$ rpki-client -vvf repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa File: 3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa (raw, json) Hash identifier: x2TO5hJKoXpIk+nSInL+Ul2Lnqg7+ST5Bov72+OOfpg= Subject key identifier: 7E:E1:07:E3:3C:06:F8:40:DD:22:62:34:73:E2:ED:38:75:A4:47:EB Certificate issuer: /CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66 Certificate serial: 6D85D26CA70919DF2C18EDEA9CDF38AEBBABE253 Authority key identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa Signing time: Sun 10 Mar 2024 12:04:47 +0000 ROA not before: Sun 10 Mar 2024 11:59:47 +0000 ROA not after: Sun 09 Mar 2025 12:04:47 +0000 asID: 136873 IP address blocks: 103.176.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.crl rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:85:d2:6c:a7:09:19:df:2c:18:ed:ea:9c:df:38:ae:bb:ab:e2:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66 Validity Not Before: Mar 10 11:59:47 2024 GMT Not After : Mar 9 12:04:47 2025 GMT Subject: CN=7EE107E33C06F840DD22623473E2ED3875A447EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8b:d1:a2:6f:bf:92:04:47:8a:5d:1f:ee:af: fa:f6:f4:a9:e3:6f:e5:30:06:f2:c5:fa:c1:8b:97: 13:c1:75:ef:00:7a:24:72:c9:73:89:1b:1b:f5:45: ae:bb:0f:14:8d:05:fb:ad:79:71:14:18:de:52:46: 68:d2:87:75:67:43:0b:d0:9e:b9:81:29:e0:3d:fa: 10:78:0b:b2:b6:e1:e7:09:65:c0:fc:a1:e8:b1:64: c1:47:5e:81:48:35:c8:1c:26:9b:12:fa:b9:bc:63: df:1c:d9:2b:0d:0c:1c:d4:81:64:47:84:a2:15:25: 4d:ae:6a:5c:c4:31:d5:99:79:69:20:6d:fe:86:a0: 9a:b1:05:70:56:91:27:be:f6:21:ff:6b:d6:d3:a4: eb:38:e5:03:34:28:b0:b8:c6:9a:fb:20:4d:19:59: fe:d2:54:0f:6c:dc:03:13:76:76:ee:bb:c0:82:d3: 9a:98:f6:42:65:59:ea:2d:a1:50:d8:9e:a5:51:02: ce:c8:07:4a:0a:31:e0:7c:c1:e0:da:8c:20:57:16: 47:3f:3c:0b:26:be:43:30:30:d6:72:45:4f:bb:fb: 34:52:ad:e5:1e:30:d2:ca:7b:25:7d:28:2a:1e:26: d1:4e:82:15:21:6c:06:ac:ac:67:b0:f2:62:51:20: 4c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E1:07:E3:3C:06:F8:40:DD:22:62:34:73:E2:ED:38:75:A4:47:EB X509v3 Authority Key Identifier: keyid:D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/3130332e3137362e3230302e302f32332d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.200.0/23 Signature Algorithm: sha256WithRSAEncryption a0:87:a2:67:3b:58:32:1a:d1:99:aa:0f:4a:88:96:d0:eb:65: 81:72:da:c5:35:3f:f1:58:53:0d:db:43:f7:49:c9:d7:44:58: e1:ba:a5:e3:bb:04:60:90:9b:0d:a4:52:60:8d:44:f6:af:c1: 12:44:71:ed:3e:44:94:aa:4b:5f:34:dc:f3:85:a6:2b:2e:f5: 10:16:f9:17:a1:de:7a:c2:4e:a9:61:c0:54:e1:67:e7:ad:1a: 9e:62:03:66:f6:cc:77:e9:eb:9b:41:19:d8:15:d6:40:4d:95: ca:31:c4:ff:74:e4:8c:81:32:22:03:a4:20:94:e6:c6:56:84: 4e:62:33:78:2a:be:bc:5f:63:05:ce:1e:26:7e:05:c5:68:6a: b1:4c:41:30:2b:a0:2f:6a:0b:eb:3d:d9:8b:30:1c:a3:fc:46: 70:d8:1f:74:a6:0a:08:06:6c:d5:2d:63:46:5d:83:c0:db:47: 31:c4:7f:e8:c2:08:99:a4:f7:7a:c3:1e:82:9d:aa:50:43:77: 90:53:1c:aa:37:79:76:ca:87:28:92:f3:80:85:57:a9:a6:0e: c2:32:36:32:16:00:57:01:6e:25:b8:96:78:aa:a5:a1:26:e6: 3e:e0:8d:ff:35:6e:4e:11:65:55:b7:6d:ca:a0:63:38:24:d2: 61:6d:fe:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbYXSbKcJGd8sGO3qnN84rrur4lMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZDMUYxM0M2N0NEMDI1NDVERUJBQTg0NkVCMjhGNkVB M0ZDRUI2NjAeFw0yNDAzMTAxMTU5NDdaFw0yNTAzMDkxMjA0NDdaMDMxMTAvBgNV BAMTKDdFRTEwN0UzM0MwNkY4NDBERDIyNjIzNDczRTJFRDM4NzVBNDQ3RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCui9Gib7+SBEeKXR/ur/r29Knj b+UwBvLF+sGLlxPBde8AeiRyyXOJGxv1Ra67DxSNBfuteXEUGN5SRmjSh3VnQwvQ nrmBKeA9+hB4C7K24ecJZcD8oeixZMFHXoFINcgcJpsS+rm8Y98c2SsNDBzUgWRH hKIVJU2ualzEMdWZeWkgbf6GoJqxBXBWkSe+9iH/a9bTpOs45QM0KLC4xpr7IE0Z Wf7SVA9s3AMTdnbuu8CC05qY9kJlWeotoVDYnqVRAs7IB0oKMeB8weDajCBXFkc/ PAsmvkMwMNZyRU+7+zRSreUeMNLKeyV9KCoeJtFOghUhbAasrGew8mJRIEzNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfuEH4zwG+EDdImI0c+LtOHWkR+swHwYDVR0j BBgwFoAU1sHxPGfNAlRd66qEbrKPbqP862YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2EyZTBkYi1lMjkzLTQxYzUtODU4My0zODAxNTc1ODQyMWMvMC9ENkMxRjEzQzY3 Q0QwMjU0NURFQkFBODQ2RUIyOEY2RUEzRkNFQjY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDZDMUYxM0M2N0NEMDI1NDVERUJBQTg0NkVCMjhGNkVBM0ZD RUI2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYTJlMGRiLWUyOTMtNDFjNS04 NTgzLTM4MDE1NzU4NDIxYy8wLzMxMzAzMzJlMzEzNzM2MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsMgwDQYJ KoZIhvcNAQELBQADggEBAKCHomc7WDIa0ZmqD0qIltDrZYFy2sU1P/FYUw3bQ/dJ yddEWOG6peO7BGCQmw2kUmCNRPavwRJEce0+RJSqS1803POFpisu9RAW+Reh3nrC TqlhwFThZ+etGp5iA2b2zHfp65tBGdgV1kBNlcoxxP905IyBMiIDpCCU5sZWhE5i M3gqvrxfYwXOHiZ+BcVoarFMQTAroC9qC+s92YswHKP8RnDYH3SmCggGbNUtY0Zd g8DbRzHEf+jCCJmk93rDHoKdqlBDd5BTHKo3eXbKhyiS84CFV6mmDsIyNjIWAFcB biW4lniqpaEm5j7gjf81bk4RZVW3bcqgYzgk0mFt/rA= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org