$ rpki-client -vvf repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/3130332e3137352e3138382e302f32332d3234203d3e20313334363538.roa File: 3130332e3137352e3138382e302f32332d3234203d3e20313334363538.roa (raw, json) Hash identifier: nbrMCd1FrZtyUDsSqPOwiezNZhmsRsgvcmYK466mrE4= Subject key identifier: 6F:20:D6:1A:48:B1:97:F7:E6:E1:EB:3E:11:EC:31:6E:2F:51:52:A5 Certificate issuer: /CN=AFCEE1D439DB1441C4F21223918AC0811E65D56F Certificate serial: 2C0CF1E334EA96E5D7ABD259AB6E59C6D6A3569A Authority key identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/3130332e3137352e3138382e302f32332d3234203d3e20313334363538.roa Signing time: Fri 20 Sep 2024 19:01:19 +0000 ROA not before: Fri 20 Sep 2024 18:56:19 +0000 ROA not after: Fri 19 Sep 2025 19:01:19 +0000 asID: 134658 IP address blocks: 103.175.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.crl rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:0c:f1:e3:34:ea:96:e5:d7:ab:d2:59:ab:6e:59:c6:d6:a3:56:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFCEE1D439DB1441C4F21223918AC0811E65D56F Validity Not Before: Sep 20 18:56:19 2024 GMT Not After : Sep 19 19:01:19 2025 GMT Subject: CN=6F20D61A48B197F7E6E1EB3E11EC316E2F5152A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:84:e9:9a:90:37:0b:f8:09:22:19:50:35:3f: 94:84:23:8d:ab:3d:2c:42:b3:ad:07:ad:54:b7:cc: b9:6d:69:b9:10:5d:8f:2d:00:79:45:cc:e0:0d:f9: 5e:73:83:37:9b:31:b9:d7:0f:9e:dc:5a:08:14:75: 9a:43:36:f3:33:83:e4:b4:d6:8e:56:d5:a6:19:10: 06:a6:c7:8b:38:8f:38:38:65:d4:18:a1:cd:1a:e9: c0:2a:89:c9:24:1b:4c:7e:ae:61:b4:ba:79:5d:e7: fa:64:d1:c6:93:df:a5:1b:76:e6:d9:59:cf:88:ed: 0c:96:6b:9a:62:6b:ff:98:a5:72:e7:e4:18:be:dd: f9:fc:fa:96:fd:2a:5c:5d:8a:b6:1a:8b:11:34:ad: 15:08:90:9b:13:e7:aa:ea:30:de:93:ea:d7:27:d7: ca:64:74:cf:f8:ed:a0:26:fb:2f:f9:5f:eb:a1:8f: 7d:56:a8:8f:42:1c:f8:95:14:e2:56:14:a1:3c:a3: b8:cc:6b:ed:ad:eb:c3:cd:cd:97:84:ee:31:60:75: ef:5d:26:49:16:bb:9b:b2:c8:f9:e0:b2:c5:ff:a6: 42:08:fd:b7:56:da:ac:f3:cb:f9:cd:9f:2e:ce:fa: c2:82:b9:ec:e8:88:65:24:24:4f:f1:16:7d:24:86: 30:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:20:D6:1A:48:B1:97:F7:E6:E1:EB:3E:11:EC:31:6E:2F:51:52:A5 X509v3 Authority Key Identifier: keyid:AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/3130332e3137352e3138382e302f32332d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.188.0/23 Signature Algorithm: sha256WithRSAEncryption 04:36:a2:ba:23:9a:5a:7d:3e:f0:0d:92:bf:86:bf:85:b5:41: 50:f4:f6:30:80:e0:86:f7:5c:94:8a:de:75:2e:88:94:8a:53: 0b:f0:ff:82:cf:18:17:29:ac:9b:68:66:c2:d8:40:7c:62:64: e6:1c:5f:4f:3f:a7:2a:e9:97:ab:62:bf:ef:e3:cb:2e:5b:49: b0:b8:8e:58:38:c3:71:59:7a:52:50:01:40:d8:bd:d8:d6:01: 5a:6c:d7:18:26:8a:fc:73:0b:c5:57:24:c3:60:d2:b8:87:1e: 70:59:db:4c:b9:99:a4:9f:a7:80:5a:54:69:83:40:12:35:b1: 61:c4:26:8b:1d:ce:e9:9a:36:04:98:98:15:31:46:2b:e3:b1: 12:0e:24:88:dc:a7:c8:24:4a:da:70:31:55:4f:25:e0:1a:59: 01:05:fc:c1:c9:20:89:45:31:83:6f:d8:70:fa:75:72:7f:77: c6:f7:9f:be:46:cc:55:13:95:df:12:0e:85:bb:80:9c:b9:77: ca:dd:e9:14:b4:14:eb:0b:52:43:90:05:ed:85:f8:0a:2f:e9: 60:99:a6:c6:26:86:2c:29:68:e9:21:6e:71:aa:a0:6b:af:ad: 46:90:d5:b9:6b:9c:dd:95:4f:15:ff:3b:82:3d:6c:87:46:de: 9b:02:87:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULAzx4zTqluXXq9JZq25ZxtajVpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZDRUUxRDQzOURCMTQ0MUM0RjIxMjIzOTE4QUMwODEx RTY1RDU2RjAeFw0yNDA5MjAxODU2MTlaFw0yNTA5MTkxOTAxMTlaMDMxMTAvBgNV BAMTKDZGMjBENjFBNDhCMTk3RjdFNkUxRUIzRTExRUMzMTZFMkY1MTUyQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRhOmakDcL+AkiGVA1P5SEI42r PSxCs60HrVS3zLltabkQXY8tAHlFzOAN+V5zgzebMbnXD57cWggUdZpDNvMzg+S0 1o5W1aYZEAamx4s4jzg4ZdQYoc0a6cAqickkG0x+rmG0unld5/pk0caT36UbdubZ Wc+I7QyWa5pia/+YpXLn5Bi+3fn8+pb9KlxdirYaixE0rRUIkJsT56rqMN6T6tcn 18pkdM/47aAm+y/5X+uhj31WqI9CHPiVFOJWFKE8o7jMa+2t68PNzZeE7jFgde9d JkkWu5uyyPngssX/pkII/bdW2qzzy/nNny7O+sKCuezoiGUkJE/xFn0khjC3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbyDWGkixl/fm4es+Eewxbi9RUqUwHwYDVR0j BBgwFoAUr87h1DnbFEHE8hIjkYrAgR5l1W8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OWY2MDkyNy0xZjM0LTRjNTQtOTY3NC1mOWRlYWY3NWMyZmMvMC9BRkNFRTFENDM5 REIxNDQxQzRGMjEyMjM5MThBQzA4MTFFNjVENTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZDRUUxRDQzOURCMTQ0MUM0RjIxMjIzOTE4QUMwODExRTY1 RDU2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5ZjYwOTI3LTFmMzQtNGM1NC05 Njc0LWY5ZGVhZjc1YzJmYy8wLzMxMzAzMzJlMzEzNzM1MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr7wwDQYJ KoZIhvcNAQELBQADggEBAAQ2orojmlp9PvANkr+Gv4W1QVD09jCA4Ib3XJSK3nUu iJSKUwvw/4LPGBcprJtoZsLYQHxiZOYcX08/pyrpl6tiv+/jyy5bSbC4jlg4w3FZ elJQAUDYvdjWAVps1xgmivxzC8VXJMNg0riHHnBZ20y5maSfp4BaVGmDQBI1sWHE JosdzumaNgSYmBUxRivjsRIOJIjcp8gkStpwMVVPJeAaWQEF/MHJIIlFMYNv2HD6 dXJ/d8b3n75GzFUTld8SDoW7gJy5d8rd6RS0FOsLUkOQBe2F+Aov6WCZpsYmhiwp aOkhbnGqoGuvrUaQ1blrnN2VTxX/O4I9bIdG3psCh1o= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org