$ rpki-client -vvf repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa File: 3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa (raw, json) Hash identifier: mIROvhV/B52jTv+b7xbtzNIsRy0qMHCKGHbEvF+jS6o= Subject key identifier: 6D:AF:86:8B:ED:A3:84:71:16:B5:C4:50:F2:84:51:B4:74:47:32:3E Certificate issuer: /CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Certificate serial: 5F6428495EFA4285E024EC45F8F269859575B4B9 Authority key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa Signing time: Wed 11 Sep 2024 19:00:00 +0000 ROA not before: Wed 11 Sep 2024 18:55:00 +0000 ROA not after: Wed 10 Sep 2025 19:00:00 +0000 asID: 147133 IP address blocks: 103.176.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:64:28:49:5e:fa:42:85:e0:24:ec:45:f8:f2:69:85:95:75:b4:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Validity Not Before: Sep 11 18:55:00 2024 GMT Not After : Sep 10 19:00:00 2025 GMT Subject: CN=6DAF868BEDA3847116B5C450F28451B47447323E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:76:5d:a3:23:75:37:1e:4e:fe:fe:08:45:50: 42:59:12:17:eb:3e:e9:b3:a5:bd:db:6a:c8:6f:3e: c5:46:39:87:f1:c5:f7:38:2c:72:42:f7:f8:3a:33: 69:c2:f9:8b:6b:bf:78:68:d2:e9:68:49:36:47:92: f0:9b:fb:73:7e:9f:da:b7:97:a7:51:63:cc:a3:29: e9:7f:e3:03:5c:4f:ce:61:01:50:63:31:db:f0:70: ab:52:e6:66:c7:14:83:ee:c1:d8:9b:18:5f:e6:b0: 66:57:0e:55:8f:85:b8:93:59:78:8f:af:ef:2e:f2: 01:d4:75:5b:5f:ce:d7:40:f2:6e:50:ba:db:91:da: d1:01:26:84:10:ea:18:7f:03:c0:ce:e4:b0:51:88: 8e:f2:a5:c1:d1:b1:f5:f8:5b:b5:56:61:11:bf:8f: f0:90:b4:e4:a1:b4:b9:3b:c8:06:79:83:02:bd:00: 97:98:d9:51:22:6b:8e:11:c4:07:ab:e2:95:4a:94: 6b:7f:57:a9:82:18:ce:c1:49:80:4e:f7:6d:f0:33: 71:45:0a:d7:ea:38:98:ff:e0:80:67:2b:ed:1d:03: a1:b6:7f:1a:f3:3d:fd:4a:a3:fc:8f:a2:78:a6:17: d9:69:7b:32:3c:b8:93:e6:62:13:05:21:c0:60:0e: e9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AF:86:8B:ED:A3:84:71:16:B5:C4:50:F2:84:51:B4:74:47:32:3E X509v3 Authority Key Identifier: keyid:25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.180.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:22:7d:60:80:58:bc:84:41:73:ac:cd:13:d9:c6:45:b1:74: fd:00:15:41:0e:c3:ae:43:a2:6a:1b:a4:47:af:75:1f:d5:50: 15:be:b8:d5:09:9e:72:cd:39:9d:db:b5:cc:9d:ee:54:62:af: 4f:00:8c:2b:ac:9a:ca:b2:9b:9d:fd:2c:89:7b:52:e4:a3:ff: e2:56:c9:c7:38:90:aa:b7:d0:d0:2b:99:ea:9d:06:b8:43:b0: 3c:f4:90:86:bd:84:23:64:fb:c3:5c:eb:9a:0f:1e:f0:0b:3e: 7e:a0:13:d4:56:ba:99:2e:b3:e8:fd:70:52:6a:b5:51:c8:0d: f2:fa:51:78:bd:b6:18:36:a8:2f:8a:61:16:3b:fe:df:e8:b6: 74:75:2c:05:06:a4:fa:ee:9d:73:da:a1:24:c7:83:ec:fc:f0: ce:ab:f2:fb:64:ee:a6:81:7f:ba:0b:89:e5:c1:2d:43:94:67: 6a:18:7c:a6:2c:d7:fb:0d:47:87:59:6d:94:f1:b2:8a:eb:b7: 29:c5:c3:6b:ed:b6:41:5f:f0:37:6e:9b:27:0f:a8:1e:eb:7a: 5d:5f:c8:75:fa:c0:e4:da:53:e5:b5:e4:f9:36:64:7f:ef:78: e4:f4:96:e3:36:e4:02:d7:36:b9:48:e0:9b:50:2a:20:f8:89: 78:0e:02:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX2QoSV76QoXgJOxF+PJphZV1tLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQy NEY0RjFCRTAeFw0yNDA5MTExODU1MDBaFw0yNTA5MTAxOTAwMDBaMDMxMTAvBgNV BAMTKDZEQUY4NjhCRURBMzg0NzExNkI1QzQ1MEYyODQ1MUI0NzQ0NzMyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSdl2jI3U3Hk7+/ghFUEJZEhfr Pumzpb3bashvPsVGOYfxxfc4LHJC9/g6M2nC+Ytrv3ho0uloSTZHkvCb+3N+n9q3 l6dRY8yjKel/4wNcT85hAVBjMdvwcKtS5mbHFIPuwdibGF/msGZXDlWPhbiTWXiP r+8u8gHUdVtfztdA8m5QutuR2tEBJoQQ6hh/A8DO5LBRiI7ypcHRsfX4W7VWYRG/ j/CQtOShtLk7yAZ5gwK9AJeY2VEia44RxAer4pVKlGt/V6mCGM7BSYBO923wM3FF CtfqOJj/4IBnK+0dA6G2fxrzPf1Ko/yPonimF9lpezI8uJPmYhMFIcBgDum/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUba+Gi+2jhHEWtcRQ8oRRtHRHMj4wHwYDVR0j BBgwFoAUJfRkAg2cu40YvHxHFp+XjST08b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMC8yNUY0NjQwMjBE OUNCQjhEMThCQzdDNDcxNjlGOTc4RDI0RjRGMUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQyNEY0 RjFCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZiLWEyNmUtNGIwZi1h ODNjLTA1ZmFiNGEzMGM3Ny8wLzMxMzAzMzJlMzEzNzM2MmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsLQwDQYJ KoZIhvcNAQELBQADggEBAEwifWCAWLyEQXOszRPZxkWxdP0AFUEOw65DomobpEev dR/VUBW+uNUJnnLNOZ3btcyd7lRir08AjCusmsqym539LIl7UuSj/+JWycc4kKq3 0NArmeqdBrhDsDz0kIa9hCNk+8Nc65oPHvALPn6gE9RWupkus+j9cFJqtVHIDfL6 UXi9thg2qC+KYRY7/t/otnR1LAUGpPrunXPaoSTHg+z88M6r8vtk7qaBf7oLieXB LUOUZ2oYfKYs1/sNR4dZbZTxsorrtynFw2vttkFf8DdumycPqB7rel1fyHX6wOTa U+W15Pk2ZH/veOT0luM25ALXNrlI4JtQKiD4iXgOAuE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org