$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa File: 3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa (raw, json) Hash identifier: 3X8QR9vKXGetgzEScwKz/o8SDi64VsRDENnmEXxINPA= Subject key identifier: FA:B7:16:DE:21:73:9F:FB:A2:CE:BA:39:54:2A:37:96:AB:14:A0:1F Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Certificate serial: 55C08BB0F2421FE63A2C936DF8FDE66C7310DDC6 Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa Signing time: Thu 18 Jan 2024 09:00:01 +0000 ROA not before: Thu 18 Jan 2024 08:55:01 +0000 ROA not after: Thu 16 Jan 2025 09:00:01 +0000 asID: 149352 IP address blocks: 103.174.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c0:8b:b0:f2:42:1f:e6:3a:2c:93:6d:f8:fd:e6:6c:73:10:dd:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Validity Not Before: Jan 18 08:55:01 2024 GMT Not After : Jan 16 09:00:01 2025 GMT Subject: CN=FAB716DE21739FFBA2CEBA39542A3796AB14A01F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5f:d4:cd:35:9d:08:2d:1f:98:17:1d:e9:73: e0:64:6e:46:54:78:42:c7:ce:d4:69:80:94:90:2c: cf:81:8b:61:4d:d7:4f:18:16:81:7f:17:4c:7d:b8: 6b:e9:ce:e4:42:58:68:f7:df:4c:e3:bf:2f:dc:64: 77:42:fb:70:ed:27:0c:08:fb:59:95:cf:b8:97:36: e1:16:23:24:04:5d:77:a5:42:28:f8:33:fa:b1:11: b4:04:00:65:de:f8:13:dd:e6:1b:a9:64:79:3d:6b: 3f:2f:53:af:61:49:60:0a:b2:77:e6:3f:5c:00:5d: e5:89:06:f0:41:e6:12:5b:c2:e3:dc:87:20:9b:be: 64:70:a6:7c:01:97:86:50:fe:e5:f7:97:bb:cb:a4: 2c:ad:1f:0e:a3:1b:bc:f8:49:ac:13:d9:bc:df:e4: eb:e8:fe:f7:ef:af:73:44:a3:2a:b4:05:53:79:d1: da:0d:8c:5e:85:9e:68:63:c2:50:6c:1c:c3:57:95: e3:ee:49:68:82:56:6a:15:68:85:7a:e5:f0:35:68: a8:58:7e:7a:e1:fb:9b:17:f0:a8:43:6c:3d:b1:ec: d6:50:4a:26:55:98:6d:12:4d:50:dd:32:42:59:93: e9:53:fc:31:46:fe:7e:e2:2a:de:86:8d:b8:e9:c3: 46:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B7:16:DE:21:73:9F:FB:A2:CE:BA:39:54:2A:37:96:AB:14:A0:1F X509v3 Authority Key Identifier: keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.14.0/23 Signature Algorithm: sha256WithRSAEncryption 00:ac:b5:f1:e1:d1:36:91:f3:e6:b6:77:9b:af:ad:1a:e4:f6: 49:f2:43:aa:d8:a7:71:8f:40:42:47:f8:1c:ac:0d:da:84:8e: 23:e9:a7:de:b7:83:4b:82:c2:f9:21:0f:92:41:be:8a:3a:8c: ef:9c:34:4f:05:72:b4:0a:5d:12:b3:78:69:eb:47:a5:96:56: 70:9b:bb:6c:16:f7:27:f9:76:b6:11:f1:ba:5b:08:d0:0c:53: 6c:f4:80:57:7c:d3:8a:14:04:e8:53:d3:85:c8:d4:fc:8e:a9: ef:8d:4f:fe:8f:9e:0b:aa:93:f1:46:b1:f5:e5:ab:23:79:f1: eb:2a:89:83:74:18:a8:ba:49:29:ce:4d:de:d9:42:93:26:25: b5:89:85:9f:ef:9d:84:4a:a4:d1:96:87:2b:47:91:27:b3:6b: 03:fd:72:dc:02:18:e3:ad:25:9c:8f:3d:8b:32:32:f6:75:29: 97:84:a9:73:df:90:66:b9:98:82:ad:ee:1c:41:9e:a7:90:29: d6:51:d8:8f:96:bf:a3:bf:f3:69:49:87:70:f9:6a:e1:62:b7: 84:e5:b7:78:96:96:b4:94:04:66:30:64:28:c6:93:3c:7d:11: c8:9e:81:e1:6e:66:29:f6:09:ba:e1:20:69:f6:5d:7b:ba:e2: 7d:55:6a:53 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVcCLsPJCH+Y6LJNt+P3mbHMQ3cYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEz RTA0QzYyMzAeFw0yNDAxMTgwODU1MDFaFw0yNTAxMTYwOTAwMDFaMDMxMTAvBgNV BAMTKEZBQjcxNkRFMjE3MzlGRkJBMkNFQkEzOTU0MkEzNzk2QUIxNEEwMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrX9TNNZ0ILR+YFx3pc+BkbkZU eELHztRpgJSQLM+Bi2FN108YFoF/F0x9uGvpzuRCWGj330zjvy/cZHdC+3DtJwwI +1mVz7iXNuEWIyQEXXelQij4M/qxEbQEAGXe+BPd5hupZHk9az8vU69hSWAKsnfm P1wAXeWJBvBB5hJbwuPchyCbvmRwpnwBl4ZQ/uX3l7vLpCytHw6jG7z4SawT2bzf 5Ovo/vfvr3NEoyq0BVN50doNjF6FnmhjwlBsHMNXlePuSWiCVmoVaIV65fA1aKhY fnrh+5sX8KhDbD2x7NZQSiZVmG0STVDdMkJZk+lT/DFG/n7iKt6Gjbjpw0bzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+rcW3iFzn/uizro5VCo3lqsUoB8wHwYDVR0j BBgwFoAUTiqp7TXbDydqX/DUAg2+oT4ExiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWFiMGEwMS04ZWU0LTQ4MjUtODQwZC0xMTJkYWVmMGFjYTgvMC80RTJBQTlFRDM1 REIwRjI3NkE1RkYwRDQwMjBEQkVBMTNFMDRDNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEzRTA0 QzYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64OMA0GCSqG SIb3DQEBCwUAA4IBAQAArLXx4dE2kfPmtnebr60a5PZJ8kOq2Kdxj0BCR/gcrA3a hI4j6afet4NLgsL5IQ+SQb6KOozvnDRPBXK0Cl0Ss3hp60elllZwm7tsFvcn+Xa2 EfG6WwjQDFNs9IBXfNOKFAToU9OFyNT8jqnvjU/+j54LqpPxRrH15asjefHrKomD dBioukkpzk3e2UKTJiW1iYWf752ESqTRlocrR5Ens2sD/XLcAhjjrSWcjz2LMjL2 dSmXhKlz35BmuZiCre4cQZ6nkCnWUdiPlr+jv/NpSYdw+WrhYreE5bd4lpa0lARm MGQoxpM8fRHInoHhbmYp9gm64SBp9l17uuJ9VWpT -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org