$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137372e302f32342d3234203d3e20313335343634.roa File: 3130332e3130322e3137372e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: oHkNyUxZ+91xlNVhfeWI9Dc0rmMp8x6qN96DcYOObkU= Subject key identifier: 88:B9:19:7E:85:BF:55:31:CD:1B:11:EF:7A:82:51:F7:25:28:EA:82 Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 66E59EBAC2187720FBEBAA4371EEED5965E5E974 Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137372e302f32342d3234203d3e20313335343634.roa Signing time: Sat 16 Nov 2024 09:00:00 +0000 ROA not before: Sat 16 Nov 2024 08:55:00 +0000 ROA not after: Sat 15 Nov 2025 09:00:00 +0000 asID: 135464 IP address blocks: 103.102.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e5:9e:ba:c2:18:77:20:fb:eb:aa:43:71:ee:ed:59:65:e5:e9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Nov 16 08:55:00 2024 GMT Not After : Nov 15 09:00:00 2025 GMT Subject: CN=88B9197E85BF5531CD1B11EF7A8251F72528EA82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:dd:6b:4a:79:72:dc:a3:d4:e8:ae:a2:ba: 0d:0d:77:92:2a:2c:cb:42:cc:a0:4d:a9:f3:b9:48: be:2c:b1:f3:c2:d6:90:1c:e0:3a:1e:d1:97:b6:5e: 5d:76:2b:ab:3b:bd:c9:be:e3:0f:3d:d6:ec:9e:d5: c5:3c:7c:00:3c:d4:33:13:c0:92:e3:b7:c2:4a:30: 03:fb:20:77:54:f4:18:e2:dd:a8:1b:6a:ca:e1:93: 89:c7:24:cd:5a:2d:4d:8e:0c:9e:ac:3c:ea:92:46: 64:55:d0:3e:47:e8:89:12:5c:b4:8d:bf:bb:15:ae: f1:a7:c6:e2:a4:93:ff:9b:4e:f2:7d:f4:df:dc:19: 53:97:b9:6b:51:62:01:0a:4c:18:b7:c0:93:aa:08: 14:1b:85:7f:90:25:29:32:6c:38:53:0c:42:c5:2c: 3b:2c:53:c3:1f:08:b1:69:9e:be:17:d5:cb:65:9b: 14:e4:3e:66:fd:2a:29:44:52:f8:9e:10:4e:69:ee: 56:0b:5e:90:67:11:2e:83:68:3d:6e:1d:cc:96:5f: d8:8a:5e:cf:4a:fa:db:7c:1b:7c:3c:0e:2e:87:62: 56:11:26:b3:ef:7b:a7:74:52:d0:0f:2b:34:09:c8: cc:76:64:d7:ac:52:23:92:4f:9e:06:7b:67:e9:b1: 16:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B9:19:7E:85:BF:55:31:CD:1B:11:EF:7A:82:51:F7:25:28:EA:82 X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e3130322e3137372e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.177.0/24 Signature Algorithm: sha256WithRSAEncryption ca:2b:1f:d5:f0:fd:f6:b4:da:ba:88:e8:54:62:3c:21:a2:c5: b9:6d:72:71:81:10:84:da:b7:31:70:10:17:a2:62:2e:1c:15: a1:78:cc:b7:e2:13:35:0d:4c:c1:e5:4d:bb:97:66:f1:99:28: 8c:28:04:b9:63:14:bc:62:95:7e:ef:09:4e:c6:2d:6f:a2:59: 88:30:dd:37:89:88:18:0e:b1:50:95:32:24:1c:e9:2a:9b:01: a7:bb:4c:b0:19:8f:88:03:49:bb:9a:5c:a7:a2:0a:29:77:dc: 18:c8:e8:a6:36:19:86:55:9d:84:67:76:c8:5d:e7:92:20:eb: fa:63:e2:b0:aa:24:68:49:fd:de:d6:15:3a:d7:64:fb:5f:27: 96:12:ce:a3:b0:22:d3:50:f7:6b:58:88:bc:87:aa:88:e0:27: e7:ca:3a:cc:43:73:44:8b:d7:c6:a4:56:6a:ac:a8:8c:c5:a0: 4d:3e:43:f7:45:10:31:34:85:53:6f:f2:2a:13:82:3f:f4:65: 44:29:a5:df:5b:af:1f:88:2e:b5:0c:21:91:0b:d8:d8:47:2b: bf:31:22:06:33:3f:36:23:ee:fa:4b:d1:af:9c:06:a6:1f:77: 31:06:7b:30:2f:cd:f1:e7:e3:c4:3f:fa:e1:cb:7c:2e:9d:b2: b2:e1:89:2e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZuWeusIYdyD766pDce7tWWXl6XQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNDExMTYwODU1MDBaFw0yNTExMTUwOTAwMDBaMDMxMTAvBgNV BAMTKDg4QjkxOTdFODVCRjU1MzFDRDFCMTFFRjdBODI1MUY3MjUyOEVBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38d1rSnly3KPU6K6iug0Nd5Iq LMtCzKBNqfO5SL4ssfPC1pAc4Doe0Ze2Xl12K6s7vcm+4w891uye1cU8fAA81DMT wJLjt8JKMAP7IHdU9Bji3agbasrhk4nHJM1aLU2ODJ6sPOqSRmRV0D5H6IkSXLSN v7sVrvGnxuKkk/+bTvJ99N/cGVOXuWtRYgEKTBi3wJOqCBQbhX+QJSkybDhTDELF LDssU8MfCLFpnr4X1ctlmxTkPmb9KilEUvieEE5p7lYLXpBnES6DaD1uHcyWX9iK Xs9K+tt8G3w8Di6HYlYRJrPve6d0UtAPKzQJyMx2ZNesUiOST54Ge2fpsRbzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiLkZfoW/VTHNGxHveoJR9yUo6oIwHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzEzMDMyMmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZrEwDQYJ KoZIhvcNAQELBQADggEBAMorH9Xw/fa02rqI6FRiPCGixbltcnGBEITatzFwEBei Yi4cFaF4zLfiEzUNTMHlTbuXZvGZKIwoBLljFLxilX7vCU7GLW+iWYgw3TeJiBgO sVCVMiQc6SqbAae7TLAZj4gDSbuaXKeiCil33BjI6KY2GYZVnYRndshd55Ig6/pj 4rCqJGhJ/d7WFTrXZPtfJ5YSzqOwItNQ92tYiLyHqojgJ+fKOsxDc0SL18akVmqs qIzFoE0+Q/dFEDE0hVNv8ioTgj/0ZUQppd9brx+ILrUMIZEL2NhHK78xIgYzPzYj 7vpL0a+cBqYfdzEGezAvzfHn48Q/+uHLfC6dsrLhiS4= -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:30 2024 by rpki-client on console-fra.rpki-client.org