$ rpki-client -vvf repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa File: 3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: u8WfQ7ViwC8c62RjjiP6fTb34ki+LT2D/raqeIObUTI= Subject key identifier: 21:0B:6C:02:18:4E:55:05:26:55:95:F9:D9:9C:17:FC:05:0D:FC:3E Certificate issuer: /CN=1678828C849BDE3472FE846308767F54ED7F8232 Certificate serial: 551AA601CDA00AE480C706E419E5CA2C04A6408B Authority key identifier: 16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa Signing time: Tue 17 Sep 2024 08:00:00 +0000 ROA not before: Tue 17 Sep 2024 07:55:00 +0000 ROA not after: Tue 16 Sep 2025 08:00:00 +0000 asID: 45305 IP address blocks: 103.184.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:1a:a6:01:cd:a0:0a:e4:80:c7:06:e4:19:e5:ca:2c:04:a6:40:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678828C849BDE3472FE846308767F54ED7F8232 Validity Not Before: Sep 17 07:55:00 2024 GMT Not After : Sep 16 08:00:00 2025 GMT Subject: CN=210B6C02184E5505265595F9D99C17FC050DFC3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b0:23:1d:cc:6c:40:91:68:82:df:ef:8a:cc: ff:e0:1c:8c:be:7a:90:0a:f3:6f:61:03:7d:f9:9e: 27:0b:cd:b6:44:be:f5:ad:a7:84:c8:7f:a8:51:0d: fa:38:90:80:47:9f:1a:6b:ba:99:91:05:a6:08:e8: db:82:8d:e1:b6:57:70:b6:81:2b:7a:be:dd:2f:17: ae:cd:de:3a:a0:d6:75:86:a0:0e:9d:91:b3:d9:c1: e4:98:8b:79:b9:5d:04:07:a8:48:7e:76:c4:f7:fa: bc:b4:65:bc:5c:a4:37:ca:75:1d:5f:67:f3:e3:e2: ee:ee:09:d8:93:70:2c:1e:6b:8f:54:c9:69:47:59: f8:64:21:13:46:5a:78:70:7b:ab:e0:08:99:74:54: 3b:1b:47:03:22:db:b9:1f:d1:9d:56:68:f5:2d:ac: 72:e6:cc:b0:82:6a:f7:7b:a8:69:59:9a:05:9b:c3: 01:73:fd:a6:c6:32:c4:f0:5c:a3:1c:f3:ff:ae:2d: 86:ac:2b:8b:c8:a1:03:47:bb:60:94:14:09:34:68: 60:89:d2:ff:78:8b:d6:44:76:40:9e:69:fe:54:2e: 57:65:50:9f:1b:af:c8:3d:a3:4b:1e:54:5e:f1:04: ca:a9:00:9b:94:50:a0:54:cb:91:6e:d9:67:23:3e: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:6C:02:18:4E:55:05:26:55:95:F9:D9:9C:17:FC:05:0D:FC:3E X509v3 Authority Key Identifier: keyid:16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138302e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.180.0/24 Signature Algorithm: sha256WithRSAEncryption a6:08:6e:0a:5e:9c:76:ff:ec:05:3f:ee:64:bb:92:59:3d:3a: c3:ce:83:0b:97:58:04:95:a7:77:31:e2:fa:29:47:14:45:58: 56:c2:c3:41:f2:50:1d:98:00:3a:17:cc:52:93:f8:f3:75:8f: 69:6d:7f:4b:41:c2:b0:66:32:2a:94:2f:cf:80:7c:2e:d5:24: 52:23:91:8c:df:ee:ac:8c:cf:5d:bd:0b:41:ab:4b:d6:bc:4a: b3:b7:4a:86:53:09:b8:8a:5e:3d:56:ef:93:27:49:a6:1e:39: d5:40:6e:6a:2d:bc:2f:e8:ef:b9:36:5f:49:8c:0f:69:c2:b9: 44:0f:34:89:1b:6d:d1:d5:53:45:78:f5:d6:6f:0e:aa:a5:2b: bd:48:53:53:23:4f:3d:2b:88:5d:96:4d:0f:f5:18:85:12:09: b0:ce:cd:cd:c5:06:e6:12:a5:ee:1a:6a:24:6c:1e:c6:ef:11: 73:a2:94:2d:93:fb:75:24:1a:a8:be:04:89:0b:6f:1b:14:12: 60:89:a9:eb:61:01:4a:7b:aa:88:bf:ea:e9:f1:5f:39:ff:09: 4f:13:81:95:91:7b:4f:7b:49:0a:27:79:f6:fa:6d:31:3c:52: 30:2a:a6:87:1f:ae:58:5f:66:eb:65:d8:a0:55:90:89:59:23: 51:88:47:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVRqmAc2gCuSAxwbkGeXKLASmQIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRF RDdGODIzMjAeFw0yNDA5MTcwNzU1MDBaFw0yNTA5MTYwODAwMDBaMDMxMTAvBgNV BAMTKDIxMEI2QzAyMTg0RTU1MDUyNjU1OTVGOUQ5OUMxN0ZDMDUwREZDM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsCMdzGxAkWiC3++KzP/gHIy+ epAK829hA335nicLzbZEvvWtp4TIf6hRDfo4kIBHnxprupmRBaYI6NuCjeG2V3C2 gSt6vt0vF67N3jqg1nWGoA6dkbPZweSYi3m5XQQHqEh+dsT3+ry0ZbxcpDfKdR1f Z/Pj4u7uCdiTcCwea49UyWlHWfhkIRNGWnhwe6vgCJl0VDsbRwMi27kf0Z1WaPUt rHLmzLCCavd7qGlZmgWbwwFz/abGMsTwXKMc8/+uLYasK4vIoQNHu2CUFAk0aGCJ 0v94i9ZEdkCeaf5ULldlUJ8br8g9o0seVF7xBMqpAJuUUKBUy5Fu2WcjPtGFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIQtsAhhOVQUmVZX52ZwX/AUN/D4wHwYDVR0j BBgwFoAUFniCjISb3jRy/oRjCHZ/VO1/gjIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTU3OTkxYS0xNTZkLTRiNTUtOTBjYi03OWI4NzZjZjZhNGEvMC8xNjc4ODI4Qzg0 OUJERTM0NzJGRTg0NjMwODc2N0Y1NEVEN0Y4MjMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRFRDdG ODIzMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNTc5OTFhLTE1NmQtNGI1NS05 MGNiLTc5Yjg3NmNmNmE0YS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7i0MA0GCSqG SIb3DQEBCwUAA4IBAQCmCG4KXpx2/+wFP+5ku5JZPTrDzoMLl1gElad3MeL6KUcU RVhWwsNB8lAdmAA6F8xSk/jzdY9pbX9LQcKwZjIqlC/PgHwu1SRSI5GM3+6sjM9d vQtBq0vWvEqzt0qGUwm4il49Vu+TJ0mmHjnVQG5qLbwv6O+5Nl9JjA9pwrlEDzSJ G23R1VNFePXWbw6qpSu9SFNTI089K4hdlk0P9RiFEgmwzs3NxQbmEqXuGmokbB7G 7xFzopQtk/t1JBqovgSJC28bFBJgianrYQFKe6qIv+rp8V85/wlPE4GVkXtPe0kK J3n2+m0xPFIwKqaHH65YX2brZdigVZCJWSNRiEeI -----END CERTIFICATE-----Generated at Sun Nov 24 04:28:51 2024 by rpki-client on console-fra.rpki-client.org