$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa File: 3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa (raw, json) Hash identifier: R97ZMvJGq3wevnUFZa7iCAAm+25aeK+jt1k66UcmeGs= Subject key identifier: C3:56:16:8D:EF:93:AD:FC:E6:32:37:EB:4D:5F:27:27:22:37:7C:EA Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Certificate serial: 66214BA7A14F2DA73E38E80E8979CD62631BEAF5 Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa Signing time: Tue 16 Apr 2024 09:07:04 +0000 ROA not before: Tue 16 Apr 2024 09:02:04 +0000 ROA not after: Tue 15 Apr 2025 09:07:04 +0000 asID: 141920 IP address blocks: 103.165.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:21:4b:a7:a1:4f:2d:a7:3e:38:e8:0e:89:79:cd:62:63:1b:ea:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Validity Not Before: Apr 16 09:02:04 2024 GMT Not After : Apr 15 09:07:04 2025 GMT Subject: CN=C356168DEF93ADFCE63237EB4D5F272722377CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:07:e2:a7:ef:73:03:78:28:5b:87:5c:5d:58: 99:32:71:df:4d:e8:89:3f:07:e5:87:e5:6f:35:d4: 37:d4:8c:a0:54:53:b4:be:f9:fe:f0:9a:46:fe:a4: 3a:4a:7d:b3:7f:0b:9d:7b:e3:5a:dc:90:4c:64:ca: a8:12:e4:64:98:b2:8e:94:01:14:65:3d:01:8c:f8: f2:26:c4:69:51:a0:a5:88:29:44:f5:64:58:21:87: 76:9a:21:ce:f7:7b:ee:4d:1c:ec:59:a4:19:f0:72: ee:9a:71:e9:e0:ae:c2:b7:7c:d2:05:22:5e:79:c4: 7a:e8:9d:58:9b:66:db:cc:a6:57:48:90:1e:f4:f0: 45:91:0e:f7:85:51:d1:68:75:b6:ea:da:7c:ed:29: 63:c6:c3:99:a0:03:95:8a:57:51:4c:7c:e1:97:c1: fd:38:d9:87:d5:db:48:2a:3a:72:9d:da:91:3d:1f: 0e:8b:af:b7:c7:52:03:da:e4:0a:a1:b8:0b:e7:e4: 29:fc:5f:22:69:0f:16:b8:c0:b7:f8:98:02:03:b9: 11:47:4d:57:7d:f4:30:ef:eb:23:5e:25:e0:71:6b: 0a:5d:d4:8e:e8:51:20:e2:be:c8:6a:15:95:de:3e: fe:08:b6:b2:9b:68:7d:a3:09:e3:cd:b0:f4:81:ef: c7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:56:16:8D:EF:93:AD:FC:E6:32:37:EB:4D:5F:27:27:22:37:7C:EA X509v3 Authority Key Identifier: keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.149.0/24 Signature Algorithm: sha256WithRSAEncryption 20:4d:e5:a0:4b:05:a8:42:e9:84:3a:07:d3:b9:7e:b1:1d:b1: 98:5b:d4:bc:c1:4b:5b:f8:a0:11:32:b4:ed:74:9d:32:8c:be: 70:0a:8a:89:a6:75:c3:2e:6a:be:7d:ae:86:90:a5:c7:2e:38: 37:8a:32:63:d2:3c:71:a1:13:08:9e:0e:12:fb:2c:14:54:41: 9e:5f:5f:54:98:b3:52:7c:61:62:3f:cf:be:c9:50:34:24:e2: 41:af:49:df:e1:83:87:41:3b:33:f7:8b:18:a8:fc:5f:31:96: 7a:da:e9:54:90:d8:57:29:2e:76:8c:04:dc:7c:1e:6d:f8:d8: 37:ab:26:86:f1:29:33:75:56:7e:48:6f:7f:0c:e2:01:85:de: 4f:1f:d5:b6:a8:19:42:27:53:f9:37:30:cd:18:ba:32:f7:5c: ef:7c:44:85:0c:00:12:34:24:e8:09:d2:bd:98:89:7a:b4:48: e2:8e:1a:99:78:80:aa:bb:9e:33:18:73:4a:b4:76:0f:af:13: d6:bb:41:17:82:5d:f1:33:de:5e:43:a3:36:3f:e3:c7:e6:1a: 31:c1:46:a6:03:bb:ce:9a:74:83:ed:d6:2b:c7:10:a2:cb:49: 2b:13:94:29:e7:f1:e0:3a:50:4d:4e:50:86:43:87:6a:c6:60: c1:ab:a9:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZiFLp6FPLac+OOgOiXnNYmMb6vUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0Iy REJCRUQwRjAeFw0yNDA0MTYwOTAyMDRaFw0yNTA0MTUwOTA3MDRaMDMxMTAvBgNV BAMTKEMzNTYxNjhERUY5M0FERkNFNjMyMzdFQjRENUYyNzI3MjIzNzdDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoB+Kn73MDeChbh1xdWJkycd9N 6Ik/B+WH5W811DfUjKBUU7S++f7wmkb+pDpKfbN/C51741rckExkyqgS5GSYso6U ARRlPQGM+PImxGlRoKWIKUT1ZFghh3aaIc73e+5NHOxZpBnwcu6acengrsK3fNIF Il55xHronVibZtvMpldIkB708EWRDveFUdFodbbq2nztKWPGw5mgA5WKV1FMfOGX wf042YfV20gqOnKd2pE9Hw6Lr7fHUgPa5AqhuAvn5Cn8XyJpDxa4wLf4mAIDuRFH TVd99DDv6yNeJeBxawpd1I7oUSDivshqFZXePv4ItrKbaH2jCePNsPSB78cnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw1YWje+TrfzmMjfrTV8nJyI3fOowHwYDVR0j BBgwFoAU5M7BHyRL8Nq+wTb4Of1Tey277Q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmYzZjVkOS1jZmI4LTQxMjMtYTJiMS1iMGI1Mjk5ZjljNmUvMC9FNENFQzExRjI0 NEJGMERBQkVDMTM2RjgzOUZENTM3QjJEQkJFRDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0IyREJC RUQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZUwDQYJ KoZIhvcNAQELBQADggEBACBN5aBLBahC6YQ6B9O5frEdsZhb1LzBS1v4oBEytO10 nTKMvnAKiommdcMuar59roaQpccuODeKMmPSPHGhEwieDhL7LBRUQZ5fX1SYs1J8 YWI/z77JUDQk4kGvSd/hg4dBOzP3ixio/F8xlnra6VSQ2FcpLnaMBNx8Hm342Der JobxKTN1Vn5Ib38M4gGF3k8f1baoGUInU/k3MM0YujL3XO98RIUMABI0JOgJ0r2Y iXq0SOKOGpl4gKq7njMYc0q0dg+vE9a7QReCXfEz3l5DozY/48fmGjHBRqYDu86a dIPt1ivHEKLLSSsTlCnn8eA6UE1OUIZDh2rGYMGrqQ0= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org