$ rpki-client -vvf repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa File: 3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: 2Hf0voiLyRB5yquDwOqQGzECahxM0QLqpt8+luqMRjw= Subject key identifier: 26:13:83:C5:2F:60:D1:10:0B:F2:6E:44:82:D0:5B:56:B0:D9:A4:BE Certificate issuer: /CN=061065EDF2843A4462114BCE0A173E21A84A019E Certificate serial: 538AF0354408AD4E93DC1BBAA7C4AB698F516D3E Authority key identifier: 06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa Signing time: Thu 05 Sep 2024 04:00:00 +0000 ROA not before: Thu 05 Sep 2024 03:55:00 +0000 ROA not after: Thu 04 Sep 2025 04:00:00 +0000 asID: 139952 IP address blocks: 103.174.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 04:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8a:f0:35:44:08:ad:4e:93:dc:1b:ba:a7:c4:ab:69:8f:51:6d:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061065EDF2843A4462114BCE0A173E21A84A019E Validity Not Before: Sep 5 03:55:00 2024 GMT Not After : Sep 4 04:00:00 2025 GMT Subject: CN=261383C52F60D1100BF26E4482D05B56B0D9A4BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:84:cc:06:e0:6a:df:92:3c:a3:f3:d7:b3:f5: 53:60:a4:93:2a:78:87:98:a7:a8:de:0f:0f:e9:ba: 65:9f:33:8f:7d:8a:08:c3:2d:9c:8b:d4:b8:72:b3: e2:6c:12:c0:b7:59:f2:45:21:ef:80:c2:4c:99:ee: f7:86:88:68:d0:6b:57:c2:93:75:e8:17:be:c5:f2: 8d:62:0a:2b:82:2b:4f:0a:67:9d:b7:71:9f:13:83: 1a:6b:b3:0d:c1:10:02:e7:46:ce:bb:6d:ed:78:0f: a7:f8:87:39:81:19:03:3b:ce:93:a0:a6:1b:97:5f: 12:19:28:56:bb:af:56:ff:dd:85:54:cd:22:f3:7d: e2:ea:ec:14:9e:cf:2d:b9:4f:d5:71:7b:ee:a7:b5: cf:30:cd:40:3d:90:65:64:23:54:03:54:25:ee:a5: be:58:30:42:e0:ea:3b:02:00:97:36:99:08:b4:17: 27:6c:c5:9c:42:a7:5b:71:2c:8d:34:d4:c8:b6:49: bb:6b:da:91:eb:85:cd:04:1d:b2:5b:aa:6b:9e:06: 78:85:0e:e6:a0:d0:0a:b8:01:1a:60:a1:aa:27:e4: f8:c3:32:aa:50:5f:d0:3e:e6:69:6a:69:57:95:5a: 22:ce:3a:a7:74:be:fe:56:7e:ca:90:fb:f6:78:71: 2e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:13:83:C5:2F:60:D1:10:0B:F2:6E:44:82:D0:5B:56:B0:D9:A4:BE X509v3 Authority Key Identifier: keyid:06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.112.0/23 Signature Algorithm: sha256WithRSAEncryption 35:4f:95:35:f7:39:8f:21:30:55:7b:da:00:99:c2:6d:9a:c5: 78:4d:d6:83:de:2c:78:78:63:78:a1:0d:3b:87:ad:e4:65:bc: f9:6c:e6:40:ca:8a:63:a3:07:ec:0c:44:81:e4:a7:bd:06:03: 3f:93:d5:bf:47:54:62:fe:d9:ec:bb:6c:8f:5c:46:03:4e:95: 44:da:0d:27:ae:ee:09:bd:93:f6:c8:e0:07:4a:2f:74:e2:bd: f3:d7:df:76:ee:a6:54:34:9c:2b:4c:61:71:34:1e:a2:e9:17: f7:72:2a:5a:f2:f1:cb:a9:81:62:db:fc:94:ea:36:95:9e:d7: 37:24:88:ad:b4:7c:be:27:75:2b:92:15:59:68:e0:ff:f0:94: a8:d8:77:47:eb:d0:87:76:fd:7d:06:81:2b:ed:82:61:63:4d: 65:52:76:3c:d8:cc:cf:4b:19:9a:e3:bc:1c:32:89:45:2b:b1: 28:b6:b8:a9:0d:3c:ea:37:89:bd:1f:ba:9f:dd:5a:4c:80:b9: 5c:f2:ca:f9:34:15:03:07:f4:ff:a1:37:e7:dc:1c:5e:98:fc: f6:d3:43:2e:05:a3:68:e8:4c:0c:66:39:b8:e4:d4:4f:45:41: 21:c8:9a:d1:49:dc:d5:e9:1c:8d:1c:8b:0a:4f:fd:86:1c:cf: 8a:3b:39:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU4rwNUQIrU6T3Bu6p8SraY9RbT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFB ODRBMDE5RTAeFw0yNDA5MDUwMzU1MDBaFw0yNTA5MDQwNDAwMDBaMDMxMTAvBgNV BAMTKDI2MTM4M0M1MkY2MEQxMTAwQkYyNkU0NDgyRDA1QjU2QjBEOUE0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQhMwG4Grfkjyj89ez9VNgpJMq eIeYp6jeDw/pumWfM499igjDLZyL1Lhys+JsEsC3WfJFIe+AwkyZ7veGiGjQa1fC k3XoF77F8o1iCiuCK08KZ523cZ8Tgxprsw3BEALnRs67be14D6f4hzmBGQM7zpOg phuXXxIZKFa7r1b/3YVUzSLzfeLq7BSezy25T9Vxe+6ntc8wzUA9kGVkI1QDVCXu pb5YMELg6jsCAJc2mQi0FydsxZxCp1txLI001Mi2Sbtr2pHrhc0EHbJbqmueBniF Duag0Aq4ARpgoaon5PjDMqpQX9A+5mlqaVeVWiLOOqd0vv5WfsqQ+/Z4cS69AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJhODxS9g0RAL8m5EgtBbVrDZpL4wHwYDVR0j BBgwFoAUBhBl7fKEOkRiEUvOChc+IahKAZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzM2MjRjNC1iZmRjLTRlNDgtOGVhMC1lYjA1NjA1YzYyMTMvMC8wNjEwNjVFREYy ODQzQTQ0NjIxMTRCQ0UwQTE3M0UyMUE4NEEwMTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFBODRB MDE5RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzYyNGM0LWJmZGMtNGU0OC04 ZWEwLWViMDU2MDVjNjIxMy8wLzMxMzAzMzJlMzEzNzM0MmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrnAwDQYJ KoZIhvcNAQELBQADggEBADVPlTX3OY8hMFV72gCZwm2axXhN1oPeLHh4Y3ihDTuH reRlvPls5kDKimOjB+wMRIHkp70GAz+T1b9HVGL+2ey7bI9cRgNOlUTaDSeu7gm9 k/bI4AdKL3TivfPX33buplQ0nCtMYXE0HqLpF/dyKlry8cupgWLb/JTqNpWe1zck iK20fL4ndSuSFVlo4P/wlKjYd0fr0Id2/X0GgSvtgmFjTWVSdjzYzM9LGZrjvBwy iUUrsSi2uKkNPOo3ib0fup/dWkyAuVzyyvk0FQMH9P+hN+fcHF6Y/PbTQy4Fo2jo TAxmObjk1E9FQSHImtFJ3NXpHI0ciwpP/YYcz4o7OWA= -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org