$ rpki-client -vvf repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa File: 3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa (raw, json) Hash identifier: I3vpCv0oYtfxd7hHuwxS1OPwUo21+YguH+Vd5LBIJ5M= Subject key identifier: 78:0F:65:99:8B:CB:87:2D:36:12:CC:FB:0C:49:0B:A4:3B:A5:7B:AD Certificate issuer: /CN=179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F Certificate serial: 28810F2AA65D9B9DBF19ECDD57438DE6A49C658D Authority key identifier: 17:9B:4E:B2:33:0E:26:EC:D7:7C:82:54:D8:F8:BD:DD:1C:CB:6E:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa Signing time: Tue 18 Jun 2024 12:00:01 +0000 ROA not before: Tue 18 Jun 2024 11:55:01 +0000 ROA not after: Tue 17 Jun 2025 12:00:01 +0000 asID: 131713 IP address blocks: 103.149.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.crl rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:81:0f:2a:a6:5d:9b:9d:bf:19:ec:dd:57:43:8d:e6:a4:9c:65:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F Validity Not Before: Jun 18 11:55:01 2024 GMT Not After : Jun 17 12:00:01 2025 GMT Subject: CN=780F65998BCB872D3612CCFB0C490BA43BA57BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:08:3e:f9:0b:3c:4a:76:98:27:28:72:e7:a1: fd:0c:62:95:8c:c2:14:86:9c:b3:91:44:63:39:1f: 05:21:01:f3:55:20:f5:d1:a1:20:6b:e7:ab:fc:2b: a7:61:fe:e5:04:e4:89:e7:d2:44:fd:9a:03:ae:46: 61:02:69:6b:78:65:1f:c7:3c:e1:a2:32:87:89:d1: a4:58:cd:27:a3:79:47:3b:f1:45:15:a5:74:fa:f0: 7a:30:2b:10:ca:15:c5:1e:46:fe:20:10:de:23:85: fe:00:59:0b:67:b3:2b:8b:e2:44:66:aa:40:3f:ba: 03:f6:36:f8:bd:16:53:0d:12:a5:5d:d6:3a:57:72: c1:80:cd:59:e1:fc:ec:2d:74:e5:e8:f0:ba:ca:4f: 9d:88:00:3f:12:79:e8:45:d9:28:22:36:23:2e:d6: 64:92:7c:21:8d:33:2e:7b:b3:91:31:11:d0:b9:d6: 0c:e4:46:4d:16:f5:4f:03:90:68:db:b7:9e:ae:06: e3:c2:29:31:5d:a4:2d:66:4d:57:ca:fb:5d:11:78: 41:17:e9:97:9c:fd:84:33:90:f0:bb:0e:fb:3d:76: 89:d5:89:71:2e:71:2e:1e:d3:5a:a4:33:67:f1:3a: 97:f7:b4:a4:3f:c3:ff:46:b6:48:84:b3:98:3c:bf: 7d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0F:65:99:8B:CB:87:2D:36:12:CC:FB:0C:49:0B:A4:3B:A5:7B:AD X509v3 Authority Key Identifier: keyid:17:9B:4E:B2:33:0E:26:EC:D7:7C:82:54:D8:F8:BD:DD:1C:CB:6E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179B4EB2330E26ECD77C8254D8F8BDDD1CCB6E7F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b57f0e6c-145a-4cf3-b283-42c4af819188/0/3130332e3134392e3134302e302f32332d3234203d3e20313331373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.140.0/23 Signature Algorithm: sha256WithRSAEncryption 84:dd:99:f2:80:84:ed:38:d9:93:8d:dc:71:20:cc:27:32:40: ec:2e:59:17:ab:bc:20:35:77:05:60:c2:5d:6d:10:c3:24:8b: bb:4f:62:4b:a2:54:61:b1:9e:09:a8:24:03:46:c9:f6:22:6c: 0a:7a:c0:c3:bb:97:be:50:7f:66:c3:60:96:0a:a8:34:69:f9: 4a:eb:34:b7:7d:fa:e7:8f:e2:37:87:82:ae:54:52:fd:e8:c9: 7a:b3:4d:08:76:90:4b:96:ff:34:83:d2:8e:7e:4b:69:ed:b6: 4f:45:6d:aa:e5:f1:e1:f7:0f:36:c9:3a:b5:f8:38:28:db:d0: 33:93:d7:2b:6b:86:e6:21:fe:87:c8:ff:56:db:d0:ca:fb:df: 7a:f2:3a:19:79:92:1d:2a:ec:56:2e:e5:ee:00:96:f2:bf:ff: 6d:36:98:39:b0:0b:a1:b4:3e:39:9c:35:75:95:0c:3a:1a:33: da:e3:32:a7:11:eb:4f:3a:f1:67:06:86:18:3b:fd:fc:f6:af: 04:3e:12:41:1a:e1:61:f2:f3:d5:36:1d:cb:d1:77:c8:5e:ae: e2:ed:98:80:f9:0b:e0:6b:90:8a:9d:39:43:a1:88:ea:20:3a: 73:7a:6d:06:8b:cb:3d:4f:df:b5:f0:00:6f:18:f5:aa:e5:ec: b1:49:07:98 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKIEPKqZdm52/GezdV0ON5qScZY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc5QjRFQjIzMzBFMjZFQ0Q3N0M4MjU0RDhGOEJEREQx Q0NCNkU3RjAeFw0yNDA2MTgxMTU1MDFaFw0yNTA2MTcxMjAwMDFaMDMxMTAvBgNV BAMTKDc4MEY2NTk5OEJDQjg3MkQzNjEyQ0NGQjBDNDkwQkE0M0JBNTdCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKCD75CzxKdpgnKHLnof0MYpWM whSGnLORRGM5HwUhAfNVIPXRoSBr56v8K6dh/uUE5Inn0kT9mgOuRmECaWt4ZR/H POGiMoeJ0aRYzSejeUc78UUVpXT68HowKxDKFcUeRv4gEN4jhf4AWQtnsyuL4kRm qkA/ugP2Nvi9FlMNEqVd1jpXcsGAzVnh/OwtdOXo8LrKT52IAD8SeehF2SgiNiMu 1mSSfCGNMy57s5ExEdC51gzkRk0W9U8DkGjbt56uBuPCKTFdpC1mTVfK+10ReEEX 6Zec/YQzkPC7Dvs9donViXEucS4e01qkM2fxOpf3tKQ/w/9GtkiEs5g8v33vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUeA9lmYvLhy02Esz7DEkLpDule60wHwYDVR0j BBgwFoAUF5tOsjMOJuzXfIJU2Pi93RzLbn8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTdmMGU2Yy0xNDVhLTRjZjMtYjI4My00MmM0YWY4MTkxODgvMC8xNzlCNEVCMjMz MEUyNkVDRDc3QzgyNTREOEY4QkRERDFDQ0I2RTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTc5QjRFQjIzMzBFMjZFQ0Q3N0M4MjU0RDhGOEJEREQxQ0NC NkU3Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1N2YwZTZjLTE0NWEtNGNmMy1i MjgzLTQyYzRhZjgxOTE4OC8wLzMxMzAzMzJlMzEzNDM5MmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlYwwDQYJ KoZIhvcNAQELBQADggEBAITdmfKAhO042ZON3HEgzCcyQOwuWRervCA1dwVgwl1t EMMki7tPYkuiVGGxngmoJANGyfYibAp6wMO7l75Qf2bDYJYKqDRp+UrrNLd9+ueP 4jeHgq5UUv3oyXqzTQh2kEuW/zSD0o5+S2nttk9Fbarl8eH3DzbJOrX4OCjb0DOT 1ytrhuYh/ofI/1bb0Mr733ryOhl5kh0q7FYu5e4AlvK//202mDmwC6G0PjmcNXWV DDoaM9rjMqcR60868WcGhhg7/fz2rwQ+EkEa4WHy89U2HcvRd8heruLtmID5C+Br kIqdOUOhiOogOnN6bQaLyz1P37XwAG8Y9arl7LFJB5g= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org