQpHGnTlNrxBwBNQsrx/txpyP/pB2CQ zoZhj16dJcNDAJR6gMJ3+s0Y0Ovf5CXIxTjFdVybIFioxgqYVxkczxHEtvCCK1NO XHvCdzOMYyipmDSGVzjLAzISMjDecuH1nMjPDQ7Rilu0Qv+dtwXog7ps5LDuRiiM WZUnRZWGli7GRGVv0n8ntBDi3vtrLHSxyye+M9hS3RM5JZLvajpQvDh+/niFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8wPUNIW7vlDfzxmaHstIst/jjyMwHwYDVR0j BBgwFoAUJ1da68RDQXwx/fSh3f4BZVeoNfQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzZiNTk3Yy05NTQ3LTRjMWUtYWM4Ny0zYTQzNGEzMDBhNjcvMC8yNzU3NUFFQkM0 NDM0MTdDMzFGREY0QTFEREZFMDE2NTU3QTgzNUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc1NzVBRUJDNDQzNDE3QzMxRkRGNEExRERGRTAxNjU1N0E4 MzVGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNmI1OTdjLTk1NDctNGMxZS1h Yzg3LTNhNDM0YTMwMGE2Ny8wLzMxMzAzMzJlMzEzODM5MmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvYowDQYJ KoZIhvcNAQELBQADggEBAHLM1DBr+Aq9OKbKOIP3fvjGK7JA5X+ZLNx4+sMAeFGp mQrGivZlJbhXR39GLlUhZ903MJOX/JLt/Mu/NrZrxH6yM8ac5Cz21vV0XkC3/efs NVBbugghSmnUoevVkIzwbO9vU5UsxSkWS1y1ZgMz9bXz1kwkE+lBKahYRtkEL9rc I5S17q2Ug77dxrRcMTWyT0nOeufJ/QHlZ3YxR8aoQTxl0fBRoWDeYYMatTNQZN8Y 7/a5bky2UyDkbYpzcwTa0QR1QTQxogfB/dEfUNCH0gnoBQ8r3ilSAhdiOnL71LVW Smmm6QKlTEA05Vmd9MduQcvvsTdjNFioaWPJslDF694= -----END CERTIFICATE-----Generated at Sun Nov 24 15:29:10 2024 by rpki-client on console-ams.rpki-client.org