$ rpki-client -vvf repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa File: 3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa (raw, json) Hash identifier: CtFPAoFCWQMoGC7obJ982ibcO5Aaxh3EjrLSrLSyo4E= Subject key identifier: 54:88:21:F5:BF:2F:F6:31:0A:44:B5:E0:6D:14:91:42:8E:C1:B4:1E Certificate issuer: /CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Certificate serial: 179D680E731C8C70397FB1F9C0412A4948224114 Authority key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa Signing time: Wed 20 Mar 2024 08:00:01 +0000 ROA not before: Wed 20 Mar 2024 07:55:01 +0000 ROA not after: Wed 19 Mar 2025 08:00:01 +0000 asID: 141087 IP address blocks: 103.156.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9d:68:0e:73:1c:8c:70:39:7f:b1:f9:c0:41:2a:49:48:22:41:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Validity Not Before: Mar 20 07:55:01 2024 GMT Not After : Mar 19 08:00:01 2025 GMT Subject: CN=548821F5BF2FF6310A44B5E06D1491428EC1B41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5f:d1:21:f8:ce:5a:82:a3:f6:ac:4e:a6:bc: 77:41:a7:3f:0e:5d:11:61:49:38:a4:a9:09:a0:87: 0c:64:c6:ea:28:ab:87:c3:15:63:1b:e2:64:09:68: 46:12:5c:cc:51:9d:fc:eb:2b:3d:94:eb:0e:ba:0d: 43:5c:b1:c9:57:aa:30:69:d2:56:24:6b:58:3d:a6: 9c:a5:76:7e:d9:3c:d2:19:94:65:fe:15:bb:17:1c: c7:cf:c9:46:ff:ce:bb:f8:b0:34:63:05:c3:b8:0b: 68:d6:68:31:19:15:cc:70:78:46:09:df:d9:10:be: 09:f7:b6:4e:96:e0:bc:ae:c2:43:4e:70:9e:3f:e1: 35:54:97:09:1e:c3:53:2a:e4:9f:76:d8:e4:49:cf: 4a:28:9d:99:49:4c:20:23:7d:e6:e3:fd:ba:69:5f: b0:dc:24:a1:46:67:87:2d:f6:94:0c:98:d1:28:98: 02:8d:f7:27:79:0e:ff:01:08:19:01:87:30:35:44: 06:9e:ed:b1:80:d4:5c:1f:15:d6:2f:80:5b:5e:d9: 73:0f:ea:49:37:d1:90:a0:67:9e:22:cf:77:e3:aa: 98:00:43:2f:a8:b9:d1:54:ab:a6:94:f9:b3:bb:66: de:26:0a:74:80:ae:68:35:dc:72:01:39:0a:f2:8b: 65:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:88:21:F5:BF:2F:F6:31:0A:44:B5:E0:6D:14:91:42:8E:C1:B4:1E X509v3 Authority Key Identifier: keyid:87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.96.0/24 Signature Algorithm: sha256WithRSAEncryption 51:d1:b7:d7:c7:2b:40:a7:b7:ec:ed:db:1d:3a:e0:a7:81:72: 26:08:ab:5a:54:05:2c:10:ed:62:90:7d:4c:ea:56:8c:b4:78: 1c:8e:fc:a4:d4:e7:b2:63:0d:50:87:8a:c2:2f:9e:d9:a7:74: d3:02:75:fb:91:53:65:86:3b:cc:e1:0a:42:a8:0c:75:76:f7: 90:59:dc:06:70:8e:53:e1:91:5f:87:0e:c3:46:6b:37:eb:f6: a6:f6:50:e9:fa:91:2f:7d:6e:6c:0d:51:b7:30:ba:a5:27:5b: bf:33:ee:d3:62:1e:c1:28:37:87:de:15:85:50:ce:fe:e7:9f: d7:fb:6a:15:f0:c0:06:6d:47:38:a5:d1:4a:94:12:c4:a1:e4: cd:a0:1b:9e:87:01:be:19:8b:cb:ca:85:e8:b4:b9:7e:31:89: de:7f:53:87:cd:32:99:c4:b3:91:6b:2b:e4:c4:6a:a7:ae:4a: bd:92:f3:af:f5:c4:ac:68:56:44:de:ba:05:7a:e5:bf:27:ee: 15:2c:f8:ad:ab:e0:5a:15:14:ca:3a:4f:aa:29:25:df:d8:d3: c3:29:5e:8d:05:63:72:95:d8:d5:10:df:73:ad:57:f1:59:93: e4:c8:3c:8b:00:82:d9:16:b1:63:71:ab:43:1b:2d:48:d5:1d: 17:c3:e5:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF51oDnMcjHA5f7H5wEEqSUgiQRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5 QzQ1M0JFRTAeFw0yNDAzMjAwNzU1MDFaFw0yNTAzMTkwODAwMDFaMDMxMTAvBgNV BAMTKDU0ODgyMUY1QkYyRkY2MzEwQTQ0QjVFMDZEMTQ5MTQyOEVDMUI0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChX9Eh+M5agqP2rE6mvHdBpz8O XRFhSTikqQmghwxkxuooq4fDFWMb4mQJaEYSXMxRnfzrKz2U6w66DUNcsclXqjBp 0lYka1g9ppyldn7ZPNIZlGX+FbsXHMfPyUb/zrv4sDRjBcO4C2jWaDEZFcxweEYJ 39kQvgn3tk6W4LyuwkNOcJ4/4TVUlwkew1Mq5J922ORJz0oonZlJTCAjfebj/bpp X7DcJKFGZ4ct9pQMmNEomAKN9yd5Dv8BCBkBhzA1RAae7bGA1FwfFdYvgFte2XMP 6kk30ZCgZ54iz3fjqpgAQy+oudFUq6aU+bO7Zt4mCnSArmg13HIBOQryi2U7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVIgh9b8v9jEKRLXgbRSRQo7BtB4wHwYDVR0j BBgwFoAUh430t+PHdrLtwXUvzLxeKJxFO+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMC84NzhERjRCN0Uz Qzc3NkIyRURDMTc1MkZDQ0JDNUUyODlDNDUzQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5QzQ1 M0JFRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMxMzAzMzJlMzEzNTM2MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xgMA0GCSqG SIb3DQEBCwUAA4IBAQBR0bfXxytAp7fs7dsdOuCngXImCKtaVAUsEO1ikH1M6laM tHgcjvyk1OeyYw1Qh4rCL57Zp3TTAnX7kVNlhjvM4QpCqAx1dveQWdwGcI5T4ZFf hw7DRms36/am9lDp+pEvfW5sDVG3MLqlJ1u/M+7TYh7BKDeH3hWFUM7+55/X+2oV 8MAGbUc4pdFKlBLEoeTNoBuehwG+GYvLyoXotLl+MYnef1OHzTKZxLORayvkxGqn rkq9kvOv9cSsaFZE3roFeuW/J+4VLPitq+BaFRTKOk+qKSXf2NPDKV6NBWNyldjV EN9zrVfxWZPkyDyLAILZFrFjcatDGy1I1R0Xw+WB -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org