$ rpki-client -vvf repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa File: 3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa (raw, json) Hash identifier: D1WOM2/Yq9WaL9PoVE4H5tvMti2UQoat7Cs1dFlNZp8= Subject key identifier: 05:B6:2A:0D:4D:D0:BB:C2:D0:F0:CC:09:C0:A5:E9:28:E0:11:FF:03 Certificate issuer: /CN=6FB4DAE76B12CA00E07344A4DD2F933232EC2187 Certificate serial: 5117DE241F0CF311B67E2EC5FA2FBBB4BDB866A2 Authority key identifier: 6F:B4:DA:E7:6B:12:CA:00:E0:73:44:A4:DD:2F:93:32:32:EC:21:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa Signing time: Tue 19 Mar 2024 18:00:01 +0000 ROA not before: Tue 19 Mar 2024 17:55:01 +0000 ROA not after: Tue 18 Mar 2025 18:00:01 +0000 asID: 131765 IP address blocks: 103.245.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.crl rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 19:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:17:de:24:1f:0c:f3:11:b6:7e:2e:c5:fa:2f:bb:b4:bd:b8:66:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FB4DAE76B12CA00E07344A4DD2F933232EC2187 Validity Not Before: Mar 19 17:55:01 2024 GMT Not After : Mar 18 18:00:01 2025 GMT Subject: CN=05B62A0D4DD0BBC2D0F0CC09C0A5E928E011FF03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:84:84:97:0f:75:af:d8:69:9a:fd:6f:a6:53: 4e:09:02:d1:ae:75:b2:52:fa:06:24:b4:6e:89:53: 18:af:ed:a7:a5:a3:5c:ec:77:13:4b:fe:d6:4a:94: 21:25:98:78:0b:ae:9e:30:8f:c4:5c:cc:9c:3c:16: ba:11:e7:a9:69:30:30:fe:fd:c9:b8:70:50:e2:2c: 1f:6e:67:9a:12:c3:fc:bc:5f:a9:06:dd:74:07:20: 9b:14:0f:f5:6e:6e:47:37:03:22:05:53:d7:f8:ac: 6e:86:a5:62:5a:24:51:f7:4a:6a:d8:14:73:90:9b: c4:7e:52:4f:92:e8:11:76:92:4e:34:56:9f:92:00: 66:ef:bb:de:5b:a5:b6:12:2f:08:55:0c:a1:4d:48: 20:e4:ea:75:f1:c9:2b:6b:b1:5c:36:c1:c5:e8:64: 94:68:7c:8b:0f:8f:e3:a3:96:f0:ee:c6:16:28:18: 1e:66:6e:30:d9:18:1e:08:9e:d1:9f:2c:b9:5d:df: b6:04:89:db:26:e4:76:86:78:fe:6c:d8:96:2f:36: 95:94:e6:a5:71:c5:9d:68:9a:8c:3b:4b:2a:ae:34: e5:b0:1c:62:04:d9:b3:ac:07:47:e6:09:58:57:d8: 15:09:4e:91:b1:d8:f5:4f:4f:4e:c9:9c:7d:59:71: d7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B6:2A:0D:4D:D0:BB:C2:D0:F0:CC:09:C0:A5:E9:28:E0:11:FF:03 X509v3 Authority Key Identifier: keyid:6F:B4:DA:E7:6B:12:CA:00:E0:73:44:A4:DD:2F:93:32:32:EC:21:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.225.0/24 Signature Algorithm: sha256WithRSAEncryption 56:6f:36:65:f0:39:dc:ac:68:18:fe:ac:1e:93:ce:46:56:c1: c4:6b:25:4b:40:1e:ec:ab:2b:62:b5:e8:2b:b2:fa:b6:26:88: a3:9c:9c:d3:9c:75:12:b3:33:47:1e:76:11:ba:e0:a8:05:e2: 03:23:5d:5e:b8:81:8f:61:7c:b4:e5:81:c8:d8:28:26:5d:88: 09:b9:ff:be:12:26:e7:76:16:e0:47:c8:5e:c0:b7:bc:ad:47: 88:00:44:50:69:25:57:6d:72:d9:0b:af:94:e8:26:be:81:29: 0e:f6:ac:ad:50:d9:de:e5:bc:e8:84:3a:b6:95:3e:c9:05:b9: 2b:7d:7a:54:07:c9:b7:10:f2:e8:15:88:a3:c1:bb:69:f7:28: 49:e7:22:0c:2b:c6:1d:79:1c:2e:c4:1b:59:db:04:d9:5c:71: 5f:b9:2b:d7:1d:0e:86:19:4a:d8:ad:37:53:65:05:8a:5a:76: b2:a8:5b:bc:15:74:f2:ed:1f:33:e7:d2:10:1b:ca:ea:72:03: 10:fe:55:26:dd:c4:92:be:20:5b:6d:c8:5e:4d:2a:39:5e:f6: 9c:cf:e3:fa:ff:8a:e3:e9:28:98:22:a5:4e:d9:c8:9e:8e:fe: ec:8b:a6:32:c2:ea:c1:ce:44:27:f8:90:f1:24:12:93:d5:18: d6:0e:7e:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUURfeJB8M8xG2fi7F+i+7tL24ZqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZCNERBRTc2QjEyQ0EwMEUwNzM0NEE0REQyRjkzMzIz MkVDMjE4NzAeFw0yNDAzMTkxNzU1MDFaFw0yNTAzMTgxODAwMDFaMDMxMTAvBgNV BAMTKDA1QjYyQTBENEREMEJCQzJEMEYwQ0MwOUMwQTVFOTI4RTAxMUZGMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUhISXD3Wv2Gma/W+mU04JAtGu dbJS+gYktG6JUxiv7aelo1zsdxNL/tZKlCElmHgLrp4wj8RczJw8FroR56lpMDD+ /cm4cFDiLB9uZ5oSw/y8X6kG3XQHIJsUD/Vubkc3AyIFU9f4rG6GpWJaJFH3SmrY FHOQm8R+Uk+S6BF2kk40Vp+SAGbvu95bpbYSLwhVDKFNSCDk6nXxyStrsVw2wcXo ZJRofIsPj+OjlvDuxhYoGB5mbjDZGB4IntGfLLld37YEidsm5HaGeP5s2JYvNpWU 5qVxxZ1omow7SyquNOWwHGIE2bOsB0fmCVhX2BUJTpGx2PVPT07JnH1ZcdcnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBbYqDU3Qu8LQ8MwJwKXpKOAR/wMwHwYDVR0j BBgwFoAUb7Ta52sSygDgc0Sk3S+TMjLsIYcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmQ3MDM0Ni01YmRmLTQ5NjEtYTc0Zi01NWFlODU1NjcyYTEvMC82RkI0REFFNzZC MTJDQTAwRTA3MzQ0QTRERDJGOTMzMjMyRUMyMTg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZCNERBRTc2QjEyQ0EwMEUwNzM0NEE0REQyRjkzMzIzMkVD MjE4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2ZDcwMzQ2LTViZGYtNDk2MS1h NzRmLTU1YWU4NTU2NzJhMS8wLzMxMzAzMzJlMzIzNDM1MmUzMjMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9eEwDQYJ KoZIhvcNAQELBQADggEBAFZvNmXwOdysaBj+rB6TzkZWwcRrJUtAHuyrK2K16Cuy +rYmiKOcnNOcdRKzM0cedhG64KgF4gMjXV64gY9hfLTlgcjYKCZdiAm5/74SJud2 FuBHyF7At7ytR4gARFBpJVdtctkLr5ToJr6BKQ72rK1Q2d7lvOiEOraVPskFuSt9 elQHybcQ8ugViKPBu2n3KEnnIgwrxh15HC7EG1nbBNlccV+5K9cdDoYZStitN1Nl BYpadrKoW7wVdPLtHzPn0hAbyupyAxD+VSbdxJK+IFttyF5NKjle9pzP4/r/iuPp KJgipU7ZyJ6O/uyLpjLC6sHORCf4kPEkEpPVGNYOfqg= -----END CERTIFICATE-----Generated at Thu Sep 26 18:51:06 2024 by rpki-client on console-fra.rpki-client.org