$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa File: 3130332e38392e37362e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: cVrBhQABD5vWTft3TZ4cQdHX3S+6LC2tNnj6LeA9Vpk= Subject key identifier: DC:E4:F5:C1:95:25:21:A3:A1:71:C8:4C:16:D1:16:CD:DC:8A:18:26 Certificate issuer: /CN=FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E Certificate serial: 67C95A894A2FDD244E5ED99D562DFCE7447756BE Authority key identifier: FB:88:A8:85:25:16:DB:CE:AC:42:9C:5B:6F:9B:7F:98:FA:A0:14:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa Signing time: Thu 16 Nov 2023 06:00:01 +0000 ROA not before: Thu 16 Nov 2023 05:55:01 +0000 ROA not after: Thu 14 Nov 2024 06:00:01 +0000 asID: 45701 IP address blocks: 103.89.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.crl rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 10:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c9:5a:89:4a:2f:dd:24:4e:5e:d9:9d:56:2d:fc:e7:44:77:56:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E Validity Not Before: Nov 16 05:55:01 2023 GMT Not After : Nov 14 06:00:01 2024 GMT Subject: CN=DCE4F5C1952521A3A171C84C16D116CDDC8A1826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:de:ea:38:61:d2:a2:8a:3c:a2:3c:d9:36:23: f2:1c:4c:4f:5d:83:4f:a8:a3:ee:0a:02:4e:76:c6: ac:94:88:c3:cc:e3:4b:24:f6:c9:df:ae:b2:22:a0: 51:cb:18:0e:98:2c:b8:53:86:06:54:69:d3:1a:2d: 2e:2e:a6:59:e2:c3:26:bb:fb:d0:12:0b:2a:b3:7f: 4f:00:6b:a4:b6:05:60:fc:4d:74:f1:d2:dd:96:d1: 09:7a:17:b8:bc:13:b9:d4:a3:ce:61:9b:8a:d8:a2: 3a:82:92:20:5e:f8:5a:42:b2:70:4c:e5:7e:b2:76: 34:f6:1c:a0:2e:46:e5:fb:76:63:43:d1:c3:b9:e9: e8:b3:26:d3:05:fd:1b:72:c4:6b:0d:c8:c3:ff:0b: 01:1a:48:41:7d:8f:c9:76:ea:13:4a:85:ed:43:8c: 29:cc:97:9e:a0:67:52:9e:78:3c:e4:c7:6f:2a:80: 4f:46:52:29:15:56:ac:fe:5b:5e:b4:f0:c4:35:5d: 56:a3:2d:d9:51:3d:e4:a5:58:a5:b7:83:ce:6b:c6: f1:b6:2a:a3:bf:c8:20:bf:ad:d0:df:20:35:1e:f3: bf:37:5f:e8:5d:c5:a4:f2:1c:50:c2:01:ef:6a:ec: c9:38:2b:a9:e0:83:e6:35:c2:5e:59:32:b5:f8:42: 44:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E4:F5:C1:95:25:21:A3:A1:71:C8:4C:16:D1:16:CD:DC:8A:18:26 X509v3 Authority Key Identifier: keyid:FB:88:A8:85:25:16:DB:CE:AC:42:9C:5B:6F:9B:7F:98:FA:A0:14:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.76.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:c9:3e:28:fd:f2:bf:84:60:e4:8d:87:16:e5:fe:2c:a7:8a: cb:df:3c:d2:b6:20:52:5a:98:3d:36:87:07:aa:76:65:67:ae: c7:c2:6f:12:73:74:e3:2e:4d:b6:b0:03:97:26:ce:93:39:ce: 0f:c8:18:49:60:32:ad:69:10:07:5f:95:8e:f6:7e:94:4c:69: 47:0d:89:2a:e9:53:21:64:3d:ce:17:46:8a:31:ef:75:b2:4c: 59:83:ba:cb:8e:90:cd:18:d3:b8:43:43:fd:a0:68:dc:07:33: 55:c8:bc:1b:8d:43:ae:36:4f:19:f1:27:f6:0f:59:c4:f8:43: cf:b2:7d:f5:54:5e:15:e3:f5:ee:cf:9b:68:f0:4c:c8:cd:25: 48:3d:b3:51:30:1d:db:11:db:e2:68:93:07:4f:c3:29:69:f6: 2e:86:bf:34:56:01:b8:ad:f1:a4:67:cc:d0:9f:ac:60:9b:80: 03:46:cd:9f:8a:7f:24:1f:b7:c5:1a:48:7d:ff:28:f8:a2:03: bf:86:67:42:f0:fd:5e:68:fc:9b:32:71:4a:38:07:5a:4d:d6: 29:c5:f0:af:51:fb:76:b9:3a:86:a5:78:4b:9e:29:74:04:c0: c6:3c:ca:04:89:6b:86:c2:8a:29:12:53:06:ac:43:84:85:fd: 36:c4:3d:22 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZ8laiUov3SROXtmdVi3850R3Vr4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkI4OEE4ODUyNTE2REJDRUFDNDI5QzVCNkY5QjdGOThG QUEwMTQwRTAeFw0yMzExMTYwNTU1MDFaFw0yNDExMTQwNjAwMDFaMDMxMTAvBgNV BAMTKERDRTRGNUMxOTUyNTIxQTNBMTcxQzg0QzE2RDExNkNEREM4QTE4MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe3uo4YdKiijyiPNk2I/IcTE9d g0+oo+4KAk52xqyUiMPM40sk9snfrrIioFHLGA6YLLhThgZUadMaLS4uplniwya7 +9ASCyqzf08Aa6S2BWD8TXTx0t2W0Ql6F7i8E7nUo85hm4rYojqCkiBe+FpCsnBM 5X6ydjT2HKAuRuX7dmND0cO56eizJtMF/RtyxGsNyMP/CwEaSEF9j8l26hNKhe1D jCnMl56gZ1KeeDzkx28qgE9GUikVVqz+W1608MQ1XVajLdlRPeSlWKW3g85rxvG2 KqO/yCC/rdDfIDUe8783X+hdxaTyHFDCAe9q7Mk4K6ngg+Y1wl5ZMrX4QkQrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3OT1wZUlIaOhcchMFtEWzdyKGCYwHwYDVR0j BBgwFoAU+4iohSUW286sQpxbb5t/mPqgFA4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWIxY2RkNS0yYjNkLTQ2MWEtOWE3Mi0wMDMxZjBiZmI0NWQvMC9GQjg4QTg4NTI1 MTZEQkNFQUM0MjlDNUI2RjlCN0Y5OEZBQTAxNDBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkI4OEE4ODUyNTE2REJDRUFDNDI5QzVCNkY5QjdGOThGQUEw MTQwRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjFjZGQ1LTJiM2QtNDYxYS05 YTcyLTAwMzFmMGJmYjQ1ZC8wLzMxMzAzMzJlMzgzOTJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnWUwwDQYJKoZIhvcN AQELBQADggEBAF/JPij98r+EYOSNhxbl/iynisvfPNK2IFJamD02hweqdmVnrsfC bxJzdOMuTbawA5cmzpM5zg/IGElgMq1pEAdflY72fpRMaUcNiSrpUyFkPc4XRoox 73WyTFmDusuOkM0Y07hDQ/2gaNwHM1XIvBuNQ642TxnxJ/YPWcT4Q8+yffVUXhXj 9e7Pm2jwTMjNJUg9s1EwHdsR2+JokwdPwylp9i6GvzRWAbit8aRnzNCfrGCbgANG zZ+KfyQft8UaSH3/KPiiA7+GZ0Lw/V5o/JsycUo4B1pN1inF8K9R+3a5OoaleEue KXQEwMY8ygSJa4bCiikSUwasQ4SF/TbEPSI= -----END CERTIFICATE-----Generated at Thu Jun 13 17:52:11 2024 by rpki-client on console-ams.rpki-client.org