$ rpki-client -vvf repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa File: 3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa (raw, json) Hash identifier: I/rkytrCsreSN7E1KqGsHJ84dCmK/xNAtlQhg9Bm6h8= Subject key identifier: 4A:54:3D:93:69:E3:CE:DC:B5:5B:57:1D:C7:26:EB:B3:6E:F9:AB:D2 Certificate issuer: /CN=F1364C8B62D0A8EDFF2EB7CE55698011E828988A Certificate serial: 47F90F0836FB952F4DEF22FCA4996CDAD8D640DE Authority key identifier: F1:36:4C:8B:62:D0:A8:ED:FF:2E:B7:CE:55:69:80:11:E8:28:98:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa Signing time: Wed 09 Oct 2024 08:00:02 +0000 ROA not before: Wed 09 Oct 2024 07:55:02 +0000 ROA not after: Wed 08 Oct 2025 08:00:02 +0000 asID: 149324 IP address blocks: 103.178.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.crl rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f9:0f:08:36:fb:95:2f:4d:ef:22:fc:a4:99:6c:da:d8:d6:40:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1364C8B62D0A8EDFF2EB7CE55698011E828988A Validity Not Before: Oct 9 07:55:02 2024 GMT Not After : Oct 8 08:00:02 2025 GMT Subject: CN=4A543D9369E3CEDCB55B571DC726EBB36EF9ABD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d1:99:1b:7e:5c:45:19:30:db:67:97:05:44: 88:f8:e8:cd:c9:04:d5:84:98:20:bb:98:52:74:4e: bc:e8:0c:1f:f7:87:48:cf:3a:75:9c:c3:eb:0d:e9: d6:50:bc:ff:c1:0d:d6:80:d4:3a:10:c8:11:7a:22: 8f:d8:19:43:e5:37:96:1a:7e:17:3d:16:95:ff:ec: 2b:a6:e3:70:ba:c9:84:95:39:76:25:1c:f8:db:53: 3a:54:12:8b:f0:f1:5f:b0:48:ed:47:d7:98:b5:4c: 40:df:81:f3:65:b3:a7:6f:f5:ab:16:cd:0a:73:dc: 5f:5c:0f:76:70:a9:74:b3:2f:bc:05:19:8d:5e:f2: 07:33:a6:ad:df:1b:6d:85:09:e3:ca:c8:55:aa:97: 62:cd:ed:3e:27:01:d9:79:0a:22:90:3a:6e:ab:e4: 74:1c:8b:80:da:a5:8a:e5:fa:e3:f6:69:9d:5a:1e: da:2c:ef:33:a9:0a:f4:3c:a7:95:af:c1:1d:a6:c0: f6:90:09:54:94:c1:cb:e0:00:f7:b0:8d:a0:7b:09: ea:99:50:db:d4:20:2e:1a:02:a3:55:42:18:6d:0f: 63:d0:96:89:aa:5b:99:26:46:39:76:b2:cb:d7:fe: 82:09:10:83:9a:09:f5:16:c0:0c:87:44:64:2e:24: c1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:54:3D:93:69:E3:CE:DC:B5:5B:57:1D:C7:26:EB:B3:6E:F9:AB:D2 X509v3 Authority Key Identifier: keyid:F1:36:4C:8B:62:D0:A8:ED:FF:2E:B7:CE:55:69:80:11:E8:28:98:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.150.0/23 Signature Algorithm: sha256WithRSAEncryption 07:1a:fb:9b:c3:78:6d:f4:43:69:5d:cf:17:f9:30:04:8f:50: 7b:56:c5:c2:4b:40:ad:87:71:f0:a1:e1:e4:f5:01:67:e5:f4: a8:b8:a1:38:c8:2e:81:27:36:0f:56:3e:97:d7:eb:5d:26:70: a6:5a:92:42:35:97:c1:73:6f:07:2d:17:bc:ae:a8:46:e5:3a: 8f:81:35:61:19:d5:9b:08:b1:ae:c5:49:93:c3:9c:ce:aa:c1: 95:db:4f:78:65:dc:c4:45:b9:49:9a:a3:2a:e2:9e:39:7e:d2: 9e:15:2d:fe:a7:d6:2a:19:63:2c:e1:83:bd:1c:57:14:3a:69: ca:c6:52:8b:2f:95:c7:cb:7f:83:0c:53:d0:56:44:72:d2:f5: d4:3c:1e:fd:f8:e5:1c:3c:ff:43:af:8f:db:80:c5:4f:a3:7c: fd:a8:2c:c3:df:b3:1b:9d:8a:28:c0:f3:e1:7a:76:bb:ac:79: 67:23:72:b2:58:5c:e7:9a:38:6a:a4:e4:9e:5d:80:b7:2b:c8: 5b:fe:b7:e8:08:42:31:53:27:f0:2f:cc:56:b9:28:52:bf:95: 50:82:91:75:c4:ca:54:c1:f4:68:8d:6a:48:c9:55:81:e9:c5: 3a:9a:4b:3c:ba:83:4d:2b:b4:19:19:de:97:66:59:8b:06:50: 65:13:90:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR/kPCDb7lS9N7yL8pJls2tjWQN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEzNjRDOEI2MkQwQThFREZGMkVCN0NFNTU2OTgwMTFF ODI4OTg4QTAeFw0yNDEwMDkwNzU1MDJaFw0yNTEwMDgwODAwMDJaMDMxMTAvBgNV BAMTKDRBNTQzRDkzNjlFM0NFRENCNTVCNTcxREM3MjZFQkIzNkVGOUFCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN0ZkbflxFGTDbZ5cFRIj46M3J BNWEmCC7mFJ0TrzoDB/3h0jPOnWcw+sN6dZQvP/BDdaA1DoQyBF6Io/YGUPlN5Ya fhc9FpX/7Cum43C6yYSVOXYlHPjbUzpUEovw8V+wSO1H15i1TEDfgfNls6dv9asW zQpz3F9cD3ZwqXSzL7wFGY1e8gczpq3fG22FCePKyFWql2LN7T4nAdl5CiKQOm6r 5HQci4DapYrl+uP2aZ1aHtos7zOpCvQ8p5WvwR2mwPaQCVSUwcvgAPewjaB7CeqZ UNvUIC4aAqNVQhhtD2PQlomqW5kmRjl2ssvX/oIJEIOaCfUWwAyHRGQuJMFZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSlQ9k2njzty1W1cdxybrs275q9IwHwYDVR0j BBgwFoAU8TZMi2LQqO3/LrfOVWmAEegomIowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjVmYTk4Zi0xZTg1LTQ2MzgtYmI5ZC0yODczNzhhNGNlODcvMC9GMTM2NEM4QjYy RDBBOEVERkYyRUI3Q0U1NTY5ODAxMUU4Mjg5ODhBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEzNjRDOEI2MkQwQThFREZGMkVCN0NFNTU2OTgwMTFFODI4 OTg4QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2NWZhOThmLTFlODUtNDYzOC1i YjlkLTI4NzM3OGE0Y2U4Ny8wLzMxMzAzMzJlMzEzNzM4MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzMzMyMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnspYwDQYJ KoZIhvcNAQELBQADggEBAAca+5vDeG30Q2ldzxf5MASPUHtWxcJLQK2HcfCh4eT1 AWfl9Ki4oTjILoEnNg9WPpfX610mcKZakkI1l8FzbwctF7yuqEblOo+BNWEZ1ZsI sa7FSZPDnM6qwZXbT3hl3MRFuUmaoyrinjl+0p4VLf6n1ioZYyzhg70cVxQ6acrG UosvlcfLf4MMU9BWRHLS9dQ8Hv345Rw8/0Ovj9uAxU+jfP2oLMPfsxudiijA8+F6 druseWcjcrJYXOeaOGqk5J5dgLcryFv+t+gIQjFTJ/AvzFa5KFK/lVCCkXXEylTB 9GiNakjJVYHpxTqaSzy6g00rtBkZ3pdmWYsGUGUTkFo= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org