$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa File: 3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: G2Aj1Erzi22dbwXIe5ZKOYeLnX3IptEzXgXL9BU+vU0= Subject key identifier: 3E:7A:84:3C:DC:94:B7:9D:AE:CE:DB:CA:93:AD:91:2E:96:9F:AE:4F Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 2B266374E84A0D07443285C7D14AA3BEF2625934 Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa Signing time: Sat 16 Nov 2024 09:00:00 +0000 ROA not before: Sat 16 Nov 2024 08:55:00 +0000 ROA not after: Sat 15 Nov 2025 09:00:00 +0000 asID: 135464 IP address blocks: 103.102.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:26:63:74:e8:4a:0d:07:44:32:85:c7:d1:4a:a3:be:f2:62:59:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Nov 16 08:55:00 2024 GMT Not After : Nov 15 09:00:00 2025 GMT Subject: CN=3E7A843CDC94B79DAECEDBCA93AD912E969FAE4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cc:c1:a1:9d:28:98:88:dd:ec:5e:48:73:4b: 32:ad:bc:79:ae:65:f8:9f:80:c3:ee:0b:b3:d7:e3: b4:04:75:ea:25:dd:a2:53:fe:9a:fe:4d:24:15:c0: 7c:c9:af:ed:35:f8:9d:0e:7d:77:30:32:27:b7:86: 34:78:ad:46:4e:4f:57:10:b9:f3:1a:f6:1b:24:28: 49:57:ae:fa:ea:78:08:c5:57:f7:bd:c2:f1:55:bc: 7e:83:8c:b8:2d:bf:52:11:39:c6:34:56:f4:e0:6e: d4:1b:1f:f6:92:40:2b:53:2a:f9:65:af:9f:06:34: e3:17:ae:cf:43:5d:a5:ea:f8:8a:b2:3a:13:19:e5: 06:f7:fd:8a:01:76:88:cc:9b:ef:21:cb:09:cd:55: 89:07:3e:7e:cf:d1:86:cf:9b:01:46:c7:d6:9c:17: 11:e3:00:da:53:23:d7:f4:47:bd:0c:24:dc:71:5b: 44:16:13:ac:b5:02:1b:d5:2f:d2:1f:77:d3:07:45: 19:ab:a6:66:57:4c:71:f6:ff:3b:32:a6:73:b0:93: cc:d1:f6:cd:48:97:d8:ce:57:e4:ee:7c:24:32:b9: e5:96:d0:95:8d:4d:d1:bb:38:64:8a:59:52:45:2e: 6b:c2:ce:98:24:70:64:bd:58:66:13:0f:7c:39:95: 73:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7A:84:3C:DC:94:B7:9D:AE:CE:DB:CA:93:AD:91:2E:96:9F:AE:4F X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3136372e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.167.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:94:44:e7:b8:89:cb:b6:e8:4b:bb:8c:58:d8:40:45:ad:a2: 00:cb:81:96:85:f3:7c:d0:cc:43:69:b1:57:50:7f:d4:68:61: 19:db:40:2a:77:78:a7:a3:f0:d2:63:82:cb:82:31:e5:73:44: a7:7e:2e:f5:c3:86:51:d8:47:bc:aa:b6:21:f6:72:f8:ef:28: 5a:41:84:21:96:de:87:8e:99:34:05:4b:32:38:ba:f3:c6:8f: ad:1f:cb:11:95:e2:c2:d7:71:a6:f5:22:8b:ae:da:40:df:21: fc:ef:2f:0e:c9:27:55:00:4b:5c:85:bb:7f:ab:04:bf:e8:ce: 75:80:1b:3b:bb:fb:fe:6b:15:b9:a5:df:ff:b7:f9:81:b1:29: ee:2b:49:c9:71:d5:c0:c5:84:56:9f:eb:34:40:96:dd:cb:50: 49:28:87:b9:f0:39:80:fc:bb:39:1f:1c:3b:09:96:2f:21:01: d6:a7:e2:b1:5b:76:84:f3:99:0f:cb:de:f9:1a:ae:0a:1a:b1: a1:18:ab:84:ba:b8:a0:d7:b2:f1:47:90:96:60:11:61:1e:ca: ef:c1:d6:d1:22:3c:e1:c1:72:45:86:97:66:df:c7:b3:c5:d7: 9f:48:a9:1c:98:00:45:e0:80:9e:bf:69:33:62:b9:3a:c3:14: ca:88:57:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKyZjdOhKDQdEMoXH0UqjvvJiWTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNDExMTYwODU1MDBaFw0yNTExMTUwOTAwMDBaMDMxMTAvBgNV BAMTKDNFN0E4NDNDREM5NEI3OURBRUNFREJDQTkzQUQ5MTJFOTY5RkFFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTzMGhnSiYiN3sXkhzSzKtvHmu ZfifgMPuC7PX47QEdeol3aJT/pr+TSQVwHzJr+01+J0OfXcwMie3hjR4rUZOT1cQ ufMa9hskKElXrvrqeAjFV/e9wvFVvH6DjLgtv1IROcY0VvTgbtQbH/aSQCtTKvll r58GNOMXrs9DXaXq+IqyOhMZ5Qb3/YoBdojMm+8hywnNVYkHPn7P0YbPmwFGx9ac FxHjANpTI9f0R70MJNxxW0QWE6y1AhvVL9Ifd9MHRRmrpmZXTHH2/zsypnOwk8zR 9s1Il9jOV+TufCQyueWW0JWNTdG7OGSKWVJFLmvCzpgkcGS9WGYTD3w5lXMNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPnqEPNyUt52uztvKk62RLpafrk8wHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZqcwDQYJ KoZIhvcNAQELBQADggEBAB+UROe4icu26Eu7jFjYQEWtogDLgZaF83zQzENpsVdQ f9RoYRnbQCp3eKej8NJjgsuCMeVzRKd+LvXDhlHYR7yqtiH2cvjvKFpBhCGW3oeO mTQFSzI4uvPGj60fyxGV4sLXcab1Iouu2kDfIfzvLw7JJ1UAS1yFu3+rBL/oznWA Gzu7+/5rFbml3/+3+YGxKe4rSclx1cDFhFaf6zRAlt3LUEkoh7nwOYD8uzkfHDsJ li8hAdan4rFbdoTzmQ/L3vkargoasaEYq4S6uKDXsvFHkJZgEWEeyu/B1tEiPOHB ckWGl2bfx7PF159IqRyYAEXggJ6/aTNiuTrDFMqIV4U= -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:30 2024 by rpki-client on console-fra.rpki-client.org