$ rpki-client -vvf repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa File: 3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 78DN2BPh6IHHpt4Dc66YUFfEPJk7diyDFp9pfSN9LXE= Subject key identifier: AF:DE:E3:72:F7:F7:ED:D3:B3:89:65:1D:AF:E1:89:0D:C4:28:64:0F Certificate issuer: /CN=22825A0BEE926683AC41A0486AEF55AF8C1C228F Certificate serial: 6A5BCC963F480969328AA23CBFDD031B1875A8E2 Authority key identifier: 22:82:5A:0B:EE:92:66:83:AC:41:A0:48:6A:EF:55:AF:8C:1C:22:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa Signing time: Fri 20 Sep 2024 11:00:00 +0000 ROA not before: Fri 20 Sep 2024 10:55:00 +0000 ROA not after: Fri 19 Sep 2025 11:00:00 +0000 asID: 131745 IP address blocks: 103.139.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.crl rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:5b:cc:96:3f:48:09:69:32:8a:a2:3c:bf:dd:03:1b:18:75:a8:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22825A0BEE926683AC41A0486AEF55AF8C1C228F Validity Not Before: Sep 20 10:55:00 2024 GMT Not After : Sep 19 11:00:00 2025 GMT Subject: CN=AFDEE372F7F7EDD3B389651DAFE1890DC428640F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e3:33:6d:02:8d:af:1f:d7:94:0e:94:fb:0d: e4:80:c8:a1:1a:08:b6:52:63:6a:51:ee:69:c9:dc: 7b:64:0a:df:74:0d:20:8f:f3:a4:01:4a:a4:35:38: e9:d6:db:97:0d:92:2f:9f:50:a6:18:06:2f:f3:62: af:5c:e2:c0:e9:9b:59:a3:d6:6a:7e:6e:75:e4:96: fc:7c:b6:45:0a:7f:b6:d1:6c:6c:05:42:d9:d3:ff: cf:07:b7:e3:85:b3:9c:7e:7b:9f:17:83:39:81:ba: 45:05:4c:50:92:02:43:d1:3e:8d:af:45:f9:e4:27: cc:ad:70:7e:7d:4a:f2:c6:e7:95:15:f1:7e:9d:7f: 91:67:ef:a7:95:61:06:47:d7:5e:10:04:58:7a:0d: b7:bf:98:f6:dc:9c:8f:8c:90:85:47:cd:11:fc:6a: 64:db:49:e0:a6:47:09:e9:f4:56:5e:e9:71:58:32: cc:88:9b:cf:d0:f8:f9:25:a3:a9:4c:14:98:12:e8: 98:34:76:cd:35:e7:3a:4d:f2:da:b1:3d:eb:78:0b: 82:f5:4d:07:08:e8:41:a6:8e:a3:b1:0c:21:2e:13: 10:2b:9f:1e:60:86:37:21:16:37:8a:f5:e7:52:1d: b6:13:35:0a:45:44:3c:b6:48:c2:b0:46:db:c6:08: 95:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DE:E3:72:F7:F7:ED:D3:B3:89:65:1D:AF:E1:89:0D:C4:28:64:0F X509v3 Authority Key Identifier: keyid:22:82:5A:0B:EE:92:66:83:AC:41:A0:48:6A:EF:55:AF:8C:1C:22:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/22825A0BEE926683AC41A0486AEF55AF8C1C228F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22825A0BEE926683AC41A0486AEF55AF8C1C228F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3900208b-32ac-4a26-9d92-609ad76183c1/0/3130332e3133392e3137352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.175.0/24 Signature Algorithm: sha256WithRSAEncryption 06:37:19:95:f9:94:9b:4e:52:b1:d5:7e:e2:43:db:b3:eb:42: 32:5d:fa:0a:10:9e:d9:de:f5:28:b0:30:36:26:4b:12:ba:8d: 1a:7f:7a:31:5c:3c:1a:9e:32:47:7f:1a:e9:cd:12:e6:56:dd: 24:e4:f7:19:8b:4a:43:87:47:9c:f3:9e:1c:30:37:c3:85:1f: 25:19:e4:a0:42:bf:a2:0f:78:a5:ea:d0:f2:d9:98:45:5c:ca: c4:88:d4:60:04:f0:8d:13:e3:15:8f:63:29:08:52:15:3d:93: 55:6b:c2:dc:63:be:0b:91:35:7d:3e:d6:33:98:34:b8:64:30: 25:ac:ec:7e:7e:77:16:05:60:60:74:01:e1:5e:25:ca:a8:aa: 8f:c4:4d:4a:09:de:27:a5:9e:46:f3:b7:64:e0:78:c6:bd:1d: 01:9d:77:13:0f:06:1e:01:76:40:c8:c0:94:f8:e6:9a:57:27: f1:23:8a:85:24:25:62:bd:02:7c:fa:ed:45:76:1d:36:11:ef: a8:6a:ce:80:0a:69:c7:d9:44:47:af:a9:39:11:a9:a4:88:b1: df:47:ab:35:ea:4a:5d:cc:a7:69:40:84:2d:86:6c:38:f5:2c: 75:13:70:aa:20:31:9c:92:1e:ad:6a:aa:ec:de:2a:c2:c6:b4: e5:18:1a:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUalvMlj9ICWkyiqI8v90DGxh1qOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4MjVBMEJFRTkyNjY4M0FDNDFBMDQ4NkFFRjU1QUY4 QzFDMjI4RjAeFw0yNDA5MjAxMDU1MDBaFw0yNTA5MTkxMTAwMDBaMDMxMTAvBgNV BAMTKEFGREVFMzcyRjdGN0VERDNCMzg5NjUxREFGRTE4OTBEQzQyODY0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw4zNtAo2vH9eUDpT7DeSAyKEa CLZSY2pR7mnJ3HtkCt90DSCP86QBSqQ1OOnW25cNki+fUKYYBi/zYq9c4sDpm1mj 1mp+bnXklvx8tkUKf7bRbGwFQtnT/88Ht+OFs5x+e58XgzmBukUFTFCSAkPRPo2v RfnkJ8ytcH59SvLG55UV8X6df5Fn76eVYQZH114QBFh6Dbe/mPbcnI+MkIVHzRH8 amTbSeCmRwnp9FZe6XFYMsyIm8/Q+Pklo6lMFJgS6Jg0ds015zpN8tqxPet4C4L1 TQcI6EGmjqOxDCEuExArnx5ghjchFjeK9edSHbYTNQpFRDy2SMKwRtvGCJXhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr97jcvf37dOziWUdr+GJDcQoZA8wHwYDVR0j BBgwFoAUIoJaC+6SZoOsQaBIau9Vr4wcIo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OTAwMjA4Yi0zMmFjLTRhMjYtOWQ5Mi02MDlhZDc2MTgzYzEvMC8yMjgyNUEwQkVF OTI2NjgzQUM0MUEwNDg2QUVGNTVBRjhDMUMyMjhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4MjVBMEJFRTkyNjY4M0FDNDFBMDQ4NkFFRjU1QUY4QzFD MjI4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5MDAyMDhiLTMyYWMtNGEyNi05 ZDkyLTYwOWFkNzYxODNjMS8wLzMxMzAzMzJlMzEzMzM5MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni68wDQYJ KoZIhvcNAQELBQADggEBAAY3GZX5lJtOUrHVfuJD27PrQjJd+goQntne9SiwMDYm SxK6jRp/ejFcPBqeMkd/GunNEuZW3STk9xmLSkOHR5zznhwwN8OFHyUZ5KBCv6IP eKXq0PLZmEVcysSI1GAE8I0T4xWPYykIUhU9k1VrwtxjvguRNX0+1jOYNLhkMCWs 7H5+dxYFYGB0AeFeJcqoqo/ETUoJ3ielnkbzt2TgeMa9HQGddxMPBh4BdkDIwJT4 5ppXJ/EjioUkJWK9Anz67UV2HTYR76hqzoAKacfZREevqTkRqaSIsd9HqzXqSl3M p2lAhC2GbDj1LHUTcKogMZySHq1qquzeKsLGtOUYGgU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org