$ rpki-client -vvf repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa File: 3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: DS0hCq0koHOBoxtvccNH1QeGGPeh5jNq/29MUNxhn+U= Subject key identifier: 5C:B8:59:2F:60:0F:F9:16:3D:81:7C:69:0A:B9:64:F7:B2:0E:46:9F Certificate issuer: /CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Certificate serial: 4A4BF10A0734E02C26FC22AD71FCBFE0E867E715 Authority key identifier: 68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa Signing time: Fri 02 Aug 2024 11:00:00 +0000 ROA not before: Fri 02 Aug 2024 10:55:00 +0000 ROA not after: Fri 01 Aug 2025 11:00:00 +0000 asID: 17995 IP address blocks: 103.165.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:4b:f1:0a:07:34:e0:2c:26:fc:22:ad:71:fc:bf:e0:e8:67:e7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Validity Not Before: Aug 2 10:55:00 2024 GMT Not After : Aug 1 11:00:00 2025 GMT Subject: CN=5CB8592F600FF9163D817C690AB964F7B20E469F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:06:f4:50:f9:4a:58:ee:60:87:62:03:66: 4b:fe:ba:5f:5c:35:55:a0:51:bb:30:fc:f5:cc:24: ef:38:89:51:2d:d7:cc:89:16:ae:15:6c:b6:50:76: c4:e2:3b:fd:2e:e8:08:bd:f3:84:7d:75:cf:d2:8f: 08:ed:a0:a5:7a:d1:08:1f:08:db:bb:aa:7b:e1:85: ab:89:b8:fd:14:db:8c:49:33:47:35:04:e0:0a:b6: 81:57:08:19:db:be:c2:07:fa:db:1e:42:0a:0a:82: 4a:ed:0b:82:1e:ce:b3:d4:be:59:90:2c:0c:66:c2: 21:a6:6f:2c:71:b1:d3:f8:6f:bc:2b:86:23:48:d9: e1:6d:88:5e:e5:28:34:d6:2b:a0:64:e1:b1:c2:41: c0:23:f2:d1:b5:b7:e9:b1:ee:69:48:a8:5b:f0:80: 65:76:e2:34:f2:34:42:7d:4d:8b:6d:42:35:c6:be: 3e:17:d5:d6:a0:b2:cf:e1:88:5f:d8:05:77:5b:da: 46:fc:d2:b6:fe:58:3b:eb:7c:85:50:c1:87:5e:44: fb:4d:91:5b:e5:ed:a2:8d:0a:0c:1b:37:92:06:df: fa:08:47:79:20:82:d3:18:da:49:5f:a7:97:70:b4: 55:7a:98:d2:9a:5c:83:6c:55:f4:11:f3:6b:d7:d0: 7e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B8:59:2F:60:0F:F9:16:3D:81:7C:69:0A:B9:64:F7:B2:0E:46:9F X509v3 Authority Key Identifier: keyid:68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.254.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:39:79:12:b6:2d:14:56:62:4b:28:f8:7c:44:b5:19:d0:5f: 7f:68:01:30:68:06:2e:87:70:bc:16:20:e4:19:c2:6d:70:fc: 2a:60:76:f1:f5:aa:c6:04:23:8d:37:c7:a6:0d:20:a6:3b:ac: e0:1a:35:48:2c:59:2c:47:0b:d9:48:a9:f4:18:80:54:f9:1e: bc:95:b9:ee:4c:20:9c:cc:d0:56:66:17:99:7c:c1:b4:ea:74: 90:17:4b:4c:1d:2b:98:27:5f:ab:63:af:e6:ca:2b:0f:5f:0d: bc:a8:a6:dd:11:dc:15:d1:3f:46:d0:44:10:7e:e3:18:50:aa: ad:fe:54:1f:15:fe:c0:3f:af:9d:5c:0e:82:e6:12:47:c5:e7: 2d:43:14:8f:ab:93:9f:1c:a6:c7:16:1b:f0:08:e3:b0:99:de: c0:d8:b9:0e:2b:d2:fe:42:ab:2d:14:f5:4f:fd:bc:48:1f:37: 3f:5c:98:29:e8:91:2a:b6:27:5a:8e:b9:a1:a1:a4:d2:6e:ec: 27:ae:c4:76:1f:99:33:67:e9:a7:b1:9f:cd:e0:64:e9:c9:33: c6:cf:a0:d2:27:f8:03:14:c2:4d:0c:32:0a:f4:6a:66:bc:f9: b6:a1:bf:2d:00:fc:cc:d1:95:da:e0:39:b5:4a:1b:d0:98:2d: 44:12:d4:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSkvxCgc04Cwm/CKtcfy/4Ohn5xUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMw MjBGNjg0QzAeFw0yNDA4MDIxMDU1MDBaFw0yNTA4MDExMTAwMDBaMDMxMTAvBgNV BAMTKDVDQjg1OTJGNjAwRkY5MTYzRDgxN0M2OTBBQjk2NEY3QjIwRTQ2OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe2Qb0UPlKWO5gh2IDZkv+ul9c NVWgUbsw/PXMJO84iVEt18yJFq4VbLZQdsTiO/0u6Ai984R9dc/SjwjtoKV60Qgf CNu7qnvhhauJuP0U24xJM0c1BOAKtoFXCBnbvsIH+tseQgoKgkrtC4IezrPUvlmQ LAxmwiGmbyxxsdP4b7wrhiNI2eFtiF7lKDTWK6Bk4bHCQcAj8tG1t+mx7mlIqFvw gGV24jTyNEJ9TYttQjXGvj4X1dagss/hiF/YBXdb2kb80rb+WDvrfIVQwYdeRPtN kVvl7aKNCgwbN5IG3/oIR3kggtMY2klfp5dwtFV6mNKaXINsVfQR82vX0H6hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXLhZL2AP+RY9gXxpCrlk97IORp8wHwYDVR0j BBgwFoAUaHJHzoDmKtS0DwuZFaG28wIPaEwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWU1NDY4Yy0wYWM3LTQ0YTktODgyMS0yODI1N2M1YTg2MDcvMC82ODcyNDdDRTgw RTYyQUQ0QjQwRjBCOTkxNUExQjZGMzAyMEY2ODRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMwMjBG Njg0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZTU0NjhjLTBhYzctNDRhOS04 ODIxLTI4MjU3YzVhODYwNy8wLzMxMzAzMzJlMzEzNjM1MmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6X+MA0GCSqG SIb3DQEBCwUAA4IBAQA7OXkSti0UVmJLKPh8RLUZ0F9/aAEwaAYuh3C8FiDkGcJt cPwqYHbx9arGBCONN8emDSCmO6zgGjVILFksRwvZSKn0GIBU+R68lbnuTCCczNBW ZheZfMG06nSQF0tMHSuYJ1+rY6/myisPXw28qKbdEdwV0T9G0EQQfuMYUKqt/lQf Ff7AP6+dXA6C5hJHxectQxSPq5OfHKbHFhvwCOOwmd7A2LkOK9L+QqstFPVP/bxI Hzc/XJgp6JEqtidajrmhoaTSbuwnrsR2H5kzZ+mnsZ/N4GTpyTPGz6DSJ/gDFMJN DDIK9GpmvPm2ob8tAPzM0ZXa4Dm1ShvQmC1EEtR/ -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org