$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa File: 3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa (raw, json) Hash identifier: Q/U8Xb/QHxtCn198u1dLTqoleCD0AnXLqgQ7wOdppUk= Subject key identifier: F2:7C:89:46:47:58:85:12:D0:B3:B3:10:20:A6:1C:8E:C7:52:29:23 Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Certificate serial: 21D344B519DE5F3772F1DCDDAC0E91156DA0D5B4 Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa Signing time: Sat 01 Jun 2024 03:00:00 +0000 ROA not before: Sat 01 Jun 2024 02:55:00 +0000 ROA not after: Sat 31 May 2025 03:00:00 +0000 asID: 142370 IP address blocks: 103.169.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d3:44:b5:19:de:5f:37:72:f1:dc:dd:ac:0e:91:15:6d:a0:d5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Validity Not Before: Jun 1 02:55:00 2024 GMT Not After : May 31 03:00:00 2025 GMT Subject: CN=F27C894647588512D0B3B31020A61C8EC7522923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:64:0c:9a:94:41:6d:01:8a:92:78:e5:f2:c0: 45:3e:e4:19:14:09:1c:f9:db:40:a0:cd:04:db:cf: 76:4e:12:ee:23:b3:0e:ec:af:e4:ac:16:5c:6c:7f: 7b:04:03:2f:1a:d0:81:bc:bb:e0:06:1b:ca:7c:be: 8d:f5:2b:0e:e7:16:e9:1b:c6:c1:6a:81:94:1e:57: 43:69:ac:91:36:14:2f:57:aa:f7:9b:23:94:22:f5: 10:0e:96:27:b4:d9:3a:49:8a:88:35:84:16:8e:ec: e9:3c:22:1f:a6:66:2d:7f:6e:17:a4:8c:a4:5b:19: 81:23:0e:c1:c3:68:8e:20:3d:8f:f4:b4:39:18:7f: c5:3a:e1:9c:02:56:f9:f0:a1:ce:16:40:09:9a:a0: dd:9f:6c:63:18:16:b4:57:db:3d:88:fb:2a:38:b5: eb:2f:de:87:c8:5f:79:95:09:30:1f:1e:9c:bb:69: fd:cd:5b:43:b2:c7:b2:d1:a1:24:01:45:d2:7b:98: a6:59:8a:87:58:da:80:c7:e4:39:a4:dd:21:4a:48: 99:1c:ce:20:c9:7a:de:bf:15:5a:65:6d:d2:3c:50: 3f:66:fd:5d:c9:4d:b5:ea:c9:de:d5:20:06:a3:fa: ec:00:83:74:8a:5b:a7:00:12:e2:7a:86:94:4b:e8: 48:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7C:89:46:47:58:85:12:D0:B3:B3:10:20:A6:1C:8E:C7:52:29:23 X509v3 Authority Key Identifier: keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.255.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:eb:01:3c:83:e4:ee:fe:b8:19:78:99:93:f4:1d:46:79:6e: 4c:0b:4f:b3:a4:b0:80:b8:89:4f:df:bb:25:5b:d7:28:55:5e: ad:8e:f2:6a:6b:46:be:9e:dc:7b:12:a1:d5:78:77:23:82:5f: d3:97:47:38:c1:cc:b1:ff:f8:a5:71:19:ff:8d:89:9c:14:d5: 6a:a2:2d:50:43:99:51:de:98:33:83:1d:55:f0:0b:05:46:41: cc:78:2b:bd:3b:c6:5d:5d:51:58:8c:10:41:dd:c1:31:ad:9e: 0e:1f:a1:ac:59:78:63:4f:1b:90:41:e9:d9:91:63:a7:4e:40: b8:40:ea:ad:d1:31:18:31:c0:7f:3a:73:bc:1a:b7:2d:65:6d: 9f:4c:d0:1f:e3:a9:f8:cb:c6:9f:6c:b3:4d:73:64:00:e0:ef: 5b:f5:62:4c:a7:b6:f6:e2:cb:88:f5:0c:53:16:15:72:39:a6: d1:28:c9:b6:11:57:c4:85:6d:7c:3f:0c:57:33:da:0d:dc:6d: c0:61:6f:6b:0a:86:80:28:16:fd:21:a2:9b:f1:ac:af:a4:f9: 1b:71:5a:d1:37:b5:47:dc:b4:00:09:65:c2:cf:81:d1:e2:cd: 1f:2c:f7:9a:a9:0b:1c:31:9e:ce:1d:46:d1:76:50:78:f3:7f: 84:50:fc:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIdNEtRneXzdy8dzdrA6RFW2g1bQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJC ODBFNDVEMTAeFw0yNDA2MDEwMjU1MDBaFw0yNTA1MzEwMzAwMDBaMDMxMTAvBgNV BAMTKEYyN0M4OTQ2NDc1ODg1MTJEMEIzQjMxMDIwQTYxQzhFQzc1MjI5MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeZAyalEFtAYqSeOXywEU+5BkU CRz520CgzQTbz3ZOEu4jsw7sr+SsFlxsf3sEAy8a0IG8u+AGG8p8vo31Kw7nFukb xsFqgZQeV0NprJE2FC9XqvebI5Qi9RAOlie02TpJiog1hBaO7Ok8Ih+mZi1/bhek jKRbGYEjDsHDaI4gPY/0tDkYf8U64ZwCVvnwoc4WQAmaoN2fbGMYFrRX2z2I+yo4 tesv3ofIX3mVCTAfHpy7af3NW0Oyx7LRoSQBRdJ7mKZZiodY2oDH5Dmk3SFKSJkc ziDJet6/FVplbdI8UD9m/V3JTbXqyd7VIAaj+uwAg3SKW6cAEuJ6hpRL6Eg9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8nyJRkdYhRLQs7MQIKYcjsdSKSMwHwYDVR0j BBgwFoAU32hVltr502VKLi8hzhGqC7gORdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzUyYjNjMi0zZjMwLTQwNDAtOGIwNS04MzgyMTc3NzA0OGYvMC9ERjY4NTU5NkRB RjlEMzY1NEEyRTJGMjFDRTExQUEwQkI4MEU0NUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJCODBF NDVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3NTJiM2MyLTNmMzAtNDA0MC04 YjA1LTgzODIxNzc3MDQ4Zi8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqf8wDQYJ KoZIhvcNAQELBQADggEBAD/rATyD5O7+uBl4mZP0HUZ5bkwLT7OksIC4iU/fuyVb 1yhVXq2O8mprRr6e3HsSodV4dyOCX9OXRzjBzLH/+KVxGf+NiZwU1WqiLVBDmVHe mDODHVXwCwVGQcx4K707xl1dUViMEEHdwTGtng4foaxZeGNPG5BB6dmRY6dOQLhA 6q3RMRgxwH86c7waty1lbZ9M0B/jqfjLxp9ss01zZADg71v1Ykyntvbiy4j1DFMW FXI5ptEoybYRV8SFbXw/DFcz2g3cbcBhb2sKhoAoFv0hopvxrK+k+RtxWtE3tUfc tAAJZcLPgdHizR8s95qpCxwxns4dRtF2UHjzf4RQ/O4= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org