$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa File: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (raw, json) Hash identifier: OJnLs1xCMCmMPC55yAhfh55sfr9/aykvwsWfqsV+9HU= Subject key identifier: E7:C1:14:E6:51:52:19:70:F1:59:E4:AA:1D:8B:9B:A2:BE:9F:CD:71 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 16AD473C6157151E1D3D4DA77B2151ABB10F0E1F Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa Signing time: Wed 01 Nov 2023 22:24:11 +0000 ROA not before: Wed 01 Nov 2023 22:19:11 +0000 ROA not after: Wed 30 Oct 2024 22:24:11 +0000 asID: 137331 IP address blocks: 103.178.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 21:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ad:47:3c:61:57:15:1e:1d:3d:4d:a7:7b:21:51:ab:b1:0f:0e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Nov 1 22:19:11 2023 GMT Not After : Oct 30 22:24:11 2024 GMT Subject: CN=E7C114E651521970F159E4AA1D8B9BA2BE9FCD71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:be:87:6d:97:71:0b:4d:47:80:aa:82:cd:b8: d6:49:84:08:b7:a8:40:c1:3a:ee:26:a0:e6:cf:16: 49:68:0b:1d:2a:5b:68:31:eb:d1:3b:3f:88:55:a1: af:03:47:43:df:cd:6a:a8:e8:a4:cf:d2:9c:df:76: b3:f8:0a:a4:2f:37:bf:66:ed:8a:ac:11:14:c7:54: 3a:b9:e2:32:8f:04:6f:d6:32:cb:ac:0d:ce:84:09: 2d:8d:18:02:34:b4:80:ce:50:c2:8e:a1:e0:27:7d: 6f:1b:4f:01:33:4d:fc:8b:73:82:91:5f:f2:fb:7f: af:c9:64:ee:6a:8b:72:58:a3:ac:20:2e:8c:fe:34: db:78:44:a2:d2:ca:a9:ee:4c:4a:d3:57:a4:18:ea: 5d:6e:80:cc:ac:84:6e:43:86:45:ae:ec:5b:7c:7f: 6e:ab:4a:05:22:08:e6:44:eb:81:64:ac:b4:e3:ca: 04:b2:02:be:41:be:58:f5:4e:1f:22:b2:5f:ff:b1: 5f:6f:fd:0d:df:d0:14:63:7f:66:1d:37:45:f3:15: 91:23:55:aa:b7:f0:ab:28:3a:6e:7f:f2:56:f4:2f: 6c:11:a9:53:ae:2a:e4:60:73:c0:79:0f:27:41:75: 71:12:0d:19:32:6b:df:fd:22:a4:00:63:88:30:40: 1c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C1:14:E6:51:52:19:70:F1:59:E4:AA:1D:8B:9B:A2:BE:9F:CD:71 X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.174.0/23 Signature Algorithm: sha256WithRSAEncryption e0:a3:5a:05:bf:a6:1d:5a:51:f1:72:8d:c1:ca:3f:fd:b7:ec: 80:bb:60:60:7d:d8:4d:d2:df:4c:dc:66:ef:d5:b3:81:da:c3: 58:80:be:ba:0c:26:39:71:3c:b3:5c:2c:ec:8b:fd:4e:69:a9: c5:a0:8c:5a:c7:93:e5:56:41:5c:35:8c:14:f5:22:33:4b:40: 75:dc:14:cf:48:df:94:46:56:f4:62:cf:e1:c4:f8:f9:9a:e3: b0:41:55:af:c3:5b:04:01:a8:aa:e3:14:a2:af:f6:37:a2:f6: dc:73:e8:41:db:8e:1e:48:47:52:66:9b:c4:ec:9d:ea:03:e5: 60:47:39:b6:38:19:17:0c:a4:a6:1f:a2:9f:6b:ca:38:62:0e: 35:3a:97:bb:ce:48:7c:8d:63:4d:44:25:48:5f:f3:28:78:61: b1:5a:f2:66:27:4b:fe:37:8d:58:7e:56:67:37:99:79:60:01: fb:d6:ff:ce:20:8f:ee:85:2b:6f:4e:7d:3d:3d:4d:e5:e4:8a: 42:db:cc:30:72:96:af:97:1c:e9:0c:48:53:f7:f1:6d:0a:14: 7a:a3:8d:fc:27:a1:a8:90:5f:ea:18:14:ed:fe:74:b6:14:2f: dc:a0:d7:b9:18:96:ef:d8:33:12:1d:da:71:ff:27:90:48:b5: 47:9e:b1:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFq1HPGFXFR4dPU2neyFRq7EPDh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yMzExMDEyMjE5MTFaFw0yNDEwMzAyMjI0MTFaMDMxMTAvBgNV BAMTKEU3QzExNEU2NTE1MjE5NzBGMTU5RTRBQTFEOEI5QkEyQkU5RkNENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+vodtl3ELTUeAqoLNuNZJhAi3 qEDBOu4moObPFkloCx0qW2gx69E7P4hVoa8DR0PfzWqo6KTP0pzfdrP4CqQvN79m 7YqsERTHVDq54jKPBG/WMsusDc6ECS2NGAI0tIDOUMKOoeAnfW8bTwEzTfyLc4KR X/L7f6/JZO5qi3JYo6wgLoz+NNt4RKLSyqnuTErTV6QY6l1ugMyshG5DhkWu7Ft8 f26rSgUiCOZE64FkrLTjygSyAr5Bvlj1Th8isl//sV9v/Q3f0BRjf2YdN0XzFZEj Vaq38KsoOm5/8lb0L2wRqVOuKuRgc8B5DydBdXESDRkya9/9IqQAY4gwQBy5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU58EU5lFSGXDxWeSqHYubor6fzXEwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkN2Y5ZWY0LWY5OWYtNDRmZi1i OTY4LTcwZDQ1MjRkNzIwNy8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsq4wDQYJ KoZIhvcNAQELBQADggEBAOCjWgW/ph1aUfFyjcHKP/237IC7YGB92E3S30zcZu/V s4Haw1iAvroMJjlxPLNcLOyL/U5pqcWgjFrHk+VWQVw1jBT1IjNLQHXcFM9I35RG VvRiz+HE+Pma47BBVa/DWwQBqKrjFKKv9jei9txz6EHbjh5IR1Jmm8TsneoD5WBH ObY4GRcMpKYfop9ryjhiDjU6l7vOSHyNY01EJUhf8yh4YbFa8mYnS/43jVh+Vmc3 mXlgAfvW/84gj+6FK29OfT09TeXkikLbzDBylq+XHOkMSFP38W0KFHqjjfwnoaiQ X+oYFO3+dLYUL9yg17kYlu/YMxId2nH/J5BItUeesSw= -----END CERTIFICATE-----Generated at Wed May 1 12:16:02 2024 by rpki-client on console-ams.rpki-client.org