$ rpki-client -vvf repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa File: 3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa (raw, json) Hash identifier: Y0NpV3qkBI/p938OFE7t+/DMEW5qpy9PGEnVu+4uFrY= Subject key identifier: B6:CF:9A:ED:04:99:3D:F7:F3:8A:11:32:B1:22:A3:54:58:26:F1:25 Certificate issuer: /CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Certificate serial: 095FCE5C9556300067CDC1E6857C84FFD23EE5C1 Authority key identifier: DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa Signing time: Tue 28 May 2024 10:00:01 +0000 ROA not before: Tue 28 May 2024 09:55:01 +0000 ROA not after: Tue 27 May 2025 10:00:01 +0000 asID: 142374 IP address blocks: 103.171.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:5f:ce:5c:95:56:30:00:67:cd:c1:e6:85:7c:84:ff:d2:3e:e5:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Validity Not Before: May 28 09:55:01 2024 GMT Not After : May 27 10:00:01 2025 GMT Subject: CN=B6CF9AED04993DF7F38A1132B122A3545826F125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fb:82:b3:9f:57:d5:66:d4:50:c9:4a:f6:d2: 5a:08:4d:74:47:d6:11:cd:6b:6d:4c:79:87:fe:60: 8d:7b:77:83:e0:53:62:70:0b:59:ec:39:fb:20:c8: 15:f3:cf:db:32:f3:20:02:78:44:cd:b7:54:60:6c: 26:e9:6b:e0:52:49:4b:22:f4:2b:f0:b1:d4:9d:52: fc:ca:88:a0:c7:47:21:9c:51:b8:0e:19:0c:f6:43: 94:fd:94:73:0a:9a:ce:23:a1:99:01:22:f0:2c:4d: 10:23:b3:14:da:37:6c:f6:bb:36:ef:07:a2:2c:af: 9e:51:a3:b9:f5:25:bb:05:48:7f:7d:dd:9f:6c:90: cc:f2:eb:42:84:c1:20:d3:63:7f:91:45:10:97:bc: 39:58:37:13:88:ec:17:ac:9b:39:b9:39:74:33:83: dc:7d:d1:ad:5f:dd:49:dd:16:71:10:cc:f2:8c:0b: 43:73:c6:16:76:e8:43:75:08:ee:c3:ea:ba:46:79: 1e:43:84:00:e4:68:be:9a:21:01:b4:5d:92:46:f5: b6:78:00:59:8f:67:3b:8e:1c:94:de:9e:5e:5b:2a: d2:4c:49:8a:3a:44:d0:ed:ce:f2:b9:79:5f:5f:fa: 07:37:02:d1:8e:f4:7d:1b:0c:9f:6a:44:ab:2a:90: 52:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CF:9A:ED:04:99:3D:F7:F3:8A:11:32:B1:22:A3:54:58:26:F1:25 X509v3 Authority Key Identifier: keyid:DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.185.0/24 Signature Algorithm: sha256WithRSAEncryption 23:7a:5d:8a:c8:a0:b7:af:f7:49:64:9d:20:22:88:76:94:ab: 63:25:30:27:d7:96:48:c6:12:72:05:08:f7:9c:17:cd:48:e3: 56:86:4a:f8:48:25:b6:31:89:8c:58:fe:99:f6:3b:79:2d:6f: 86:32:09:37:83:6d:a4:33:e0:00:73:b7:ef:68:d6:3b:6b:dc: b7:36:58:4b:0d:56:3e:d0:f6:0c:e7:a1:c6:26:ea:a0:b6:df: 1a:32:6e:60:1c:f5:0e:2c:1a:f2:47:23:de:3d:c8:f8:f8:89: c8:b9:6d:6f:4e:9b:d8:d5:ac:91:a0:73:1f:17:b6:5b:b4:f1: 94:e9:a1:d3:c9:11:ba:15:24:c5:14:f8:1a:61:a8:aa:bb:cd: 97:a4:c9:6a:c8:2d:80:ff:c4:68:fa:40:a6:6f:58:f4:87:bb: ec:7d:4b:fb:35:b6:e0:93:77:5a:23:ea:fd:be:a6:d5:aa:94: 14:e1:36:8c:c7:d8:7e:c1:25:cf:df:e5:3d:5c:e0:4f:89:67: af:85:09:78:fe:63:47:93:ad:4c:b7:e6:56:ce:1c:4e:42:3b: 6b:24:b3:3a:dc:39:31:a0:2d:72:04:99:c5:02:1e:7b:57:14: cc:eb:9a:c0:03:a8:f1:b1:c1:36:31:83:63:81:b9:94:f2:dc: f0:dc:d4:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCV/OXJVWMABnzcHmhXyE/9I+5cEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0ND MUY1MzA2QzAeFw0yNDA1MjgwOTU1MDFaFw0yNTA1MjcxMDAwMDFaMDMxMTAvBgNV BAMTKEI2Q0Y5QUVEMDQ5OTNERjdGMzhBMTEzMkIxMjJBMzU0NTgyNkYxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk+4Kzn1fVZtRQyUr20loITXRH 1hHNa21MeYf+YI17d4PgU2JwC1nsOfsgyBXzz9sy8yACeETNt1RgbCbpa+BSSUsi 9CvwsdSdUvzKiKDHRyGcUbgOGQz2Q5T9lHMKms4joZkBIvAsTRAjsxTaN2z2uzbv B6Isr55Ro7n1JbsFSH993Z9skMzy60KEwSDTY3+RRRCXvDlYNxOI7Besmzm5OXQz g9x90a1f3UndFnEQzPKMC0NzxhZ26EN1CO7D6rpGeR5DhADkaL6aIQG0XZJG9bZ4 AFmPZzuOHJTenl5bKtJMSYo6RNDtzvK5eV9f+gc3AtGO9H0bDJ9qRKsqkFJFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUts+a7QSZPffzihEysSKjVFgm8SUwHwYDVR0j BBgwFoAU364RQY8hdaV9Adj4CmFJfMH1MGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODU1ZjQ1MC1lYjdmLTRhMjYtYTZjNC1mOTgyN2VlMGE1YjgvMC9ERkFFMTE0MThG MjE3NUE1N0QwMUQ4RjgwQTYxNDk3Q0MxRjUzMDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0NDMUY1 MzA2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTVmNDUwLWViN2YtNGEyNi1h NmM0LWY5ODI3ZWUwYTViOC8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7kwDQYJ KoZIhvcNAQELBQADggEBACN6XYrIoLev90lknSAiiHaUq2MlMCfXlkjGEnIFCPec F81I41aGSvhIJbYxiYxY/pn2O3ktb4YyCTeDbaQz4ABzt+9o1jtr3Lc2WEsNVj7Q 9gznocYm6qC23xoybmAc9Q4sGvJHI949yPj4ici5bW9Om9jVrJGgcx8Xtlu08ZTp odPJEboVJMUU+BphqKq7zZekyWrILYD/xGj6QKZvWPSHu+x9S/s1tuCTd1oj6v2+ ptWqlBThNozH2H7BJc/f5T1c4E+JZ6+FCXj+Y0eTrUy35lbOHE5CO2skszrcOTGg LXIEmcUCHntXFMzrmsADqPGxwTYxg2OBuZTy3PDc1EQ= -----END CERTIFICATE-----Generated at Sat Jun 1 22:08:22 2024 by rpki-client on console-fra.rpki-client.org