$ rpki-client -vvf repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa File: 3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: ebAK5L4tIsBW1nRCmmklnbjS34okZQKG2r4eXgvrg64= Subject key identifier: 48:D9:69:3E:33:90:AF:39:3D:3E:AD:1B:9B:E4:9E:28:F7:B6:03:E7 Certificate issuer: /CN=7136382578BA0ACBDD5EEAC687FF3234D04614B1 Certificate serial: 27CB7F07DE8A737525D3BE658F1FD12C78B36C91 Authority key identifier: 71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa Signing time: Sat 27 Apr 2024 09:00:01 +0000 ROA not before: Sat 27 Apr 2024 08:55:01 +0000 ROA not after: Sat 26 Apr 2025 09:00:01 +0000 asID: 45325 IP address blocks: 103.169.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.crl rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cb:7f:07:de:8a:73:75:25:d3:be:65:8f:1f:d1:2c:78:b3:6c:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7136382578BA0ACBDD5EEAC687FF3234D04614B1 Validity Not Before: Apr 27 08:55:01 2024 GMT Not After : Apr 26 09:00:01 2025 GMT Subject: CN=48D9693E3390AF393D3EAD1B9BE49E28F7B603E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:3c:fc:00:5e:21:89:7c:91:68:6c:24:e7: 85:d0:7a:93:41:74:7e:31:f2:e0:70:a9:ce:03:d9: 1c:b5:0d:2c:a9:d6:6a:f4:f8:3a:9c:05:4e:c8:ac: 02:fe:8a:a5:64:3f:f0:34:dd:bb:77:31:7c:aa:65: 44:32:2b:f4:ef:2b:70:89:0e:73:10:dd:66:b5:87: a1:b5:d5:9b:bc:5e:8c:8a:6d:04:fc:49:e7:ba:34: 58:18:30:94:36:0a:ef:4f:4b:ee:e2:6b:dd:78:0e: 6f:71:76:1e:16:e1:e5:d1:1d:00:fa:bb:15:5c:7d: 2e:ed:6c:a5:bc:0b:de:34:73:67:00:32:48:0f:26: 3b:b3:41:7f:14:1c:05:99:60:4c:39:c4:4c:55:3d: 10:92:7e:c0:1a:ba:26:b8:af:e6:d5:11:65:2a:00: d7:64:99:f6:b5:3b:54:c8:93:42:93:82:c7:88:6e: 12:ac:be:e1:11:0a:17:48:b9:9c:7c:60:16:04:47: 62:33:10:86:b5:7e:33:da:74:eb:eb:38:5b:bb:8a: 6a:85:ea:bb:68:75:dd:52:a3:b6:e6:55:3e:67:ff: 53:c3:db:6a:40:f0:97:bd:cb:11:d1:70:2e:22:dd: 49:14:c1:90:4d:08:f9:e1:bc:c6:24:b8:8a:f3:24: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D9:69:3E:33:90:AF:39:3D:3E:AD:1B:9B:E4:9E:28:F7:B6:03:E7 X509v3 Authority Key Identifier: keyid:71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.206.0/24 Signature Algorithm: sha256WithRSAEncryption 38:6d:c4:92:65:44:60:4b:55:4c:15:ba:99:a4:fb:8f:e2:6e: 7f:80:bb:2a:0d:46:bd:92:2b:6d:09:c6:05:b7:46:94:ef:0e: e2:80:38:1b:c9:5d:6c:0a:e2:e6:55:05:40:ef:d1:d6:36:b1: 1c:cc:55:e8:b8:77:19:30:00:89:d5:a4:3c:3a:62:4b:13:e2: 70:6f:4e:5a:5a:a7:93:f3:71:32:3a:a5:c2:57:99:ba:67:4c: 47:43:da:fb:0c:ec:67:b3:b2:cc:0b:f6:dd:a0:8e:83:29:99: 4f:60:f9:9e:a1:0e:1e:16:d7:6d:9f:38:8b:49:fa:8a:53:ed: b7:51:e2:b9:31:07:b1:74:11:ee:27:72:73:40:bf:1f:b8:54: 24:15:5e:41:f6:53:b9:0b:d3:e1:10:e0:5e:0a:b4:15:8e:a4: 42:18:8f:20:fb:f7:3a:04:4d:2a:34:19:7f:26:1d:a9:38:b3: 56:ae:6f:0c:b6:46:55:30:ce:81:e9:20:de:f7:af:67:ed:b1: d3:f9:e4:a5:35:11:05:de:ee:7e:4a:84:e3:87:3d:a3:7f:6f: 3d:67:5f:70:a4:ef:f1:5d:52:05:78:2f:e9:81:d8:a7:fb:46: 8b:18:b8:0c:aa:12:25:09:77:dc:e4:db:07:d0:d7:27:45:1c: d8:53:c8:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ8t/B96Kc3Ul075ljx/RLHizbJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEzNjM4MjU3OEJBMEFDQkRENUVFQUM2ODdGRjMyMzRE MDQ2MTRCMTAeFw0yNDA0MjcwODU1MDFaFw0yNTA0MjYwOTAwMDFaMDMxMTAvBgNV BAMTKDQ4RDk2OTNFMzM5MEFGMzkzRDNFQUQxQjlCRTQ5RTI4RjdCNjAzRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Szz8AF4hiXyRaGwk54XQepNB dH4x8uBwqc4D2Ry1DSyp1mr0+DqcBU7IrAL+iqVkP/A03bt3MXyqZUQyK/TvK3CJ DnMQ3Wa1h6G11Zu8XoyKbQT8See6NFgYMJQ2Cu9PS+7ia914Dm9xdh4W4eXRHQD6 uxVcfS7tbKW8C940c2cAMkgPJjuzQX8UHAWZYEw5xExVPRCSfsAauia4r+bVEWUq ANdkmfa1O1TIk0KTgseIbhKsvuERChdIuZx8YBYER2IzEIa1fjPadOvrOFu7imqF 6rtodd1So7bmVT5n/1PD22pA8Je9yxHRcC4i3UkUwZBNCPnhvMYkuIrzJP8VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSNlpPjOQrzk9Pq0bm+SeKPe2A+cwHwYDVR0j BBgwFoAUcTY4JXi6CsvdXurGh/8yNNBGFLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2Y3Mzc4MC0wOTI1LTRiNGEtYmNhNy1hMWU3ZWQzZmY0MmEvMC83MTM2MzgyNTc4 QkEwQUNCREQ1RUVBQzY4N0ZGMzIzNEQwNDYxNEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEzNjM4MjU3OEJBMEFDQkRENUVFQUM2ODdGRjMyMzREMDQ2 MTRCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZjczNzgwLTA5MjUtNGI0YS1i Y2E3LWExZTdlZDNmZjQyYS8wLzMxMzAzMzJlMzEzNjM5MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6nOMA0GCSqG SIb3DQEBCwUAA4IBAQA4bcSSZURgS1VMFbqZpPuP4m5/gLsqDUa9kittCcYFt0aU 7w7igDgbyV1sCuLmVQVA79HWNrEczFXouHcZMACJ1aQ8OmJLE+Jwb05aWqeT83Ey OqXCV5m6Z0xHQ9r7DOxns7LMC/bdoI6DKZlPYPmeoQ4eFtdtnziLSfqKU+23UeK5 MQexdBHuJ3JzQL8fuFQkFV5B9lO5C9PhEOBeCrQVjqRCGI8g+/c6BE0qNBl/Jh2p OLNWrm8MtkZVMM6B6SDe969n7bHT+eSlNREF3u5+SoTjhz2jf289Z19wpO/xXVIF eC/pgdin+0aLGLgMqhIlCXfc5NsH0NcnRRzYU8hb -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org