$ rpki-client -vvf repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa File: 3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: azx4Lo1BFv9lVziINEKEA2WSvJCvA5EFc+tME2DoAag= Subject key identifier: 25:5F:8C:8B:33:76:7C:D6:99:85:07:C3:BA:A1:C3:B2:C9:16:EC:D7 Certificate issuer: /CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Certificate serial: 1E0187C73F89B3BB4ABF2492D3211F4511F3E479 Authority key identifier: F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa Signing time: Tue 20 Aug 2024 08:00:01 +0000 ROA not before: Tue 20 Aug 2024 07:55:01 +0000 ROA not after: Tue 19 Aug 2025 08:00:01 +0000 asID: 58821 IP address blocks: 103.169.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:01:87:c7:3f:89:b3:bb:4a:bf:24:92:d3:21:1f:45:11:f3:e4:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF Validity Not Before: Aug 20 07:55:01 2024 GMT Not After : Aug 19 08:00:01 2025 GMT Subject: CN=255F8C8B33767CD6998507C3BAA1C3B2C916ECD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:84:b6:80:46:48:c3:9b:47:4f:5d:a9:ec:7a: 68:f6:1e:ea:9b:0d:65:af:d6:84:3c:f2:9b:d6:30: 49:aa:7d:a3:7b:3f:38:57:a6:0f:c9:fa:e8:35:0e: 3b:51:78:ee:e0:b6:b8:b3:e8:61:8c:72:c4:80:7e: c2:6e:41:a5:06:b9:61:0f:d6:c1:22:03:2f:ad:a4: f1:45:97:b6:f3:8d:8e:3f:75:2b:46:73:82:4f:3b: af:f3:b6:92:c2:0b:32:16:96:06:2c:51:e6:5a:c3: bf:a2:9e:b4:f6:88:9c:57:e8:01:22:4e:aa:32:bf: b6:80:ae:bd:6d:57:84:3d:93:37:65:4a:87:1a:b9: 2f:01:fd:1c:18:54:dd:6d:cf:37:f9:30:af:1a:86: d8:f1:f8:3f:39:69:c1:9f:16:af:a7:92:97:47:b5: 7b:64:9b:57:38:e6:29:10:a5:be:1f:16:4c:a4:1a: 25:b8:b0:44:44:51:34:02:6e:4d:2e:4e:3c:d4:1b: 0d:91:2d:e8:23:dd:53:d9:bd:6f:f9:c5:14:cc:7b: 97:cf:23:c7:44:50:76:a1:a6:46:09:1d:b6:8c:6f: c3:b6:75:61:19:2e:ce:96:35:87:83:5e:b4:cd:df: 26:07:64:ad:9b:7f:1e:ae:3b:85:2f:9f:45:3d:b4: 8e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:5F:8C:8B:33:76:7C:D6:99:85:07:C3:BA:A1:C3:B2:C9:16:EC:D7 X509v3 Authority Key Identifier: keyid:F1:0D:F0:FD:3D:45:5B:BA:95:D0:CE:9E:AA:27:EE:38:3E:44:D6:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DF0FD3D455BBA95D0CE9EAA27EE383E44D6AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1cb2e8e-a1a2-4ca0-80b0-225518ffae14/0/3130332e3136392e3133362e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.136.0/23 Signature Algorithm: sha256WithRSAEncryption e5:33:b5:c9:ae:ca:8a:16:3e:61:7c:92:5e:3e:5c:03:d3:82: 71:e5:1e:6c:13:b0:31:ca:84:94:01:85:80:fc:14:fc:bd:90: be:ac:68:4b:58:f8:80:57:38:33:4d:d0:36:35:10:67:39:07: a0:58:7a:e3:3b:cd:f7:f6:f7:c7:8d:51:54:6b:ed:6a:8c:9a: ef:4a:de:df:be:83:8a:8e:af:ed:83:8b:68:a2:30:be:04:52: 14:a7:33:a9:d3:11:0f:b0:ae:38:94:05:71:88:e5:4b:c6:fa: 86:ab:d0:b1:de:a3:69:0b:c8:1b:1a:36:15:15:78:eb:bb:06: 5e:14:e4:b2:ea:59:bb:c1:48:5b:21:fb:28:bf:d1:b0:55:5b: 2c:06:ea:1b:7a:06:49:d2:20:27:1a:c6:e7:5a:eb:10:30:13: 64:64:88:c0:f8:ac:08:26:13:60:76:b2:9e:49:17:cd:b3:e4: bf:32:0d:4d:b9:48:b5:db:15:a1:99:8d:b2:36:70:70:0f:5b: 3a:ab:cf:3c:ab:a4:a9:c2:2c:41:fe:ec:87:a0:ce:4d:a4:3c: df:a7:7a:c8:29:de:98:de:14:ea:1f:3c:e9:bf:fa:61:73:68: 22:59:7d:e7:2b:31:82:23:a0:ee:f2:6c:8b:99:c8:75:88:e2: 13:34:c0:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHgGHxz+Js7tKvySS0yEfRRHz5HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgz RTQ0RDZBRjAeFw0yNDA4MjAwNzU1MDFaFw0yNTA4MTkwODAwMDFaMDMxMTAvBgNV BAMTKDI1NUY4QzhCMzM3NjdDRDY5OTg1MDdDM0JBQTFDM0IyQzkxNkVDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCshLaARkjDm0dPXansemj2Huqb DWWv1oQ88pvWMEmqfaN7PzhXpg/J+ug1DjtReO7gtriz6GGMcsSAfsJuQaUGuWEP 1sEiAy+tpPFFl7bzjY4/dStGc4JPO6/ztpLCCzIWlgYsUeZaw7+inrT2iJxX6AEi Tqoyv7aArr1tV4Q9kzdlSocauS8B/RwYVN1tzzf5MK8ahtjx+D85acGfFq+nkpdH tXtkm1c45ikQpb4fFkykGiW4sEREUTQCbk0uTjzUGw2RLegj3VPZvW/5xRTMe5fP I8dEUHahpkYJHbaMb8O2dWEZLs6WNYeDXrTN3yYHZK2bfx6uO4Uvn0U9tI55AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJV+MizN2fNaZhQfDuqHDsskW7NcwHwYDVR0j BBgwFoAU8Q3w/T1FW7qV0M6eqifuOD5E1q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWNiMmU4ZS1hMWEyLTRjYTAtODBiMC0yMjU1MThmZmFlMTQvMC9GMTBERjBGRDNE NDU1QkJBOTVEMENFOUVBQTI3RUUzODNFNDRENkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREYwRkQzRDQ1NUJCQTk1RDBDRTlFQUEyN0VFMzgzRTQ0 RDZBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxY2IyZThlLWExYTItNGNhMC04 MGIwLTIyNTUxOGZmYWUxNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6mIMA0GCSqG SIb3DQEBCwUAA4IBAQDlM7XJrsqKFj5hfJJePlwD04Jx5R5sE7AxyoSUAYWA/BT8 vZC+rGhLWPiAVzgzTdA2NRBnOQegWHrjO8339vfHjVFUa+1qjJrvSt7fvoOKjq/t g4toojC+BFIUpzOp0xEPsK44lAVxiOVLxvqGq9Cx3qNpC8gbGjYVFXjruwZeFOSy 6lm7wUhbIfsov9GwVVssBuobegZJ0iAnGsbnWusQMBNkZIjA+KwIJhNgdrKeSRfN s+S/Mg1NuUi12xWhmY2yNnBwD1s6q888q6SpwixB/uyHoM5NpDzfp3rIKd6Y3hTq Hzzpv/phc2giWX3nKzGCI6Du8myLmch1iOITNMA6 -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org