$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa File: 3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa (raw, json) Hash identifier: YRpExiaovmSL6FBLD/ysw/LDt7hExGSktqWnjQMDKIs= Subject key identifier: 56:63:69:81:0E:77:86:E8:BD:45:D8:D2:04:0F:D8:20:3A:C9:74:5A Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 237983CE4E75903F59E1E23D4B5900682F5B7191 Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa Signing time: Fri 12 Jan 2024 03:00:00 +0000 ROA not before: Fri 12 Jan 2024 02:55:00 +0000 ROA not after: Fri 10 Jan 2025 03:00:00 +0000 asID: 142321 IP address blocks: 103.168.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:79:83:ce:4e:75:90:3f:59:e1:e2:3d:4b:59:00:68:2f:5b:71:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Jan 12 02:55:00 2024 GMT Not After : Jan 10 03:00:00 2025 GMT Subject: CN=566369810E7786E8BD45D8D2040FD8203AC9745A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:31:ff:81:7b:5a:19:d9:0d:fa:04:d7:67:21: 54:40:70:3c:2f:3f:b2:41:5a:da:09:9d:1c:b9:0a: 2c:d2:7b:4d:c1:4c:92:58:65:1c:48:a3:c4:d6:fc: da:a5:f1:45:6a:64:9e:d8:b5:73:11:36:d2:92:3b: b8:f8:38:8e:d3:0b:5e:7d:4c:93:93:8e:75:c6:c1: 66:a7:23:a9:73:45:48:8f:6c:85:1a:8f:9f:ed:0b: 4b:33:8d:5b:a1:a5:b0:a7:6b:99:de:39:2c:cc:8a: d4:2f:58:7e:a1:a5:61:f6:f2:dc:f1:a4:d7:ff:17: b4:9e:7a:b3:e9:1f:2b:59:b9:93:7a:96:0a:22:96: 78:03:cf:84:ed:df:bd:b7:27:ab:ed:bf:ad:f8:f7: 86:cc:1e:3d:3d:86:a3:0a:3c:2a:b0:0e:e1:6b:62: a0:c8:5f:ee:da:9e:46:c6:5c:b4:3e:43:bd:16:d5: 50:fb:f8:c8:a8:6e:b7:64:8d:74:86:60:cf:59:8e: 0d:ec:ac:e7:eb:5c:99:aa:fb:51:99:8d:80:54:1e: a9:db:38:8a:c2:37:b6:b9:7d:8f:66:44:f1:90:68: 5f:17:33:3c:16:7f:36:0e:7d:f5:b5:1a:75:4e:25: 38:49:53:0f:da:1a:10:6f:a7:8b:e7:39:8b:76:d2: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:63:69:81:0E:77:86:E8:BD:45:D8:D2:04:0F:D8:20:3A:C9:74:5A X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.184.0/23 Signature Algorithm: sha256WithRSAEncryption ee:99:22:df:a4:31:ce:2e:e0:9d:c8:81:77:88:25:46:2d:95: 55:a9:02:63:26:d9:09:82:fd:4e:48:98:88:58:72:dc:7d:67: 65:e2:13:3b:59:ea:74:4b:d8:d0:29:65:0b:86:cf:5d:24:19: c8:e8:e1:aa:bc:fc:98:e7:08:02:16:f2:43:bb:d1:eb:66:a8: d9:5b:11:17:5c:dd:96:14:37:6b:0d:53:c8:82:86:cb:e1:c0: 91:1c:98:b7:b7:39:0f:a4:a7:26:f1:ef:73:cb:50:d0:2d:66: 33:97:11:58:26:8b:a4:a5:97:2f:4f:84:a3:8b:d8:c3:0c:eb: e2:7d:91:b4:a2:5d:e2:c6:6a:12:20:73:37:bd:4a:ab:4e:27: 73:ef:d1:07:a0:6d:d7:78:a7:f8:99:46:51:34:7b:6c:9a:44: a3:dd:5f:d9:df:82:7f:37:d0:71:23:c5:0a:fa:1b:4e:cb:d9: ae:c9:ff:5d:75:b5:46:eb:49:d3:dd:90:c0:b3:b4:67:3d:1d: 30:d5:48:63:fa:d6:99:9e:68:9b:5b:3a:54:d4:a5:b4:c6:87: 46:7b:24:19:99:5e:2d:41:52:8b:9d:b1:7a:60:92:96:ac:8d: 7c:ac:1d:aa:da:49:34:01:e7:ce:ec:05:3f:58:96:9b:d4:81: 0a:8a:80:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI3mDzk51kD9Z4eI9S1kAaC9bcZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNDAxMTIwMjU1MDBaFw0yNTAxMTAwMzAwMDBaMDMxMTAvBgNV BAMTKDU2NjM2OTgxMEU3Nzg2RThCRDQ1RDhEMjA0MEZEODIwM0FDOTc0NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaMf+Be1oZ2Q36BNdnIVRAcDwv P7JBWtoJnRy5CizSe03BTJJYZRxIo8TW/Nql8UVqZJ7YtXMRNtKSO7j4OI7TC159 TJOTjnXGwWanI6lzRUiPbIUaj5/tC0szjVuhpbCna5neOSzMitQvWH6hpWH28tzx pNf/F7SeerPpHytZuZN6lgoilngDz4Tt3723J6vtv63494bMHj09hqMKPCqwDuFr YqDIX+7ankbGXLQ+Q70W1VD7+MiobrdkjXSGYM9Zjg3srOfrXJmq+1GZjYBUHqnb OIrCN7a5fY9mRPGQaF8XMzwWfzYOffW1GnVOJThJUw/aGhBvp4vnOYt20u+NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVmNpgQ53hui9RdjSBA/YIDrJdFowHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqLgwDQYJ KoZIhvcNAQELBQADggEBAO6ZIt+kMc4u4J3IgXeIJUYtlVWpAmMm2QmC/U5ImIhY ctx9Z2XiEztZ6nRL2NApZQuGz10kGcjo4aq8/JjnCAIW8kO70etmqNlbERdc3ZYU N2sNU8iChsvhwJEcmLe3OQ+kpybx73PLUNAtZjOXEVgmi6Slly9PhKOL2MMM6+J9 kbSiXeLGahIgcze9SqtOJ3Pv0Qegbdd4p/iZRlE0e2yaRKPdX9nfgn830HEjxQr6 G07L2a7J/111tUbrSdPdkMCztGc9HTDVSGP61pmeaJtbOlTUpbTGh0Z7JBmZXi1B UoudsXpgkpasjXysHaraSTQB587sBT9YlpvUgQqKgA0= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:21 2024 by rpki-client on console-fra.rpki-client.org