$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa File: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (raw, json) Hash identifier: rBY4+fK+ajR3XvBjuh3eh6UlJO/Rel/0Ehv9FHZ6POk= Subject key identifier: 3B:B6:05:15:BD:D5:B5:D0:05:33:D0:2C:BF:66:E1:1F:AE:2B:17:07 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 1797C0E646F6E37C03C7ECD040B736C68290F903 Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa Signing time: Fri 09 Feb 2024 10:12:26 +0000 ROA not before: Fri 09 Feb 2024 10:07:26 +0000 ROA not after: Fri 07 Feb 2025 10:12:26 +0000 asID: 150185 IP address blocks: 103.193.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:97:c0:e6:46:f6:e3:7c:03:c7:ec:d0:40:b7:36:c6:82:90:f9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Feb 9 10:07:26 2024 GMT Not After : Feb 7 10:12:26 2025 GMT Subject: CN=3BB60515BDD5B5D00533D02CBF66E11FAE2B1707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5c:bc:d1:71:6a:43:1f:e5:85:f1:bc:df:d0: 51:57:25:cd:9d:2b:13:e4:1a:b9:df:69:47:35:6c: d3:88:bc:da:ae:15:0b:0e:e0:27:e6:1a:14:58:2e: 98:ee:11:ce:f7:74:af:62:ae:d3:4b:96:1f:f1:8c: a6:8c:ec:b1:37:65:41:0e:c1:08:aa:8a:48:2b:83: 40:c2:ef:b9:48:ec:a8:31:b9:db:a1:ba:53:cb:49: a3:5b:85:ea:90:b1:9f:56:62:31:e6:a5:27:97:27: 24:b7:11:77:58:d0:a2:4e:1c:42:0e:a8:6f:d4:aa: e3:4b:e1:5e:4b:59:fa:ea:28:4c:19:a1:89:b3:02: ae:83:a1:9c:1a:a8:9e:b7:78:c8:fd:a2:8d:26:7c: ea:6e:5c:a4:4b:0f:f2:49:63:85:cb:77:1e:60:94: 04:89:15:dc:c7:55:11:22:c8:b0:93:7a:05:66:aa: 53:0d:00:05:a6:4c:c0:6e:be:33:9f:7c:d7:c5:68: 13:61:62:9f:ba:8f:de:30:3b:7f:a8:0e:0a:90:be: db:4b:85:9f:e6:a6:65:24:34:aa:8e:63:e4:b4:68: 97:dc:51:26:06:5d:c1:72:48:db:bc:b2:19:cc:1a: be:20:14:43:62:04:58:8c:fb:27:a5:d1:73:63:52: 34:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B6:05:15:BD:D5:B5:D0:05:33:D0:2C:BF:66:E1:1F:AE:2B:17:07 X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.166.0/23 Signature Algorithm: sha256WithRSAEncryption 74:bb:d9:62:c3:aa:21:70:6b:70:e3:22:83:94:62:db:75:15: 64:84:06:3f:ff:59:c5:18:53:11:8b:2b:39:15:9b:3e:18:64: 77:54:32:79:f8:8d:96:30:5e:f3:61:69:76:64:95:b7:96:03: 2e:ba:f3:a2:43:c3:45:3c:d1:d5:3d:42:b4:e7:6f:49:d8:97: 14:24:32:10:d7:3d:67:6f:87:3c:aa:e8:c8:21:5c:67:35:5a: 82:2c:a6:27:6a:5d:3a:05:11:80:70:54:cf:be:58:07:ae:19: c2:0c:3c:0f:d0:00:16:17:7b:36:c1:27:69:8c:7a:a2:f8:85: 92:c0:d5:58:ec:7a:da:84:a8:a5:e8:11:65:8a:16:c2:e3:ee: fd:ca:8e:91:d8:7b:21:1c:51:fa:75:0e:a0:37:1b:66:e0:0e: a6:5a:c4:95:0f:20:78:ee:0f:5f:39:c3:7c:9b:2f:d6:c2:12: bf:27:17:d5:92:f0:91:6a:84:1b:17:28:4e:12:38:a4:91:56: cf:3b:61:2f:c7:e9:38:b6:bf:40:bf:bd:05:98:13:f6:d3:82: 8b:a4:51:66:7c:46:e2:b8:92:e4:86:de:f0:01:f6:04:e4:5c: e8:76:7c:fc:5a:8c:cf:4e:e1:b7:30:3f:79:7f:b7:b2:52:89: cd:86:1d:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF5fA5kb243wDx+zQQLc2xoKQ+QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNDAyMDkxMDA3MjZaFw0yNTAyMDcxMDEyMjZaMDMxMTAvBgNV BAMTKDNCQjYwNTE1QkRENUI1RDAwNTMzRDAyQ0JGNjZFMTFGQUUyQjE3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHXLzRcWpDH+WF8bzf0FFXJc2d KxPkGrnfaUc1bNOIvNquFQsO4CfmGhRYLpjuEc73dK9irtNLlh/xjKaM7LE3ZUEO wQiqikgrg0DC77lI7KgxuduhulPLSaNbheqQsZ9WYjHmpSeXJyS3EXdY0KJOHEIO qG/UquNL4V5LWfrqKEwZoYmzAq6DoZwaqJ63eMj9oo0mfOpuXKRLD/JJY4XLdx5g lASJFdzHVREiyLCTegVmqlMNAAWmTMBuvjOffNfFaBNhYp+6j94wO3+oDgqQvttL hZ/mpmUkNKqOY+S0aJfcUSYGXcFySNu8shnMGr4gFENiBFiM+yel0XNjUjT5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUO7YFFb3VtdAFM9Asv2bhH64rFwcwHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MDM2OTc0LTgxMzEtNDVhZi05 NGNlLWY0OWI0ODExYzE3My8wLzMxMzAzMzJlMzEzOTMzMmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzMTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnwaYwDQYJ KoZIhvcNAQELBQADggEBAHS72WLDqiFwa3DjIoOUYtt1FWSEBj//WcUYUxGLKzkV mz4YZHdUMnn4jZYwXvNhaXZklbeWAy6686JDw0U80dU9QrTnb0nYlxQkMhDXPWdv hzyq6MghXGc1WoIspidqXToFEYBwVM++WAeuGcIMPA/QABYXezbBJ2mMeqL4hZLA 1VjsetqEqKXoEWWKFsLj7v3KjpHYeyEcUfp1DqA3G2bgDqZaxJUPIHjuD185w3yb L9bCEr8nF9WS8JFqhBsXKE4SOKSRVs87YS/H6Ti2v0C/vQWYE/bTgoukUWZ8RuK4 kuSG3vAB9gTkXOh2fPxajM9O4bcwP3l/t7JSic2GHZM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org