$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa File: 3130332e39312e34342e302f32322d3234203d3e20313336313035.roa (raw, json) Hash identifier: czpyfmW5qXUOgmdTX+fLvnr7WIFjh3STKQ+hvn+zqQg= Subject key identifier: 43:81:68:A2:6A:1C:61:DE:CA:90:1B:96:F4:5D:58:00:82:5A:48:F0 Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Certificate serial: 4ECE7CF4BC983815AC6A7563379290ABBBD85E42 Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa Signing time: Mon 01 Jul 2024 01:04:15 +0000 ROA not before: Mon 01 Jul 2024 00:59:15 +0000 ROA not after: Mon 30 Jun 2025 01:04:15 +0000 asID: 136105 IP address blocks: 103.91.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ce:7c:f4:bc:98:38:15:ac:6a:75:63:37:92:90:ab:bb:d8:5e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189 Validity Not Before: Jul 1 00:59:15 2024 GMT Not After : Jun 30 01:04:15 2025 GMT Subject: CN=438168A26A1C61DECA901B96F45D5800825A48F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:02:24:43:dd:e0:0d:8c:7a:19:f0:13:49:70: f3:80:ff:a1:de:c2:d7:ee:fb:63:2b:14:bb:7c:bc: 3b:49:f4:69:a0:0d:4a:39:48:62:30:11:76:1d:2e: 63:57:55:73:81:ba:68:d5:0c:86:2d:96:46:e4:3c: 40:63:8a:b1:c4:7b:e8:f6:48:da:56:a2:0e:6e:ab: 8b:a9:e9:b7:bd:66:03:0a:69:95:76:07:0c:c5:ee: 6a:17:81:4a:0f:24:5f:0d:44:67:b4:e0:5b:80:40: 65:46:67:9f:92:cd:53:a5:1b:cf:b1:36:ce:6f:f7: c1:35:c4:6c:4e:0a:80:11:10:52:1e:48:27:17:c1: be:81:b7:eb:b8:de:1c:bc:70:7c:65:4f:0c:b9:43: 3e:60:0d:bb:e3:f6:11:8d:ec:94:b1:bf:fc:11:c3: f1:04:f0:1d:bd:2f:3c:a2:0c:7f:89:96:82:ce:7b: 4d:19:c0:83:cd:c0:10:0e:bd:91:38:75:bf:06:c3: 16:1c:c3:37:52:5d:a0:84:63:e2:59:e4:dc:02:e6: 02:c7:64:08:45:9f:01:54:fb:d5:5a:03:e9:ea:7d: 68:de:4f:77:80:17:06:e4:fa:cc:52:c8:41:e8:b3: 95:50:71:f0:f4:4b:59:12:fc:27:97:ce:36:a6:4f: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:81:68:A2:6A:1C:61:DE:CA:90:1B:96:F4:5D:58:00:82:5A:48:F0 X509v3 Authority Key Identifier: keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.44.0/22 Signature Algorithm: sha256WithRSAEncryption 39:0f:7d:d1:6b:23:51:80:14:6e:bf:e5:e8:f3:58:5d:c7:64: 37:86:cf:7b:08:e8:63:53:b0:2d:77:e5:fb:81:0a:cc:e0:f0: bd:a1:80:b6:2d:5b:95:3f:a0:c4:5f:d3:a0:9c:82:1d:1e:dc: 16:60:cb:3b:fd:ed:1f:6f:08:83:72:17:5f:09:44:e3:86:49: fa:6f:18:3f:7e:9c:94:17:77:a0:6f:03:df:93:b4:88:6c:6c: 45:3c:51:9e:20:a6:50:89:46:5d:67:b2:95:2b:97:53:5b:23: 18:32:45:2b:e4:f0:ba:77:8d:61:45:1a:f2:ef:6e:ea:af:f2: f9:20:2d:95:31:f9:24:7c:a4:b3:41:30:e2:21:a0:62:8e:c1: 47:ee:4e:8d:08:1b:f0:28:0a:4b:a6:ac:47:0e:e6:23:e4:f0: fb:75:13:f6:85:89:e9:39:cf:c3:d4:81:aa:52:0c:ed:d6:4c: fd:93:f7:83:68:85:cd:1b:b6:f9:46:dc:c4:02:3c:98:3b:1a: 25:e9:22:3d:f6:da:83:cc:5e:d3:79:0a:6d:2f:9d:19:ac:94: 8a:70:31:08:ad:15:46:07:38:58:8c:de:22:39:47:fc:39:01: e8:94:ed:1a:13:de:f1:ee:1a:35:eb:11:a9:da:32:c8:09:9d: d2:2a:2e:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTs589LyYOBWsanVjN5KQq7vYXkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4 RjZDMTE4OTAeFw0yNDA3MDEwMDU5MTVaFw0yNTA2MzAwMTA0MTVaMDMxMTAvBgNV BAMTKDQzODE2OEEyNkExQzYxREVDQTkwMUI5NkY0NUQ1ODAwODI1QTQ4RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAiRD3eANjHoZ8BNJcPOA/6He wtfu+2MrFLt8vDtJ9GmgDUo5SGIwEXYdLmNXVXOBumjVDIYtlkbkPEBjirHEe+j2 SNpWog5uq4up6be9ZgMKaZV2BwzF7moXgUoPJF8NRGe04FuAQGVGZ5+SzVOlG8+x Ns5v98E1xGxOCoAREFIeSCcXwb6Bt+u43hy8cHxlTwy5Qz5gDbvj9hGN7JSxv/wR w/EE8B29LzyiDH+JloLOe00ZwIPNwBAOvZE4db8GwxYcwzdSXaCEY+JZ5NwC5gLH ZAhFnwFU+9VaA+nqfWjeT3eAFwbk+sxSyEHos5VQcfD0S1kS/CeXzjamT/VpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQ4FoomocYd7KkBuW9F1YAIJaSPAwHwYDVR0j BBgwFoAUzgzRNTpCoKme52jz+vI1449sEYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzczYmM2MS1jNWY5LTQxNTktOThiYy1hMDUzMGI0ZGQ4YjQvMC9DRTBDRDEzNTNB NDJBMEE5OUVFNzY4RjNGQUYyMzVFMzhGNkMxMTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UwQ0QxMzUzQTQyQTBBOTlFRTc2OEYzRkFGMjM1RTM4RjZD MTE4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNzNiYzYxLWM1ZjktNDE1OS05 OGJjLWEwNTMwYjRkZDhiNC8wLzMxMzAzMzJlMzkzMTJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdbLDANBgkqhkiG 9w0BAQsFAAOCAQEAOQ990WsjUYAUbr/l6PNYXcdkN4bPewjoY1OwLXfl+4EKzODw vaGAti1blT+gxF/ToJyCHR7cFmDLO/3tH28Ig3IXXwlE44ZJ+m8YP36clBd3oG8D 35O0iGxsRTxRniCmUIlGXWeylSuXU1sjGDJFK+TwuneNYUUa8u9u6q/y+SAtlTH5 JHyks0Ew4iGgYo7BR+5OjQgb8CgKS6asRw7mI+Tw+3UT9oWJ6TnPw9SBqlIM7dZM /ZP3g2iFzRu2+UbcxAI8mDsaJekiPfbag8xe03kKbS+dGayUinAxCK0VRgc4WIze IjlH/DkB6JTtGhPe8e4aNesRqdoyyAmd0iouBA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org