$ rpki-client -vvf repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa File: 3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa (raw, json) Hash identifier: dyJoeVUiwVgqsrVp3DGSCY40hc02HXwFCqVhhv96lMM= Subject key identifier: C0:1E:EB:EE:C0:B7:FC:78:C9:94:C0:C3:06:58:B2:BA:2F:25:0C:1F Certificate issuer: /CN=C37B0700A782E6CCEE7D187B10AAF240353AB253 Certificate serial: 3D6C0BF51D17D047E30DE4500BB851B05E6B74A6 Authority key identifier: C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa Signing time: Thu 25 Jan 2024 07:00:02 +0000 ROA not before: Thu 25 Jan 2024 06:55:02 +0000 ROA not after: Thu 23 Jan 2025 07:00:02 +0000 asID: 149315 IP address blocks: 103.184.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6c:0b:f5:1d:17:d0:47:e3:0d:e4:50:0b:b8:51:b0:5e:6b:74:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C37B0700A782E6CCEE7D187B10AAF240353AB253 Validity Not Before: Jan 25 06:55:02 2024 GMT Not After : Jan 23 07:00:02 2025 GMT Subject: CN=C01EEBEEC0B7FC78C994C0C30658B2BA2F250C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:f3:b1:27:50:88:aa:18:0d:67:d6:5e:da: b7:07:94:f5:b5:0f:ee:76:f9:9c:3f:ea:4f:5d:d6: 28:a6:fc:c0:48:68:1d:56:f0:a5:d8:97:bd:e9:e8: 2f:57:ee:fc:c7:dc:25:a2:cd:0d:3d:3e:90:bd:81: c4:20:a5:f1:db:e8:6c:b9:2e:fb:d0:dc:4d:16:56: 73:07:a2:b7:ad:23:62:e7:9a:3e:a5:df:d6:13:d5: 98:35:06:cb:f2:7b:7b:b6:e9:ed:6d:90:43:c3:99: 42:1c:db:15:c2:18:83:07:a0:7a:15:9a:cb:f6:6e: 61:de:83:79:c7:9a:23:87:83:ad:df:a8:e3:1e:05: 82:5c:5b:ed:6a:0e:71:76:0e:06:03:9f:2d:ac:f9: aa:0b:8e:92:a3:9f:ba:c2:c0:14:e7:ad:ec:62:ac: 92:2e:c1:53:e9:2c:6a:78:99:77:be:7b:24:3d:10: 70:2d:a1:8e:c2:25:a3:2f:f1:33:40:0d:fa:bd:c8: c9:7e:57:89:3a:ca:48:e8:5d:bb:3a:e9:19:8e:11: 90:e9:74:5a:ea:27:83:41:32:97:e6:5d:e9:80:8e: 91:8e:9e:ad:bc:8a:74:f9:22:b0:b8:bb:60:1d:2e: 5b:77:86:6f:19:0e:62:9a:4a:4d:83:ed:93:7b:c8: 1f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1E:EB:EE:C0:B7:FC:78:C9:94:C0:C3:06:58:B2:BA:2F:25:0C:1F X509v3 Authority Key Identifier: keyid:C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.16.0/24 Signature Algorithm: sha256WithRSAEncryption 74:2f:ba:1f:07:62:67:c9:14:db:00:05:f9:e0:4b:8e:cf:c9: d0:8e:25:60:18:78:ad:37:97:30:0e:53:88:2c:f8:9b:89:cc: c6:fb:14:14:e8:8d:21:e8:c8:77:59:5f:96:18:ff:f5:d8:ff: c4:18:6a:86:62:e9:e8:9f:da:c9:3e:e9:db:60:07:cb:78:2e: d8:5e:ff:81:00:fc:ec:41:60:02:9a:81:f9:7f:01:ec:cb:b4: 39:6d:03:8d:40:52:8c:4e:68:b3:af:14:2d:38:fa:8c:14:fa: fb:be:13:98:1a:d8:07:f7:8a:32:ea:cd:2d:44:76:24:0f:00: 2e:de:6d:9f:68:32:dc:bd:96:3f:6e:f1:72:f8:26:39:b2:bb: 4b:2e:ca:2e:c8:71:72:af:71:2a:da:1b:ca:4e:59:a2:75:b9: 70:af:a4:0c:e0:b1:89:63:0a:00:8a:de:30:78:85:63:59:46: b3:c7:e1:43:fb:a2:ee:b8:d5:2b:16:b7:00:7f:83:a5:eb:f7: 33:7f:7b:95:ab:0e:6e:6d:4d:f9:c9:50:45:8f:7d:57:f9:22: 40:e1:b1:d2:ac:7c:c2:ff:16:d5:b4:b7:b2:e5:b2:c1:68:b6: ea:99:35:e7:a3:26:9e:d3:01:d8:60:c8:d6:48:f7:ff:6f:c3: 38:1a:3d:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPWwL9R0X0EfjDeRQC7hRsF5rdKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAz NTNBQjI1MzAeFw0yNDAxMjUwNjU1MDJaFw0yNTAxMjMwNzAwMDJaMDMxMTAvBgNV BAMTKEMwMUVFQkVFQzBCN0ZDNzhDOTk0QzBDMzA2NThCMkJBMkYyNTBDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXG/OxJ1CIqhgNZ9Ze2rcHlPW1 D+52+Zw/6k9d1iim/MBIaB1W8KXYl73p6C9X7vzH3CWizQ09PpC9gcQgpfHb6Gy5 LvvQ3E0WVnMHoretI2Lnmj6l39YT1Zg1Bsvye3u26e1tkEPDmUIc2xXCGIMHoHoV msv2bmHeg3nHmiOHg63fqOMeBYJcW+1qDnF2DgYDny2s+aoLjpKjn7rCwBTnrexi rJIuwVPpLGp4mXe+eyQ9EHAtoY7CJaMv8TNADfq9yMl+V4k6ykjoXbs66RmOEZDp dFrqJ4NBMpfmXemAjpGOnq28inT5IrC4u2AdLlt3hm8ZDmKaSk2D7ZN7yB8vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwB7r7sC3/HjJlMDDBliyui8lDB8wHwYDVR0j BBgwFoAUw3sHAKeC5szufRh7EKryQDU6slMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWQzOGI0Mi1iN2MyLTQyYjYtYTJmYy02NzVkYTI1NGM3NzYvMC9DMzdCMDcwMEE3 ODJFNkNDRUU3RDE4N0IxMEFBRjI0MDM1M0FCMjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAzNTNB QjI1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1ZDM4YjQyLWI3YzItNDJiNi1h MmZjLTY3NWRhMjU0Yzc3Ni8wLzMxMzAzMzJlMzEzODM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gQMA0GCSqG SIb3DQEBCwUAA4IBAQB0L7ofB2JnyRTbAAX54EuOz8nQjiVgGHitN5cwDlOILPib iczG+xQU6I0h6Mh3WV+WGP/12P/EGGqGYunon9rJPunbYAfLeC7YXv+BAPzsQWAC moH5fwHsy7Q5bQONQFKMTmizrxQtOPqMFPr7vhOYGtgH94oy6s0tRHYkDwAu3m2f aDLcvZY/bvFy+CY5srtLLsouyHFyr3Eq2hvKTlmidblwr6QM4LGJYwoAit4weIVj WUazx+FD+6LuuNUrFrcAf4Ol6/czf3uVqw5ubU35yVBFj31X+SJA4bHSrHzC/xbV tLey5bLBaLbqmTXnoyae0wHYYMjWSPf/b8M4Gj1V -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org