$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa File: 3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa (raw, json) Hash identifier: 5hNQgKoQHy01q9WmOa4z3rjam+uZfVCwQVSfgN0IF+Y= Subject key identifier: 77:E1:16:E5:0B:29:CB:B9:0D:7A:EC:4A:57:96:EA:3D:BB:11:5E:95 Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 5A69F8AC23627615E8C37CA346CC3A151F85F379 Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa Signing time: Mon 08 Apr 2024 15:19:30 +0000 ROA not before: Mon 08 Apr 2024 15:14:30 +0000 ROA not after: Mon 07 Apr 2025 15:19:30 +0000 asID: 151994 IP address blocks: 103.255.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:69:f8:ac:23:62:76:15:e8:c3:7c:a3:46:cc:3a:15:1f:85:f3:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Apr 8 15:14:30 2024 GMT Not After : Apr 7 15:19:30 2025 GMT Subject: CN=77E116E50B29CBB90D7AEC4A5796EA3DBB115E95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f6:d5:cf:2c:10:91:30:61:02:b4:78:8b:10: f7:84:06:13:b7:e2:6f:49:16:e7:d8:34:eb:a1:79: d0:b6:aa:66:1c:e1:1d:41:e6:12:33:55:e2:35:1f: af:20:03:94:28:bf:50:44:89:c4:c4:89:bc:ef:df: 90:03:14:45:75:b2:f5:8a:31:41:3b:d0:28:8a:20: 19:6b:c4:8d:d7:ae:73:74:fd:f2:6c:86:e4:33:d8: 49:17:69:e2:73:97:fa:b1:e4:a5:bd:3c:e2:1c:70: c0:2e:fc:33:ed:9f:a3:b6:f5:e8:84:70:a8:34:79: 5a:9b:66:72:07:18:ce:b0:96:e1:b6:4e:b2:1c:87: 5c:4a:d3:48:9e:90:e4:ea:f8:84:87:45:a1:a5:96: c7:c3:23:56:34:9d:31:68:b9:df:df:de:a0:78:a1: 6e:dd:14:f9:cb:b8:f9:97:75:f6:83:d6:41:e8:69: 29:3e:e0:48:ef:02:b8:f7:4d:31:20:c1:fe:b4:da: 7a:9b:62:b2:8c:c4:55:1f:47:4a:f0:97:a8:eb:a3: 3d:97:30:b8:b4:cf:86:0d:67:3a:51:b6:0b:70:e2: 77:92:37:5c:77:4c:03:ac:a0:b3:d8:2f:70:28:86: dd:6e:70:a3:f7:c3:17:2b:11:15:cc:db:d4:fc:39: e9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E1:16:E5:0B:29:CB:B9:0D:7A:EC:4A:57:96:EA:3D:BB:11:5E:95 X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.165.0/24 Signature Algorithm: sha256WithRSAEncryption e3:7d:b3:31:fa:ea:bc:05:8e:24:16:d0:3b:bb:11:ea:1d:b0: d9:5d:44:15:9e:e2:e6:9c:bd:09:5b:6f:6c:fc:97:78:fd:63: 3b:b9:27:b1:c1:75:e8:12:45:35:e6:6d:6e:94:66:97:d2:dd: 21:21:ef:99:47:4e:9b:14:a2:52:44:9a:c0:f7:5a:ac:2d:e0: 67:4e:53:fd:63:96:51:dd:9c:eb:0a:7f:3b:df:ef:b8:23:8a: 84:15:e1:0e:bb:b9:b0:c9:c8:4a:7b:9c:ec:69:c6:62:9f:c3: 7b:d7:e6:40:38:92:4a:1f:f1:5e:47:04:6f:f5:72:50:0e:14: 9f:55:a8:92:18:62:e2:8a:f5:b8:2c:ab:6f:ab:2c:17:55:dd: f2:ab:73:a4:dc:c8:16:8c:67:ac:d4:be:fa:01:0a:2e:ab:79: 53:3e:32:5a:cd:83:fb:70:e6:f3:15:cb:f6:e2:49:27:d7:f3: 73:36:b2:6f:e9:82:21:7c:2c:5b:7c:1b:f5:f5:9b:a4:99:82: ce:66:06:c7:cd:63:c9:40:d0:61:0c:73:3e:42:bc:5e:aa:d0: cb:7f:80:05:42:6f:73:cb:2a:4d:42:70:50:7c:b7:8d:12:8c: 8e:b1:d0:5d:9f:2f:d8:81:1f:71:0e:e3:8d:cd:2f:4d:91:08: 1a:37:b0:f1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWmn4rCNidhXow3yjRsw6FR+F83kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNDA0MDgxNTE0MzBaFw0yNTA0MDcxNTE5MzBaMDMxMTAvBgNV BAMTKDc3RTExNkU1MEIyOUNCQjkwRDdBRUM0QTU3OTZFQTNEQkIxMTVFOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn9tXPLBCRMGECtHiLEPeEBhO3 4m9JFufYNOuhedC2qmYc4R1B5hIzVeI1H68gA5Qov1BEicTEibzv35ADFEV1svWK MUE70CiKIBlrxI3XrnN0/fJshuQz2EkXaeJzl/qx5KW9POIccMAu/DPtn6O29eiE cKg0eVqbZnIHGM6wluG2TrIch1xK00iekOTq+ISHRaGllsfDI1Y0nTFoud/f3qB4 oW7dFPnLuPmXdfaD1kHoaSk+4EjvArj3TTEgwf602nqbYrKMxFUfR0rwl6jroz2X MLi0z4YNZzpRtgtw4neSN1x3TAOsoLPYL3Aoht1ucKP3wxcrERXM29T8OenxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUd+EW5Qspy7kNeuxKV5bqPbsRXpUwHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/6UwDQYJ KoZIhvcNAQELBQADggEBAON9szH66rwFjiQW0Du7EeodsNldRBWe4uacvQlbb2z8 l3j9Yzu5J7HBdegSRTXmbW6UZpfS3SEh75lHTpsUolJEmsD3Wqwt4GdOU/1jllHd nOsKfzvf77gjioQV4Q67ubDJyEp7nOxpxmKfw3vX5kA4kkof8V5HBG/1clAOFJ9V qJIYYuKK9bgsq2+rLBdV3fKrc6TcyBaMZ6zUvvoBCi6reVM+MlrNg/tw5vMVy/bi SSfX83M2sm/pgiF8LFt8G/X1m6SZgs5mBsfNY8lA0GEMcz5CvF6q0Mt/gAVCb3PL Kk1CcFB8t40SjI6x0F2fL9iBH3EO443NL02RCBo3sPE= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org