$ rpki-client -vvf repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/3130332e37382e3135382e302f32342d3234203d3e20313530323438.roa File: 3130332e37382e3135382e302f32342d3234203d3e20313530323438.roa (raw, json) Hash identifier: +2cHre9FQzEIu4ncAZOvB9Udxn0tX40tE2H1hraGulI= Subject key identifier: 5A:D8:61:C0:D6:A9:BB:81:B6:EE:1D:99:BF:38:A3:A4:E4:EE:AD:05 Certificate issuer: /CN=69BB542D91A8CC754EA322384139641D17704D60 Certificate serial: 5D9EA1B47B76F970823856A1063E9959C1852B65 Authority key identifier: 69:BB:54:2D:91:A8:CC:75:4E:A3:22:38:41:39:64:1D:17:70:4D:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69BB542D91A8CC754EA322384139641D17704D60.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/3130332e37382e3135382e302f32342d3234203d3e20313530323438.roa Signing time: Wed 16 Oct 2024 13:00:01 +0000 ROA not before: Wed 16 Oct 2024 12:55:01 +0000 ROA not after: Wed 15 Oct 2025 13:00:01 +0000 asID: 150248 IP address blocks: 103.78.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/69BB542D91A8CC754EA322384139641D17704D60.crl rsync://repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/69BB542D91A8CC754EA322384139641D17704D60.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69BB542D91A8CC754EA322384139641D17704D60.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:9e:a1:b4:7b:76:f9:70:82:38:56:a1:06:3e:99:59:c1:85:2b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69BB542D91A8CC754EA322384139641D17704D60 Validity Not Before: Oct 16 12:55:01 2024 GMT Not After : Oct 15 13:00:01 2025 GMT Subject: CN=5AD861C0D6A9BB81B6EE1D99BF38A3A4E4EEAD05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0a:97:ab:8e:75:53:08:2f:93:3d:ad:c2:4e: 3c:56:12:64:48:d9:82:db:1b:95:b0:32:07:a0:64: 88:29:53:f2:d7:47:ee:b2:68:e7:bd:88:f4:7a:75: f1:9a:e3:fc:cb:aa:d9:11:28:06:d9:95:b0:35:e7: 96:39:93:88:6a:10:43:76:f1:2a:a8:cb:1a:2a:e0: b7:a0:21:a2:4a:11:f1:f1:18:42:8b:7f:44:8f:50: 0c:b1:86:8b:38:a6:ab:cb:09:bc:4a:71:6e:33:94: 93:6d:8a:c0:df:48:25:3a:c8:2c:4a:08:68:36:cd: 88:ee:83:6b:5f:24:f0:81:29:44:6e:21:39:ea:67: e5:58:f3:4a:a2:15:bc:1a:be:ea:43:d3:d7:30:17: 8b:b3:da:2e:6c:0e:6b:79:cb:8e:2e:43:97:e3:bc: d4:59:a1:7f:c5:7b:5e:ec:09:ed:5c:6a:ba:ab:bb: 07:20:ff:1a:72:33:27:d6:d6:6c:51:b2:b5:59:5d: 6d:b7:21:e1:da:2b:71:1b:30:82:46:76:24:9a:07: 3e:a2:dd:57:3d:aa:06:1c:25:a8:6c:46:16:ba:0d: d5:8d:fb:81:a2:62:05:dd:ef:68:88:51:2d:a3:a2: b7:4c:3d:c9:d8:47:4c:63:8a:47:fa:af:c3:cd:6e: e3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D8:61:C0:D6:A9:BB:81:B6:EE:1D:99:BF:38:A3:A4:E4:EE:AD:05 X509v3 Authority Key Identifier: keyid:69:BB:54:2D:91:A8:CC:75:4E:A3:22:38:41:39:64:1D:17:70:4D:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/69BB542D91A8CC754EA322384139641D17704D60.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69BB542D91A8CC754EA322384139641D17704D60.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/3130332e37382e3135382e302f32342d3234203d3e20313530323438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.158.0/24 Signature Algorithm: sha256WithRSAEncryption 18:25:d2:15:1b:6c:0f:9c:0f:8d:c7:1e:64:08:bb:9a:81:57: 69:67:08:a0:aa:d1:69:60:54:75:18:92:7c:8f:06:42:55:0e: 39:2e:9a:38:f8:eb:f6:85:f6:f2:46:5f:7d:c8:da:71:1e:f6: 7d:df:11:1d:a8:36:7d:bf:76:0d:18:0e:30:8a:42:56:13:dd: 38:9b:06:c5:31:18:3b:9d:e7:8d:ca:24:30:85:36:ce:1e:0d: d6:27:e4:66:17:e1:18:1e:5e:78:6c:ec:7e:03:19:7e:65:89: 09:6e:20:c5:5e:4f:c5:ad:a1:02:c5:33:cb:40:03:cf:7a:87: dd:ee:a8:41:09:d7:c6:3e:ff:cc:13:75:2f:ff:25:ba:d7:a2: 14:f0:c9:c2:11:ec:a9:76:0c:98:8b:cf:89:ea:ee:6b:49:17: 86:07:d3:50:bb:97:44:b5:d7:f4:47:df:9d:7d:31:b5:9e:4a: 2a:b5:e9:b3:ee:74:c6:7a:da:30:22:97:a0:e3:c6:67:63:cc: b4:0e:5f:90:49:7b:52:4c:8e:a2:30:14:bc:63:18:fb:2c:a8: bc:fe:e1:ab:dc:de:00:b6:c9:c3:d6:74:22:13:6d:bf:82:d9: 9a:7b:12:6e:b6:54:1b:cd:3b:a1:0f:96:86:54:92:3a:73:09: c3:6e:bf:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXZ6htHt2+XCCOFahBj6ZWcGFK2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlCQjU0MkQ5MUE4Q0M3NTRFQTMyMjM4NDEzOTY0MUQx NzcwNEQ2MDAeFw0yNDEwMTYxMjU1MDFaFw0yNTEwMTUxMzAwMDFaMDMxMTAvBgNV BAMTKDVBRDg2MUMwRDZBOUJCODFCNkVFMUQ5OUJGMzhBM0E0RTRFRUFEMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7CperjnVTCC+TPa3CTjxWEmRI 2YLbG5WwMgegZIgpU/LXR+6yaOe9iPR6dfGa4/zLqtkRKAbZlbA155Y5k4hqEEN2 8Sqoyxoq4LegIaJKEfHxGEKLf0SPUAyxhos4pqvLCbxKcW4zlJNtisDfSCU6yCxK CGg2zYjug2tfJPCBKURuITnqZ+VY80qiFbwavupD09cwF4uz2i5sDmt5y44uQ5fj vNRZoX/Fe17sCe1carqruwcg/xpyMyfW1mxRsrVZXW23IeHaK3EbMIJGdiSaBz6i 3Vc9qgYcJahsRha6DdWN+4GiYgXd72iIUS2jordMPcnYR0xjikf6r8PNbuM9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWthhwNapu4G27h2ZvzijpOTurQUwHwYDVR0j BBgwFoAUabtULZGozHVOoyI4QTlkHRdwTWAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmMwNjBmYi1lOTM2LTRhMjMtYmJlMi05NDQ1N2JmNzA5YmYvMC82OUJCNTQyRDkx QThDQzc1NEVBMzIyMzg0MTM5NjQxRDE3NzA0RDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlCQjU0MkQ5MUE4Q0M3NTRFQTMyMjM4NDEzOTY0MUQxNzcw NEQ2MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YzA2MGZiLWU5MzYtNGEyMy1i YmUyLTk0NDU3YmY3MDliZi8wLzMxMzAzMzJlMzczODJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ06eMA0GCSqG SIb3DQEBCwUAA4IBAQAYJdIVG2wPnA+Nxx5kCLuagVdpZwigqtFpYFR1GJJ8jwZC VQ45Lpo4+Ov2hfbyRl99yNpxHvZ93xEdqDZ9v3YNGA4wikJWE904mwbFMRg7neeN yiQwhTbOHg3WJ+RmF+EYHl54bOx+Axl+ZYkJbiDFXk/FraECxTPLQAPPeofd7qhB CdfGPv/ME3Uv/yW616IU8MnCEeypdgyYi8+J6u5rSReGB9NQu5dEtdf0R9+dfTG1 nkoqtemz7nTGetowIpeg48ZnY8y0Dl+QSXtSTI6iMBS8Yxj7LKi8/uGr3N4AtsnD 1nQiE22/gtmaexJutlQbzTuhD5aGVJI6cwnDbr9W -----END CERTIFICATE-----Generated at Sun Nov 24 13:26:10 2024 by rpki-client on console-ams.rpki-client.org