$ rpki-client -vvf repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137382e302f32342d3234203d3e20313335343435.roa File: 3130332e36392e3137382e302f32342d3234203d3e20313335343435.roa (raw, json) Hash identifier: HmEcl2FQ9FVLKEP5R1RZhTMx57OPB2AKCZMB4IIlOO0= Subject key identifier: 38:A6:0B:63:EC:7D:D3:58:72:8E:3C:8F:88:06:23:70:49:28:F4:D3 Certificate issuer: /CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Certificate serial: 394D349E1568864CC92A7E9025579AF1A5F03B32 Authority key identifier: A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137382e302f32342d3234203d3e20313335343435.roa Signing time: Fri 02 Feb 2024 08:29:03 +0000 ROA not before: Fri 02 Feb 2024 08:24:03 +0000 ROA not after: Fri 31 Jan 2025 08:29:03 +0000 asID: 135445 IP address blocks: 103.69.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4d:34:9e:15:68:86:4c:c9:2a:7e:90:25:57:9a:f1:a5:f0:3b:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Validity Not Before: Feb 2 08:24:03 2024 GMT Not After : Jan 31 08:29:03 2025 GMT Subject: CN=38A60B63EC7DD358728E3C8F880623704928F4D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:2a:77:f8:7d:18:58:6b:d7:2c:6f:d1:22: 59:95:21:8e:be:8f:4d:85:43:37:05:78:a4:15:bf: 10:40:be:f4:fc:27:dd:31:ff:9e:02:de:eb:34:88: a4:e6:19:4a:d0:b7:12:ca:50:e6:63:40:e4:a2:3d: d5:d7:e3:04:78:94:7d:84:06:3a:37:89:97:f2:dc: f6:4b:92:d0:c3:48:4a:51:dd:d1:3e:81:99:d4:e8: 80:42:49:db:25:62:fe:be:40:69:5f:43:28:b9:0d: 5f:4d:6a:89:b2:60:4f:35:ac:eb:18:2a:6c:6d:5e: bb:0b:3f:34:f8:67:d9:e5:e7:29:a2:a3:09:a2:50: 7b:a9:1b:18:09:07:06:8a:1c:43:a7:af:92:a8:de: d3:3f:86:88:e4:b3:63:c7:38:77:25:b8:e7:66:8f: 49:80:af:9a:9e:af:cd:de:90:89:1e:fb:ba:5e:04: 8a:bb:23:cc:43:46:9e:ab:ce:2d:7c:62:54:16:8c: 4e:28:f2:62:a1:b8:3e:b5:02:55:19:71:6c:a5:28: 43:37:f4:ba:25:3d:55:4e:eb:a7:cc:72:72:73:81: 95:21:88:18:61:32:a3:71:61:65:dc:e2:07:77:29: f4:a2:d5:c4:ea:a0:4d:90:b2:fa:f7:9d:3b:31:1e: ad:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A6:0B:63:EC:7D:D3:58:72:8E:3C:8F:88:06:23:70:49:28:F4:D3 X509v3 Authority Key Identifier: keyid:A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137382e302f32342d3234203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.178.0/24 Signature Algorithm: sha256WithRSAEncryption 47:3c:71:f6:4a:3e:59:1e:18:23:f2:e7:1a:d6:8f:d2:7f:aa: 71:89:aa:b6:fc:88:86:f4:94:08:9e:e5:f0:f4:f5:9d:dc:c3: d3:b6:62:7b:19:9b:47:a2:58:04:b9:c1:09:49:98:5c:76:31: a7:e6:c7:14:7c:67:32:3b:82:23:87:71:c9:53:b0:74:cf:09: 23:b9:8c:83:3a:8b:e4:da:4f:77:14:af:63:cd:2d:1d:5d:e4: bf:ce:be:b3:2c:0e:c2:03:81:c5:3c:bf:14:ff:b4:5b:08:d7: e5:2c:8e:21:5f:a5:3b:b5:3a:82:6b:8b:0f:f1:ed:dc:52:e5: d5:39:ac:50:95:1c:c1:97:50:df:bc:d3:c4:b0:36:fc:d2:d4: 88:39:31:12:f9:24:b6:74:d6:90:f8:9f:78:a2:35:be:30:7d: 73:a7:87:41:ab:0b:36:3d:fc:68:5f:bd:01:55:5d:11:47:26: 6b:5c:08:c2:fd:e4:6e:ca:cd:5a:bb:ab:de:7b:29:29:b9:a2: 80:64:6e:2f:a8:0f:99:f6:b0:ca:99:b3:38:e5:de:01:b8:3f: 02:22:cf:6b:75:01:df:21:ea:9b:98:25:5e:68:e7:2a:1b:6b: af:07:c5:b9:d8:18:c1:60:be:0a:87:eb:51:ab:a0:d8:f9:48: 56:4c:5c:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOU00nhVohkzJKn6QJVea8aXwOzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNC MERDOTdEMzAeFw0yNDAyMDIwODI0MDNaFw0yNTAxMzEwODI5MDNaMDMxMTAvBgNV BAMTKDM4QTYwQjYzRUM3REQzNTg3MjhFM0M4Rjg4MDYyMzcwNDkyOEY0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSICp3+H0YWGvXLG/RIlmVIY6+ j02FQzcFeKQVvxBAvvT8J90x/54C3us0iKTmGUrQtxLKUOZjQOSiPdXX4wR4lH2E Bjo3iZfy3PZLktDDSEpR3dE+gZnU6IBCSdslYv6+QGlfQyi5DV9NaomyYE81rOsY KmxtXrsLPzT4Z9nl5ymiowmiUHupGxgJBwaKHEOnr5Ko3tM/hojks2PHOHcluOdm j0mAr5qer83ekIke+7peBIq7I8xDRp6rzi18YlQWjE4o8mKhuD61AlUZcWylKEM3 9LolPVVO66fMcnJzgZUhiBhhMqNxYWXc4gd3KfSi1cTqoE2Qsvr3nTsxHq3dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOKYLY+x901hyjjyPiAYjcEko9NMwHwYDVR0j BBgwFoAUoPSuu+BFsJwWlTeCrzBtg7Dcl9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGM3N2VlZS05YmNjLTQwMWUtOGY0ZC01ZjIzNjc1NjI3NTcvMC9BMEY0QUVCQkUw NDVCMDlDMTY5NTM3ODJBRjMwNkQ4M0IwREM5N0QzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNCMERD OTdEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4Yzc3ZWVlLTliY2MtNDAxZS04 ZjRkLTVmMjM2NzU2Mjc1Ny8wLzMxMzAzMzJlMzYzOTJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0WyMA0GCSqG SIb3DQEBCwUAA4IBAQBHPHH2Sj5ZHhgj8uca1o/Sf6pxiaq2/IiG9JQInuXw9PWd 3MPTtmJ7GZtHolgEucEJSZhcdjGn5scUfGcyO4Ijh3HJU7B0zwkjuYyDOovk2k93 FK9jzS0dXeS/zr6zLA7CA4HFPL8U/7RbCNflLI4hX6U7tTqCa4sP8e3cUuXVOaxQ lRzBl1DfvNPEsDb80tSIOTES+SS2dNaQ+J94ojW+MH1zp4dBqws2PfxoX70BVV0R RyZrXAjC/eRuys1au6veeykpuaKAZG4vqA+Z9rDKmbM45d4BuD8CIs9rdQHfIeqb mCVeaOcqG2uvB8W52BjBYL4Kh+tRq6DY+UhWTFxE -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org