$ rpki-client -vvf repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139302e302f32342d3234203d3e20313430343639.roa File: 3130332e3135332e3139302e302f32342d3234203d3e20313430343639.roa (raw, json) Hash identifier: qjwbpIUKu8J7exTf84Eh6e0xxwi2ceN6FlK9iJ3EEpQ= Subject key identifier: EF:F5:DA:BD:C9:37:0B:98:1D:3D:14:BE:31:7D:FD:F1:0D:FF:12:A1 Certificate issuer: /CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Certificate serial: 40DD5EC72B1DC886EE6367298A8ADEF4A51FDA2A Authority key identifier: 10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139302e302f32342d3234203d3e20313430343639.roa Signing time: Mon 01 Jul 2024 01:05:11 +0000 ROA not before: Mon 01 Jul 2024 01:00:11 +0000 ROA not after: Mon 30 Jun 2025 01:05:11 +0000 asID: 140469 IP address blocks: 103.153.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:dd:5e:c7:2b:1d:c8:86:ee:63:67:29:8a:8a:de:f4:a5:1f:da:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Validity Not Before: Jul 1 01:00:11 2024 GMT Not After : Jun 30 01:05:11 2025 GMT Subject: CN=EFF5DABDC9370B981D3D14BE317DFDF10DFF12A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:06:83:c0:4c:71:aa:a5:a0:df:e7:8c:29:b2: d1:48:e0:f0:89:08:4c:0a:5d:0b:5f:29:64:84:f5: f6:27:55:cb:84:2d:c0:2e:d6:ff:69:e5:e7:7d:14: 67:b8:c6:bb:3e:40:3d:e0:84:ad:6b:43:bd:a4:48: ef:19:85:cf:cc:03:b0:3b:b4:ab:5e:40:a6:14:41: 86:26:fc:c4:54:c4:d8:10:25:c8:06:cd:2e:1e:17: a3:09:f4:ad:3c:fa:68:a3:0b:02:b6:be:e3:80:f8: 76:bd:cf:ab:15:9b:8b:b6:df:46:5b:a0:fa:aa:4e: ff:e0:e9:61:f9:0d:4f:77:f0:fc:50:ac:af:33:08: ac:7d:cc:6c:eb:04:37:eb:4f:d8:a6:46:1f:1e:9f: ab:16:99:6c:3f:d7:bc:01:a1:9e:66:23:92:13:7c: 22:68:d8:99:7a:83:79:23:51:ce:b2:c6:69:8c:77: fe:3a:f3:38:52:13:30:86:ab:83:2b:b8:7c:00:00: f1:42:6f:78:c4:2c:11:b3:01:f8:5f:a4:87:4d:2d: 0f:e4:6c:13:9b:04:68:da:ea:66:af:05:9f:9d:fa: 24:d5:43:12:f7:1b:47:65:b2:28:09:bf:45:86:53: 1f:16:81:9a:1f:fe:3e:21:78:27:aa:55:68:01:ed: 03:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F5:DA:BD:C9:37:0B:98:1D:3D:14:BE:31:7D:FD:F1:0D:FF:12:A1 X509v3 Authority Key Identifier: keyid:10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/3130332e3135332e3139302e302f32342d3234203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.190.0/24 Signature Algorithm: sha256WithRSAEncryption b5:96:85:6d:72:7a:3c:b0:51:10:b6:07:3f:0b:a1:d7:72:33: ff:3b:ac:e7:39:a5:ac:ef:44:3d:a7:be:bd:37:36:ec:19:b4: b6:6a:43:0f:fe:45:8c:1a:05:01:8c:97:81:83:74:0e:b7:55: 5a:68:03:eb:e7:b4:b7:8b:07:1c:84:ff:14:59:ec:5a:8c:91: e9:69:db:d2:f7:22:ed:31:06:f3:7a:77:9f:97:1b:62:cf:9f: 59:91:31:1b:a3:c4:ec:39:80:14:c6:ff:72:dd:cc:eb:c3:eb: ad:41:e1:e3:e8:e2:12:3e:d7:da:11:6e:cf:61:de:5f:68:cd: 34:7e:dd:34:4f:8b:34:8a:2d:c9:a6:b8:a2:37:21:0e:87:aa: e1:a8:55:c8:04:bf:af:02:27:32:ea:99:b0:42:45:db:e4:da: 23:24:1d:2e:c1:61:93:a9:68:f0:2a:99:40:c7:16:53:d8:fd: 56:44:85:3d:ac:c3:96:ac:c2:96:05:61:88:91:4d:c9:2a:da: b2:2e:81:3d:a4:7e:dc:0e:61:3d:9c:0c:a8:a7:84:47:69:96: b6:c2:49:f0:8c:30:13:d6:b7:ce:ac:d3:df:ab:3a:bb:76:ae: 9b:36:8f:6d:bf:14:2b:f2:3b:85:70:7e:ab:0d:06:64:b0:d1: 65:65:81:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQN1exysdyIbuY2cpiore9KUf2iowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMy Q0M5QThBRDAeFw0yNDA3MDEwMTAwMTFaFw0yNTA2MzAwMTA1MTFaMDMxMTAvBgNV BAMTKEVGRjVEQUJEQzkzNzBCOTgxRDNEMTRCRTMxN0RGREYxMERGRjEyQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwBoPATHGqpaDf54wpstFI4PCJ CEwKXQtfKWSE9fYnVcuELcAu1v9p5ed9FGe4xrs+QD3ghK1rQ72kSO8Zhc/MA7A7 tKteQKYUQYYm/MRUxNgQJcgGzS4eF6MJ9K08+mijCwK2vuOA+Ha9z6sVm4u230Zb oPqqTv/g6WH5DU938PxQrK8zCKx9zGzrBDfrT9imRh8en6sWmWw/17wBoZ5mI5IT fCJo2Jl6g3kjUc6yxmmMd/468zhSEzCGq4MruHwAAPFCb3jELBGzAfhfpIdNLQ/k bBObBGja6mavBZ+d+iTVQxL3G0dlsigJv0WGUx8WgZof/j4heCeqVWgB7QOBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7/Xavck3C5gdPRS+MX398Q3/EqEwHwYDVR0j BBgwFoAUEMPhdjnIsZNin5fcvR70MyzJqK0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzU2OGI1Yi1iNmFlLTQ1M2UtOGUxNi1kNTVkZDYzNTQ2MGIvMC8xMEMzRTE3NjM5 QzhCMTkzNjI5Rjk3RENCRDFFRjQzMzJDQzlBOEFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMyQ0M5 QThBRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNTY4YjViLWI2YWUtNDUzZS04 ZTE2LWQ1NWRkNjM1NDYwYi8wLzMxMzAzMzJlMzEzNTMzMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmb4wDQYJ KoZIhvcNAQELBQADggEBALWWhW1yejywURC2Bz8LoddyM/87rOc5pazvRD2nvr03 NuwZtLZqQw/+RYwaBQGMl4GDdA63VVpoA+vntLeLBxyE/xRZ7FqMkelp29L3Iu0x BvN6d5+XG2LPn1mRMRujxOw5gBTG/3LdzOvD661B4ePo4hI+19oRbs9h3l9ozTR+ 3TRPizSKLcmmuKI3IQ6HquGoVcgEv68CJzLqmbBCRdvk2iMkHS7BYZOpaPAqmUDH FlPY/VZEhT2sw5aswpYFYYiRTckq2rIugT2kftwOYT2cDKinhEdplrbCSfCMMBPW t86s09+rOrt2rps2j22/FCvyO4VwfqsNBmSw0WVlgYY= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org