$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa File: 3130332e3136392e302e302f32342d3234203d3e20313432333235.roa (raw, json) Hash identifier: DiKDQ4xO37uEz3LGqkudZWyBLFvDLb2BHiHtCcaC/ns= Subject key identifier: C6:CB:AB:5F:29:6B:ED:7E:E6:04:B9:A0:48:B9:9F:05:5F:C5:D1:C0 Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 2D82874E53F8CF2C955B47DE43206BBBD2C61D03 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa Signing time: Wed 03 Jan 2024 03:00:30 +0000 ROA not before: Wed 03 Jan 2024 02:55:30 +0000 ROA not after: Wed 01 Jan 2025 03:00:30 +0000 asID: 142325 IP address blocks: 103.169.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 15:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:82:87:4e:53:f8:cf:2c:95:5b:47:de:43:20:6b:bb:d2:c6:1d:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Jan 3 02:55:30 2024 GMT Not After : Jan 1 03:00:30 2025 GMT Subject: CN=C6CBAB5F296BED7EE604B9A048B99F055FC5D1C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f0:7a:71:82:ef:13:48:fc:08:2c:1d:e8:05: a0:9e:ec:61:6a:5e:3a:74:e0:09:ba:3c:82:2e:5c: 58:f6:ae:4a:76:6b:c7:6f:8c:f8:3f:d6:d1:17:20: 75:84:38:d4:da:75:93:60:59:52:ec:f9:a4:1b:02: 99:71:61:bf:3e:dc:92:ad:e7:89:9f:e4:78:cd:67: 4d:41:f4:d8:7d:e3:a7:16:87:1b:8e:fa:6f:44:6b: ca:93:4b:90:32:62:21:99:2e:b5:2c:a8:40:65:3b: 84:1a:dc:f8:e0:40:c5:40:27:1a:01:a0:58:6c:68: 53:ec:79:75:d2:cf:f9:3a:c0:10:c1:0c:8a:bc:32: aa:e3:e7:62:51:60:26:d4:ec:71:d2:8b:16:5c:5b: 55:fe:99:78:c6:c5:94:64:5e:8d:30:c6:c7:0c:ff: 64:ed:4c:e3:86:1f:f1:5c:e6:04:7c:23:bc:34:a8: de:7d:58:d7:60:13:db:96:a9:8e:a0:2c:20:ba:73: 3a:38:10:10:4a:c4:a3:72:c0:88:e2:8a:27:8f:6f: 3c:53:52:47:f7:2d:5c:92:78:cf:aa:1e:3a:3c:65: 49:70:13:a9:cf:25:4b:de:3c:15:45:5b:6f:57:05: df:29:35:24:ba:70:d2:d5:63:ed:9f:bf:0e:45:c3: f3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CB:AB:5F:29:6B:ED:7E:E6:04:B9:A0:48:B9:9F:05:5F:C5:D1:C0 X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.0.0/24 Signature Algorithm: sha256WithRSAEncryption 03:5a:4a:89:98:65:72:66:a0:0d:51:69:b8:85:44:55:66:a2: 06:c5:da:ec:68:fb:5c:99:34:ed:7e:91:ac:15:da:b6:0d:33: 2e:79:3a:11:03:63:29:31:be:ef:85:a3:3d:7b:01:90:a5:da: 74:d0:f8:ce:a9:3c:7e:d5:bc:3b:53:da:dd:fb:7d:06:91:87: 9f:59:32:cb:c6:89:0d:43:0d:ab:f1:1a:6d:b3:41:e1:2f:24: 6c:c9:e3:c5:80:d8:15:10:ac:71:1e:97:fb:bf:a6:ab:dc:40: ec:ce:a4:d1:89:a2:92:62:c5:ca:bc:ac:80:88:1f:1a:a1:3b: 98:3a:a3:1a:b5:cf:0e:99:b9:0f:d3:dd:c1:c6:fa:df:85:79: a9:ca:6e:dd:62:43:c7:5d:70:68:d2:0a:6a:2e:1d:30:2f:ca: 99:16:55:04:b8:ee:a1:47:9b:47:94:9d:5e:8b:36:be:51:fb: 43:4b:ee:0c:cf:99:a2:2f:02:c0:78:df:c2:e0:1d:24:b3:c5: ba:15:d2:10:97:48:c6:51:2e:ae:6f:ae:02:e7:93:82:a0:dd: a0:b1:36:26:ef:b3:83:d0:65:2d:0f:12:d9:e6:ea:ab:cf:70: c8:d6:71:bb:3e:55:d6:2d:f5:bb:33:45:d9:89:22:14:3a:79: 16:ea:19:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULYKHTlP4zyyVW0feQyBru9LGHQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNDAxMDMwMjU1MzBaFw0yNTAxMDEwMzAwMzBaMDMxMTAvBgNV BAMTKEM2Q0JBQjVGMjk2QkVEN0VFNjA0QjlBMDQ4Qjk5RjA1NUZDNUQxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC68Hpxgu8TSPwILB3oBaCe7GFq Xjp04Am6PIIuXFj2rkp2a8dvjPg/1tEXIHWEONTadZNgWVLs+aQbAplxYb8+3JKt 54mf5HjNZ01B9Nh946cWhxuO+m9Ea8qTS5AyYiGZLrUsqEBlO4Qa3PjgQMVAJxoB oFhsaFPseXXSz/k6wBDBDIq8Mqrj52JRYCbU7HHSixZcW1X+mXjGxZRkXo0wxscM /2TtTOOGH/Fc5gR8I7w0qN59WNdgE9uWqY6gLCC6czo4EBBKxKNywIjiiiePbzxT Ukf3LVySeM+qHjo8ZUlwE6nPJUvePBVFW29XBd8pNSS6cNLVY+2fvw5Fw/MTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxsurXylr7X7mBLmgSLmfBV/F0cAwHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhM2NjMmMxLTE0NmMtNDhhOS1i MDAzLTdiZDgzODIyMDg0ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGepADANBgkqhkiG 9w0BAQsFAAOCAQEAA1pKiZhlcmagDVFpuIVEVWaiBsXa7Gj7XJk07X6RrBXatg0z Lnk6EQNjKTG+74WjPXsBkKXadND4zqk8ftW8O1Pa3ft9BpGHn1kyy8aJDUMNq/Ea bbNB4S8kbMnjxYDYFRCscR6X+7+mq9xA7M6k0YmikmLFyrysgIgfGqE7mDqjGrXP Dpm5D9Pdwcb634V5qcpu3WJDx11waNIKai4dMC/KmRZVBLjuoUebR5SdXos2vlH7 Q0vuDM+Zoi8CwHjfwuAdJLPFuhXSEJdIxlEurm+uAueTgqDdoLE2Ju+zg9BlLQ8S 2ebqq89wyNZxuz5V1i31uzNF2YkiFDp5FuoZwg== -----END CERTIFICATE-----Generated at Thu Jun 20 11:02:29 2024 by rpki-client on console-fra.rpki-client.org