$ rpki-client -vvf repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa File: 3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa (raw, json) Hash identifier: /+6rFR/CtKXLMWpUolSLlOIypFPDbHoqQJ6CX1X4V1s= Subject key identifier: BA:F6:B0:19:ED:FA:F3:B6:7D:88:84:76:C1:12:F7:BE:6A:61:08:3B Certificate issuer: /CN=91DF058D6AC6F563DCAE86DBAFB48AC326264F50 Certificate serial: 5BE7532A1EB3FC8637EAE6ECC1FCDD4FBD188F6F Authority key identifier: 91:DF:05:8D:6A:C6:F5:63:DC:AE:86:DB:AF:B4:8A:C3:26:26:4F:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa Signing time: Sun 05 May 2024 21:00:01 +0000 ROA not before: Sun 05 May 2024 20:55:01 +0000 ROA not after: Sun 04 May 2025 21:00:01 +0000 asID: 142342 IP address blocks: 103.169.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.crl rsync://repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e7:53:2a:1e:b3:fc:86:37:ea:e6:ec:c1:fc:dd:4f:bd:18:8f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91DF058D6AC6F563DCAE86DBAFB48AC326264F50 Validity Not Before: May 5 20:55:01 2024 GMT Not After : May 4 21:00:01 2025 GMT Subject: CN=BAF6B019EDFAF3B67D888476C112F7BE6A61083B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:79:56:00:3b:cf:ee:de:9c:df:42:31:d1: 97:f7:c1:43:7d:fc:6f:ee:35:91:eb:41:9a:a9:ad: 3a:fc:53:45:55:93:a3:8c:e5:eb:15:d9:35:e0:89: 49:d1:ba:62:8f:79:ac:1d:5e:9f:58:81:15:7e:b1: 36:ae:1d:72:8c:af:32:d5:e1:6e:64:15:ab:5b:5a: 58:99:da:77:2c:63:fd:f8:a3:0d:0b:66:53:0e:e0: 98:ae:f8:04:56:cf:23:e3:f6:85:6c:c6:e0:ca:ca: 9a:5f:e4:ad:41:79:e7:75:fe:47:bd:53:96:fe:01: 34:19:4b:98:4b:78:a7:c8:1b:ec:d4:85:0e:22:14: ed:e9:3a:70:49:65:b0:a4:66:88:a1:47:7b:78:2d: 02:bc:42:c7:d3:5a:af:30:b8:17:97:b1:da:f1:83: 5f:63:1f:21:16:de:d9:e1:75:06:25:7d:33:c6:c4: 0e:76:96:56:d3:ba:4c:2e:d2:df:79:04:14:e0:11: f7:22:68:ca:15:31:a5:f3:a0:c4:1a:f8:26:e4:c7: 2f:70:cb:53:ad:da:45:c4:ab:7a:83:8d:9d:9c:08: 49:d7:f6:2b:b2:6f:45:4e:59:ff:f2:47:08:45:26: ba:c4:9c:84:8b:5c:2b:0e:f1:5b:41:7f:94:69:13: db:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F6:B0:19:ED:FA:F3:B6:7D:88:84:76:C1:12:F7:BE:6A:61:08:3B X509v3 Authority Key Identifier: keyid:91:DF:05:8D:6A:C6:F5:63:DC:AE:86:DB:AF:B4:8A:C3:26:26:4F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91DF058D6AC6F563DCAE86DBAFB48AC326264F50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b0e364b-779e-40d5-ad0e-d9178778d6b1/0/3130332e3136392e3132382e302f32332d3234203d3e20313432333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.128.0/23 Signature Algorithm: sha256WithRSAEncryption c8:90:3e:27:b4:de:38:c7:dc:f4:bc:d8:08:03:44:c9:92:16: cc:a1:bf:30:14:b2:33:55:3b:f1:ca:02:48:50:23:04:c5:f7: d8:57:9c:3f:09:2e:c2:49:18:10:ce:d9:16:fc:95:e1:89:57: e1:94:2d:74:c4:aa:12:62:a0:30:e9:63:91:43:72:a2:cc:6d: 17:ce:65:01:6e:0c:e4:4c:40:a4:12:b4:10:01:f0:a8:9b:b8: 22:69:b7:9d:35:ae:ec:b8:ef:53:22:03:74:87:b7:d9:42:cf: 10:6e:50:91:32:ba:81:37:03:61:fd:62:4d:9a:96:a0:ee:10: 63:60:b3:8b:f6:dc:af:97:1f:f6:36:69:15:e4:11:5c:bb:2f: 77:68:e0:5d:8c:5f:23:dc:86:8c:db:40:5f:c8:74:1c:a7:29: 66:af:cb:86:6a:18:3c:c2:46:59:40:73:76:e4:c4:10:b7:a3: 4b:5e:b4:9b:67:b7:44:18:83:7d:fb:17:7e:dd:de:bc:38:69: d7:54:24:e8:b7:2c:af:6d:00:ab:df:ea:3d:0d:d6:e5:f1:89: 64:99:00:d3:c1:bb:1f:b2:5c:f4:96:a0:df:af:77:5e:69:19: 89:59:e8:06:ca:6d:5d:60:92:28:9b:10:99:da:e2:31:21:b0: 48:6d:89:16 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW+dTKh6z/IY36ubswfzdT70Yj28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFERjA1OEQ2QUM2RjU2M0RDQUU4NkRCQUZCNDhBQzMy NjI2NEY1MDAeFw0yNDA1MDUyMDU1MDFaFw0yNTA1MDQyMTAwMDFaMDMxMTAvBgNV BAMTKEJBRjZCMDE5RURGQUYzQjY3RDg4ODQ3NkMxMTJGN0JFNkE2MTA4M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0RnlWADvP7t6c30Ix0Zf3wUN9 /G/uNZHrQZqprTr8U0VVk6OM5esV2TXgiUnRumKPeawdXp9YgRV+sTauHXKMrzLV 4W5kFatbWliZ2ncsY/34ow0LZlMO4Jiu+ARWzyPj9oVsxuDKyppf5K1Beed1/ke9 U5b+ATQZS5hLeKfIG+zUhQ4iFO3pOnBJZbCkZoihR3t4LQK8QsfTWq8wuBeXsdrx g19jHyEW3tnhdQYlfTPGxA52llbTukwu0t95BBTgEfciaMoVMaXzoMQa+Cbkxy9w y1Ot2kXEq3qDjZ2cCEnX9iuyb0VOWf/yRwhFJrrEnISLXCsO8VtBf5RpE9unAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuvawGe3687Z9iIR2wRL3vmphCDswHwYDVR0j BBgwFoAUkd8FjWrG9WPcrobbr7SKwyYmT1AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjBlMzY0Yi03NzllLTQwZDUtYWQwZS1kOTE3ODc3OGQ2YjEvMC85MURGMDU4RDZB QzZGNTYzRENBRTg2REJBRkI0OEFDMzI2MjY0RjUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTFERjA1OEQ2QUM2RjU2M0RDQUU4NkRCQUZCNDhBQzMyNjI2 NEY1MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiMGUzNjRiLTc3OWUtNDBkNS1h ZDBlLWQ5MTc4Nzc4ZDZiMS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYAwDQYJ KoZIhvcNAQELBQADggEBAMiQPie03jjH3PS82AgDRMmSFsyhvzAUsjNVO/HKAkhQ IwTF99hXnD8JLsJJGBDO2Rb8leGJV+GULXTEqhJioDDpY5FDcqLMbRfOZQFuDORM QKQStBAB8KibuCJpt501ruy471MiA3SHt9lCzxBuUJEyuoE3A2H9Yk2alqDuEGNg s4v23K+XH/Y2aRXkEVy7L3do4F2MXyPchozbQF/IdBynKWavy4ZqGDzCRllAc3bk xBC3o0tetJtnt0QYg337F37d3rw4addUJOi3LK9tAKvf6j0N1uXxiWSZANPBux+y XPSWoN+vd15pGYlZ6AbKbV1gkiibEJna4jEhsEhtiRY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org