$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa File: 3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa (raw, json) Hash identifier: XFsIo6zuwz17xqiKOSEFnvK2Jc1wZXg/6Dw1KB4MNIs= Subject key identifier: 5A:E4:05:45:6D:7C:B5:BE:E4:0D:84:13:97:9C:BF:DB:1C:B8:2F:73 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 459B097DEF9CBD623A3C9DF4F1D299F628797DDA Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa Signing time: Fri 07 Jun 2024 08:01:01 +0000 ROA not before: Fri 07 Jun 2024 07:56:01 +0000 ROA not after: Fri 06 Jun 2025 08:01:01 +0000 asID: 142389 IP address blocks: 103.178.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:9b:09:7d:ef:9c:bd:62:3a:3c:9d:f4:f1:d2:99:f6:28:79:7d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: Jun 7 07:56:01 2024 GMT Not After : Jun 6 08:01:01 2025 GMT Subject: CN=5AE405456D7CB5BEE40D8413979CBFDB1CB82F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f0:53:9f:23:50:49:f9:69:67:a6:75:42:0a: 41:26:02:5b:a9:4b:57:26:b3:2a:19:90:6d:52:69: 20:57:f6:bb:ef:9b:ef:fa:a0:13:8d:3c:e6:68:2f: 15:f0:5c:55:a5:5e:2a:a1:29:2f:02:a8:e2:d0:21: 6f:55:3b:4d:8f:bc:31:ef:e0:2a:e0:dc:8b:d9:e7: b8:85:df:9e:88:04:56:96:1a:6c:5c:35:25:b6:89: eb:35:4b:5b:fe:42:8c:cc:c6:f6:ad:f0:4a:1c:61: f0:6e:67:cb:04:24:87:db:20:71:47:83:14:96:d9: 52:e8:e4:72:ec:d0:fd:9c:33:53:8b:eb:53:06:91: 22:29:63:ab:7f:bb:81:a5:27:a3:b6:57:09:0c:3b: fa:88:c6:bb:99:fc:4d:e5:3c:a9:0f:86:34:88:ae: 85:3b:20:8c:82:46:f0:99:ae:af:53:d1:c9:c0:51: 2a:35:f3:33:c7:b4:1e:28:42:5a:d4:81:27:0a:7b: 97:22:4f:1a:1b:63:9f:c9:b6:74:de:d4:d7:d9:7c: 2e:b3:bb:a8:4c:8f:b8:05:aa:fe:6c:c4:c8:8a:ff: e8:ca:5c:c2:8d:cd:a7:d9:b8:04:9e:de:c2:d9:b3: 9f:a2:8e:00:37:d9:52:31:1f:3e:2c:c9:5e:fc:b0: e9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E4:05:45:6D:7C:B5:BE:E4:0D:84:13:97:9C:BF:DB:1C:B8:2F:73 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137382e3132352e302f32342d3234203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.125.0/24 Signature Algorithm: sha256WithRSAEncryption 26:85:64:4d:ce:57:d5:2c:df:80:db:46:de:16:6d:19:d0:e1: 17:8c:d5:93:f4:f6:2f:74:fa:15:0e:5c:c2:9d:8a:44:73:2d: a9:06:e6:9c:d2:90:a7:29:a4:61:fd:ab:41:6a:d1:ea:1a:27: c9:6b:ef:d9:47:e5:fc:49:bb:2b:3a:6a:f9:72:ca:e3:64:a7: 51:24:fe:80:25:3f:8f:5e:bd:55:18:5d:24:d4:0a:b4:b8:d1: e6:c7:97:b0:17:f6:fa:6f:bd:a4:5f:49:be:16:21:7d:fb:2a: 42:38:6c:a5:78:95:7e:e5:e5:cb:e2:16:11:4c:7f:5e:b8:47: 13:e5:40:e2:84:e5:f4:71:05:fd:40:7a:e0:cf:0a:a3:df:fb: 0a:d3:6a:86:22:e7:56:a7:ce:c2:55:d0:b6:50:d9:12:22:d8: d7:62:01:ec:85:31:cc:51:40:be:05:10:56:bc:cb:cf:3a:9b: 54:0c:49:6c:5d:dd:8e:93:cc:d8:eb:65:0e:67:f4:2d:17:ad: 08:04:16:e8:fd:e5:41:40:50:d4:2f:0c:13:0c:f0:4a:14:48: cf:34:08:5f:38:1e:32:1b:fe:3e:6c:1c:b6:39:5e:ea:87:17: 5c:73:67:db:91:f9:ad:21:08:23:12:b7:59:ed:52:43:bc:ad: 63:eb:ce:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURZsJfe+cvWI6PJ308dKZ9ih5fdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNDA2MDcwNzU2MDFaFw0yNTA2MDYwODAxMDFaMDMxMTAvBgNV BAMTKDVBRTQwNTQ1NkQ3Q0I1QkVFNDBEODQxMzk3OUNCRkRCMUNCODJGNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe8FOfI1BJ+WlnpnVCCkEmAlup S1cmsyoZkG1SaSBX9rvvm+/6oBONPOZoLxXwXFWlXiqhKS8CqOLQIW9VO02PvDHv 4Crg3IvZ57iF356IBFaWGmxcNSW2ies1S1v+QozMxvat8EocYfBuZ8sEJIfbIHFH gxSW2VLo5HLs0P2cM1OL61MGkSIpY6t/u4GlJ6O2VwkMO/qIxruZ/E3lPKkPhjSI roU7IIyCRvCZrq9T0cnAUSo18zPHtB4oQlrUgScKe5ciTxobY5/JtnTe1NfZfC6z u6hMj7gFqv5sxMiK/+jKXMKNzafZuASe3sLZs5+ijgA32VIxHz4syV78sOnXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWuQFRW18tb7kDYQTl5y/2xy4L3MwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMxMzAzMzJlMzEzNzM4MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsn0wDQYJ KoZIhvcNAQELBQADggEBACaFZE3OV9Us34DbRt4WbRnQ4ReM1ZP09i90+hUOXMKd ikRzLakG5pzSkKcppGH9q0Fq0eoaJ8lr79lH5fxJuys6avlyyuNkp1Ek/oAlP49e vVUYXSTUCrS40ebHl7AX9vpvvaRfSb4WIX37KkI4bKV4lX7l5cviFhFMf164RxPl QOKE5fRxBf1AeuDPCqPf+wrTaoYi51anzsJV0LZQ2RIi2NdiAeyFMcxRQL4FEFa8 y886m1QMSWxd3Y6TzNjrZQ5n9C0XrQgEFuj95UFAUNQvDBMM8EoUSM80CF84HjIb /j5sHLY5XuqHF1xzZ9uR+a0hCCMSt1ntUkO8rWPrzk0= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org