$ rpki-client -vvf repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa File: 3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa (raw, json) Hash identifier: jl1arEgTbC6E5m8h1AaZ9O/d0jWs+0H65JiQtmk4oCY= Subject key identifier: 6C:18:AC:23:DB:A9:79:E3:1E:F6:64:5C:37:AD:D0:F4:81:AD:37:36 Certificate issuer: /CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Certificate serial: 63B33C3FF3AA76D260DE208F13882B22439221B8 Authority key identifier: A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa Signing time: Fri 02 Feb 2024 08:27:58 +0000 ROA not before: Fri 02 Feb 2024 08:22:58 +0000 ROA not after: Fri 31 Jan 2025 08:27:58 +0000 asID: 135445 IP address blocks: 103.69.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b3:3c:3f:f3:aa:76:d2:60:de:20:8f:13:88:2b:22:43:92:21:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Validity Not Before: Feb 2 08:22:58 2024 GMT Not After : Jan 31 08:27:58 2025 GMT Subject: CN=6C18AC23DBA979E31EF6645C37ADD0F481AD3736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:86:36:c5:ea:1f:76:f9:e9:a7:34:5d:78:f1: cc:ef:dc:c0:7c:05:4d:e1:46:31:49:16:cd:30:c1: 73:6e:aa:fc:37:31:6a:85:bd:0d:18:4f:54:92:e6: 91:ea:35:a7:ef:5d:ea:dc:a2:e6:53:9e:4c:0e:21: e4:a5:c3:0b:c7:e6:a2:6a:fc:11:9f:cd:a5:91:04: b3:de:6a:98:ab:1e:53:2d:ee:0d:a8:a5:17:cc:3b: c3:1e:b7:f8:20:11:32:fd:23:77:85:5b:53:8f:df: 83:6a:b0:59:d0:15:33:18:b1:cd:06:b5:6d:63:0d: 3b:82:b9:df:f4:88:a1:d1:41:c6:5c:ea:1d:97:c3: 94:b1:a4:65:4e:73:d9:39:59:b9:9c:58:91:0c:de: 19:24:92:38:a4:4d:ea:b3:d7:86:d3:72:fb:53:ec: ac:e1:89:5f:f7:20:5b:bb:36:d7:4c:36:8b:d8:75: db:f2:09:44:84:ed:50:52:dd:8e:6b:12:49:3a:3d: b3:43:40:36:f6:37:0c:2e:38:87:67:17:74:28:c6: c3:2e:ec:6a:65:af:0a:60:ea:49:b3:bd:9b:af:f4: ce:93:93:84:2b:a8:ca:56:18:38:3c:2c:73:b0:db: 43:b6:b7:b9:23:ea:b0:eb:8e:7b:c0:49:7d:4c:d1: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:18:AC:23:DB:A9:79:E3:1E:F6:64:5C:37:AD:D0:F4:81:AD:37:36 X509v3 Authority Key Identifier: keyid:A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.177.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:59:6d:c4:5d:60:3a:fc:64:5b:2d:49:36:cf:04:95:74:0b: 60:3a:5d:60:52:e5:f9:6f:b6:ef:52:a4:4f:43:c0:ef:0a:81: 3a:a4:ad:f4:83:ee:cc:ba:bf:e6:8f:c7:76:58:38:7c:ba:bb: 45:57:a2:fa:d2:7b:cb:e9:f3:f1:aa:f0:91:0e:1b:c0:4c:93: a7:0b:ab:bf:a0:d0:c2:b7:9c:cb:1b:1e:d6:0d:fe:17:27:51: b2:fe:a7:52:2b:6f:88:67:86:20:c5:e5:96:d0:ee:e3:fe:3b: a1:c3:76:46:ab:66:64:16:9d:10:8f:fd:49:0d:d4:b0:f3:d1: 3f:e8:cf:61:f5:29:5a:7c:ff:17:a6:bf:33:b9:f5:8b:6d:d3: be:f4:38:d2:6c:99:0b:a3:4d:b4:f2:c5:bd:80:28:81:7b:d5: 91:f3:ac:d2:79:77:ce:8e:c6:5c:fc:92:6b:91:aa:fc:c0:9f: 04:23:2f:31:4c:bd:4b:b1:b2:e3:1f:4d:a0:31:2b:0d:89:2c: 99:fd:7d:df:86:f1:5b:a1:ed:57:97:a3:d0:08:04:26:3b:1e: da:1f:37:9c:63:c5:2f:ab:2f:3a:5b:cb:08:d8:5f:07:d4:fb: e1:20:30:79:6f:ca:a5:01:b2:3d:74:0d:5c:13:0d:f6:99:2a: 7c:d2:81:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY7M8P/OqdtJg3iCPE4grIkOSIbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNC MERDOTdEMzAeFw0yNDAyMDIwODIyNThaFw0yNTAxMzEwODI3NThaMDMxMTAvBgNV BAMTKDZDMThBQzIzREJBOTc5RTMxRUY2NjQ1QzM3QUREMEY0ODFBRDM3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChhjbF6h92+emnNF148czv3MB8 BU3hRjFJFs0wwXNuqvw3MWqFvQ0YT1SS5pHqNafvXercouZTnkwOIeSlwwvH5qJq /BGfzaWRBLPeapirHlMt7g2opRfMO8Met/ggETL9I3eFW1OP34NqsFnQFTMYsc0G tW1jDTuCud/0iKHRQcZc6h2Xw5SxpGVOc9k5WbmcWJEM3hkkkjikTeqz14bTcvtT 7KzhiV/3IFu7NtdMNovYddvyCUSE7VBS3Y5rEkk6PbNDQDb2NwwuOIdnF3QoxsMu 7Gplrwpg6kmzvZuv9M6Tk4QrqMpWGDg8LHOw20O2t7kj6rDrjnvASX1M0XhtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbBisI9upeeMe9mRcN63Q9IGtNzYwHwYDVR0j BBgwFoAUoPSuu+BFsJwWlTeCrzBtg7Dcl9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGM3N2VlZS05YmNjLTQwMWUtOGY0ZC01ZjIzNjc1NjI3NTcvMC9BMEY0QUVCQkUw NDVCMDlDMTY5NTM3ODJBRjMwNkQ4M0IwREM5N0QzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNCMERD OTdEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4Yzc3ZWVlLTliY2MtNDAxZS04 ZjRkLTVmMjM2NzU2Mjc1Ny8wLzMxMzAzMzJlMzYzOTJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0WxMA0GCSqG SIb3DQEBCwUAA4IBAQCMWW3EXWA6/GRbLUk2zwSVdAtgOl1gUuX5b7bvUqRPQ8Dv CoE6pK30g+7Mur/mj8d2WDh8urtFV6L60nvL6fPxqvCRDhvATJOnC6u/oNDCt5zL Gx7WDf4XJ1Gy/qdSK2+IZ4YgxeWW0O7j/juhw3ZGq2ZkFp0Qj/1JDdSw89E/6M9h 9SlafP8Xpr8zufWLbdO+9DjSbJkLo0208sW9gCiBe9WR86zSeXfOjsZc/JJrkar8 wJ8EIy8xTL1LsbLjH02gMSsNiSyZ/X3fhvFboe1Xl6PQCAQmOx7aHzecY8Uvqy86 W8sI2F8H1PvhIDB5b8qlAbI9dA1cEw32mSp80oGB -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org