$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa File: 3130332e3136392e302e302f32332d3234203d3e20313432333235.roa (raw, json) Hash identifier: v7fj0n/qZqAv0WjTR8mAQzKp8e8T2QjW/FrewvXOCCY= Subject key identifier: 74:BA:D8:6B:47:4E:C1:9C:F8:DC:8E:27:06:68:01:58:EF:D9:62:43 Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 486304D793EE63913498AD4D42284AC29C14F152 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa Signing time: Thu 04 Jan 2024 11:00:05 +0000 ROA not before: Thu 04 Jan 2024 10:55:05 +0000 ROA not after: Thu 02 Jan 2025 11:00:05 +0000 asID: 142325 IP address blocks: 103.169.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 15:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:63:04:d7:93:ee:63:91:34:98:ad:4d:42:28:4a:c2:9c:14:f1:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Jan 4 10:55:05 2024 GMT Not After : Jan 2 11:00:05 2025 GMT Subject: CN=74BAD86B474EC19CF8DC8E2706680158EFD96243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dd:d3:a7:25:8f:01:0c:5f:dd:d9:5b:3d:b5: c4:41:e8:d0:0b:d8:eb:cc:1c:c8:89:fd:51:c3:a0: d7:8d:21:39:e1:23:39:43:6f:9c:4b:99:00:d2:c1: 39:d2:9b:f7:b1:f9:53:8b:f9:c0:92:6e:f3:e7:a4: d7:b9:5d:a1:44:6a:70:f7:95:30:d0:c3:47:f6:92: 66:a8:cf:07:47:80:74:cd:45:26:50:28:d1:21:af: 95:7e:58:eb:ef:99:57:b2:8b:3b:d8:ed:3d:af:0e: 97:6f:6b:42:3e:09:12:a0:06:dd:a3:c5:6d:81:60: 30:43:56:1d:55:b5:a0:81:cf:9d:67:1f:e6:f5:a0: ea:ea:77:1a:81:d9:c0:36:67:9e:89:37:89:ca:b1: 91:2f:aa:42:e6:94:af:8e:93:a5:93:00:0c:18:de: 62:ea:9b:ee:7f:10:41:d0:25:a4:9c:94:22:8b:0d: 57:92:d4:91:60:fb:5a:85:0d:cf:4d:57:fe:fc:f4: fb:c5:e7:ff:b6:98:06:1a:ba:7c:8f:3d:f2:39:d9: 7b:db:e5:cf:36:06:e5:26:1e:0b:60:29:7a:f1:10: 19:44:83:1a:1a:39:b6:d1:50:3e:6e:15:45:bc:a3: 0c:29:b1:42:52:66:36:a5:c0:79:53:22:68:ab:df: 52:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:BA:D8:6B:47:4E:C1:9C:F8:DC:8E:27:06:68:01:58:EF:D9:62:43 X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.0.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:1d:53:ed:26:c6:6a:5d:eb:27:c1:6e:11:73:3b:78:98:30: df:b3:da:96:f2:af:c8:8a:69:16:08:1b:36:79:d1:a6:d8:34: 95:28:d1:4e:6d:12:a5:08:a1:73:a9:e8:19:26:ea:af:ad:1b: 03:4c:ee:a5:b4:65:a0:70:f1:85:b6:04:21:91:a4:ff:28:71: 87:e9:00:f0:ac:7d:32:de:e4:d1:c7:83:43:7a:a0:19:1b:d2: d5:ab:af:1f:cb:3c:39:3c:f2:1c:b0:bd:0b:e3:b0:83:dd:07: b1:aa:41:be:df:f8:a5:4e:35:ba:39:55:47:be:65:25:4a:f3: d2:b5:ff:2a:f0:8a:56:23:af:89:3d:a5:41:70:15:13:43:41: b9:4a:1c:9e:d1:42:eb:54:d0:fb:26:88:81:63:8e:74:53:38: 61:29:07:ce:62:89:2c:42:3f:a4:aa:b3:2e:32:11:15:24:21: a3:d7:ef:70:37:b6:32:70:5f:22:67:ee:a4:de:91:ad:8d:43: 35:77:6c:27:bb:a7:8d:4f:46:bb:ca:93:9f:bc:75:95:43:8a: f3:20:09:de:4a:7b:2a:f9:05:90:28:a0:71:7d:5e:3a:39:40: a6:02:1a:cb:71:aa:ff:d2:b5:1e:8f:24:62:48:78:78:d6:a1: 27:a4:b0:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSGME15PuY5E0mK1NQihKwpwU8VIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNDAxMDQxMDU1MDVaFw0yNTAxMDIxMTAwMDVaMDMxMTAvBgNV BAMTKDc0QkFEODZCNDc0RUMxOUNGOERDOEUyNzA2NjgwMTU4RUZEOTYyNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3dOnJY8BDF/d2Vs9tcRB6NAL 2OvMHMiJ/VHDoNeNITnhIzlDb5xLmQDSwTnSm/ex+VOL+cCSbvPnpNe5XaFEanD3 lTDQw0f2kmaozwdHgHTNRSZQKNEhr5V+WOvvmVeyizvY7T2vDpdva0I+CRKgBt2j xW2BYDBDVh1VtaCBz51nH+b1oOrqdxqB2cA2Z56JN4nKsZEvqkLmlK+Ok6WTAAwY 3mLqm+5/EEHQJaSclCKLDVeS1JFg+1qFDc9NV/789PvF5/+2mAYaunyPPfI52Xvb 5c82BuUmHgtgKXrxEBlEgxoaObbRUD5uFUW8owwpsUJSZjalwHlTImir31LNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdLrYa0dOwZz43I4nBmgBWO/ZYkMwHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhM2NjMmMxLTE0NmMtNDhhOS1i MDAzLTdiZDgzODIyMDg0ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWepADANBgkqhkiG 9w0BAQsFAAOCAQEAPB1T7SbGal3rJ8FuEXM7eJgw37PalvKvyIppFggbNnnRptg0 lSjRTm0SpQihc6noGSbqr60bA0zupbRloHDxhbYEIZGk/yhxh+kA8Kx9Mt7k0ceD Q3qgGRvS1auvH8s8OTzyHLC9C+Owg90HsapBvt/4pU41ujlVR75lJUrz0rX/KvCK ViOviT2lQXAVE0NBuUocntFC61TQ+yaIgWOOdFM4YSkHzmKJLEI/pKqzLjIRFSQh o9fvcDe2MnBfImfupN6RrY1DNXdsJ7unjU9Gu8qTn7x1lUOK8yAJ3kp7KvkFkCig cX1eOjlApgIay3Gq/9K1Ho8kYkh4eNahJ6Swkg== -----END CERTIFICATE-----Generated at Thu Jun 20 10:13:46 2024 by rpki-client on console-ams.rpki-client.org