$ rpki-client -vvf repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa File: 3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa (raw, json) Hash identifier: d1zoxkpPgSJ0qagum30b9uGuj0gm5KtiCGkm53fY4XE= Subject key identifier: 77:72:F2:50:25:D1:96:0D:8B:88:89:43:F8:CD:7A:A9:D0:5C:3D:A8 Certificate issuer: /CN=DE23EE57180D61B392DC88859FE654C7A8ACF1FF Certificate serial: 19FCBCFE45122C3A69BFAE59AEFAA876EAE0AE3F Authority key identifier: DE:23:EE:57:18:0D:61:B3:92:DC:88:85:9F:E6:54:C7:A8:AC:F1:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa Signing time: Mon 11 Mar 2024 08:01:59 +0000 ROA not before: Mon 11 Mar 2024 07:56:59 +0000 ROA not after: Mon 10 Mar 2025 08:01:59 +0000 asID: 149933 IP address blocks: 103.191.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.crl rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:fc:bc:fe:45:12:2c:3a:69:bf:ae:59:ae:fa:a8:76:ea:e0:ae:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE23EE57180D61B392DC88859FE654C7A8ACF1FF Validity Not Before: Mar 11 07:56:59 2024 GMT Not After : Mar 10 08:01:59 2025 GMT Subject: CN=7772F25025D1960D8B888943F8CD7AA9D05C3DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:14:9c:f3:16:3e:c0:47:ab:c8:53:76:40: ed:22:6b:bc:b4:45:4e:f7:ac:18:a9:95:33:0b:55: 16:d7:70:ba:b1:9e:01:5d:ce:9b:5d:02:5e:bd:6d: 5d:a7:ea:7c:76:4a:cf:67:bf:af:98:f0:de:e7:0a: 3c:2b:41:1d:4d:4a:b6:6f:34:3a:af:f0:8c:af:df: 24:e7:57:2e:7b:aa:44:6c:8f:04:44:57:65:10:bb: d5:6f:fd:d6:40:de:5e:66:6c:92:bc:01:bb:43:d8: 7b:d0:f0:4e:61:b0:2b:d9:7d:d0:e9:f8:e2:05:b7: 17:a9:50:24:b5:0e:8c:3b:e8:b3:50:4c:37:f7:56: 44:8f:56:06:da:88:d8:46:de:a6:b2:f2:de:e6:e5: 0d:1b:5c:d4:90:b9:cb:bf:41:6d:ca:b4:be:a9:70: 55:c9:fc:50:c4:4b:96:61:22:0a:3e:85:ca:a4:ba: b4:41:60:49:3e:8b:99:d2:0e:4f:1f:76:90:75:83: 4f:80:99:90:d8:eb:b6:84:37:26:9a:5d:ae:17:c5: 19:8b:4f:ba:c6:0d:3b:79:eb:03:21:00:d4:2e:51: fe:27:b6:c4:5c:50:c9:ba:93:2f:d1:95:44:df:80: f3:b4:db:ed:fa:8c:db:fb:8e:bf:92:a7:e9:ab:09: 12:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:72:F2:50:25:D1:96:0D:8B:88:89:43:F8:CD:7A:A9:D0:5C:3D:A8 X509v3 Authority Key Identifier: keyid:DE:23:EE:57:18:0D:61:B3:92:DC:88:85:9F:E6:54:C7:A8:AC:F1:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.171.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:0c:aa:b1:4b:b3:50:f3:09:6d:28:3c:cb:cb:42:a3:c5:c4: 7c:cf:b2:df:b8:29:4b:e2:43:cf:25:c3:f9:46:a5:cc:5f:7e: 88:50:8c:8d:29:2c:af:89:77:54:53:da:1a:ed:75:91:77:52: fa:a2:8a:b4:12:4f:3f:50:96:52:91:19:19:c6:82:2c:6c:62: ac:ab:16:ad:96:7f:89:5a:3a:2b:57:40:e2:40:79:8f:a3:55: 30:af:c9:38:68:8e:ad:05:5e:00:88:53:e2:a3:e2:e4:e7:64: 69:84:0d:77:d1:6a:48:26:db:18:fb:8b:51:bc:7e:4d:07:50: 2a:03:df:61:20:87:96:eb:cb:1a:fa:f4:4d:54:09:92:22:9b: 3e:fd:58:f1:61:8b:8d:a9:aa:58:94:10:2c:3a:64:35:5f:38: 05:8f:32:f7:b8:f3:6e:a7:f0:64:82:e1:bf:52:fb:1b:09:0b: 67:f7:64:d7:d7:79:aa:4e:56:45:c9:4e:5f:61:33:44:7d:29: f1:af:82:c2:90:61:cc:53:06:60:9c:b0:02:6e:e6:de:2c:20: d5:53:b1:24:7e:95:c1:1c:ab:1f:4e:2c:e4:5d:61:06:fc:54: 27:ba:80:51:5e:50:cc:49:26:e4:98:1e:c9:d7:0c:9f:de:c4: 84:9a:53:3c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGfy8/kUSLDppv65Zrvqodurgrj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUyM0VFNTcxODBENjFCMzkyREM4ODg1OUZFNjU0QzdB OEFDRjFGRjAeFw0yNDAzMTEwNzU2NTlaFw0yNTAzMTAwODAxNTlaMDMxMTAvBgNV BAMTKDc3NzJGMjUwMjVEMTk2MEQ4Qjg4ODk0M0Y4Q0Q3QUE5RDA1QzNEQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4pBSc8xY+wEeryFN2QO0ia7y0 RU73rBiplTMLVRbXcLqxngFdzptdAl69bV2n6nx2Ss9nv6+Y8N7nCjwrQR1NSrZv NDqv8Iyv3yTnVy57qkRsjwREV2UQu9Vv/dZA3l5mbJK8AbtD2HvQ8E5hsCvZfdDp +OIFtxepUCS1Dow76LNQTDf3VkSPVgbaiNhG3qay8t7m5Q0bXNSQucu/QW3KtL6p cFXJ/FDES5ZhIgo+hcqkurRBYEk+i5nSDk8fdpB1g0+AmZDY67aENyaaXa4XxRmL T7rGDTt56wMhANQuUf4ntsRcUMm6ky/RlUTfgPO02+36jNv7jr+Sp+mrCRJDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUd3LyUCXRlg2LiIlD+M16qdBcPagwHwYDVR0j BBgwFoAU3iPuVxgNYbOS3IiFn+ZUx6is8f8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWMxZTJmMy00ZmJkLTQ0YmItODNmMC1iYjVhZmU2NDU3NWUvMC9ERTIzRUU1NzE4 MEQ2MUIzOTJEQzg4ODU5RkU2NTRDN0E4QUNGMUZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREUyM0VFNTcxODBENjFCMzkyREM4ODg1OUZFNjU0QzdBOEFD RjFGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1YzFlMmYzLTRmYmQtNDRiYi04 M2YwLWJiNWFmZTY0NTc1ZS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv6swDQYJ KoZIhvcNAQELBQADggEBACwMqrFLs1DzCW0oPMvLQqPFxHzPst+4KUviQ88lw/lG pcxffohQjI0pLK+Jd1RT2hrtdZF3UvqiirQSTz9QllKRGRnGgixsYqyrFq2Wf4la OitXQOJAeY+jVTCvyThojq0FXgCIU+Kj4uTnZGmEDXfRakgm2xj7i1G8fk0HUCoD 32Egh5bryxr69E1UCZIimz79WPFhi42pqliUECw6ZDVfOAWPMve4826n8GSC4b9S +xsJC2f3ZNfXeapOVkXJTl9hM0R9KfGvgsKQYcxTBmCcsAJu5t4sINVTsSR+lcEc qx9OLORdYQb8VCe6gFFeUMxJJuSYHsnXDJ/exISaUzw= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:27 2024 by rpki-client on console-ams.rpki-client.org