$ rpki-client -vvf repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa File: 3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa (raw, json) Hash identifier: JbiZR5UDYhxEXfL7YVUdRrVmBMf0rkUwLXF2AuItYeE= Subject key identifier: FC:53:73:C7:C4:05:E8:16:C1:3E:BD:12:B0:8A:F5:2D:67:83:90:CA Certificate issuer: /CN=37EECBD045CA279ED50372AC86831099D2FD896F Certificate serial: 6428464FE8954586C087DE3AC0154473D3CD591E Authority key identifier: 37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa Signing time: Thu 04 Apr 2024 09:00:02 +0000 ROA not before: Thu 04 Apr 2024 08:55:02 +0000 ROA not after: Thu 03 Apr 2025 09:00:02 +0000 asID: 131773 IP address blocks: 103.134.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:28:46:4f:e8:95:45:86:c0:87:de:3a:c0:15:44:73:d3:cd:59:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37EECBD045CA279ED50372AC86831099D2FD896F Validity Not Before: Apr 4 08:55:02 2024 GMT Not After : Apr 3 09:00:02 2025 GMT Subject: CN=FC5373C7C405E816C13EBD12B08AF52D678390CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a9:8d:f3:42:39:ce:8d:ed:b4:71:55:b9:9d: ad:cf:ef:20:4d:b7:38:20:e1:b5:99:74:f6:34:cc: 09:da:1b:f9:3e:52:df:dc:db:48:0d:3a:6b:16:49: b9:85:db:74:7c:dd:b2:9f:64:30:77:ad:3f:70:9c: 55:76:85:69:0e:fa:29:ce:5c:5a:26:03:a9:49:8c: 7f:03:bb:03:62:8a:9e:80:0c:80:15:3f:35:76:9f: a7:b7:53:86:20:5b:59:71:f9:22:d7:26:dc:53:26: 73:7f:e8:84:dd:a5:3f:5f:a0:a0:52:63:f0:ce:ba: 95:25:29:16:82:4a:15:69:fb:b6:3b:7b:b0:fb:bd: f1:05:81:7e:2a:18:6e:51:8f:3e:68:39:3e:7b:20: bf:6e:08:a0:a5:af:24:ac:10:67:88:ea:04:f6:cd: b7:0a:05:35:bf:d8:80:14:2f:4d:1f:e2:c7:15:ae: d2:b7:b1:88:b7:40:60:90:72:c7:2a:98:22:53:3c: e9:80:db:6a:76:c7:bb:d5:cb:59:2e:f0:d5:5b:41: 30:15:95:65:07:b6:c8:6b:23:ab:b9:7e:1d:9c:67: bf:84:c2:3d:4b:ec:0e:20:06:8a:e3:14:1f:5e:34: ef:be:d0:ca:63:d4:8b:47:8c:12:21:93:91:f9:b5: fd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:53:73:C7:C4:05:E8:16:C1:3E:BD:12:B0:8A:F5:2D:67:83:90:CA X509v3 Authority Key Identifier: keyid:37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.246.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:f1:52:9d:8e:a4:c5:19:b4:13:5c:1d:8e:86:77:1f:24:fe: 20:13:4a:d9:4d:3a:30:9e:30:45:27:37:b9:33:06:7a:77:56: ad:e0:7f:87:7e:5b:9e:5f:b6:61:81:09:75:33:f3:1c:f3:23: 83:e6:c1:38:a4:69:d4:bf:52:f9:1a:6a:31:a2:bd:0e:94:83: 90:56:cd:f2:d8:80:13:1a:1e:91:a1:9a:76:9e:04:6b:a4:4e: ab:6b:a8:22:db:b8:06:12:6f:65:0b:91:39:fb:7b:ee:cf:26: c9:8e:ee:01:fd:b3:6c:e1:26:4c:4a:77:f9:7f:20:a6:e0:5e: b9:f3:2d:d0:ba:ec:c7:6d:3c:d5:66:71:db:39:3c:d8:67:b3: 68:4c:6c:d9:b5:e6:7e:72:77:89:57:cc:34:67:b2:2d:10:fc: ce:00:33:e0:19:42:bb:72:7e:75:f2:7d:6b:b5:b7:7c:ce:15: 70:f3:0c:4b:0d:33:bb:8f:6d:82:81:b8:e9:8e:db:f3:51:8e: 5d:a2:9b:a0:f7:f9:87:58:92:d9:ea:a6:63:f2:59:1f:d3:dd: ed:cc:6c:00:64:15:fe:a8:64:43:65:0d:0e:e0:0e:14:81:e4: d0:74:bb:d3:68:fa:05:df:cc:66:e9:d7:47:e2:1c:a8:97:99: dd:a7:cd:41 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZChGT+iVRYbAh946wBVEc9PNWR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlE MkZEODk2RjAeFw0yNDA0MDQwODU1MDJaFw0yNTA0MDMwOTAwMDJaMDMxMTAvBgNV BAMTKEZDNTM3M0M3QzQwNUU4MTZDMTNFQkQxMkIwOEFGNTJENjc4MzkwQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuqY3zQjnOje20cVW5na3P7yBN tzgg4bWZdPY0zAnaG/k+Ut/c20gNOmsWSbmF23R83bKfZDB3rT9wnFV2hWkO+inO XFomA6lJjH8DuwNiip6ADIAVPzV2n6e3U4YgW1lx+SLXJtxTJnN/6ITdpT9foKBS Y/DOupUlKRaCShVp+7Y7e7D7vfEFgX4qGG5Rjz5oOT57IL9uCKClrySsEGeI6gT2 zbcKBTW/2IAUL00f4scVrtK3sYi3QGCQcscqmCJTPOmA22p2x7vVy1ku8NVbQTAV lWUHtshrI6u5fh2cZ7+Ewj1L7A4gBorjFB9eNO++0Mpj1ItHjBIhk5H5tf2LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/FNzx8QF6BbBPr0SsIr1LWeDkMowHwYDVR0j BBgwFoAUN+7L0EXKJ57VA3KshoMQmdL9iW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjdkZTA3MS0zYWFhLTRlMmUtOTc0ZS1hNzhjODE3MjlmMDYvMC8zN0VFQ0JEMDQ1 Q0EyNzlFRDUwMzcyQUM4NjgzMTA5OUQyRkQ4OTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlEMkZE ODk2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyN2RlMDcxLTNhYWEtNGUyZS05 NzRlLWE3OGM4MTcyOWYwNi8wLzMxMzAzMzJlMzEzMzM0MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhvYwDQYJ KoZIhvcNAQELBQADggEBAJ3xUp2OpMUZtBNcHY6Gdx8k/iATStlNOjCeMEUnN7kz Bnp3Vq3gf4d+W55ftmGBCXUz8xzzI4PmwTikadS/UvkaajGivQ6Ug5BWzfLYgBMa HpGhmnaeBGukTqtrqCLbuAYSb2ULkTn7e+7PJsmO7gH9s2zhJkxKd/l/IKbgXrnz LdC67MdtPNVmcds5PNhns2hMbNm15n5yd4lXzDRnsi0Q/M4AM+AZQrtyfnXyfWu1 t3zOFXDzDEsNM7uPbYKBuOmO2/NRjl2im6D3+YdYktnqpmPyWR/T3e3MbABkFf6o ZENlDQ7gDhSB5NB0u9No+gXfzGbp10fiHKiXmd2nzUE= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org