$ rpki-client -vvf repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa File: 3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa (raw, json) Hash identifier: PDdq8e3i59EuZ/OY6T2ikv6WPALtg9Yb+GzE/u464Cg= Subject key identifier: 51:99:77:D9:AE:57:0C:FE:DC:14:14:6E:5A:B0:2A:D4:06:9D:6D:C1 Certificate issuer: /CN=DE871A367510652B50812EF1D04572635502AD6E Certificate serial: 7DB6968905AD3316A113B6C78903AEA11AA2CCF3 Authority key identifier: DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa Signing time: Tue 05 Nov 2024 16:02:27 +0000 ROA not before: Tue 05 Nov 2024 15:57:27 +0000 ROA not after: Tue 04 Nov 2025 16:02:27 +0000 asID: 147095 IP address blocks: 103.174.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:b6:96:89:05:ad:33:16:a1:13:b6:c7:89:03:ae:a1:1a:a2:cc:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE871A367510652B50812EF1D04572635502AD6E Validity Not Before: Nov 5 15:57:27 2024 GMT Not After : Nov 4 16:02:27 2025 GMT Subject: CN=519977D9AE570CFEDC14146E5AB02AD4069D6DC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:ae:11:83:c0:4c:9d:6a:3f:5d:17:f3:b0: b7:26:f5:db:78:62:98:46:d6:da:6c:42:8c:b9:c5: d2:ac:89:7e:0b:95:97:58:b1:9e:68:52:47:6d:60: d3:bc:34:53:27:26:4d:ce:32:77:35:ca:5e:71:ca: dd:0a:72:31:18:62:5c:d1:4a:e1:24:04:cc:89:0c: ff:d9:fe:82:11:ca:2e:da:b4:25:55:cd:69:0c:22: 6f:e0:76:3a:ef:a9:3a:f0:e1:77:11:3f:90:f6:93: 1a:32:2e:8a:ef:63:c6:49:54:f2:66:47:ef:c3:16: 51:b7:fe:22:4b:dc:b3:3b:c8:9c:d5:42:67:da:88: c7:22:2a:80:3e:d2:2f:18:2c:60:6d:4e:d4:a9:6a: fd:7c:04:a4:65:40:3d:03:8f:2e:ed:cc:72:4e:93: 7c:75:39:3e:18:07:52:1a:24:7e:2c:d9:f7:37:7c: d4:e2:8e:95:80:ab:aa:65:31:d0:5c:3c:5d:4a:20: 4f:34:0b:8f:7f:de:2c:de:f9:a6:27:c1:8c:86:cd: dc:75:da:44:7d:31:7e:cd:12:8c:f1:8d:b8:0a:98: d1:c8:63:08:48:f1:37:c5:d6:86:2b:43:c0:ce:f2: c7:14:c2:46:ca:7a:49:16:e5:18:05:40:bf:57:af: 28:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:99:77:D9:AE:57:0C:FE:DC:14:14:6E:5A:B0:2A:D4:06:9D:6D:C1 X509v3 Authority Key Identifier: keyid:DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.62.0/24 Signature Algorithm: sha256WithRSAEncryption 77:f0:3f:36:cf:88:d0:fe:76:64:4f:c1:bc:7d:c9:37:91:85: 72:f5:81:a4:98:36:aa:cd:58:03:1c:1c:91:c2:4e:32:1b:d1: 24:47:25:d3:19:48:f5:fb:9d:04:75:fa:75:d0:24:c1:8b:31: 9f:d6:51:d1:1c:e1:33:97:7d:a0:27:d2:57:fc:c4:68:90:94: 42:92:89:a5:a5:ee:d9:73:cd:9b:6a:68:11:ac:c4:52:e6:2d: f9:cb:97:97:98:3c:ac:c3:79:b3:b8:bf:5e:aa:0c:ca:3b:13: e3:35:6b:d5:f9:39:b9:da:98:51:e6:ab:d7:34:a9:f0:f0:50: c1:f7:04:99:02:70:30:81:5e:a1:41:38:8a:61:47:c8:a9:9a: 46:6c:26:28:6a:fe:2b:d7:ef:e1:7b:bd:0b:90:ee:93:79:6b: 82:a2:07:a6:96:d3:15:af:51:9a:e2:62:6c:cf:e0:a6:2f:fd: be:b4:29:ce:f8:16:4a:7b:2d:e0:cf:88:e2:e1:93:42:2f:44: f6:b9:d4:91:c4:b1:d1:42:f0:59:96:6a:43:70:1c:5b:78:9e: 51:8c:ba:d7:2a:1b:61:9f:81:bb:c5:be:8d:a1:37:39:d6:22: f4:8c:59:63:50:03:0e:59:68:f6:9c:b5:5a:82:b4:9a:6b:05: 9b:cd:e6:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfbaWiQWtMxahE7bHiQOuoRqizPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1 NTAyQUQ2RTAeFw0yNDExMDUxNTU3MjdaFw0yNTExMDQxNjAyMjdaMDMxMTAvBgNV BAMTKDUxOTk3N0Q5QUU1NzBDRkVEQzE0MTQ2RTVBQjAyQUQ0MDY5RDZEQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNoq4Rg8BMnWo/XRfzsLcm9dt4 YphG1tpsQoy5xdKsiX4LlZdYsZ5oUkdtYNO8NFMnJk3OMnc1yl5xyt0KcjEYYlzR SuEkBMyJDP/Z/oIRyi7atCVVzWkMIm/gdjrvqTrw4XcRP5D2kxoyLorvY8ZJVPJm R+/DFlG3/iJL3LM7yJzVQmfaiMciKoA+0i8YLGBtTtSpav18BKRlQD0Djy7tzHJO k3x1OT4YB1IaJH4s2fc3fNTijpWAq6plMdBcPF1KIE80C49/3ize+aYnwYyGzdx1 2kR9MX7NEozxjbgKmNHIYwhI8TfF1oYrQ8DO8scUwkbKekkW5RgFQL9XrygZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUZl32a5XDP7cFBRuWrAq1AadbcEwHwYDVR0j BBgwFoAU3ocaNnUQZStQgS7x0EVyY1UCrW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTM2NDVkNC01NDNiLTQ0NGItYTNhNS1mZGNkNDE4MTFjMjEvMC9ERTg3MUEzNjc1 MTA2NTJCNTA4MTJFRjFEMDQ1NzI2MzU1MDJBRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1NTAy QUQ2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMzY0NWQ0LTU0M2ItNDQ0Yi1h M2E1LWZkY2Q0MTgxMWMyMS8wLzMxMzAzMzJlMzEzNzM0MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64+MA0GCSqG SIb3DQEBCwUAA4IBAQB38D82z4jQ/nZkT8G8fck3kYVy9YGkmDaqzVgDHByRwk4y G9EkRyXTGUj1+50Edfp10CTBizGf1lHRHOEzl32gJ9JX/MRokJRCkomlpe7Zc82b amgRrMRS5i35y5eXmDysw3mzuL9eqgzKOxPjNWvV+Tm52phR5qvXNKnw8FDB9wSZ AnAwgV6hQTiKYUfIqZpGbCYoav4r1+/he70LkO6TeWuCogemltMVr1Ga4mJsz+Cm L/2+tCnO+BZKey3gz4ji4ZNCL0T2udSRxLHRQvBZlmpDcBxbeJ5RjLrXKhthn4G7 xb6NoTc51iL0jFljUAMOWWj2nLVagrSaawWbzebs -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org