$ rpki-client -vvf repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32332d3233203d3e20313437303837.roa File: 3130332e3137332e3233302e302f32332d3233203d3e20313437303837.roa (raw, json) Hash identifier: AtSVkFWy+RPF/Rog89oVSGAye/7C+5O/wyn2g4eUns4= Subject key identifier: 60:22:6F:04:98:02:88:83:95:E6:C5:FC:EF:BA:8B:2C:48:9C:2D:48 Certificate issuer: /CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Certificate serial: 45339BD42114F8FFA88533A57F40995081685D47 Authority key identifier: 58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32332d3233203d3e20313437303837.roa Signing time: Sat 31 Aug 2024 18:00:01 +0000 ROA not before: Sat 31 Aug 2024 17:55:01 +0000 ROA not after: Sat 30 Aug 2025 18:00:01 +0000 asID: 147087 IP address blocks: 103.173.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:33:9b:d4:21:14:f8:ff:a8:85:33:a5:7f:40:99:50:81:68:5d:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=580F61C23A4857BE23095E060FE36642F86DA6E8 Validity Not Before: Aug 31 17:55:01 2024 GMT Not After : Aug 30 18:00:01 2025 GMT Subject: CN=60226F049802888395E6C5FCEFBA8B2C489C2D48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ac:2c:a6:5e:67:4a:79:67:9b:95:b7:59:a3: a9:33:bd:55:d7:0a:fc:9b:4a:03:ee:1b:4a:43:c1: 64:b5:10:b9:7c:b1:99:b4:4f:a1:a8:f1:b7:0b:e6: f9:be:f5:87:f1:7e:72:e8:d3:8f:35:05:31:0e:b0: ed:ba:0a:f8:85:48:83:34:cf:b2:f4:e6:dd:f5:da: 89:40:41:fe:36:2b:d1:22:c4:ca:cc:6a:53:33:e8: ab:58:ad:6f:f4:f7:d6:8f:ef:e3:fb:31:46:36:6e: be:be:04:6c:f8:50:85:20:4a:aa:71:98:c8:75:a9: 58:b0:d8:b3:0f:0f:b2:02:be:1e:e4:83:11:f0:fb: 53:75:5d:d0:ac:39:c1:32:a4:77:3b:8b:ad:ca:41: 3b:e0:06:8e:45:80:94:f4:5c:ed:65:1b:de:46:59: 61:c5:b1:cc:8c:d8:cd:0c:81:79:74:a1:01:b0:d6: c9:63:4f:32:f9:f1:7c:46:59:1a:2f:51:c7:0c:b7: 6d:aa:b9:22:1b:9c:bc:38:97:08:fc:17:a0:d9:59: 21:05:f3:9b:c0:0c:80:46:01:3b:d0:d9:b0:60:7a: 18:08:97:68:52:d9:cf:2d:f4:f6:73:42:02:82:0a: f8:89:d7:f4:27:ad:51:9f:2e:96:b4:66:a8:9b:df: d7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:22:6F:04:98:02:88:83:95:E6:C5:FC:EF:BA:8B:2C:48:9C:2D:48 X509v3 Authority Key Identifier: keyid:58:0F:61:C2:3A:48:57:BE:23:09:5E:06:0F:E3:66:42:F8:6D:A6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/580F61C23A4857BE23095E060FE36642F86DA6E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/580F61C23A4857BE23095E060FE36642F86DA6E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d00f9cc7-4a69-4c9e-bba6-4d9abb56eff6/0/3130332e3137332e3233302e302f32332d3233203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.230.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:60:f3:7b:73:7c:67:ef:b4:9d:1e:05:d5:bd:d6:18:d3:21: d8:7d:16:50:74:e3:0e:9b:2f:c0:c3:3a:fd:c7:e5:49:75:e4: 0c:15:71:0b:19:13:37:6d:52:b7:e8:ac:53:66:0f:6d:3b:6f: 80:6f:b6:ee:ff:9a:8d:69:4a:fb:e0:db:96:22:eb:7d:c6:63: ac:1d:31:6c:ea:5a:e3:dc:34:35:43:34:68:98:f5:33:e4:47: 6b:0c:30:f0:45:5a:65:07:42:ad:17:e2:90:bf:d0:c8:eb:3d: 3b:7b:b6:9a:f3:5a:3d:ec:1e:ab:00:e6:1c:9c:63:71:d8:d3: 07:05:44:2c:4e:ae:35:2f:02:2e:68:ff:bd:19:b9:e5:63:dc: 83:e8:a4:b6:40:44:cf:60:2a:58:f6:8d:37:c3:9f:96:75:03: 3b:72:1a:96:1e:73:42:a0:df:1e:82:bd:50:e8:d2:a2:a2:2c: b6:f4:81:3f:35:c4:68:f6:9a:a3:59:ee:bb:bc:5f:6a:a5:32: 60:e1:44:09:69:0b:33:6d:60:a2:32:0e:e1:bc:aa:08:83:77: a3:07:45:b7:f7:07:27:c8:fe:63:b0:63:93:3e:e1:06:69:18: 86:d8:59:33:27:5c:28:44:36:03:e2:9c:58:50:06:47:67:57: 23:dc:db:87 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURTOb1CEU+P+ohTOlf0CZUIFoXUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJG ODZEQTZFODAeFw0yNDA4MzExNzU1MDFaFw0yNTA4MzAxODAwMDFaMDMxMTAvBgNV BAMTKDYwMjI2RjA0OTgwMjg4ODM5NUU2QzVGQ0VGQkE4QjJDNDg5QzJENDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLrCymXmdKeWeblbdZo6kzvVXX CvybSgPuG0pDwWS1ELl8sZm0T6Go8bcL5vm+9YfxfnLo0481BTEOsO26CviFSIM0 z7L05t312olAQf42K9EixMrMalMz6KtYrW/099aP7+P7MUY2br6+BGz4UIUgSqpx mMh1qViw2LMPD7ICvh7kgxHw+1N1XdCsOcEypHc7i63KQTvgBo5FgJT0XO1lG95G WWHFscyM2M0MgXl0oQGw1sljTzL58XxGWRovUccMt22quSIbnLw4lwj8F6DZWSEF 85vADIBGATvQ2bBgehgIl2hS2c8t9PZzQgKCCviJ1/QnrVGfLpa0Zqib39dlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYCJvBJgCiIOV5sX877qLLEicLUgwHwYDVR0j BBgwFoAUWA9hwjpIV74jCV4GD+NmQvhtpugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDBmOWNjNy00YTY5LTRjOWUtYmJhNi00ZDlhYmI1NmVmZjYvMC81ODBGNjFDMjNB NDg1N0JFMjMwOTVFMDYwRkUzNjY0MkY4NkRBNkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTgwRjYxQzIzQTQ4NTdCRTIzMDk1RTA2MEZFMzY2NDJGODZE QTZFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwMGY5Y2M3LTRhNjktNGM5ZS1i YmE2LTRkOWFiYjU2ZWZmNi8wLzMxMzAzMzJlMzEzNzMzMmUzMjMzMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnreYwDQYJ KoZIhvcNAQELBQADggEBADtg83tzfGfvtJ0eBdW91hjTIdh9FlB04w6bL8DDOv3H 5Ul15AwVcQsZEzdtUrforFNmD207b4Bvtu7/mo1pSvvg25Yi633GY6wdMWzqWuPc NDVDNGiY9TPkR2sMMPBFWmUHQq0X4pC/0MjrPTt7tprzWj3sHqsA5hycY3HY0wcF RCxOrjUvAi5o/70ZueVj3IPopLZARM9gKlj2jTfDn5Z1AztyGpYec0Kg3x6CvVDo 0qKiLLb0gT81xGj2mqNZ7ru8X2qlMmDhRAlpCzNtYKIyDuG8qgiDd6MHRbf3ByfI /mOwY5M+4QZpGIbYWTMnXChENgPinFhQBkdnVyPc24c= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:39 2024 by rpki-client on console-fra.rpki-client.org