$ rpki-client -vvf repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131332e302f32342d3234203d3e20313339393532.roa File: 3130332e3137342e3131332e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 6kHHWGOl1WkB5FFpqU5tEepFu8NpO3D8mqOqYEjynek= Subject key identifier: 74:07:DB:00:6B:13:CB:85:0F:D0:CA:83:BF:15:CA:7A:9E:12:FE:E0 Certificate issuer: /CN=061065EDF2843A4462114BCE0A173E21A84A019E Certificate serial: 5FA06CA8683147D948551162DDD06E050036B227 Authority key identifier: 06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131332e302f32342d3234203d3e20313339393532.roa Signing time: Thu 05 Sep 2024 04:00:00 +0000 ROA not before: Thu 05 Sep 2024 03:55:00 +0000 ROA not after: Thu 04 Sep 2025 04:00:00 +0000 asID: 139952 IP address blocks: 103.174.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 04:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a0:6c:a8:68:31:47:d9:48:55:11:62:dd:d0:6e:05:00:36:b2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061065EDF2843A4462114BCE0A173E21A84A019E Validity Not Before: Sep 5 03:55:00 2024 GMT Not After : Sep 4 04:00:00 2025 GMT Subject: CN=7407DB006B13CB850FD0CA83BF15CA7A9E12FEE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:32:c4:db:cd:0d:85:82:f4:81:25:cf:53: 74:fb:33:0a:bb:e3:84:d6:27:b3:ef:ae:30:91:0c: fc:72:48:c7:0c:d9:47:94:2b:55:19:8d:b1:97:f3: a3:de:36:a7:07:65:b6:d8:61:c2:1d:4e:0d:37:3b: 22:0a:c5:a7:ae:ae:22:80:ca:2a:68:f3:3e:c5:b9: f9:57:48:e2:18:ce:0f:65:17:33:06:f0:16:99:44: 46:74:19:fe:84:83:98:bf:c7:12:6e:b5:78:35:51: a3:ec:b2:21:aa:32:67:6b:3b:e9:3a:8d:17:fb:05: 8f:4f:97:30:01:ee:e9:47:1e:88:c7:e4:9d:e6:26: 8e:86:66:2f:ca:9a:70:86:39:4f:82:03:d6:7a:67: d7:0b:b1:0f:b0:33:b7:4b:26:5a:38:a2:cd:cb:f7: 19:bd:c2:b5:85:de:80:4e:fa:d2:74:0b:a3:7a:85: 75:24:38:6e:d1:83:61:5d:8c:48:8a:3a:87:ae:22: 45:a2:bb:e3:55:b0:98:a2:06:9f:83:00:7d:bb:c7: 16:bb:b4:cc:fa:4b:a2:3f:4b:f0:f0:ba:9e:27:a1: bb:50:34:67:98:69:fc:32:b4:60:af:4e:d9:2a:89: 7e:b9:a4:23:aa:75:8f:8f:ac:80:07:9c:c3:75:39: d5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:07:DB:00:6B:13:CB:85:0F:D0:CA:83:BF:15:CA:7A:9E:12:FE:E0 X509v3 Authority Key Identifier: keyid:06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131332e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.113.0/24 Signature Algorithm: sha256WithRSAEncryption bf:94:37:dc:99:d9:f6:90:4f:ce:a8:07:70:fa:d0:4a:26:0b: 76:ad:41:c3:12:8e:11:9d:e4:f5:2d:f1:7e:03:73:eb:0a:0e: 5c:e3:69:eb:e0:5e:62:76:1a:75:a4:b9:95:60:7d:46:6b:31: 58:4b:22:5f:af:e4:8a:1b:09:08:41:33:95:f5:9b:bb:7a:26: de:ce:5f:ce:07:13:78:49:8a:3c:7e:c7:b9:74:e8:5d:b0:48: 00:8a:82:da:50:70:14:56:74:1a:3f:fa:6a:57:b0:27:11:61: dd:47:f6:e1:6f:75:4f:f0:9e:21:f9:bb:2f:d0:d5:84:5d:ba: 6f:c7:1f:39:82:74:f6:5b:ca:94:61:5a:55:6d:0b:f9:1d:40: 99:4e:c8:c0:42:11:26:2c:50:29:d3:e0:55:74:73:1b:e2:1c: 09:78:c7:44:c8:61:3f:bc:10:80:d1:7d:54:13:d3:83:26:75: 33:6a:55:3a:75:fe:90:cf:eb:43:74:e2:64:11:87:50:86:dd: e0:b3:aa:12:26:8a:98:84:d9:10:a6:ff:ee:5a:c3:ed:4e:6b: 6b:97:27:51:23:3f:e7:98:db:2c:6c:37:ac:32:a9:bc:16:4d: c3:6e:68:b3:69:f5:ac:92:f4:4a:d9:00:f9:07:6f:94:6b:fa: d1:b3:84:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX6BsqGgxR9lIVRFi3dBuBQA2sicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFB ODRBMDE5RTAeFw0yNDA5MDUwMzU1MDBaFw0yNTA5MDQwNDAwMDBaMDMxMTAvBgNV BAMTKDc0MDdEQjAwNkIxM0NCODUwRkQwQ0E4M0JGMTVDQTdBOUUxMkZFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXVTLE280NhYL0gSXPU3T7Mwq7 44TWJ7PvrjCRDPxySMcM2UeUK1UZjbGX86PeNqcHZbbYYcIdTg03OyIKxaeuriKA yipo8z7FuflXSOIYzg9lFzMG8BaZREZ0Gf6Eg5i/xxJutXg1UaPssiGqMmdrO+k6 jRf7BY9PlzAB7ulHHojH5J3mJo6GZi/KmnCGOU+CA9Z6Z9cLsQ+wM7dLJlo4os3L 9xm9wrWF3oBO+tJ0C6N6hXUkOG7Rg2FdjEiKOoeuIkWiu+NVsJiiBp+DAH27xxa7 tMz6S6I/S/Dwup4nobtQNGeYafwytGCvTtkqiX65pCOqdY+PrIAHnMN1OdULAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdAfbAGsTy4UP0MqDvxXKep4S/uAwHwYDVR0j BBgwFoAUBhBl7fKEOkRiEUvOChc+IahKAZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzM2MjRjNC1iZmRjLTRlNDgtOGVhMC1lYjA1NjA1YzYyMTMvMC8wNjEwNjVFREYy ODQzQTQ0NjIxMTRCQ0UwQTE3M0UyMUE4NEEwMTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFBODRB MDE5RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzYyNGM0LWJmZGMtNGU0OC04 ZWEwLWViMDU2MDVjNjIxMy8wLzMxMzAzMzJlMzEzNzM0MmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnEwDQYJ KoZIhvcNAQELBQADggEBAL+UN9yZ2faQT86oB3D60EomC3atQcMSjhGd5PUt8X4D c+sKDlzjaevgXmJ2GnWkuZVgfUZrMVhLIl+v5IobCQhBM5X1m7t6Jt7OX84HE3hJ ijx+x7l06F2wSACKgtpQcBRWdBo/+mpXsCcRYd1H9uFvdU/wniH5uy/Q1YRdum/H HzmCdPZbypRhWlVtC/kdQJlOyMBCESYsUCnT4FV0cxviHAl4x0TIYT+8EIDRfVQT 04MmdTNqVTp1/pDP60N04mQRh1CG3eCzqhImipiE2RCm/+5aw+1Oa2uXJ1EjP+eY 2yxsN6wyqbwWTcNuaLNp9ayS9ErZAPkHb5Rr+tGzhPg= -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org