$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa File: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (raw, json) Hash identifier: Sk0wkDqGConkmWy9npP0doI1sV1k0RuaSswpEBtoT8g= Subject key identifier: 04:7A:5E:B7:79:4D:7F:0D:58:90:45:82:28:6E:7A:8B:22:EC:5F:E8 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 2EA94712C70EF7883F89F08A6BD26E1C19E6CC83 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa Signing time: Wed 17 Jan 2024 15:00:02 +0000 ROA not before: Wed 17 Jan 2024 14:55:02 +0000 ROA not after: Wed 15 Jan 2025 15:00:02 +0000 asID: 149373 IP address blocks: 103.180.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a9:47:12:c7:0e:f7:88:3f:89:f0:8a:6b:d2:6e:1c:19:e6:cc:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Jan 17 14:55:02 2024 GMT Not After : Jan 15 15:00:02 2025 GMT Subject: CN=047A5EB7794D7F0D58904582286E7A8B22EC5FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:8d:da:d1:6c:28:6d:91:70:d2:d2:6b:af: bb:6f:2c:b5:88:8f:01:77:40:b4:ae:7c:14:21:db: f1:7d:1d:0b:59:f0:11:23:ca:ad:fc:aa:58:e5:17: 3f:7d:1d:f1:28:c8:67:99:5c:c7:44:48:21:14:37: bf:9a:49:d6:e2:b1:9b:ff:d4:bc:7b:9c:8a:a8:3c: 6e:0c:22:33:26:aa:80:25:18:d1:16:e2:bc:2a:e6: 0c:d6:a9:72:6b:ef:e0:be:e9:a0:88:c6:1b:1f:f6: 9a:4d:28:cd:06:a4:b9:c3:5a:80:5b:28:9c:23:69: fc:92:9d:0d:2b:95:dd:6f:58:30:82:06:67:3c:7a: 2d:63:95:e5:31:82:95:aa:53:39:51:07:dd:81:b7: 54:d8:40:0a:f1:a9:6c:a4:92:f3:b5:7e:af:c0:98: a6:64:f1:43:38:cc:30:63:56:57:e5:ab:aa:31:7a: d0:8b:6a:35:43:79:b5:04:02:ad:4e:fb:4c:45:03: 67:1f:03:4d:82:1d:83:20:52:6a:33:4d:d9:66:69: d9:24:c3:85:a0:be:0f:e5:50:03:0c:1a:4d:98:cb: 9d:e1:d3:23:11:40:07:ce:24:59:47:d5:a3:89:72: c9:ed:7e:07:54:d3:74:2f:81:42:d5:a0:34:cd:95: 83:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7A:5E:B7:79:4D:7F:0D:58:90:45:82:28:6E:7A:8B:22:EC:5F:E8 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.251.0/24 Signature Algorithm: sha256WithRSAEncryption 78:8c:8b:6f:ec:d7:9f:a9:32:02:85:aa:70:19:ca:dc:89:a7: 3c:bd:bd:64:82:a8:8e:dd:9b:52:bc:d5:72:3f:4a:92:34:a2: 10:43:0d:6d:c5:11:cd:6a:a0:32:41:80:14:a3:e7:7f:e1:4a: e9:11:33:b5:cb:32:7d:7a:3b:a4:24:b5:2b:c4:5b:a9:3c:43: c6:ad:16:ef:bd:41:4b:12:03:b9:75:c0:19:d3:3c:21:ed:c7: b5:ed:2d:16:9e:36:0b:ef:5a:3a:0c:f0:dd:85:0d:a8:77:77: 4d:5f:aa:40:da:a6:4a:37:a9:08:c8:09:dd:88:02:ea:c3:74: fc:78:97:ef:36:7f:da:3d:ba:a2:bc:e0:1f:48:b7:57:70:72: e2:74:26:3b:b7:82:0e:bd:80:c0:96:48:64:66:2d:10:d8:7a: 5e:83:e2:55:61:9c:bf:cc:53:56:31:03:20:a3:9d:74:8a:fc: ca:01:d9:05:34:99:f9:13:cf:61:f8:70:85:f8:a7:b0:e4:d9: 60:f7:8d:67:3b:6d:37:3d:4b:ce:9c:30:07:19:47:81:3b:77: d7:69:88:eb:e1:69:7a:5e:92:d7:52:91:32:d5:38:e1:bc:56: 86:28:5e:95:c7:a8:89:3f:35:43:54:21:bd:1e:91:d3:d1:d0: 42:d1:59:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULqlHEscO94g/ifCKa9JuHBnmzIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNDAxMTcxNDU1MDJaFw0yNTAxMTUxNTAwMDJaMDMxMTAvBgNV BAMTKDA0N0E1RUI3Nzk0RDdGMEQ1ODkwNDU4MjI4NkU3QThCMjJFQzVGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fI3a0WwobZFw0tJrr7tvLLWI jwF3QLSufBQh2/F9HQtZ8BEjyq38qljlFz99HfEoyGeZXMdESCEUN7+aSdbisZv/ 1Lx7nIqoPG4MIjMmqoAlGNEW4rwq5gzWqXJr7+C+6aCIxhsf9ppNKM0GpLnDWoBb KJwjafySnQ0rld1vWDCCBmc8ei1jleUxgpWqUzlRB92Bt1TYQArxqWykkvO1fq/A mKZk8UM4zDBjVlflq6oxetCLajVDebUEAq1O+0xFA2cfA02CHYMgUmozTdlmadkk w4Wgvg/lUAMMGk2Yy53h0yMRQAfOJFlH1aOJcsntfgdU03QvgULVoDTNlYN3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBHpet3lNfw1YkEWCKG56iyLsX+gwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyNDlkMzg3LTcwY2YtNDBlOS04 NzU5LTliODZlMGM2NTEyOC8wLzMxMzAzMzJlMzEzODMwMmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABntPswDQYJ KoZIhvcNAQELBQADggEBAHiMi2/s15+pMgKFqnAZytyJpzy9vWSCqI7dm1K81XI/ SpI0ohBDDW3FEc1qoDJBgBSj53/hSukRM7XLMn16O6QktSvEW6k8Q8atFu+9QUsS A7l1wBnTPCHtx7XtLRaeNgvvWjoM8N2FDah3d01fqkDapko3qQjICd2IAurDdPx4 l+82f9o9uqK84B9It1dwcuJ0Jju3gg69gMCWSGRmLRDYel6D4lVhnL/MU1YxAyCj nXSK/MoB2QU0mfkTz2H4cIX4p7Dk2WD3jWc7bTc9S86cMAcZR4E7d9dpiOvhaXpe ktdSkTLVOOG8VoYoXpXHqIk/NUNUIb0ekdPR0ELRWe4= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:31 2024 by rpki-client on console-fra.rpki-client.org