$ rpki-client -vvf repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa File: 3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa (raw, json) Hash identifier: 8X7MnhcrGXRrLaiC6p6nb/f9+Sxh0EM3kk42oSlJDeM= Subject key identifier: EC:CB:89:19:19:02:A9:03:76:55:E1:D1:D7:73:C2:42:2E:33:88:48 Certificate issuer: /CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Certificate serial: 5F52B0505FF21CF98EE4F5C02CBA5C6AF885EEB4 Authority key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa Signing time: Wed 11 Sep 2024 18:00:00 +0000 ROA not before: Wed 11 Sep 2024 17:55:00 +0000 ROA not after: Wed 10 Sep 2025 18:00:00 +0000 asID: 147133 IP address blocks: 103.176.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:52:b0:50:5f:f2:1c:f9:8e:e4:f5:c0:2c:ba:5c:6a:f8:85:ee:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Validity Not Before: Sep 11 17:55:00 2024 GMT Not After : Sep 10 18:00:00 2025 GMT Subject: CN=ECCB89191902A9037655E1D1D773C2422E338848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:21:bb:15:8a:e8:fe:79:31:9e:d9:d5:c8:ce: 18:7c:12:76:3f:00:72:d9:c4:63:95:6b:fc:dc:84: 3c:41:78:54:f5:0e:eb:f5:0b:ba:4e:86:fd:63:4a: a6:58:9e:7b:63:52:b4:d6:26:0b:5a:e2:b8:0c:92: 7b:f2:6f:58:37:11:c6:14:cc:15:bf:a8:b8:6c:b5: 07:0f:59:5d:1a:2a:84:34:75:d2:e6:49:8e:15:af: 67:56:69:8a:02:56:51:8a:d7:4f:c6:bc:00:04:b2: 6e:1c:27:d9:49:7c:fd:1e:e2:1f:bd:fb:51:7d:4a: 9c:39:03:1b:26:ff:49:47:5f:55:d3:db:7e:32:9a: 5e:9f:5c:47:8a:77:45:a4:8a:e0:dd:ce:e9:7a:02: cf:f2:6d:3e:4e:4a:1b:69:be:07:30:63:c1:27:e4: 4e:73:68:c6:36:ce:88:33:7c:b4:0b:34:0a:76:96: e5:fc:00:57:35:2c:41:4b:e9:1a:a6:79:8a:48:84: 3a:a9:48:63:a3:e3:36:12:73:6f:dd:f3:b9:4f:21: 72:ed:ec:e4:29:0e:35:06:c9:6e:29:01:c2:bc:a5: c4:80:7d:26:f7:30:47:65:82:f9:7a:a0:35:34:55: a1:9d:6c:ae:f5:c0:36:ae:d6:c3:06:f5:62:2d:50: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CB:89:19:19:02:A9:03:76:55:E1:D1:D7:73:C2:42:2E:33:88:48 X509v3 Authority Key Identifier: keyid:25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138312e302f32342d3234203d3e20313437313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.181.0/24 Signature Algorithm: sha256WithRSAEncryption 76:7b:82:be:02:4f:0b:94:8c:39:21:10:f5:f4:19:77:be:ad: ca:78:33:83:2a:f3:d5:e5:70:bb:6d:a9:d9:19:c7:30:f1:5a: b0:da:e1:fd:1b:91:f0:04:83:e0:0c:94:52:99:e6:2a:4d:02: 28:95:3f:3a:6a:8e:ab:d6:78:30:73:34:e1:65:ae:df:50:44: ed:c8:08:c6:6b:e1:e3:d2:96:9f:e1:39:57:48:b2:d2:b2:e0: 8a:c0:94:cf:4f:a6:77:9b:e9:cc:69:ce:4b:d2:fa:ad:19:62: 92:37:68:a3:a4:4c:0f:b6:a8:0b:3c:37:8b:77:cf:4d:3a:79: c2:3a:81:ac:8c:30:cf:74:9c:45:8c:6b:e0:e8:e7:e3:18:70: 93:b6:04:9d:fc:81:fb:6b:54:af:0a:77:6e:80:0d:c1:5b:57: 8d:41:ee:fe:ef:f4:ad:b7:a0:48:4d:0e:e6:67:1b:ed:f7:98: fa:47:42:f3:8f:e4:0f:fb:39:f7:0b:1d:9a:a7:cd:b8:a1:65: 6a:e5:80:06:bd:e3:ee:4c:3f:5b:c1:2b:a1:a6:6b:ce:a1:9e: e9:3b:c6:2d:78:2e:10:9e:58:23:71:99:be:76:1b:5d:fe:8f: 75:52:d3:3b:47:a6:8f:01:94:d9:2a:61:c7:44:57:c4:07:cd: 9f:d0:a6:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX1KwUF/yHPmO5PXALLpcaviF7rQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQy NEY0RjFCRTAeFw0yNDA5MTExNzU1MDBaFw0yNTA5MTAxODAwMDBaMDMxMTAvBgNV BAMTKEVDQ0I4OTE5MTkwMkE5MDM3NjU1RTFEMUQ3NzNDMjQyMkUzMzg4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNIbsViuj+eTGe2dXIzhh8EnY/ AHLZxGOVa/zchDxBeFT1Duv1C7pOhv1jSqZYnntjUrTWJgta4rgMknvyb1g3EcYU zBW/qLhstQcPWV0aKoQ0ddLmSY4Vr2dWaYoCVlGK10/GvAAEsm4cJ9lJfP0e4h+9 +1F9Spw5Axsm/0lHX1XT234yml6fXEeKd0WkiuDdzul6As/ybT5OShtpvgcwY8En 5E5zaMY2zogzfLQLNAp2luX8AFc1LEFL6RqmeYpIhDqpSGOj4zYSc2/d87lPIXLt 7OQpDjUGyW4pAcK8pcSAfSb3MEdlgvl6oDU0VaGdbK71wDau1sMG9WItUHNJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7MuJGRkCqQN2VeHR13PCQi4ziEgwHwYDVR0j BBgwFoAUJfRkAg2cu40YvHxHFp+XjST08b4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMC8yNUY0NjQwMjBE OUNCQjhEMThCQzdDNDcxNjlGOTc4RDI0RjRGMUJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGNDY0MDIwRDlDQkI4RDE4QkM3QzQ3MTY5Rjk3OEQyNEY0 RjFCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZiLWEyNmUtNGIwZi1h ODNjLTA1ZmFiNGEzMGM3Ny8wLzMxMzAzMzJlMzEzNzM2MmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsLUwDQYJ KoZIhvcNAQELBQADggEBAHZ7gr4CTwuUjDkhEPX0GXe+rcp4M4Mq89XlcLttqdkZ xzDxWrDa4f0bkfAEg+AMlFKZ5ipNAiiVPzpqjqvWeDBzNOFlrt9QRO3ICMZr4ePS lp/hOVdIstKy4IrAlM9Ppneb6cxpzkvS+q0ZYpI3aKOkTA+2qAs8N4t3z006ecI6 gayMMM90nEWMa+Do5+MYcJO2BJ38gftrVK8Kd26ADcFbV41B7v7v9K23oEhNDuZn G+33mPpHQvOP5A/7OfcLHZqnzbihZWrlgAa94+5MP1vBK6Gma86hnuk7xi14LhCe WCNxmb52G13+j3VS0ztHpo8BlNkqYcdEV8QHzZ/QppQ= -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org