$ rpki-client -vvf repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa File: 3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa (raw, json) Hash identifier: 48QyhqNi0zUrC2tiNh2p3MGxlN2DCK9dgSyxqvdO8eA= Subject key identifier: C5:EB:1D:6E:60:F9:94:98:D1:E6:DB:B7:E3:7E:E3:F4:A7:A5:F3:89 Certificate issuer: /CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Certificate serial: 7DFA1DE6C6D343D5550E948AC9BCB5063688F60F Authority key identifier: 6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa Signing time: Tue 30 Jul 2024 08:00:29 +0000 ROA not before: Tue 30 Jul 2024 07:55:29 +0000 ROA not after: Tue 29 Jul 2025 08:00:29 +0000 asID: 140403 IP address blocks: 103.168.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:fa:1d:e6:c6:d3:43:d5:55:0e:94:8a:c9:bc:b5:06:36:88:f6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DEA9B275ECCFB920E0A84D0D158C6000F2561F7 Validity Not Before: Jul 30 07:55:29 2024 GMT Not After : Jul 29 08:00:29 2025 GMT Subject: CN=C5EB1D6E60F99498D1E6DBB7E37EE3F4A7A5F389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3a:1b:b1:90:b3:c3:55:49:31:9b:f6:1a:db: 65:8f:5f:ce:ab:dd:92:31:9c:95:5e:c3:68:d4:7d: 20:ca:4c:5e:4e:0f:61:61:0a:bb:fa:d9:04:55:cc: b3:29:5c:d9:ab:b1:1f:04:2c:cf:4a:7b:fd:db:42: 33:e8:21:2f:5a:bb:63:28:5c:14:2f:5a:1b:d8:46: ff:c9:57:29:2f:c1:a4:f7:0f:ab:df:ff:8e:ab:9b: 4e:89:6a:df:b1:49:22:9c:e1:a9:02:8a:5d:b8:4e: b9:1d:ad:23:d6:1b:07:d5:41:98:ca:4d:cc:0f:b5: 6d:4a:5d:e6:b5:9b:b8:ba:bd:9a:39:a9:56:16:c1: da:81:cf:22:a3:02:e3:ae:9f:42:c3:5b:80:42:8f: 40:63:d2:2f:c6:f5:35:75:29:5d:5c:7a:f1:01:36: 13:44:7b:f8:52:70:3c:f0:f5:12:8e:da:f7:3f:e4: 96:7f:35:fb:73:51:66:e5:f0:f5:fd:ac:00:ce:a9: bb:73:2d:34:50:4a:4b:dc:07:dc:f1:31:cc:58:a7: 87:9a:a8:62:c6:cc:32:3c:01:20:4b:d1:70:42:e7: 2e:01:ad:c8:5a:6e:d6:50:c3:10:8f:a9:b0:25:07: 11:10:aa:9b:28:99:27:c1:ec:99:f2:a7:59:9d:6d: c3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EB:1D:6E:60:F9:94:98:D1:E6:DB:B7:E3:7E:E3:F4:A7:A5:F3:89 X509v3 Authority Key Identifier: keyid:6D:EA:9B:27:5E:CC:FB:92:0E:0A:84:D0:D1:58:C6:00:0F:25:61:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DEA9B275ECCFB920E0A84D0D158C6000F2561F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c1b77d1e-1585-4604-b6b1-071f0a2940c4/0/3130332e3136382e32342e302f32342d3234203d3e20313430343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.24.0/24 Signature Algorithm: sha256WithRSAEncryption 34:9e:70:37:fa:c8:38:31:46:78:5d:99:4e:cb:2f:0b:2d:36: 82:35:fc:a9:4d:a2:9b:74:2e:ea:66:bb:c5:97:5e:29:22:af: bc:b6:75:e9:ae:48:a5:c8:0a:43:4f:b3:d4:dd:0b:cb:45:4a: 2e:27:fc:07:b0:43:74:ba:14:a1:14:09:e9:b6:44:d8:2c:b2: a3:69:a2:fb:77:af:75:26:a9:d5:47:c2:c3:ec:ab:21:e3:9d: f4:f2:1b:c0:33:bf:74:57:16:32:78:00:38:60:33:7c:c6:7a: c6:59:63:03:91:3c:b3:89:3b:68:81:24:ee:d5:ad:6c:c8:01: 13:88:91:5c:c9:76:65:b3:80:63:50:44:f7:ef:f8:63:40:e9: e9:f6:aa:cc:9d:8a:94:a5:fb:f8:79:33:f3:1c:04:12:d1:2b: ab:38:23:8f:ff:c2:ec:44:03:eb:ab:ee:16:ec:a0:87:4c:ce: 3a:41:d5:0f:fa:e8:24:88:33:2d:28:61:d2:6f:9f:18:20:7b: ef:70:13:59:32:e3:a7:58:a1:22:d9:68:fd:46:0c:bd:d3:12: 40:42:dc:54:b2:6b:ef:9a:bf:09:21:2a:02:44:b7:77:53:e4: e8:15:0e:6d:65:d8:ad:61:8e:42:a7:6a:1f:15:b2:b2:b8:4d: 2d:31:df:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUffod5sbTQ9VVDpSKyby1BjaI9g8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAw RjI1NjFGNzAeFw0yNDA3MzAwNzU1MjlaFw0yNTA3MjkwODAwMjlaMDMxMTAvBgNV BAMTKEM1RUIxRDZFNjBGOTk0OThEMUU2REJCN0UzN0VFM0Y0QTdBNUYzODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDOhuxkLPDVUkxm/Ya22WPX86r 3ZIxnJVew2jUfSDKTF5OD2FhCrv62QRVzLMpXNmrsR8ELM9Ke/3bQjPoIS9au2Mo XBQvWhvYRv/JVykvwaT3D6vf/46rm06Jat+xSSKc4akCil24TrkdrSPWGwfVQZjK TcwPtW1KXea1m7i6vZo5qVYWwdqBzyKjAuOun0LDW4BCj0Bj0i/G9TV1KV1cevEB NhNEe/hScDzw9RKO2vc/5JZ/NftzUWbl8PX9rADOqbtzLTRQSkvcB9zxMcxYp4ea qGLGzDI8ASBL0XBC5y4BrchabtZQwxCPqbAlBxEQqpsomSfB7Jnyp1mdbcNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxesdbmD5lJjR5tu3437j9Kel84kwHwYDVR0j BBgwFoAUbeqbJ17M+5IOCoTQ0VjGAA8lYfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MWI3N2QxZS0xNTg1LTQ2MDQtYjZiMS0wNzFmMGEyOTQwYzQvMC82REVBOUIyNzVF Q0NGQjkyMEUwQTg0RDBEMTU4QzYwMDBGMjU2MUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRFQTlCMjc1RUNDRkI5MjBFMEE4NEQwRDE1OEM2MDAwRjI1 NjFGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYjc3ZDFlLTE1ODUtNDYwNC1i NmIxLTA3MWYwYTI5NDBjNC8wLzMxMzAzMzJlMzEzNjM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gYMA0GCSqG SIb3DQEBCwUAA4IBAQA0nnA3+sg4MUZ4XZlOyy8LLTaCNfypTaKbdC7qZrvFl14p Iq+8tnXprkilyApDT7PU3QvLRUouJ/wHsEN0uhShFAnptkTYLLKjaaL7d691JqnV R8LD7Ksh45308hvAM790VxYyeAA4YDN8xnrGWWMDkTyziTtogSTu1a1syAETiJFc yXZls4BjUET37/hjQOnp9qrMnYqUpfv4eTPzHAQS0SurOCOP/8LsRAPrq+4W7KCH TM46QdUP+ugkiDMtKGHSb58YIHvvcBNZMuOnWKEi2Wj9Rgy90xJAQtxUsmvvmr8J ISoCRLd3U+ToFQ5tZditYY5Cp2ofFbKyuE0tMd/q -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org