$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32332d3233203d3e20313432333730.roa File: 3130332e3136392e3235342e302f32332d3233203d3e20313432333730.roa (raw, json) Hash identifier: DLJmEfbL3ZCZVVlEJnye8kD0RQcM/dIeZcFOFRkwePE= Subject key identifier: 2A:AE:89:FF:7A:87:66:D7:8B:91:1B:16:8C:63:5C:6B:75:5C:B4:6F Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Certificate serial: 774FA9C846FBC92EC6767C4BFDF88E91D0D6EDAF Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32332d3233203d3e20313432333730.roa Signing time: Tue 29 Oct 2024 12:00:00 +0000 ROA not before: Tue 29 Oct 2024 11:55:00 +0000 ROA not after: Tue 28 Oct 2025 12:00:00 +0000 asID: 142370 IP address blocks: 103.169.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4f:a9:c8:46:fb:c9:2e:c6:76:7c:4b:fd:f8:8e:91:d0:d6:ed:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Validity Not Before: Oct 29 11:55:00 2024 GMT Not After : Oct 28 12:00:00 2025 GMT Subject: CN=2AAE89FF7A8766D78B911B168C635C6B755CB46F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e6:c8:c3:3d:08:2b:00:bc:76:9b:54:58:4c: b6:84:83:d6:ad:02:f8:12:cc:38:88:9c:42:aa:89: 58:2e:a0:bc:01:ce:9a:df:70:9a:a4:72:b4:5c:c8: 12:70:10:93:03:23:58:2f:f0:55:cb:99:7b:8e:a1: c6:ef:5b:df:08:b2:3d:ab:9c:d3:0e:bd:46:3f:e9: 77:7d:8d:82:e3:e7:82:48:88:49:54:0a:33:9c:44: ee:a5:f3:c9:f0:6b:6c:8c:0a:80:28:3f:b6:39:80: b9:f1:b1:4e:32:3b:5e:75:93:7f:38:3c:a4:17:20: f2:9f:37:54:5e:50:cf:21:45:c3:ee:4e:bc:05:ea: e5:ab:ea:62:b4:6c:a7:0d:d3:23:35:68:63:60:6d: 42:ce:15:9d:20:58:91:43:07:c7:d1:90:78:8f:62: 67:f1:45:cc:d8:bd:94:4b:24:d5:42:68:68:d7:6a: 2b:65:e8:d6:de:77:04:f0:7e:6b:75:06:d2:0d:4a: 1d:31:b6:e7:5e:b9:04:f7:39:a9:77:5e:4f:41:61: c9:de:90:ae:9d:8a:05:8e:b5:0d:20:4f:5c:c0:5b: be:25:af:23:00:85:32:a8:6e:a3:88:ec:38:43:e7: 89:ab:c9:2f:d6:c0:65:b5:7f:21:f2:af:09:f2:62: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AE:89:FF:7A:87:66:D7:8B:91:1B:16:8C:63:5C:6B:75:5C:B4:6F X509v3 Authority Key Identifier: keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32332d3233203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.254.0/23 Signature Algorithm: sha256WithRSAEncryption 49:24:42:01:f0:fc:b0:04:ed:cc:cf:11:77:ad:15:b6:8e:ff: 9a:ff:83:99:8a:46:87:6d:3d:f2:cb:7a:f2:5b:63:22:cf:62: 3c:01:4a:99:a4:5d:6e:9c:d9:6f:d5:47:ba:1f:5d:05:04:84: a6:6f:62:e6:6b:9f:f4:b2:78:62:b7:7e:ba:82:1a:ba:a1:6b: e5:7f:6b:60:0b:33:ef:5f:2e:2a:e3:c6:13:37:3b:13:62:07: af:b1:ea:21:79:2d:c2:55:b7:09:f6:30:be:9d:c3:a7:a6:79: 4a:93:86:1c:6d:31:88:a4:31:17:62:7c:04:9b:50:1b:77:0c: 76:0c:d1:b0:43:58:e5:ba:bf:92:88:77:de:02:5f:4b:71:8a: 58:13:69:e0:ef:39:d2:e8:7a:58:0e:8e:c5:a1:83:08:19:b7: 4c:36:4c:9b:09:c8:c5:50:ca:46:0a:9a:87:aa:0c:52:c2:69: fe:5f:60:f6:01:1d:3f:d9:63:64:14:df:8b:4e:7b:2d:70:c4: cf:58:8a:30:fd:b9:10:54:28:8f:b1:ae:dc:1f:b5:2f:17:55: bf:0c:16:3c:8d:5a:79:1c:30:dc:0f:04:d3:32:57:28:ac:7f: 69:5a:d0:a8:96:de:01:ac:81:aa:9b:97:b7:18:13:e6:97:aa: 6e:e4:c8:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd0+pyEb7yS7GdnxL/fiOkdDW7a8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJC ODBFNDVEMTAeFw0yNDEwMjkxMTU1MDBaFw0yNTEwMjgxMjAwMDBaMDMxMTAvBgNV BAMTKDJBQUU4OUZGN0E4NzY2RDc4QjkxMUIxNjhDNjM1QzZCNzU1Q0I0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/5sjDPQgrALx2m1RYTLaEg9at AvgSzDiInEKqiVguoLwBzprfcJqkcrRcyBJwEJMDI1gv8FXLmXuOocbvW98Isj2r nNMOvUY/6Xd9jYLj54JIiElUCjOcRO6l88nwa2yMCoAoP7Y5gLnxsU4yO151k384 PKQXIPKfN1ReUM8hRcPuTrwF6uWr6mK0bKcN0yM1aGNgbULOFZ0gWJFDB8fRkHiP YmfxRczYvZRLJNVCaGjXaitl6NbedwTwfmt1BtINSh0xtudeuQT3Oal3Xk9BYcne kK6digWOtQ0gT1zAW74lryMAhTKobqOI7DhD54mryS/WwGW1fyHyrwnyYgNLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKq6J/3qHZteLkRsWjGNca3VctG8wHwYDVR0j BBgwFoAU32hVltr502VKLi8hzhGqC7gORdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzUyYjNjMi0zZjMwLTQwNDAtOGIwNS04MzgyMTc3NzA0OGYvMC9ERjY4NTU5NkRB RjlEMzY1NEEyRTJGMjFDRTExQUEwQkI4MEU0NUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJCODBF NDVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3NTJiM2MyLTNmMzAtNDA0MC04 YjA1LTgzODIxNzc3MDQ4Zi8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqf4wDQYJ KoZIhvcNAQELBQADggEBAEkkQgHw/LAE7czPEXetFbaO/5r/g5mKRodtPfLLevJb YyLPYjwBSpmkXW6c2W/VR7ofXQUEhKZvYuZrn/SyeGK3frqCGrqha+V/a2ALM+9f LirjxhM3OxNiB6+x6iF5LcJVtwn2ML6dw6emeUqThhxtMYikMRdifASbUBt3DHYM 0bBDWOW6v5KId94CX0txilgTaeDvOdLoelgOjsWhgwgZt0w2TJsJyMVQykYKmoeq DFLCaf5fYPYBHT/ZY2QU34tOey1wxM9YijD9uRBUKI+xrtwftS8XVb8MFjyNWnkc MNwPBNMyVyisf2la0KiW3gGsgaqbl7cYE+aXqm7kyFc= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org