$ rpki-client -vvf repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/3130332e3137342e36342e302f32332d3234203d3e20313437313236.roa File: 3130332e3137342e36342e302f32332d3234203d3e20313437313236.roa (raw, json) Hash identifier: mI6PTkpaM6ChlY4guRYd5Ne9UFAZRwUFW3RPT7EOVQM= Subject key identifier: A9:8B:6F:00:EF:3B:E5:F3:F3:B5:B1:01:DF:C7:E0:1C:7C:F8:22:93 Certificate issuer: /CN=DE99361912581A3A43349B6FFB379A285B0972E7 Certificate serial: 74BC6A891375DF8CF01A330B74D49347A19221B0 Authority key identifier: DE:99:36:19:12:58:1A:3A:43:34:9B:6F:FB:37:9A:28:5B:09:72:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE99361912581A3A43349B6FFB379A285B0972E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/3130332e3137342e36342e302f32332d3234203d3e20313437313236.roa Signing time: Tue 13 Aug 2024 09:37:42 +0000 ROA not before: Tue 13 Aug 2024 09:32:42 +0000 ROA not after: Tue 12 Aug 2025 09:37:42 +0000 asID: 147126 IP address blocks: 103.174.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/DE99361912581A3A43349B6FFB379A285B0972E7.crl rsync://repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/DE99361912581A3A43349B6FFB379A285B0972E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE99361912581A3A43349B6FFB379A285B0972E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 08:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:bc:6a:89:13:75:df:8c:f0:1a:33:0b:74:d4:93:47:a1:92:21:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE99361912581A3A43349B6FFB379A285B0972E7 Validity Not Before: Aug 13 09:32:42 2024 GMT Not After : Aug 12 09:37:42 2025 GMT Subject: CN=A98B6F00EF3BE5F3F3B5B101DFC7E01C7CF82293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2f:96:fa:aa:33:ff:c8:b4:b7:3c:69:cb:01: 30:3e:54:01:3e:0e:37:0c:76:c3:80:63:b5:29:eb: 61:8b:cf:f2:17:2e:fd:d8:05:0f:38:6d:71:4c:6a: 57:d0:8e:57:e1:33:90:4a:cf:da:7f:a2:22:ca:11: 87:98:1c:6e:51:26:ca:e2:2e:36:22:08:31:74:c2: f4:45:2a:3e:e0:d2:f8:fe:c6:65:ab:96:8d:4a:3a: c8:48:e3:0c:30:ea:f5:72:23:9d:da:8b:90:c4:84: 6f:93:dd:a9:de:79:35:61:f9:b8:bf:41:16:5e:bc: 11:04:20:05:1a:44:1b:87:af:d9:f5:e2:61:89:3c: a0:8c:c0:72:87:ce:7b:3e:7f:5a:89:f4:2a:d4:d0: d5:ef:4e:3e:0a:67:f5:c3:f6:ad:ad:b9:2e:95:dc: 0e:6d:af:b9:b6:70:a7:51:18:f8:0d:41:6f:ed:c9: 66:b6:fd:d4:96:dd:79:14:c2:22:3a:ae:2a:e6:60: 4d:d7:19:df:54:26:db:37:8c:13:06:69:6d:85:69: e7:0a:cb:eb:e9:a2:ed:52:37:8b:83:ce:14:56:e7: be:2a:10:e0:2c:51:cf:6c:6f:86:2d:73:2d:1e:33: cc:af:34:dd:7b:e2:cc:e6:6d:df:e5:d6:11:95:c5: 1a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8B:6F:00:EF:3B:E5:F3:F3:B5:B1:01:DF:C7:E0:1C:7C:F8:22:93 X509v3 Authority Key Identifier: keyid:DE:99:36:19:12:58:1A:3A:43:34:9B:6F:FB:37:9A:28:5B:09:72:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/DE99361912581A3A43349B6FFB379A285B0972E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE99361912581A3A43349B6FFB379A285B0972E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91f4abbe-8b5d-402b-9053-50b785c77352/0/3130332e3137342e36342e302f32332d3234203d3e20313437313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.64.0/23 Signature Algorithm: sha256WithRSAEncryption a3:d0:fd:f5:91:9d:4b:bf:db:ff:e1:e2:62:12:f9:ee:a5:b1: 3c:a7:81:f2:b5:e1:a0:22:e6:2b:41:0c:55:c6:4d:1c:d6:41: 29:e6:ea:1c:e8:2b:53:80:ad:54:16:6b:1c:7d:95:6e:a1:20: ec:75:94:a0:53:a3:6d:57:8c:4a:91:0e:87:fa:e4:fd:df:70: 8f:d5:4d:db:1c:6b:e3:67:1f:3d:16:a9:71:ab:0d:bf:24:ee: b5:97:e1:04:aa:f5:ec:63:09:78:94:c8:f7:9b:40:86:8b:cb: 11:3e:d1:af:a1:11:3c:7f:15:d3:02:f7:ce:36:b4:d0:ad:05: 12:8b:d0:7e:aa:0d:ce:f6:03:96:a9:0b:09:39:c2:20:41:5d: c5:6d:6e:ca:ae:6f:14:b8:0b:cf:4f:d7:54:e6:bd:f5:46:5c: 24:e1:a9:39:91:f2:00:cc:59:46:74:77:64:b9:e5:73:6d:dd: ac:1b:cd:61:d6:aa:c1:cb:b6:3e:85:5f:31:87:f4:63:c9:6d: 10:54:5e:79:09:20:fc:8d:5a:99:30:50:38:45:d6:d7:8a:d4: 75:5d:01:9f:ba:fe:0c:c5:4a:0e:58:00:05:b4:0e:da:9c:b5: 82:9e:50:90:86:41:3f:cf:c8:64:f6:4f:02:aa:66:38:4f:a4: d3:ef:0d:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdLxqiRN134zwGjMLdNSTR6GSIbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU5OTM2MTkxMjU4MUEzQTQzMzQ5QjZGRkIzNzlBMjg1 QjA5NzJFNzAeFw0yNDA4MTMwOTMyNDJaFw0yNTA4MTIwOTM3NDJaMDMxMTAvBgNV BAMTKEE5OEI2RjAwRUYzQkU1RjNGM0I1QjEwMURGQzdFMDFDN0NGODIyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsL5b6qjP/yLS3PGnLATA+VAE+ DjcMdsOAY7Up62GLz/IXLv3YBQ84bXFMalfQjlfhM5BKz9p/oiLKEYeYHG5RJsri LjYiCDF0wvRFKj7g0vj+xmWrlo1KOshI4www6vVyI53ai5DEhG+T3aneeTVh+bi/ QRZevBEEIAUaRBuHr9n14mGJPKCMwHKHzns+f1qJ9CrU0NXvTj4KZ/XD9q2tuS6V 3A5tr7m2cKdRGPgNQW/tyWa2/dSW3XkUwiI6rirmYE3XGd9UJts3jBMGaW2FaecK y+vpou1SN4uDzhRW574qEOAsUc9sb4Ytcy0eM8yvNN174szmbd/l1hGVxRrpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqYtvAO875fPztbEB38fgHHz4IpMwHwYDVR0j BBgwFoAU3pk2GRJYGjpDNJtv+zeaKFsJcucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWY0YWJiZS04YjVkLTQwMmItOTA1My01MGI3ODVjNzczNTIvMC9ERTk5MzYxOTEy NTgxQTNBNDMzNDlCNkZGQjM3OUEyODVCMDk3MkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU5OTM2MTkxMjU4MUEzQTQzMzQ5QjZGRkIzNzlBMjg1QjA5 NzJFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZjRhYmJlLThiNWQtNDAyYi05 MDUzLTUwYjc4NWM3NzM1Mi8wLzMxMzAzMzJlMzEzNzM0MmUzNjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ65AMA0GCSqG SIb3DQEBCwUAA4IBAQCj0P31kZ1Lv9v/4eJiEvnupbE8p4HyteGgIuYrQQxVxk0c 1kEp5uoc6CtTgK1UFmscfZVuoSDsdZSgU6NtV4xKkQ6H+uT933CP1U3bHGvjZx89 Fqlxqw2/JO61l+EEqvXsYwl4lMj3m0CGi8sRPtGvoRE8fxXTAvfONrTQrQUSi9B+ qg3O9gOWqQsJOcIgQV3FbW7Krm8UuAvPT9dU5r31Rlwk4ak5kfIAzFlGdHdkueVz bd2sG81h1qrBy7Y+hV8xh/RjyW0QVF55CSD8jVqZMFA4RdbXitR1XQGfuv4MxUoO WAAFtA7anLWCnlCQhkE/z8hk9k8CqmY4T6TT7w2f -----END CERTIFICATE-----Generated at Fri Feb 21 11:22:31 2025 by rpki-client