$ rpki-client -vvf repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa File: 3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa (raw, json) Hash identifier: IQxk+RVCCE4pKnBFAa/I+n4PlSjcG9LFvLyIRAqgipY= Subject key identifier: 06:01:DE:05:AB:64:52:AC:E0:9A:73:2F:6E:1D:E2:47:BB:60:07:34 Certificate issuer: /CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Certificate serial: 0D0AB5646B595EE92C49B760A80E29F51DEFC7DE Authority key identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa Signing time: Wed 23 Oct 2024 08:01:51 +0000 ROA not before: Wed 23 Oct 2024 07:56:51 +0000 ROA not after: Wed 22 Oct 2025 08:01:51 +0000 asID: 139977 IP address blocks: 103.179.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.crl rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0a:b5:64:6b:59:5e:e9:2c:49:b7:60:a8:0e:29:f5:1d:ef:c7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Validity Not Before: Oct 23 07:56:51 2024 GMT Not After : Oct 22 08:01:51 2025 GMT Subject: CN=0601DE05AB6452ACE09A732F6E1DE247BB600734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:85:64:77:2e:2f:ba:0c:a0:b8:5d:f8:5c:99: a1:68:b2:c5:1c:cb:bf:d5:72:f1:83:fb:16:31:4c: e9:f9:06:2d:1c:12:7d:06:d5:12:a4:53:70:2c:ca: 0f:a3:d5:61:38:68:2d:01:5d:cb:43:5b:00:a0:e3: 69:be:3b:d1:dd:3a:bb:4d:1a:29:b3:b3:da:51:25: fc:bd:9e:e7:48:d3:90:f1:49:94:84:74:a8:2b:97: b8:58:8b:ec:d1:96:4a:e5:ad:5f:de:84:32:74:e2: a1:64:b5:d4:78:7b:b0:fd:18:0f:09:e6:b0:6f:42: 93:61:54:26:02:b5:e8:c0:e2:99:2e:58:de:0a:ee: 5b:fa:c6:5d:dd:a9:e4:d4:0a:83:f8:3b:59:70:e9: 71:8b:e5:23:ab:41:4c:57:9d:ea:da:26:ed:53:eb: 73:25:4c:5b:fc:ce:5f:59:f1:a4:63:5c:e5:90:86: a5:58:7b:58:e9:4c:bb:99:8d:cc:11:6e:5f:aa:fe: 23:33:0d:9e:e4:b2:2e:b3:2e:a9:a0:a3:95:37:c1: c6:57:8f:78:4c:10:85:bb:78:c7:66:0d:4c:b6:ef: 0b:48:d7:9c:45:dc:2f:68:f2:e9:31:e3:e5:cc:8a: 8b:79:6a:08:99:81:11:57:f0:22:db:a2:38:89:fb: 16:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:01:DE:05:AB:64:52:AC:E0:9A:73:2F:6E:1D:E2:47:BB:60:07:34 X509v3 Authority Key Identifier: keyid:5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/3130332e3137392e3133362e302f32332d3234203d3e20313339393737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.136.0/23 Signature Algorithm: sha256WithRSAEncryption 25:98:d8:de:90:5f:71:f6:ee:44:fa:2f:83:ce:70:7b:30:20: 4b:36:61:62:e2:d0:e1:89:83:8c:f9:b1:0d:d3:75:95:24:65: 8b:d7:2a:02:fc:6d:38:2c:22:07:75:91:31:1f:69:e7:ee:7a: 67:39:26:9a:08:c2:0e:de:ba:2f:e1:0a:69:f9:a4:73:44:7e: 02:2b:a1:d5:dd:0c:83:1f:41:35:83:56:81:6a:2b:42:f5:90: f1:6b:73:94:03:67:68:c8:2a:14:a0:62:a7:38:8c:65:3b:03: 7a:95:33:81:e9:94:57:e0:90:2e:48:e3:0f:f8:75:5c:ad:20: 2c:0a:97:6e:2b:6a:a5:0e:f8:7e:de:aa:08:ea:40:d2:72:dd: 09:e9:e2:64:d5:ab:0a:9b:09:34:1c:2c:58:08:57:b2:d6:8a: 59:b6:2a:75:8d:56:d9:60:50:37:c8:a8:65:7c:1c:f7:25:83: 0f:c8:84:33:b3:e4:8e:6f:0a:01:68:24:36:fb:07:de:c8:a7: be:3c:81:b6:90:8d:14:99:3e:aa:22:a2:c7:15:23:d0:85:62: 4e:f1:a6:87:49:2f:6d:9c:91:4c:8a:19:cc:1c:5d:13:0e:5c: 67:e4:46:b2:84:82:2b:48:ba:7c:55:32:6d:50:59:d4:b3:ff: d9:ce:42:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDQq1ZGtZXuksSbdgqA4p9R3vx94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUUwMjdDMkFCRTRBMUY0NjM0MEVEODNBM0FEOEYwNkRC Q0NEQ0QyMTAeFw0yNDEwMjMwNzU2NTFaFw0yNTEwMjIwODAxNTFaMDMxMTAvBgNV BAMTKDA2MDFERTA1QUI2NDUyQUNFMDlBNzMyRjZFMURFMjQ3QkI2MDA3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUhWR3Li+6DKC4XfhcmaFossUc y7/VcvGD+xYxTOn5Bi0cEn0G1RKkU3Asyg+j1WE4aC0BXctDWwCg42m+O9HdOrtN Gimzs9pRJfy9nudI05DxSZSEdKgrl7hYi+zRlkrlrV/ehDJ04qFktdR4e7D9GA8J 5rBvQpNhVCYCtejA4pkuWN4K7lv6xl3dqeTUCoP4O1lw6XGL5SOrQUxXneraJu1T 63MlTFv8zl9Z8aRjXOWQhqVYe1jpTLuZjcwRbl+q/iMzDZ7ksi6zLqmgo5U3wcZX j3hMEIW7eMdmDUy27wtI15xF3C9o8ukx4+XMiot5agiZgRFX8CLbojiJ+xYZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBgHeBatkUqzgmnMvbh3iR7tgBzQwHwYDVR0j BBgwFoAUXgJ8Kr5KH0Y0Dtg6OtjwbbzNzSEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDgwYjMyMS1hYTMxLTQzMTctOWQzMS1jMmJkMTkwYzEzODQvMC81RTAyN0MyQUJF NEExRjQ2MzQwRUQ4M0EzQUQ4RjA2REJDQ0RDRDIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUUwMjdDMkFCRTRBMUY0NjM0MEVEODNBM0FEOEYwNkRCQ0NE Q0QyMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkODBiMzIxLWFhMzEtNDMxNy05 ZDMxLWMyYmQxOTBjMTM4NC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFns4gwDQYJ KoZIhvcNAQELBQADggEBACWY2N6QX3H27kT6L4POcHswIEs2YWLi0OGJg4z5sQ3T dZUkZYvXKgL8bTgsIgd1kTEfaefuemc5JpoIwg7eui/hCmn5pHNEfgIrodXdDIMf QTWDVoFqK0L1kPFrc5QDZ2jIKhSgYqc4jGU7A3qVM4HplFfgkC5I4w/4dVytICwK l24raqUO+H7eqgjqQNJy3Qnp4mTVqwqbCTQcLFgIV7LWilm2KnWNVtlgUDfIqGV8 HPclgw/IhDOz5I5vCgFoJDb7B97Ip748gbaQjRSZPqoioscVI9CFYk7xpodJL22c kUyKGcwcXRMOXGfkRrKEgitIunxVMm1QWdSz/9nOQuY= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org