$ rpki-client -vvf repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32342d3234203d3e20313439393736.roa File: 3130332e3135372e36322e302f32342d3234203d3e20313439393736.roa (raw, json) Hash identifier: rz//m1AmxOQCkyd1XS4RHRE7cEAFgR3CPVfRkSd+ImY= Subject key identifier: B3:A1:07:FE:71:50:C9:77:52:C6:3A:4E:1A:7E:2C:F5:2B:35:3C:7B Certificate issuer: /CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Certificate serial: 1055D055FEDC1E4A002C0C0DFE96D50991121CD6 Authority key identifier: 79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32342d3234203d3e20313439393736.roa Signing time: Fri 02 Aug 2024 18:00:02 +0000 ROA not before: Fri 02 Aug 2024 17:55:02 +0000 ROA not after: Fri 01 Aug 2025 18:00:02 +0000 asID: 149976 IP address blocks: 103.157.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:55:d0:55:fe:dc:1e:4a:00:2c:0c:0d:fe:96:d5:09:91:12:1c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5 Validity Not Before: Aug 2 17:55:02 2024 GMT Not After : Aug 1 18:00:02 2025 GMT Subject: CN=B3A107FE7150C97752C63A4E1A7E2CF52B353C7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1d:61:e2:8b:5b:8b:77:f9:bc:bd:70:47:93: a3:93:bf:6b:a3:23:1e:e9:55:63:64:72:e5:94:25: 84:ca:0d:a0:30:79:0e:d5:66:06:bf:03:e4:92:a5: 47:19:19:0a:e5:7a:a0:70:3d:33:56:cb:5a:77:c5: 28:6c:98:eb:f1:ef:bd:52:43:15:ad:51:d9:bf:17: 99:7d:de:3a:82:5b:21:09:bb:08:73:4d:ff:98:1b: 9c:15:16:6c:fa:f1:b1:2c:d5:51:d2:77:3f:01:72: 68:18:bb:8c:a6:00:9a:71:85:49:3d:4a:96:8e:17: 2b:af:92:09:36:96:cb:c8:fa:de:a0:2a:d2:c4:18: de:b6:b7:90:63:5d:dd:92:e7:94:32:6d:74:bc:a0: a9:10:72:c4:7f:ba:94:2a:98:45:59:b5:f0:60:f8: a8:73:d2:58:82:55:a0:62:98:49:2e:ce:a0:d7:4a: ed:ad:35:17:a7:ee:7e:ef:38:87:d4:24:57:a5:14: 19:3f:18:dd:2e:c8:6e:6f:f5:77:8e:49:0a:e7:df: 18:17:cb:18:b2:59:5c:07:91:4b:a1:af:a6:ee:22: cd:e2:f2:7e:23:eb:20:9c:16:38:0b:ee:fc:28:b9: 75:c4:ee:bd:4a:a8:3c:06:d8:2e:dd:00:b9:32:3b: ef:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A1:07:FE:71:50:C9:77:52:C6:3A:4E:1A:7E:2C:F5:2B:35:3C:7B X509v3 Authority Key Identifier: keyid:79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32342d3234203d3e20313439393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.62.0/24 Signature Algorithm: sha256WithRSAEncryption b3:37:fa:65:4e:4e:11:47:48:47:05:17:2a:6c:4b:38:de:72: 17:35:cc:5d:74:f4:3e:bb:a1:3e:4a:7b:ef:69:6b:83:10:13: 72:6c:d0:e4:8c:cc:6e:91:15:93:3b:2b:0d:b6:1d:ec:bb:60: cf:70:f9:0e:e0:11:f3:ad:51:45:2d:08:2b:65:a3:af:cd:ae: 23:6c:61:01:67:1c:17:c3:d2:8b:96:c1:54:6f:40:3f:c7:5b: c0:0b:ed:15:bc:10:44:84:6d:fd:fe:42:c5:8f:af:3a:a9:42: 6e:1c:43:73:f8:ea:14:3e:c6:e2:8a:4c:bd:86:a5:49:c9:bb: 46:5f:b6:51:08:75:38:f1:a0:83:6f:d2:1b:48:76:19:50:fe: 86:0e:14:d1:7b:0c:c8:cd:77:38:59:d0:12:fe:2a:ec:fd:cb: c2:53:0a:ac:ab:e1:b1:e5:ff:c5:e0:f3:58:2f:09:69:c1:dd: 06:ff:b5:5b:0f:4b:c3:42:15:97:7f:1f:2c:c4:97:6c:57:e6: 68:3e:c1:9d:44:07:25:c9:da:d4:e9:e6:0c:ea:11:3b:3d:e4: ce:bd:18:e9:b7:98:f8:0b:ef:6e:69:39:2b:60:5f:66:b7:6f: fd:34:2b:4e:58:24:88:5d:fd:0f:93:38:63:33:22:d2:ea:18: c6:71:55:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEFXQVf7cHkoALAwN/pbVCZESHNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzND QUQyNkRENTAeFw0yNDA4MDIxNzU1MDJaFw0yNTA4MDExODAwMDJaMDMxMTAvBgNV BAMTKEIzQTEwN0ZFNzE1MEM5Nzc1MkM2M0E0RTFBN0UyQ0Y1MkIzNTNDN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZHWHii1uLd/m8vXBHk6OTv2uj Ix7pVWNkcuWUJYTKDaAweQ7VZga/A+SSpUcZGQrleqBwPTNWy1p3xShsmOvx771S QxWtUdm/F5l93jqCWyEJuwhzTf+YG5wVFmz68bEs1VHSdz8BcmgYu4ymAJpxhUk9 SpaOFyuvkgk2lsvI+t6gKtLEGN62t5BjXd2S55QybXS8oKkQcsR/upQqmEVZtfBg +Khz0liCVaBimEkuzqDXSu2tNRen7n7vOIfUJFelFBk/GN0uyG5v9XeOSQrn3xgX yxiyWVwHkUuhr6buIs3i8n4j6yCcFjgL7vwouXXE7r1KqDwG2C7dALkyO++LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs6EH/nFQyXdSxjpOGn4s9Ss1PHswHwYDVR0j BBgwFoAUeYlE9/vFfVz79fG7aA8tc8rSbdUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmQzMDU4Ny1hN2NhLTQxOTUtYTM1OS0wYzBmNjI3YWY4ZGEvMC83OTg5NDRGN0ZC QzU3RDVDRkJGNUYxQkI2ODBGMkQ3M0NBRDI2REQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4OTQ0RjdGQkM1N0Q1Q0ZCRjVGMUJCNjgwRjJENzNDQUQy NkRENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZDMwNTg3LWE3Y2EtNDE5NS1h MzU5LTBjMGY2MjdhZjhkYS8wLzMxMzAzMzJlMzEzNTM3MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ50+MA0GCSqG SIb3DQEBCwUAA4IBAQCzN/plTk4RR0hHBRcqbEs43nIXNcxddPQ+u6E+SnvvaWuD EBNybNDkjMxukRWTOysNth3su2DPcPkO4BHzrVFFLQgrZaOvza4jbGEBZxwXw9KL lsFUb0A/x1vAC+0VvBBEhG39/kLFj686qUJuHENz+OoUPsbiiky9hqVJybtGX7ZR CHU48aCDb9IbSHYZUP6GDhTRewzIzXc4WdAS/irs/cvCUwqsq+Gx5f/F4PNYLwlp wd0G/7VbD0vDQhWXfx8sxJdsV+ZoPsGdRAclydrU6eYM6hE7PeTOvRjpt5j4C+9u aTkrYF9mt2/9NCtOWCSIXf0PkzhjMyLS6hjGcVVl -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org