$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa File: 3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa (raw, json) Hash identifier: 5cGFOXICgLmaNpmZAogfW5ytKDPAYz1pnqRlwPOSxTo= Subject key identifier: F9:DB:F4:50:74:51:F6:20:8C:3E:42:3A:CF:83:71:0F:8D:C0:B3:8D Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 71739BC1A5746E5FB2D027313F6C5E5383B0521D Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa Signing time: Tue 02 Jul 2024 11:00:01 +0000 ROA not before: Tue 02 Jul 2024 10:55:01 +0000 ROA not after: Tue 01 Jul 2025 11:00:01 +0000 asID: 141596 IP address blocks: 103.179.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:73:9b:c1:a5:74:6e:5f:b2:d0:27:31:3f:6c:5e:53:83:b0:52:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Jul 2 10:55:01 2024 GMT Not After : Jul 1 11:00:01 2025 GMT Subject: CN=F9DBF4507451F6208C3E423ACF83710F8DC0B38D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b6:4a:ae:cb:f6:5e:9f:50:05:b6:08:04:03: 27:29:59:15:5e:a1:5d:40:7c:64:0e:b0:0c:fd:33: 28:53:a5:ae:e0:13:ed:e4:2d:60:c1:d2:65:2f:cf: 95:bf:69:91:13:e4:fc:e9:65:0a:80:57:d5:cb:5f: c2:54:87:67:58:d5:42:04:b9:d3:aa:47:fc:1d:08: 89:1e:92:ed:ac:d9:69:6b:a9:5c:9f:7e:e6:ce:98: a0:14:f3:8a:63:20:eb:b7:37:88:8a:ce:cf:0f:ed: a6:14:9b:d5:57:5b:d3:26:c8:13:84:5a:87:ab:ca: 63:1e:be:a0:93:0a:fe:f5:29:86:2f:be:14:60:4d: 9c:b4:59:58:32:b0:08:8e:36:01:f7:6f:48:b8:af: 0a:4b:6f:c8:f4:47:bf:f4:7a:3a:b4:c6:39:47:ab: 47:71:6f:e4:50:30:f6:38:87:47:c9:19:8f:4f:10: ef:26:42:c8:bd:6f:22:92:e0:05:25:be:31:25:19: 0c:c1:93:ca:9a:aa:b6:04:bd:2c:8c:c9:b3:de:ae: 16:a9:b6:74:08:bb:5c:b5:85:19:f7:a6:38:5b:cf: 97:ad:08:8f:57:7f:57:58:59:7f:c1:16:bc:41:bf: 77:8b:09:3b:a0:35:41:6c:e4:1f:b2:8f:c0:c3:27: 04:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DB:F4:50:74:51:F6:20:8C:3E:42:3A:CF:83:71:0F:8D:C0:B3:8D X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.218.0/24 Signature Algorithm: sha256WithRSAEncryption 65:44:99:c0:62:0d:84:e1:38:c6:02:42:e1:21:f5:bd:36:0d: 38:e5:6c:09:29:4f:14:67:02:1c:c7:93:9a:05:4a:fd:e0:1a: 00:23:77:e7:fa:e7:e9:33:67:7a:dd:5e:f7:66:13:88:73:5a: f1:af:27:f8:69:86:22:57:14:73:07:16:3f:75:66:8c:48:94: 58:a6:3f:90:a4:13:d2:9b:d5:e4:94:ba:16:fc:92:be:89:04: ae:cb:bd:ab:53:d6:b4:26:a4:de:cf:e3:9b:86:ff:e8:5c:33: 61:0f:9b:67:54:a5:ed:a9:2a:f6:9c:c7:a6:d9:71:89:f9:8e: c1:02:fa:a7:52:8e:18:76:8d:76:73:55:71:e2:10:bf:c5:8b: 3a:c5:69:27:c0:db:45:a1:f3:f6:a7:00:20:6f:b2:6a:95:b9: cd:27:27:c7:37:b1:d1:d5:be:44:54:15:4b:3c:20:6a:1e:81: 4e:31:8a:32:94:ef:8a:2d:a4:4f:7c:e0:95:8f:9c:bc:4b:1a: 01:14:32:01:ab:0d:4e:78:60:b1:ab:dd:56:8c:f1:e1:af:2d: 51:b3:75:fd:e9:80:ef:58:90:b5:78:60:7b:43:a4:57:4b:17: 4a:67:59:44:2f:e6:8c:dc:35:42:d6:dc:00:06:dd:86:f4:4a: bc:2d:3d:26 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcXObwaV0bl+y0CcxP2xeU4OwUh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNDA3MDIxMDU1MDFaFw0yNTA3MDExMTAwMDFaMDMxMTAvBgNV BAMTKEY5REJGNDUwNzQ1MUY2MjA4QzNFNDIzQUNGODM3MTBGOERDMEIzOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZtkquy/Zen1AFtggEAycpWRVe oV1AfGQOsAz9MyhTpa7gE+3kLWDB0mUvz5W/aZET5PzpZQqAV9XLX8JUh2dY1UIE udOqR/wdCIkeku2s2WlrqVyffubOmKAU84pjIOu3N4iKzs8P7aYUm9VXW9MmyBOE WoerymMevqCTCv71KYYvvhRgTZy0WVgysAiONgH3b0i4rwpLb8j0R7/0ejq0xjlH q0dxb+RQMPY4h0fJGY9PEO8mQsi9byKS4AUlvjElGQzBk8qaqrYEvSyMybPerhap tnQIu1y1hRn3pjhbz5etCI9Xf1dYWX/BFrxBv3eLCTugNUFs5B+yj8DDJwQ/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+dv0UHRR9iCMPkI6z4NxD43As40wHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMxMzAzMzJlMzEzNzM5MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABns9owDQYJ KoZIhvcNAQELBQADggEBAGVEmcBiDYThOMYCQuEh9b02DTjlbAkpTxRnAhzHk5oF Sv3gGgAjd+f65+kzZ3rdXvdmE4hzWvGvJ/hphiJXFHMHFj91ZoxIlFimP5CkE9Kb 1eSUuhb8kr6JBK7LvatT1rQmpN7P45uG/+hcM2EPm2dUpe2pKvacx6bZcYn5jsEC +qdSjhh2jXZzVXHiEL/FizrFaSfA20Wh8/anACBvsmqVuc0nJ8c3sdHVvkRUFUs8 IGoegU4xijKU74otpE984JWPnLxLGgEUMgGrDU54YLGr3VaM8eGvLVGzdf3pgO9Y kLV4YHtDpFdLF0pnWUQv5ozcNULW3AAG3Yb0SrwtPSY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org