$ rpki-client -vvf repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa File: 3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: Nffkoo06i7fpkm9DqasN4skkNaTCVO14nqtiROVpXl4= Subject key identifier: 62:DB:FF:16:93:55:41:19:13:6F:5C:51:8D:A4:7B:3B:3E:47:0F:3D Certificate issuer: /CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Certificate serial: 78952106561D7B8B14957686192631158801F0DD Authority key identifier: 68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa Signing time: Fri 01 Sep 2023 10:00:00 +0000 ROA not before: Fri 01 Sep 2023 09:55:00 +0000 ROA not after: Fri 30 Aug 2024 10:00:00 +0000 asID: 17995 IP address blocks: 103.165.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:95:21:06:56:1d:7b:8b:14:95:76:86:19:26:31:15:88:01:f0:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687247CE80E62AD4B40F0B9915A1B6F3020F684C Validity Not Before: Sep 1 09:55:00 2023 GMT Not After : Aug 30 10:00:00 2024 GMT Subject: CN=62DBFF1693554119136F5C518DA47B3B3E470F3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:87:fe:ad:90:c3:3d:0e:e5:fd:39:71:8a:1a: 17:40:03:57:65:3b:3d:b5:70:9d:c0:ec:c0:59:a8: b2:eb:82:93:8e:bc:5e:5c:1d:da:04:29:77:0f:23: 20:b3:0f:15:70:c6:36:d3:ac:21:d1:2f:2d:c3:45: c2:59:df:3e:c0:c7:e9:39:e9:95:0d:ce:df:51:5c: ba:a7:dc:5b:a3:80:23:b9:34:1b:89:ae:3a:52:76: cf:0b:31:58:84:18:76:4e:6d:a8:96:a9:67:4f:d9: cb:db:72:36:e7:1e:13:6d:d9:35:8a:bd:37:bd:cc: 1e:e9:5a:2f:29:d1:18:1f:07:5e:91:f5:67:0b:26: 69:81:8c:95:20:75:f8:c7:bd:c3:d1:64:00:2f:f8: 6a:c1:e5:dd:c4:ed:2c:0d:61:43:a6:f9:3a:02:72: f5:22:d0:0f:9a:8b:e5:c3:01:cb:98:10:b0:69:af: 6c:77:0f:7e:5d:20:9e:a8:95:de:02:c3:3d:ca:3d: 06:70:44:15:91:c1:59:e9:f5:3a:91:7c:eb:fc:f9: 8e:35:bc:7f:e1:4b:a3:30:7f:63:57:5e:7a:c8:e0: ff:40:6b:f5:d6:ea:bd:f8:e7:f3:43:87:44:33:b6: fe:cd:23:5c:4b:47:a3:3a:4e:67:2b:5f:96:84:bc: 24:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DB:FF:16:93:55:41:19:13:6F:5C:51:8D:A4:7B:3B:3E:47:0F:3D X509v3 Authority Key Identifier: keyid:68:72:47:CE:80:E6:2A:D4:B4:0F:0B:99:15:A1:B6:F3:02:0F:68:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/687247CE80E62AD4B40F0B9915A1B6F3020F684C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/687247CE80E62AD4B40F0B9915A1B6F3020F684C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5e5468c-0ac7-44a9-8821-28257c5a8607/0/3130332e3136352e3235342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.254.0/23 Signature Algorithm: sha256WithRSAEncryption 88:38:c1:ca:95:d3:16:c9:0f:82:d3:a0:49:f1:1f:3f:1f:50: 30:0d:23:4f:b1:6f:3d:78:b9:7c:a3:51:6e:0f:2a:1a:1f:d0: d8:97:01:36:ab:6f:5a:6e:8d:56:c3:76:d5:21:7a:5d:43:dc: b3:c7:c3:5c:0c:37:ba:98:91:7d:7e:9b:39:e1:99:fc:91:04: 2f:95:a9:71:e9:71:17:80:93:17:5c:85:39:d1:8e:49:2b:33: 9b:51:80:f1:8a:d8:2a:9d:79:47:13:a9:4c:df:40:bf:ac:38: f3:b5:d1:1e:71:cc:54:58:41:b2:b5:81:c6:ea:8e:fe:8e:df: 53:38:73:cf:d7:5e:50:45:f4:4d:63:69:48:24:24:19:7d:da: bc:88:72:96:d7:af:71:e4:6f:5e:5e:89:df:5c:46:c1:0e:49: f0:44:d4:06:15:78:14:c7:6c:bc:a4:ac:36:be:b6:ab:85:f3: 28:94:3b:21:de:8c:8b:a7:ee:86:97:3b:33:3e:29:cd:bd:73: 43:a5:dc:54:1c:8a:d4:fa:45:4a:d4:ec:4c:0e:8c:d1:f3:1f: 7b:40:cd:92:c2:07:6c:61:c7:c4:bb:bf:06:c2:e6:6d:ba:36: 6d:6f:a2:86:9d:5a:47:e2:c0:5f:04:4e:a2:0d:38:91:1c:03: 9e:66:0d:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeJUhBlYde4sUlXaGGSYxFYgB8N0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMw MjBGNjg0QzAeFw0yMzA5MDEwOTU1MDBaFw0yNDA4MzAxMDAwMDBaMDMxMTAvBgNV BAMTKDYyREJGRjE2OTM1NTQxMTkxMzZGNUM1MThEQTQ3QjNCM0U0NzBGM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbh/6tkMM9DuX9OXGKGhdAA1dl Oz21cJ3A7MBZqLLrgpOOvF5cHdoEKXcPIyCzDxVwxjbTrCHRLy3DRcJZ3z7Ax+k5 6ZUNzt9RXLqn3FujgCO5NBuJrjpSds8LMViEGHZObaiWqWdP2cvbcjbnHhNt2TWK vTe9zB7pWi8p0RgfB16R9WcLJmmBjJUgdfjHvcPRZAAv+GrB5d3E7SwNYUOm+ToC cvUi0A+ai+XDAcuYELBpr2x3D35dIJ6old4Cwz3KPQZwRBWRwVnp9TqRfOv8+Y41 vH/hS6Mwf2NXXnrI4P9Aa/XW6r345/NDh0Qztv7NI1xLR6M6TmcrX5aEvCRbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYtv/FpNVQRkTb1xRjaR7Oz5HDz0wHwYDVR0j BBgwFoAUaHJHzoDmKtS0DwuZFaG28wIPaEwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWU1NDY4Yy0wYWM3LTQ0YTktODgyMS0yODI1N2M1YTg2MDcvMC82ODcyNDdDRTgw RTYyQUQ0QjQwRjBCOTkxNUExQjZGMzAyMEY2ODRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg3MjQ3Q0U4MEU2MkFENEI0MEYwQjk5MTVBMUI2RjMwMjBG Njg0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZTU0NjhjLTBhYzctNDRhOS04 ODIxLTI4MjU3YzVhODYwNy8wLzMxMzAzMzJlMzEzNjM1MmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6X+MA0GCSqG SIb3DQEBCwUAA4IBAQCIOMHKldMWyQ+C06BJ8R8/H1AwDSNPsW89eLl8o1FuDyoa H9DYlwE2q29abo1Ww3bVIXpdQ9yzx8NcDDe6mJF9fps54Zn8kQQvlalx6XEXgJMX XIU50Y5JKzObUYDxitgqnXlHE6lM30C/rDjztdEeccxUWEGytYHG6o7+jt9TOHPP 115QRfRNY2lIJCQZfdq8iHKW169x5G9eXonfXEbBDknwRNQGFXgUx2y8pKw2vrar hfMolDsh3oyLp+6GlzszPinNvXNDpdxUHIrU+kVK1OxMDozR8x97QM2SwgdsYcfE u78GwuZtujZtb6KGnVpH4sBfBE6iDTiRHAOeZg2/ -----END CERTIFICATE-----Generated at Sat May 4 15:44:53 2024 by rpki-client on console-fra.rpki-client.org