$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa File: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (raw, json) Hash identifier: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0= Subject key identifier: 3B:F2:A9:E6:1D:40:04:1C:76:79:7C:F6:9B:CB:10:4A:6C:B7:6E:8B Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 206BE251E6131D300522701EE7445E51CF03F68F Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa Signing time: Wed 02 Oct 2024 23:00:01 +0000 ROA not before: Wed 02 Oct 2024 22:55:01 +0000 ROA not after: Wed 01 Oct 2025 23:00:01 +0000 asID: 137331 IP address blocks: 103.178.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:6b:e2:51:e6:13:1d:30:05:22:70:1e:e7:44:5e:51:cf:03:f6:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Oct 2 22:55:01 2024 GMT Not After : Oct 1 23:00:01 2025 GMT Subject: CN=3BF2A9E61D40041C76797CF69BCB104A6CB76E8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:47:17:4b:55:79:81:a7:8b:e7:c5:77:4b: 67:ba:db:68:86:7f:60:04:90:4d:b6:8e:20:de:d3: 1b:5d:0e:c3:81:88:c0:3e:bb:b3:76:18:76:c3:a4: 05:64:02:d7:fc:3b:7f:33:5a:8c:49:d7:3b:f7:5f: 06:a1:45:8d:6e:c1:0f:a6:c1:9f:57:36:0a:96:f0: 8e:fd:9a:48:5d:15:52:15:43:da:b7:da:2b:09:92: 30:18:1c:04:2c:da:74:21:02:1c:29:d9:1c:dd:e9: 33:f4:2f:53:61:a0:87:fa:60:ac:ba:03:43:7f:2c: fb:8f:9c:42:41:1f:62:bf:d5:2e:37:81:aa:f9:f8: 44:8d:75:8e:06:02:7a:67:fc:d0:f1:57:65:9a:57: 88:fd:09:17:c2:56:05:2e:14:9e:a7:95:6b:c3:d4: e5:42:33:84:11:fe:f4:86:f1:e3:83:40:65:5b:ee: 26:6d:1e:91:92:1a:07:96:81:2b:89:5a:06:f3:51: d1:ec:51:5c:d1:4b:c6:0b:b8:4a:56:99:4c:63:2a: 49:ac:fb:ba:5c:7a:fb:70:77:22:c5:38:0e:b7:b9: e9:e9:7a:8b:b3:1d:f6:72:8b:ef:53:60:cd:a8:9e: 8a:e0:95:00:32:13:07:27:0f:08:73:c1:40:66:84: 3d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F2:A9:E6:1D:40:04:1C:76:79:7C:F6:9B:CB:10:4A:6C:B7:6E:8B X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.174.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:3d:82:0c:10:86:b8:44:1f:dc:e8:da:98:f1:10:15:d5:a1: 15:09:83:51:c5:46:19:03:13:00:0b:fe:39:fc:b0:4d:53:cc: cb:9c:40:96:1c:c5:5d:33:61:97:2b:04:b0:91:35:b5:1d:13: 2b:ff:96:6e:81:20:13:2c:92:37:00:47:92:75:86:c7:73:68: 42:97:ac:45:ff:b0:4b:71:99:10:da:11:44:ab:18:e1:6c:3d: ee:81:a5:26:75:79:a6:66:3e:7d:68:5e:20:b7:aa:70:ca:66: 7c:86:d1:65:57:54:46:71:c0:2b:2f:91:2a:07:d4:ee:70:e3: a5:78:1b:23:4c:48:1b:14:17:51:b2:ce:24:cc:ea:ca:71:37: ba:f0:da:8b:f1:c1:f4:cf:d7:fe:01:7f:e4:36:53:bc:c2:ff: 35:70:4a:da:25:db:b1:0d:cd:3f:f0:05:e1:da:3f:8b:f9:78: 80:62:2a:70:f8:ad:70:fd:57:ad:1f:e0:e4:b8:73:59:f1:a2: 65:f9:70:ef:38:02:1a:61:43:ee:4a:fc:40:9d:dc:48:33:b4: 73:48:27:5b:8a:a0:6d:29:40:88:a3:ee:1e:5e:8d:5c:c9:f0: ee:53:9a:60:fc:e3:00:f1:fd:33:68:42:e4:94:d4:93:84:07: 95:a4:41:51 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIGviUeYTHTAFInAe50ReUc8D9o8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNDEwMDIyMjU1MDFaFw0yNTEwMDEyMzAwMDFaMDMxMTAvBgNV BAMTKDNCRjJBOUU2MUQ0MDA0MUM3Njc5N0NGNjlCQ0IxMDRBNkNCNzZFOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCTEcXS1V5gaeL58V3S2e622iG f2AEkE22jiDe0xtdDsOBiMA+u7N2GHbDpAVkAtf8O38zWoxJ1zv3XwahRY1uwQ+m wZ9XNgqW8I79mkhdFVIVQ9q32isJkjAYHAQs2nQhAhwp2Rzd6TP0L1NhoIf6YKy6 A0N/LPuPnEJBH2K/1S43gar5+ESNdY4GAnpn/NDxV2WaV4j9CRfCVgUuFJ6nlWvD 1OVCM4QR/vSG8eODQGVb7iZtHpGSGgeWgSuJWgbzUdHsUVzRS8YLuEpWmUxjKkms +7pcevtwdyLFOA63uenpeouzHfZyi+9TYM2onorglQAyEwcnDwhzwUBmhD2bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUO/Kp5h1ABBx2eXz2m8sQSmy3boswHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkN2Y5ZWY0LWY5OWYtNDRmZi1i OTY4LTcwZDQ1MjRkNzIwNy8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsq4wDQYJ KoZIhvcNAQELBQADggEBAI09ggwQhrhEH9zo2pjxEBXVoRUJg1HFRhkDEwAL/jn8 sE1TzMucQJYcxV0zYZcrBLCRNbUdEyv/lm6BIBMskjcAR5J1hsdzaEKXrEX/sEtx mRDaEUSrGOFsPe6BpSZ1eaZmPn1oXiC3qnDKZnyG0WVXVEZxwCsvkSoH1O5w46V4 GyNMSBsUF1GyziTM6spxN7rw2ovxwfTP1/4Bf+Q2U7zC/zVwStol27ENzT/wBeHa P4v5eIBiKnD4rXD9V60f4OS4c1nxomX5cO84AhphQ+5K/ECd3EgztHNIJ1uKoG0p QIij7h5ejVzJ8O5TmmD84wDx/TNoQuSU1JOEB5WkQVE= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org