$ rpki-client -vvf repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa File: 3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: XHnVA3kgiSHWTzaq4H1bmmSuVOWED8VyEnBWN5Fzb88= Subject key identifier: 7B:3D:7C:C5:D6:18:53:5B:F7:E8:3B:EC:0A:01:C4:43:DB:66:C1:F8 Certificate issuer: /CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Certificate serial: 581EE1E90731CB015361DB04E7D2CE058C1C54F4 Authority key identifier: BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa Signing time: Thu 11 Jan 2024 04:00:01 +0000 ROA not before: Thu 11 Jan 2024 03:55:01 +0000 ROA not after: Thu 09 Jan 2025 04:00:01 +0000 asID: 140443 IP address blocks: 103.79.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1e:e1:e9:07:31:cb:01:53:61:db:04:e7:d2:ce:05:8c:1c:54:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Validity Not Before: Jan 11 03:55:01 2024 GMT Not After : Jan 9 04:00:01 2025 GMT Subject: CN=7B3D7CC5D618535BF7E83BEC0A01C443DB66C1F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:3b:48:e0:40:0a:00:7f:02:4a:3f:67:90: fd:3b:ff:c2:97:1c:b4:30:f6:d4:76:3d:f1:ef:08: bb:c2:35:b1:cb:6f:1e:aa:fa:f5:41:af:64:a8:fa: f7:ae:fa:9e:14:22:db:93:35:f9:65:11:5b:04:a9: e4:71:b7:76:8d:72:58:fd:9b:1c:7c:29:3e:4c:af: 9d:c1:5b:9a:a5:d8:eb:ff:2a:31:c9:d5:36:b0:7b: 8e:22:c4:f4:11:91:51:93:2c:41:d7:66:29:bd:c9: f2:fd:0f:7f:2a:ef:06:37:72:0c:a6:d7:0a:ca:49: 4c:9f:a9:55:10:c4:3d:79:a1:af:e0:4f:d3:3c:20: 34:fb:13:f0:49:8c:30:6e:1c:2e:1f:83:9d:8c:67: d7:9c:78:69:83:10:1f:60:ae:9f:92:e4:dd:ba:76: 9e:61:55:75:a1:53:58:2a:05:ef:a4:72:96:45:56: d0:cf:60:0e:5b:22:9c:2e:6f:8b:82:cc:dd:c4:b1: 94:43:23:d7:c3:5c:2c:d6:d2:85:36:9f:f4:78:5f: ed:39:35:56:20:dc:40:4d:a6:1f:22:bf:c9:97:ec: 00:10:e9:26:98:1e:f2:1e:db:80:74:67:8a:60:9f: ab:c5:46:d1:ed:7e:44:18:e9:bc:26:5d:c6:7b:49: 99:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3D:7C:C5:D6:18:53:5B:F7:E8:3B:EC:0A:01:C4:43:DB:66:C1:F8 X509v3 Authority Key Identifier: keyid:BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.131.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:ee:31:92:41:0b:88:b3:54:33:08:e0:df:89:20:2f:ff:ef: 6e:f3:a7:91:c5:9d:6f:a0:16:94:17:58:e0:73:ff:b6:67:d0: 01:65:3e:39:5a:f4:a1:33:de:39:3b:66:1d:f0:a4:bd:5c:ea: ec:d4:7e:d4:2a:38:ca:08:04:56:56:ef:c8:2c:57:bb:97:36: 48:3d:0d:34:92:ba:08:6a:5b:5b:87:52:bd:3a:2f:5b:25:10: 00:13:52:b6:9c:3a:61:c5:24:4a:4d:5b:51:ed:63:82:96:28: 3c:ac:5a:7a:03:5f:ac:b4:f5:8a:28:43:85:b7:93:b2:75:01: df:a4:b7:45:d3:b3:bc:a1:0c:0c:63:16:76:de:5e:bb:6c:f4: 15:99:b3:16:61:92:dd:b3:ec:58:e8:aa:56:ce:57:52:42:2f: 10:e1:ef:86:13:c1:f4:45:75:63:d0:29:40:d5:55:d1:cd:34: cf:19:1b:b7:ad:95:f4:9e:48:ab:ba:32:d5:a7:77:8e:b4:5b: cf:44:c4:3c:cb:93:cb:4d:c7:76:07:d7:76:a4:27:69:f6:27: bc:23:2f:97:b0:ad:ca:69:48:5c:e6:18:0e:83:2d:14:b0:e2: e0:ce:af:08:9f:65:26:99:2f:af:77:2b:f4:f5:b4:34:9a:79: 50:7e:fa:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWB7h6QcxywFTYdsE59LOBYwcVPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUx MDU0QUJFMDAeFw0yNDAxMTEwMzU1MDFaFw0yNTAxMDkwNDAwMDFaMDMxMTAvBgNV BAMTKDdCM0Q3Q0M1RDYxODUzNUJGN0U4M0JFQzBBMDFDNDQzREI2NkMxRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN3DtI4EAKAH8CSj9nkP07/8KX HLQw9tR2PfHvCLvCNbHLbx6q+vVBr2So+veu+p4UItuTNfllEVsEqeRxt3aNclj9 mxx8KT5Mr53BW5ql2Ov/KjHJ1Tawe44ixPQRkVGTLEHXZim9yfL9D38q7wY3cgym 1wrKSUyfqVUQxD15oa/gT9M8IDT7E/BJjDBuHC4fg52MZ9eceGmDEB9grp+S5N26 dp5hVXWhU1gqBe+kcpZFVtDPYA5bIpwub4uCzN3EsZRDI9fDXCzW0oU2n/R4X+05 NVYg3EBNph8iv8mX7AAQ6SaYHvIe24B0Z4pgn6vFRtHtfkQY6bwmXcZ7SZnFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUez18xdYYU1v36DvsCgHEQ9tmwfgwHwYDVR0j BBgwFoAUvWGU08JbY3sV2utlSyiKRRBUq+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWUyNDkwNy1hNmYyLTRhNTUtYWE2Zi0xOGM3ZGIxNDNmZTgvMC9CRDYxOTREM0My NUI2MzdCMTVEQUVCNjU0QjI4OEE0NTEwNTRBQkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUxMDU0 QUJFMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZTI0OTA3LWE2ZjItNGE1NS1h YTZmLTE4YzdkYjE0M2ZlOC8wLzMxMzAzMzJlMzczOTJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0+DMA0GCSqG SIb3DQEBCwUAA4IBAQA97jGSQQuIs1QzCODfiSAv/+9u86eRxZ1voBaUF1jgc/+2 Z9ABZT45WvShM945O2Yd8KS9XOrs1H7UKjjKCARWVu/ILFe7lzZIPQ00kroIaltb h1K9Oi9bJRAAE1K2nDphxSRKTVtR7WOClig8rFp6A1+stPWKKEOFt5OydQHfpLdF 07O8oQwMYxZ23l67bPQVmbMWYZLds+xY6KpWzldSQi8Q4e+GE8H0RXVj0ClA1VXR zTTPGRu3rZX0nkirujLVp3eOtFvPRMQ8y5PLTcd2B9d2pCdp9ie8Iy+XsK3KaUhc 5hgOgy0UsOLgzq8In2UmmS+vdyv09bQ0mnlQfvq9 -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:39 2024 by rpki-client on console-ams.rpki-client.org