$ rpki-client -vvf repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/3130332e3137392e36382e302f32342d3234203d3e20313439333337.roa File: 3130332e3137392e36382e302f32342d3234203d3e20313439333337.roa (raw, json) Hash identifier: qSBErkc+YmE96+YNp3stuWS6LNkBq7zVOQLn2fcpQx8= Subject key identifier: 4F:9E:EF:59:1E:5F:92:E4:1D:BB:2A:87:2F:EB:12:EF:49:B5:3B:6A Certificate issuer: /CN=64848BA7A76415C6458AAC267B0A57658022C3C5 Certificate serial: 331BDB1B767DC64CDA98C441EA0681C5F6CE419D Authority key identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/3130332e3137392e36382e302f32342d3234203d3e20313439333337.roa Signing time: Tue 05 Nov 2024 16:00:01 +0000 ROA not before: Tue 05 Nov 2024 15:55:01 +0000 ROA not after: Tue 04 Nov 2025 16:00:01 +0000 asID: 149337 IP address blocks: 103.179.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.crl rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:1b:db:1b:76:7d:c6:4c:da:98:c4:41:ea:06:81:c5:f6:ce:41:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64848BA7A76415C6458AAC267B0A57658022C3C5 Validity Not Before: Nov 5 15:55:01 2024 GMT Not After : Nov 4 16:00:01 2025 GMT Subject: CN=4F9EEF591E5F92E41DBB2A872FEB12EF49B53B6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:a9:a7:d6:70:a4:4d:a2:02:59:b7:32:59: fc:f8:03:17:e8:c2:c9:ae:26:4b:8c:bd:a5:a5:b4: 59:11:7d:c4:58:77:0b:fc:c6:18:62:cc:77:20:92: df:46:00:f4:f2:fe:35:2c:3b:d1:9a:82:40:d3:c9: d9:5d:b4:39:b8:cf:61:6d:bf:22:08:6a:1f:0f:66: b8:20:04:d0:de:dd:07:53:f7:d2:6e:94:c8:99:63: 40:63:4b:9c:76:dc:76:6b:c2:df:24:fb:8c:94:c3: 99:72:fd:88:20:1a:7c:ae:14:82:d0:9b:ae:0d:3f: 3c:3f:f5:cf:53:3c:60:c1:9a:7f:5c:a9:3a:aa:35: 4f:b2:78:92:b2:5e:62:cf:a8:14:45:2e:41:bd:02: bc:4d:85:0e:ea:15:3b:04:dd:3d:52:5d:7e:c0:82: ca:ad:96:94:bd:7f:ee:e8:fa:36:48:3d:6d:b5:8d: 0a:18:19:1d:09:83:9c:d9:a3:26:30:87:40:e6:b2: a6:03:35:a4:f6:81:02:76:ea:90:e4:50:47:f9:8c: 03:27:1e:71:b3:5f:b6:24:9f:64:a5:da:ae:b6:57: 56:22:53:a6:d7:d8:52:16:a1:9a:6c:4f:3c:02:02: a9:0d:8f:0d:54:36:23:7f:9a:24:08:2d:d3:f3:a8: 61:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9E:EF:59:1E:5F:92:E4:1D:BB:2A:87:2F:EB:12:EF:49:B5:3B:6A X509v3 Authority Key Identifier: keyid:64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/3130332e3137392e36382e302f32342d3234203d3e20313439333337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.68.0/24 Signature Algorithm: sha256WithRSAEncryption 81:6d:1b:d4:22:e9:93:66:bc:01:86:44:54:97:84:37:fe:44: dd:f9:e2:e0:5c:e0:c2:8d:ef:f3:dc:82:6a:6e:b1:20:d9:8f: 52:f6:ea:ce:72:6b:8a:66:9c:bf:cf:ee:24:6b:f3:67:aa:5f: fb:4c:7d:fb:3f:ca:73:a5:0e:c1:8f:42:47:7d:16:89:30:e7: bb:e3:d1:b1:52:5a:9d:3a:97:90:0a:fc:8e:f9:28:34:ec:8f: e0:ed:89:18:61:47:b5:29:4a:8d:b3:e3:42:5b:84:b8:d3:d9: c6:9a:a4:ef:b1:60:ae:a5:e4:e8:3e:9e:38:37:3c:2a:45:a1: a1:51:b2:49:b2:1d:7c:d6:8f:75:96:d5:ad:b9:af:38:4f:5f: c6:6e:66:de:54:3d:7b:2d:74:bf:ea:2f:56:cd:a7:11:50:8c: ce:e1:7d:f0:94:9f:0f:91:7a:0d:97:4c:7c:10:ff:82:78:b9: 98:82:73:08:7c:fe:2f:70:52:43:c0:0b:6c:54:46:e0:49:16: fd:df:17:af:bb:84:62:13:0d:94:97:04:4b:47:c9:12:b9:1d: 55:86:8d:2d:78:9a:97:63:ec:4e:f8:88:09:13:3f:79:10:92: 16:08:18:27:11:2c:4f:e5:93:02:87:ad:84:24:b2:32:68:60: c8:37:58:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMxvbG3Z9xkzamMRB6gaBxfbOQZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ4NDhCQTdBNzY0MTVDNjQ1OEFBQzI2N0IwQTU3NjU4 MDIyQzNDNTAeFw0yNDExMDUxNTU1MDFaFw0yNTExMDQxNjAwMDFaMDMxMTAvBgNV BAMTKDRGOUVFRjU5MUU1RjkyRTQxREJCMkE4NzJGRUIxMkVGNDlCNTNCNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTpqmn1nCkTaICWbcyWfz4Axfo wsmuJkuMvaWltFkRfcRYdwv8xhhizHcgkt9GAPTy/jUsO9GagkDTydldtDm4z2Ft vyIIah8PZrggBNDe3QdT99JulMiZY0BjS5x23HZrwt8k+4yUw5ly/YggGnyuFILQ m64NPzw/9c9TPGDBmn9cqTqqNU+yeJKyXmLPqBRFLkG9ArxNhQ7qFTsE3T1SXX7A gsqtlpS9f+7o+jZIPW21jQoYGR0Jg5zZoyYwh0DmsqYDNaT2gQJ26pDkUEf5jAMn HnGzX7Ykn2Sl2q62V1YiU6bX2FIWoZpsTzwCAqkNjw1UNiN/miQILdPzqGErAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT57vWR5fkuQduyqHL+sS70m1O2owHwYDVR0j BBgwFoAUZISLp6dkFcZFiqwmewpXZYAiw8UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDNlZDAxMi1hZmRiLTQyZmItOTcxYS1lMTYyYTlkZWM0NmQvMC82NDg0OEJBN0E3 NjQxNUM2NDU4QUFDMjY3QjBBNTc2NTgwMjJDM0M1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ4NDhCQTdBNzY0MTVDNjQ1OEFBQzI2N0IwQTU3NjU4MDIy QzNDNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkM2VkMDEyLWFmZGItNDJmYi05 NzFhLWUxNjJhOWRlYzQ2ZC8wLzMxMzAzMzJlMzEzNzM5MmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NEMA0GCSqG SIb3DQEBCwUAA4IBAQCBbRvUIumTZrwBhkRUl4Q3/kTd+eLgXODCje/z3IJqbrEg 2Y9S9urOcmuKZpy/z+4ka/Nnql/7TH37P8pzpQ7Bj0JHfRaJMOe749GxUlqdOpeQ CvyO+Sg07I/g7YkYYUe1KUqNs+NCW4S409nGmqTvsWCupeToPp44NzwqRaGhUbJJ sh181o91ltWtua84T1/GbmbeVD17LXS/6i9WzacRUIzO4X3wlJ8PkXoNl0x8EP+C eLmYgnMIfP4vcFJDwAtsVEbgSRb93xevu4RiEw2UlwRLR8kSuR1Vho0teJqXY+xO +IgJEz95EJIWCBgnESxP5ZMCh62EJLIyaGDIN1g1 -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org