$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa File: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (raw, json) Hash identifier: lOzsBAzFryNZCB+/jSigc4I1GSMJcpM/tHVhQtqL83s= Subject key identifier: 6D:DE:B3:21:DF:22:3E:F8:35:A7:36:8F:31:24:F2:BD:1A:60:F5:4E Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 4A3F447FD9F75DFE92A214CBA4B32EBE6BB04028 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa Signing time: Fri 22 Nov 2024 18:00:01 +0000 ROA not before: Fri 22 Nov 2024 17:55:01 +0000 ROA not after: Fri 21 Nov 2025 18:00:01 +0000 asID: 149335 IP address blocks: 103.179.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:3f:44:7f:d9:f7:5d:fe:92:a2:14:cb:a4:b3:2e:be:6b:b0:40:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Nov 22 17:55:01 2024 GMT Not After : Nov 21 18:00:01 2025 GMT Subject: CN=6DDEB321DF223EF835A7368F3124F2BD1A60F54E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:13:9b:34:16:6f:2a:73:06:22:ee:60:f3:ae: 5f:1d:b0:6a:fc:cf:00:8a:d0:af:a4:01:2b:03:ec: 87:2b:5e:a2:bf:58:2f:b6:0b:1a:25:87:0b:27:d5: 18:80:73:ea:63:cf:ab:6a:c2:88:66:5b:39:65:ea: 0c:60:83:68:89:b0:08:fd:ee:e2:90:82:2a:b9:0d: 18:9e:13:72:a4:b1:71:6b:a8:e8:d1:4d:bc:45:00: 98:f1:e9:6c:29:fa:2e:fb:28:40:83:e5:60:d4:a2: df:14:a9:69:c5:b0:ca:19:f4:42:46:d3:b6:b4:e1: 5f:49:e4:7b:af:67:90:f5:85:c2:70:30:b8:b4:25: b4:87:97:07:26:5e:f7:24:6a:09:ed:f6:bb:98:d6: bd:5a:a4:18:18:14:fb:1a:80:64:86:f1:fd:73:7d: 9c:0b:04:b1:f6:d7:44:ca:ac:22:1c:19:d9:4c:18: a0:af:1b:7c:d1:97:73:ec:43:1e:2f:6b:bf:6c:f8: 49:30:e9:15:c4:3b:7f:43:a7:6e:af:3f:68:84:72: 79:54:a5:9f:29:38:ff:cc:4c:58:90:dc:4f:d6:9d: cb:9e:84:11:a3:e1:a7:07:f0:46:94:df:0a:04:42: 85:41:e5:12:43:97:11:95:d2:2c:1c:a0:fa:74:fd: b1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DE:B3:21:DF:22:3E:F8:35:A7:36:8F:31:24:F2:BD:1A:60:F5:4E X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.64.0/23 Signature Algorithm: sha256WithRSAEncryption a7:16:a1:da:e1:38:33:1d:3f:f8:54:c2:9b:e7:2a:b0:3d:1d: c7:07:fa:d1:5e:82:b8:aa:a2:f4:66:6d:3c:e8:80:d6:f0:4a: c5:3e:9d:06:90:e8:df:e7:00:8f:59:36:ae:cb:96:28:b4:fb: ce:f9:28:34:36:de:fe:2e:95:55:c7:a0:ed:e0:01:4c:42:ee: b5:fa:a0:24:9e:5f:17:93:a2:67:76:db:6b:76:c0:35:51:3f: 7b:b6:62:ca:b6:1e:8c:fd:2f:b6:e3:11:cc:60:e5:aa:89:e0: 2c:58:d6:8c:10:35:bc:ab:b9:3e:cc:af:b9:69:87:99:b9:e2: 7d:30:b4:d3:1e:8c:d7:aa:20:fe:b2:ad:3e:d9:76:d6:1b:f8: 81:a2:40:9d:4f:60:fb:e9:aa:9a:d6:f2:e2:70:3b:bc:3b:81: 11:87:35:44:f8:35:4b:2a:07:a7:2c:ae:25:59:f1:08:46:a1: 70:5f:e0:5f:25:3e:b1:0a:95:d2:78:7a:40:1a:50:5e:d7:65: 59:12:eb:12:d4:6b:62:6c:e6:ff:79:3e:3f:ec:e2:25:2d:d9: 1e:e3:8e:54:6d:a2:2b:1e:05:7a:ab:d8:ec:66:3a:54:eb:20: c0:96:43:08:ad:3e:a6:fc:66:81:56:ee:62:dc:68:5e:04:f2: e1:02:3e:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSj9Ef9n3Xf6SohTLpLMuvmuwQCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNDExMjIxNzU1MDFaFw0yNTExMjExODAwMDFaMDMxMTAvBgNV BAMTKDZEREVCMzIxREYyMjNFRjgzNUE3MzY4RjMxMjRGMkJEMUE2MEY1NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZE5s0Fm8qcwYi7mDzrl8dsGr8 zwCK0K+kASsD7IcrXqK/WC+2Cxolhwsn1RiAc+pjz6tqwohmWzll6gxgg2iJsAj9 7uKQgiq5DRieE3KksXFrqOjRTbxFAJjx6Wwp+i77KECD5WDUot8UqWnFsMoZ9EJG 07a04V9J5HuvZ5D1hcJwMLi0JbSHlwcmXvckagnt9ruY1r1apBgYFPsagGSG8f1z fZwLBLH210TKrCIcGdlMGKCvG3zRl3PsQx4va79s+Ekw6RXEO39Dp26vP2iEcnlU pZ8pOP/MTFiQ3E/WncuehBGj4acH8EaU3woEQoVB5RJDlxGV0iwcoPp0/bGnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbd6zId8iPvg1pzaPMSTyvRpg9U4wHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3N2RlMDEzLTliNTYtNDlmZi04 Yjc5LTM2NjdhMzQ1Y2I4ZC8wLzMxMzAzMzJlMzEzNzM5MmUzNjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzMzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7NAMA0GCSqG SIb3DQEBCwUAA4IBAQCnFqHa4TgzHT/4VMKb5yqwPR3HB/rRXoK4qqL0Zm086IDW 8ErFPp0GkOjf5wCPWTauy5YotPvO+Sg0Nt7+LpVVx6Dt4AFMQu61+qAknl8Xk6Jn dttrdsA1UT97tmLKth6M/S+24xHMYOWqieAsWNaMEDW8q7k+zK+5aYeZueJ9MLTT HozXqiD+sq0+2XbWG/iBokCdT2D76aqa1vLicDu8O4ERhzVE+DVLKgenLK4lWfEI RqFwX+BfJT6xCpXSeHpAGlBe12VZEusS1GtibOb/eT4/7OIlLdke445UbaIrHgV6 q9jsZjpU6yDAlkMIrT6m/GaBVu5i3GheBPLhAj6P -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org