$ rpki-client -vvf repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa File: 3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa (raw, json) Hash identifier: JddBvr2E4qhvXzTnvB8cueVnBYtFb2jGcnwSz88frMs= Subject key identifier: C5:75:1D:45:6A:15:A9:A3:63:45:34:41:8A:3A:4D:92:F1:D6:6E:8F Certificate issuer: /CN=DE871A367510652B50812EF1D04572635502AD6E Certificate serial: 4CAE230557F8932B728ACE8C65F9792169E26B08 Authority key identifier: DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa Signing time: Tue 05 Nov 2024 16:02:28 +0000 ROA not before: Tue 05 Nov 2024 15:57:28 +0000 ROA not after: Tue 04 Nov 2025 16:02:28 +0000 asID: 147095 IP address blocks: 103.174.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ae:23:05:57:f8:93:2b:72:8a:ce:8c:65:f9:79:21:69:e2:6b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE871A367510652B50812EF1D04572635502AD6E Validity Not Before: Nov 5 15:57:28 2024 GMT Not After : Nov 4 16:02:28 2025 GMT Subject: CN=C5751D456A15A9A3634534418A3A4D92F1D66E8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:67:5a:d0:6d:83:4a:d4:37:1a:29:9a:53:d0: 0c:ba:75:1e:4f:4b:e5:e2:28:2f:8e:e0:40:e4:f0: 5b:c4:ac:62:07:b2:61:d0:90:1f:27:cd:7c:80:ef: 85:f3:5a:be:9c:cb:a8:26:b1:e8:20:2f:66:2c:ac: 57:4c:64:c6:48:f2:ac:3e:a5:39:54:2a:e0:ac:cb: 5f:9f:98:b8:1c:0a:c3:fa:c4:56:e4:44:ab:21:c8: a3:96:92:5a:c8:fc:b2:8f:95:ae:1e:c9:ac:f2:76: 87:65:76:24:73:eb:f5:8d:05:f5:e5:b6:26:01:68: 6e:74:89:70:ca:13:dd:fb:fe:18:37:76:88:35:a2: ef:6e:1e:3b:bf:9f:b7:cc:fb:c7:fd:8d:cb:f4:c7: f9:fe:6c:0a:33:e4:ac:9d:39:9b:18:af:c8:1f:0b: 69:87:3a:28:40:a4:37:f6:5c:e3:ab:98:60:b8:e6: 38:65:53:4b:c9:ed:f5:4c:92:40:0c:3c:77:a5:f3: a3:28:17:ee:f4:45:fe:79:d9:50:8f:52:a7:bb:83: 09:67:d7:79:3a:a0:c6:8b:cf:53:b3:e8:65:32:19: 46:77:03:51:30:70:9a:56:ba:58:50:fd:5b:00:8c: 17:8c:75:29:5e:0c:6f:d5:cd:41:30:a8:59:5b:5d: 45:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:75:1D:45:6A:15:A9:A3:63:45:34:41:8A:3A:4D:92:F1:D6:6E:8F X509v3 Authority Key Identifier: keyid:DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36332e302f32342d3234203d3e20313437303935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.63.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b4:08:0c:17:b8:79:08:3d:89:3a:38:86:e2:6d:ad:f0:1e: c9:0d:1b:cf:14:61:df:e4:33:ed:74:04:9a:21:9b:79:9d:6a: 9b:91:3c:3d:eb:26:7c:6e:02:87:e2:d2:d3:49:7e:06:c8:90: de:52:0e:e4:3d:ea:58:4d:ae:fd:6b:7e:83:dc:79:7a:e6:62: 6f:9f:3b:9d:88:e7:85:0e:48:86:ee:b9:a4:60:34:e0:24:82: 2e:4e:bd:dd:7c:de:86:9e:de:f7:5b:85:55:d0:97:33:03:6d: 1f:5b:02:8d:31:27:e4:cf:44:ec:5a:06:90:c4:71:7c:38:24: 85:0f:61:97:6c:ca:7d:27:cc:6e:16:f3:3c:f4:ec:28:cf:a9: ae:86:b6:28:4d:c0:a8:84:a8:86:23:9c:7b:49:63:a7:b8:e8: ef:53:1f:ca:e4:b8:5e:fb:3f:a1:3b:54:6d:45:4c:06:a7:51: 72:1c:4f:d0:b7:6b:e7:97:6d:73:4f:a6:4a:87:4e:6f:4f:46: 92:0b:ed:aa:23:4b:81:4b:b9:b2:46:84:20:92:71:5d:d9:e2: 9d:9e:26:18:63:df:a5:82:92:cd:50:b7:9c:ef:75:d1:42:b1: ad:3b:cc:ed:5d:a3:be:93:eb:26:03:83:8f:85:55:a2:ff:da: 07:b6:65:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTK4jBVf4kytyis6MZfl5IWniawgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1 NTAyQUQ2RTAeFw0yNDExMDUxNTU3MjhaFw0yNTExMDQxNjAyMjhaMDMxMTAvBgNV BAMTKEM1NzUxRDQ1NkExNUE5QTM2MzQ1MzQ0MThBM0E0RDkyRjFENjZFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpZ1rQbYNK1DcaKZpT0Ay6dR5P S+XiKC+O4EDk8FvErGIHsmHQkB8nzXyA74XzWr6cy6gmseggL2YsrFdMZMZI8qw+ pTlUKuCsy1+fmLgcCsP6xFbkRKshyKOWklrI/LKPla4eyazydodldiRz6/WNBfXl tiYBaG50iXDKE937/hg3dog1ou9uHju/n7fM+8f9jcv0x/n+bAoz5KydOZsYr8gf C2mHOihApDf2XOOrmGC45jhlU0vJ7fVMkkAMPHel86MoF+70Rf552VCPUqe7gwln 13k6oMaLz1Oz6GUyGUZ3A1EwcJpWulhQ/VsAjBeMdSleDG/VzUEwqFlbXUW1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxXUdRWoVqaNjRTRBijpNkvHWbo8wHwYDVR0j BBgwFoAU3ocaNnUQZStQgS7x0EVyY1UCrW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTM2NDVkNC01NDNiLTQ0NGItYTNhNS1mZGNkNDE4MTFjMjEvMC9ERTg3MUEzNjc1 MTA2NTJCNTA4MTJFRjFEMDQ1NzI2MzU1MDJBRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU4NzFBMzY3NTEwNjUyQjUwODEyRUYxRDA0NTcyNjM1NTAy QUQ2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMzY0NWQ0LTU0M2ItNDQ0Yi1h M2E1LWZkY2Q0MTgxMWMyMS8wLzMxMzAzMzJlMzEzNzM0MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64/MA0GCSqG SIb3DQEBCwUAA4IBAQCGtAgMF7h5CD2JOjiG4m2t8B7JDRvPFGHf5DPtdASaIZt5 nWqbkTw96yZ8bgKH4tLTSX4GyJDeUg7kPepYTa79a36D3Hl65mJvnzudiOeFDkiG 7rmkYDTgJIIuTr3dfN6Gnt73W4VV0JczA20fWwKNMSfkz0TsWgaQxHF8OCSFD2GX bMp9J8xuFvM89Owoz6muhrYoTcCohKiGI5x7SWOnuOjvUx/K5Lhe+z+hO1RtRUwG p1FyHE/Qt2vnl21zT6ZKh05vT0aSC+2qI0uBS7myRoQgknFd2eKdniYYY9+lgpLN ULec73XRQrGtO8ztXaO+k+smA4OPhVWi/9oHtmVk -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org