$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa File: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (raw, json) Hash identifier: V8A5qvlja2NYXpcRnbKxugWJ4eOJeRmdBpf3sJh4ueQ= Subject key identifier: CE:7E:BD:B7:7B:3A:B3:DE:F1:5C:B0:4E:2E:E9:33:78:EF:7A:ED:FF Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 0EFB56AB86B0A1BAD0781CED39EC9EEBB43AFC09 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa Signing time: Fri 22 Nov 2024 18:00:02 +0000 ROA not before: Fri 22 Nov 2024 17:55:02 +0000 ROA not after: Fri 21 Nov 2025 18:00:02 +0000 asID: 149335 IP address blocks: 103.179.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fb:56:ab:86:b0:a1:ba:d0:78:1c:ed:39:ec:9e:eb:b4:3a:fc:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Nov 22 17:55:02 2024 GMT Not After : Nov 21 18:00:02 2025 GMT Subject: CN=CE7EBDB77B3AB3DEF15CB04E2EE93378EF7AEDFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:10:c5:e2:92:f5:db:dc:ac:6f:57:6f:f3:a5: c1:3e:73:a6:37:ee:ac:1b:d7:81:5a:42:ad:99:93: 7f:bc:95:ad:64:08:a9:c7:e0:ba:2c:44:9d:c4:19: 64:12:6a:52:4c:39:b2:14:82:af:b4:15:85:ad:0b: 52:c2:53:49:6a:c6:f1:0d:e2:e5:d6:f2:50:81:97: b5:b7:98:a8:0d:be:60:1a:80:bd:af:bc:6c:8f:c7: ad:e6:13:62:5b:16:41:32:1a:b4:e9:62:f9:8c:48: a1:20:a9:98:a3:63:15:43:50:a0:4c:36:3e:1a:9d: 44:93:65:b1:fd:64:a9:b2:8e:a7:44:7b:e3:0f:de: 3c:7c:f0:c8:3c:1b:ed:e0:73:e4:89:3c:ff:08:b9: 27:36:f1:47:d6:dc:20:df:ff:16:a1:46:d3:df:36: 39:2b:19:7b:0b:2f:4c:e8:02:6d:b5:db:06:f5:75: 0c:19:d1:21:5f:5f:fa:2a:66:91:b5:b0:14:0f:e1: 6d:1c:ae:be:19:bf:c5:38:62:d2:1a:f7:51:16:c9: 58:1c:80:e1:70:01:23:d3:b4:e3:df:a5:d6:43:8c: c4:f4:52:cf:ea:2a:b7:69:5a:e2:c8:00:68:8a:70: ba:01:74:cf:99:3a:0c:89:57:91:33:03:36:a6:47: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7E:BD:B7:7B:3A:B3:DE:F1:5C:B0:4E:2E:E9:33:78:EF:7A:ED:FF X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.64.0/24 Signature Algorithm: sha256WithRSAEncryption 20:11:74:90:0f:14:14:de:49:f2:21:a2:fc:e7:02:c4:f4:6c: 73:59:2d:96:4b:c0:4c:5c:5b:5f:2d:c5:09:b6:c3:2f:ff:eb: a6:ba:6d:55:e9:2f:b1:84:84:c8:78:40:bd:5d:4a:22:22:dc: 07:a5:56:7c:e0:30:9e:84:c8:1e:37:78:fc:ee:15:74:bb:a1: 2c:35:f8:11:4c:42:86:bb:fb:8f:66:db:81:42:3a:fb:59:6a: fc:bd:1e:ae:37:ea:c2:58:5a:eb:22:80:ae:1a:91:b6:d2:24: 67:14:6f:75:8d:bb:b2:a8:20:b9:f7:7e:c3:f5:39:13:ee:ef: 21:6a:d7:0e:a9:2c:58:ef:ef:84:e4:04:80:be:9d:65:99:b6: 25:64:6b:0b:de:d1:fe:1b:dc:e7:28:75:65:93:cc:e5:7d:74: fd:44:8f:72:aa:a9:a8:ff:d7:c6:c5:19:28:94:8c:63:25:a4: 51:0b:32:fa:03:07:8b:d4:7c:bf:d6:68:6e:30:78:e9:88:93: 96:04:bf:81:bd:87:ab:e9:4e:4c:65:59:0b:b4:5d:7e:7d:5d: 28:f9:90:2c:7c:54:15:b5:09:44:ad:20:9a:0c:ab:10:17:cd: d9:de:05:15:83:97:5f:db:a5:7d:22:49:9d:07:31:63:63:78: 9a:da:23:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDvtWq4awobrQeBztOeye67Q6/AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNDExMjIxNzU1MDJaFw0yNTExMjExODAwMDJaMDMxMTAvBgNV BAMTKENFN0VCREI3N0IzQUIzREVGMTVDQjA0RTJFRTkzMzc4RUY3QUVERkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnEMXikvXb3KxvV2/zpcE+c6Y3 7qwb14FaQq2Zk3+8la1kCKnH4LosRJ3EGWQSalJMObIUgq+0FYWtC1LCU0lqxvEN 4uXW8lCBl7W3mKgNvmAagL2vvGyPx63mE2JbFkEyGrTpYvmMSKEgqZijYxVDUKBM Nj4anUSTZbH9ZKmyjqdEe+MP3jx88Mg8G+3gc+SJPP8IuSc28UfW3CDf/xahRtPf NjkrGXsLL0zoAm212wb1dQwZ0SFfX/oqZpG1sBQP4W0crr4Zv8U4YtIa91EWyVgc gOFwASPTtOPfpdZDjMT0Us/qKrdpWuLIAGiKcLoBdM+ZOgyJV5EzAzamR+QpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzn69t3s6s97xXLBOLukzeO967f8wHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3N2RlMDEzLTliNTYtNDlmZi04 Yjc5LTM2NjdhMzQ1Y2I4ZC8wLzMxMzAzMzJlMzEzNzM5MmUzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7NAMA0GCSqG SIb3DQEBCwUAA4IBAQAgEXSQDxQU3knyIaL85wLE9GxzWS2WS8BMXFtfLcUJtsMv /+umum1V6S+xhITIeEC9XUoiItwHpVZ84DCehMgeN3j87hV0u6EsNfgRTEKGu/uP ZtuBQjr7WWr8vR6uN+rCWFrrIoCuGpG20iRnFG91jbuyqCC5937D9TkT7u8hatcO qSxY7++E5ASAvp1lmbYlZGsL3tH+G9znKHVlk8zlfXT9RI9yqqmo/9fGxRkolIxj JaRRCzL6AweL1Hy/1mhuMHjpiJOWBL+BvYer6U5MZVkLtF1+fV0o+ZAsfFQVtQlE rSCaDKsQF83Z3gUVg5df26V9IkmdBzFjY3ia2iPr -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org