$ rpki-client -vvf repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa File: 3130332e37382e3139352e302f32342d3234203d3e203634333033.roa (raw, json) Hash identifier: MXfDIthgoWl0DB7t5bTdlNeO4VZUUfb84boo8bz76t8= Subject key identifier: D1:36:6C:9D:92:53:25:51:4F:49:C5:FB:70:6F:7E:AD:E4:67:40:41 Certificate issuer: /CN=9B481670EF7678276B7F667CD9CB3577AF393FD0 Certificate serial: 142026C287E8130410DED0FC6EB4859EEC0EE435 Authority key identifier: 9B:48:16:70:EF:76:78:27:6B:7F:66:7C:D9:CB:35:77:AF:39:3F:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa Signing time: Fri 11 Oct 2024 09:02:52 +0000 ROA not before: Fri 11 Oct 2024 08:57:52 +0000 ROA not after: Fri 10 Oct 2025 09:02:52 +0000 asID: 64303 IP address blocks: 103.78.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.crl rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:20:26:c2:87:e8:13:04:10:de:d0:fc:6e:b4:85:9e:ec:0e:e4:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B481670EF7678276B7F667CD9CB3577AF393FD0 Validity Not Before: Oct 11 08:57:52 2024 GMT Not After : Oct 10 09:02:52 2025 GMT Subject: CN=D1366C9D925325514F49C5FB706F7EADE4674041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:75:ee:01:5e:c7:65:19:5b:7b:6a:02:da:92: 30:61:66:d1:8f:2f:24:5a:b6:01:a9:d1:3a:5c:f3: f3:2f:d6:07:2d:ce:1a:ee:1d:0f:dc:49:a7:35:f1: b6:49:3c:2c:74:47:39:ca:cf:71:94:e5:96:bc:9a: ad:2b:0a:40:2d:6a:d0:b1:32:f2:7e:5b:24:08:47: 74:fd:70:72:0d:ce:cf:4d:40:e2:74:9b:5b:4c:a3: 40:93:35:d1:f1:26:9f:97:a7:59:c6:e1:25:ca:40: ab:de:b9:f7:07:55:20:b6:e8:fd:27:0e:f0:8f:aa: 59:41:52:00:7a:27:e1:04:78:91:f3:40:09:e7:9d: f8:8a:be:32:fa:6f:3d:43:e6:17:e7:53:77:1b:29: ef:85:cd:11:f9:b1:18:4a:3d:7c:f9:56:ab:6c:82: f5:d2:4e:ca:48:55:26:19:01:68:7d:53:91:a7:5e: 04:b2:56:2f:b8:a8:56:80:9f:75:f4:fd:30:d6:a8: d6:1d:c6:70:5e:66:35:46:4c:1d:ae:2e:f2:3c:8f: 6c:8d:46:6d:c8:00:ef:7b:40:fb:fa:31:60:1b:85: b8:68:b3:4e:fa:28:8d:44:d0:51:1c:eb:cd:a4:d6: fe:c6:ba:73:be:05:1b:18:31:4e:59:1a:62:9c:58: d2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:36:6C:9D:92:53:25:51:4F:49:C5:FB:70:6F:7E:AD:E4:67:40:41 X509v3 Authority Key Identifier: keyid:9B:48:16:70:EF:76:78:27:6B:7F:66:7C:D9:CB:35:77:AF:39:3F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/9B481670EF7678276B7F667CD9CB3577AF393FD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B481670EF7678276B7F667CD9CB3577AF393FD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/3130332e37382e3139352e302f32342d3234203d3e203634333033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.195.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:9d:b9:86:94:86:e0:7f:3b:99:70:91:d1:2b:80:45:7f:cb: 78:00:45:66:be:62:a9:2b:f7:d8:0c:ab:dc:77:c0:d4:14:2c: 18:48:6b:cf:91:eb:04:ce:df:c3:55:ca:c9:12:c2:04:a3:00: 57:bd:c6:d4:6e:d7:39:e3:79:55:1d:49:b8:4c:e4:21:af:ad: e1:2e:cf:ec:06:4f:d2:5f:59:58:21:bf:ea:18:eb:fd:d4:0f: 7f:82:63:10:ac:b6:a4:0f:c3:23:19:be:fd:09:3b:67:b6:b6: 00:1e:c3:06:c4:fe:1b:68:8c:3a:81:86:e5:52:a4:de:3c:bf: 3e:fa:10:e9:b6:e4:5a:ed:17:3c:28:40:5d:6a:08:af:09:63: b0:6d:21:a9:6f:17:d9:14:f8:10:48:b3:ea:de:03:09:60:ca: b7:0a:63:85:e8:17:5f:c4:2a:3f:3b:b4:03:c8:4d:bb:ee:ea: 3d:24:19:13:45:94:ca:08:45:5f:b5:e9:e4:14:20:5b:41:3e: 5f:e4:b9:7a:fb:ed:a6:36:ab:c3:d5:71:8a:c0:1a:a0:62:4a: 21:e0:90:ce:73:89:63:ac:f6:06:90:c6:17:83:85:4f:d2:97: c5:ac:ce:aa:e3:b1:4a:b0:ee:4c:74:1b:26:c0:fc:32:a4:90: e4:f2:72:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFCAmwofoEwQQ3tD8brSFnuwO5DUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI0ODE2NzBFRjc2NzgyNzZCN0Y2NjdDRDlDQjM1NzdB RjM5M0ZEMDAeFw0yNDEwMTEwODU3NTJaFw0yNTEwMTAwOTAyNTJaMDMxMTAvBgNV BAMTKEQxMzY2QzlEOTI1MzI1NTE0RjQ5QzVGQjcwNkY3RUFERTQ2NzQwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhde4BXsdlGVt7agLakjBhZtGP LyRatgGp0Tpc8/Mv1gctzhruHQ/cSac18bZJPCx0RznKz3GU5Za8mq0rCkAtatCx MvJ+WyQIR3T9cHINzs9NQOJ0m1tMo0CTNdHxJp+Xp1nG4SXKQKveufcHVSC26P0n DvCPqllBUgB6J+EEeJHzQAnnnfiKvjL6bz1D5hfnU3cbKe+FzRH5sRhKPXz5Vqts gvXSTspIVSYZAWh9U5GnXgSyVi+4qFaAn3X0/TDWqNYdxnBeZjVGTB2uLvI8j2yN Rm3IAO97QPv6MWAbhbhos076KI1E0FEc682k1v7GunO+BRsYMU5ZGmKcWNIVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0TZsnZJTJVFPScX7cG9+reRnQEEwHwYDVR0j BBgwFoAUm0gWcO92eCdrf2Z82cs1d685P9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzZiNWFiYy0yYzU0LTRjNWYtYjNmOC0zMzQ2ZjE5ZTZjYzgvMC85QjQ4MTY3MEVG NzY3ODI3NkI3RjY2N0NEOUNCMzU3N0FGMzkzRkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUI0ODE2NzBFRjc2NzgyNzZCN0Y2NjdDRDlDQjM1NzdBRjM5 M0ZEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjNmI1YWJjLTJjNTQtNGM1Zi1i M2Y4LTMzNDZmMTllNmNjOC8wLzMxMzAzMzJlMzczODJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzNDMzMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdOwzANBgkqhkiG 9w0BAQsFAAOCAQEAPJ25hpSG4H87mXCR0SuARX/LeABFZr5iqSv32Ayr3HfA1BQs GEhrz5HrBM7fw1XKyRLCBKMAV73G1G7XOeN5VR1JuEzkIa+t4S7P7AZP0l9ZWCG/ 6hjr/dQPf4JjEKy2pA/DIxm+/Qk7Z7a2AB7DBsT+G2iMOoGG5VKk3jy/PvoQ6bbk Wu0XPChAXWoIrwljsG0hqW8X2RT4EEiz6t4DCWDKtwpjhegXX8QqPzu0A8hNu+7q PSQZE0WUyghFX7Xp5BQgW0E+X+S5evvtpjarw9VxisAaoGJKIeCQznOJY6z2BpDG F4OFT9KXxazOquOxSrDuTHQbJsD8MqSQ5PJyrA== -----END CERTIFICATE-----Generated at Wed Nov 20 14:21:28 2024 by rpki-client on console-fra.rpki-client.org