$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa File: 3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: yFLtXZhv4icStZGluIXSTKiVb7PeS6C1hGZnyhQ1yqo= Subject key identifier: C9:9F:CF:2B:00:A6:AB:78:FB:8D:D8:EA:4B:F0:4F:53:88:B7:E9:11 Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 32EDE6C18F9282473007E8BC8D14D1712C13E9E5 Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa Signing time: Mon 15 Jul 2024 02:56:04 +0000 ROA not before: Mon 15 Jul 2024 02:51:04 +0000 ROA not after: Mon 14 Jul 2025 02:56:04 +0000 asID: 48465 IP address blocks: 103.168.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ed:e6:c1:8f:92:82:47:30:07:e8:bc:8d:14:d1:71:2c:13:e9:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Jul 15 02:51:04 2024 GMT Not After : Jul 14 02:56:04 2025 GMT Subject: CN=C99FCF2B00A6AB78FB8DD8EA4BF04F5388B7E911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:02:4f:8b:76:f8:55:6a:8d:db:6a:a8:e2:3b: d1:5b:93:5d:78:9d:f5:9b:b4:cd:65:46:ae:16:9d: 37:ba:b8:ca:50:ea:45:4e:f4:f1:62:7d:41:f9:29: d2:5f:2b:95:c9:e2:71:79:34:43:ff:7b:b3:18:d0: 4b:ed:f4:fa:1a:e2:b8:f2:c9:02:1f:9e:21:51:7a: 86:18:33:bb:68:a7:6f:d0:80:37:37:ac:c1:87:5a: e7:9b:fd:d5:cc:05:89:f4:6f:13:75:c2:a0:fd:c6: 51:4a:de:11:22:0e:a8:62:8c:8f:bf:e6:bc:71:da: 0d:10:ce:63:c1:71:af:1f:8c:ed:69:16:20:db:45: 84:1d:70:9b:7b:d9:76:03:1d:e1:31:7a:04:fe:c6: db:67:01:b1:ba:53:28:e8:78:0c:cc:12:87:45:61: 96:8f:64:40:55:b8:b9:3e:e9:db:9d:ae:ff:1a:eb: b6:88:94:65:80:19:e3:8e:cc:0f:34:b9:d4:1a:9e: 32:63:35:3f:95:1f:5e:72:12:43:f7:d0:fc:fb:1a: 40:c7:cc:4c:e5:65:f1:53:1d:aa:19:d4:a6:5d:84: f1:11:ad:a2:97:e4:92:ba:59:78:b3:3f:97:83:11: a3:ce:f9:20:b6:0b:dc:65:5c:9b:4e:ee:91:9b:f3: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9F:CF:2B:00:A6:AB:78:FB:8D:D8:EA:4B:F0:4F:53:88:B7:E9:11 X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.185.0/24 Signature Algorithm: sha256WithRSAEncryption ef:04:7f:57:66:af:f2:08:16:fb:c3:a3:6f:0b:6a:4f:2b:b1: c2:b7:08:bc:e3:e9:db:94:87:d0:9b:ad:a2:5a:35:dc:93:a0: 03:8e:22:49:d4:00:8a:1a:56:55:9b:17:19:85:16:b0:9f:51: f1:2f:b1:11:bc:5b:73:ae:1f:54:d0:61:3a:10:34:03:0d:66: a7:d3:81:69:f4:54:38:98:ab:4f:0b:08:32:50:cf:b0:3f:eb: 95:68:bf:e0:b5:48:b3:21:e3:79:72:a1:24:fb:c1:e7:24:11: f7:a7:24:c9:d9:59:3a:23:5d:4e:7a:88:f1:69:dc:22:0b:29: c0:5e:ba:a8:70:f3:85:48:af:f2:b6:10:77:1a:0a:80:97:57: 65:00:fd:5b:b1:76:c8:cc:6e:43:e8:29:14:0a:36:a4:3f:5d: 5b:7e:ad:27:46:0d:4e:c6:8c:74:fe:ad:d1:61:e8:ed:2c:2e: 45:f8:7a:c7:57:0c:f7:74:12:2e:ae:56:4c:7b:49:dc:e6:47: 60:dd:0b:9e:91:07:d4:86:7d:92:69:d6:de:fe:f6:00:47:e6: f6:a5:d4:11:b8:70:7b:5b:fe:5a:bb:a2:57:29:3b:c7:50:2d: c6:ba:6b:db:56:e7:26:78:a8:8b:2b:6d:40:f6:3d:3c:21:f2: de:75:a1:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMu3mwY+SgkcwB+i8jRTRcSwT6eUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNDA3MTUwMjUxMDRaFw0yNTA3MTQwMjU2MDRaMDMxMTAvBgNV BAMTKEM5OUZDRjJCMDBBNkFCNzhGQjhERDhFQTRCRjA0RjUzODhCN0U5MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHAk+LdvhVao3baqjiO9Fbk114 nfWbtM1lRq4WnTe6uMpQ6kVO9PFifUH5KdJfK5XJ4nF5NEP/e7MY0Evt9Poa4rjy yQIfniFReoYYM7top2/QgDc3rMGHWueb/dXMBYn0bxN1wqD9xlFK3hEiDqhijI+/ 5rxx2g0QzmPBca8fjO1pFiDbRYQdcJt72XYDHeExegT+xttnAbG6UyjoeAzMEodF YZaPZEBVuLk+6dudrv8a67aIlGWAGeOOzA80udQanjJjNT+VH15yEkP30Pz7GkDH zEzlZfFTHaoZ1KZdhPERraKX5JK6WXizP5eDEaPO+SC2C9xlXJtO7pGb8zinAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyZ/PKwCmq3j7jdjqS/BPU4i36REwHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6i5MA0GCSqG SIb3DQEBCwUAA4IBAQDvBH9XZq/yCBb7w6NvC2pPK7HCtwi84+nblIfQm62iWjXc k6ADjiJJ1ACKGlZVmxcZhRawn1HxL7ERvFtzrh9U0GE6EDQDDWan04Fp9FQ4mKtP CwgyUM+wP+uVaL/gtUizIeN5cqEk+8HnJBH3pyTJ2Vk6I11OeojxadwiCynAXrqo cPOFSK/ythB3GgqAl1dlAP1bsXbIzG5D6CkUCjakP11bfq0nRg1Oxox0/q3RYejt LC5F+HrHVwz3dBIurlZMe0nc5kdg3QuekQfUhn2Sadbe/vYAR+b2pdQRuHB7W/5a u6JXKTvHUC3GumvbVucmeKiLK21A9j08IfLedaES -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:21 2024 by rpki-client on console-fra.rpki-client.org