$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa File: 3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa (raw, json) Hash identifier: yQ8r9aTimM+1fU3cDxtTiC5piuG7uhQf6ZdHLgllIPI= Subject key identifier: 6B:B3:E7:66:D1:24:49:BF:9B:21:5E:85:9A:FB:F3:E7:28:5E:50:E9 Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 6F43BA0B3A66B3EF8A3A65F11553632CA3EDE71E Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa Signing time: Mon 01 Jul 2024 01:03:57 +0000 ROA not before: Mon 01 Jul 2024 00:58:57 +0000 ROA not after: Mon 30 Jun 2025 01:03:57 +0000 asID: 140442 IP address blocks: 103.152.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:43:ba:0b:3a:66:b3:ef:8a:3a:65:f1:15:53:63:2c:a3:ed:e7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jul 1 00:58:57 2024 GMT Not After : Jun 30 01:03:57 2025 GMT Subject: CN=6BB3E766D12449BF9B215E859AFBF3E7285E50E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7c:7a:d2:91:41:56:19:84:6c:33:73:c6:68: d2:bb:f3:ba:dd:fb:66:71:96:39:03:c0:7d:22:f6: e9:48:39:d8:4b:03:21:2b:a2:5f:63:86:6e:6d:df: 70:11:fe:ea:88:66:a7:d7:e7:07:4b:86:2b:d7:6d: d8:09:9d:18:b1:13:8a:e9:21:27:2d:3c:8c:94:02: b0:a9:da:b8:02:99:0a:d8:5d:05:fd:1b:70:27:40: 7c:3b:49:cd:2d:fb:1a:67:db:e6:cb:b3:51:06:a0: 18:f3:e3:ce:a2:ed:3b:d8:cc:88:b5:eb:c5:d1:92: 56:fa:ec:32:e7:ab:09:78:1f:53:2a:9a:3f:69:ca: 3d:71:44:11:83:ba:28:dc:77:75:b4:43:5e:2e:56: 6f:27:6a:9b:88:c3:48:83:c7:a2:1e:a5:54:b5:be: 74:52:5a:ba:d9:f6:24:ca:11:d6:b3:9f:e4:ca:29: 71:03:82:12:a5:ed:23:f0:9d:53:ae:82:97:46:2b: ee:22:ea:47:14:5f:da:78:e2:77:29:30:cc:ee:35: 15:e3:c4:05:ce:db:01:ec:24:f0:57:70:48:3e:27: 49:96:1d:1e:0d:49:2a:6e:d9:e6:67:71:99:a4:ed: 31:f7:f9:34:2b:3c:5c:48:16:b6:da:05:b0:e5:bb: 8b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B3:E7:66:D1:24:49:BF:9B:21:5E:85:9A:FB:F3:E7:28:5E:50:E9 X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/3130332e3135322e37322e302f32332d3234203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.72.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:35:9b:6c:44:36:39:d4:fe:e5:21:57:50:ef:aa:95:ab:73: e2:80:b7:12:aa:a3:c8:9e:b7:52:72:03:00:b3:88:e6:5a:30: e0:a1:d6:85:ec:0f:71:19:66:d3:d7:be:af:84:64:80:f5:04: 22:27:f5:95:ea:73:80:fc:33:b1:4d:32:35:bb:95:2d:2e:49: 8e:1f:3d:c1:56:4e:f6:b7:de:4a:9b:d5:a6:b4:94:71:37:9a: 95:b4:5c:94:a0:91:52:c3:12:d2:c4:c0:eb:0c:d2:c4:ab:45: 71:28:64:3e:b9:33:57:e0:ba:eb:1f:f8:ea:a0:88:e8:0c:c7: f5:0b:8c:83:8c:ba:ae:a3:4f:59:d6:86:4c:b4:d3:c9:c1:ad: 9b:17:ab:a3:f3:bb:e8:27:a0:34:11:03:fe:92:a5:86:dc:e0: 98:a2:cb:77:9c:f8:9f:f6:b7:44:b1:22:6e:4b:56:76:63:de: 68:11:cf:d7:d3:1e:a7:d3:a9:7b:1c:2e:54:a4:87:f0:54:df: 3a:ae:52:03:dd:b6:17:67:40:b3:0b:eb:6f:0a:5d:01:d7:a2: 0a:86:ff:ee:a1:03:65:5d:24:c6:52:ba:93:3b:57:f8:db:75: 56:f5:59:c5:42:7e:84:5a:29:5c:0e:1a:5b:22:8f:b2:a9:cd: 13:4d:dd:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb0O6Czpms++KOmXxFVNjLKPt5x4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yNDA3MDEwMDU4NTdaFw0yNTA2MzAwMTAzNTdaMDMxMTAvBgNV BAMTKDZCQjNFNzY2RDEyNDQ5QkY5QjIxNUU4NTlBRkJGM0U3Mjg1RTUwRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafHrSkUFWGYRsM3PGaNK787rd +2ZxljkDwH0i9ulIOdhLAyErol9jhm5t33AR/uqIZqfX5wdLhivXbdgJnRixE4rp ISctPIyUArCp2rgCmQrYXQX9G3AnQHw7Sc0t+xpn2+bLs1EGoBjz486i7TvYzIi1 68XRklb67DLnqwl4H1Mqmj9pyj1xRBGDuijcd3W0Q14uVm8napuIw0iDx6IepVS1 vnRSWrrZ9iTKEdazn+TKKXEDghKl7SPwnVOugpdGK+4i6kcUX9p44ncpMMzuNRXj xAXO2wHsJPBXcEg+J0mWHR4NSSpu2eZncZmk7TH3+TQrPFxIFrbaBbDlu4szAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa7PnZtEkSb+bIV6Fmvvz5yheUOkwHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMxMzAzMzJlMzEzNTMyMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5hIMA0GCSqG SIb3DQEBCwUAA4IBAQBqNZtsRDY51P7lIVdQ76qVq3PigLcSqqPInrdScgMAs4jm WjDgodaF7A9xGWbT176vhGSA9QQiJ/WV6nOA/DOxTTI1u5UtLkmOHz3BVk72t95K m9WmtJRxN5qVtFyUoJFSwxLSxMDrDNLEq0VxKGQ+uTNX4LrrH/jqoIjoDMf1C4yD jLquo09Z1oZMtNPJwa2bF6uj87voJ6A0EQP+kqWG3OCYost3nPif9rdEsSJuS1Z2 Y95oEc/X0x6n06l7HC5UpIfwVN86rlID3bYXZ0CzC+tvCl0B16IKhv/uoQNlXSTG UrqTO1f423VW9VnFQn6EWilcDhpbIo+yqc0TTd2r -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org