$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa File: 3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: gnXPIqK5MMiCa1ujBebDIgz1gVLhuLS9+UI8N5LQANY= Subject key identifier: 5A:7E:6F:E8:FA:2A:1F:CD:B0:EC:B1:C4:CA:FB:86:0E:03:29:53:E2 Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Certificate serial: 059AC054205608A0F6E84656842BD723E80C74E1 Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa Signing time: Mon 01 Jul 2024 01:03:48 +0000 ROA not before: Mon 01 Jul 2024 00:58:48 +0000 ROA not after: Mon 30 Jun 2025 01:03:48 +0000 asID: 140443 IP address blocks: 103.152.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:9a:c0:54:20:56:08:a0:f6:e8:46:56:84:2b:d7:23:e8:0c:74:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F Validity Not Before: Jul 1 00:58:48 2024 GMT Not After : Jun 30 01:03:48 2025 GMT Subject: CN=5A7E6FE8FA2A1FCDB0ECB1C4CAFB860E032953E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:24:d8:f8:99:89:ba:b1:0d:b2:b7:ca:26:fe: cb:d8:2a:40:9c:92:9d:8a:5e:92:08:0b:15:18:67: c4:18:e3:fc:39:80:fd:5b:e7:8d:90:4c:2d:50:e9: 65:36:87:c9:84:5b:c7:e5:fd:1a:2a:7b:a1:38:24: 1e:35:fe:96:a9:a6:a3:03:21:e6:7f:4a:0c:70:b4: 6f:f8:04:1e:28:0c:3b:ec:1a:bf:ab:2f:50:a6:2b: 42:af:de:33:f8:3b:ea:98:63:1d:ba:fe:43:3b:c2: e1:8a:1c:71:b3:4d:d4:d5:33:5d:5f:31:01:1c:92: 43:5b:68:ad:53:5f:0d:c6:4a:fd:5a:53:76:25:fc: 9b:d5:ff:4d:de:17:a1:3d:96:46:28:45:77:a3:04: 83:24:85:62:76:f8:a2:1e:6f:74:9b:bf:29:af:2b: 18:3a:ed:a3:ec:34:0f:b8:c5:e1:05:45:e9:92:5e: 99:49:ed:a9:ab:e2:7b:17:0d:fd:60:ac:7b:c3:59: d4:f2:11:46:e7:0d:3e:02:11:1b:21:81:ce:16:d5: 81:0b:0c:33:15:a7:f8:47:cb:95:f1:c3:bd:5f:e8: 62:77:df:27:d7:50:5f:af:d6:f8:97:86:ca:d3:0b: 96:2c:97:f8:91:65:3f:f6:87:06:0d:e5:4b:69:1d: 66:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7E:6F:E8:FA:2A:1F:CD:B0:EC:B1:C4:CA:FB:86:0E:03:29:53:E2 X509v3 Authority Key Identifier: keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.118.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:66:27:7a:0f:8b:a7:64:ba:c4:4d:ae:66:d8:5b:c6:04:1f: 58:43:d2:96:d1:56:0a:61:34:e7:0c:f0:d9:80:e6:c8:f7:72: e5:b8:dc:e9:20:fa:4e:20:74:33:6d:4b:5a:6f:0c:f5:4a:09: a2:ab:8b:c0:d1:24:50:a3:f1:eb:13:1e:31:02:de:58:1c:b6: 4c:b8:1b:a8:7a:5c:1e:ad:60:dd:2b:d2:4a:02:a6:03:54:eb: cd:c4:38:83:00:72:8f:d6:f8:dc:a7:dd:42:77:cb:bd:a3:28: 5f:fa:ce:17:18:b3:0a:85:ba:96:29:d6:71:d6:f0:a5:be:de: 36:c5:f7:17:5a:f8:f4:2c:88:74:62:3f:d8:0d:00:14:48:12: be:1f:60:23:f2:eb:cc:ca:88:60:56:3a:6c:2b:b1:46:33:43: da:5e:25:54:db:48:02:61:3d:2d:5a:2c:63:ca:de:fb:42:6b: c8:81:be:4c:9c:74:d0:cf:14:c8:82:40:f0:6d:c2:f5:56:75: a2:a3:47:3b:a9:b0:50:e0:3e:23:bd:78:a3:c2:97:c9:f9:26: 5a:93:ee:f4:d5:d3:6b:bc:22:b6:b2:80:e6:1a:97:1a:1a:0b: 7c:ef:eb:0a:8c:fd:9d:b4:92:ff:3c:9e:3a:a4:cd:9c:7b:3b: 5c:69:b7:6c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBZrAVCBWCKD26EZWhCvXI+gMdOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIw RkE5MzkyRjAeFw0yNDA3MDEwMDU4NDhaFw0yNTA2MzAwMTAzNDhaMDMxMTAvBgNV BAMTKDVBN0U2RkU4RkEyQTFGQ0RCMEVDQjFDNENBRkI4NjBFMDMyOTUzRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3JNj4mYm6sQ2yt8om/svYKkCc kp2KXpIICxUYZ8QY4/w5gP1b542QTC1Q6WU2h8mEW8fl/Roqe6E4JB41/pappqMD IeZ/SgxwtG/4BB4oDDvsGr+rL1CmK0Kv3jP4O+qYYx26/kM7wuGKHHGzTdTVM11f MQEckkNbaK1TXw3GSv1aU3Yl/JvV/03eF6E9lkYoRXejBIMkhWJ2+KIeb3Sbvymv Kxg67aPsNA+4xeEFRemSXplJ7amr4nsXDf1grHvDWdTyEUbnDT4CERshgc4W1YEL DDMVp/hHy5Xxw71f6GJ33yfXUF+v1viXhsrTC5Ysl/iRZT/2hwYN5UtpHWY/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWn5v6PoqH82w7LHEyvuGDgMpU+IwHwYDVR0j BBgwFoAUbcxpUI705nDvvFxpID1rEg+pOS8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjA3M2FjZS1hNjkxLTQ4NjMtOWMxYy01OWIyZGI5Y2I0NjMvMC82RENDNjk1MDhF RjRFNjcwRUZCQzVDNjkyMDNENkIxMjBGQTkzOTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRDQzY5NTA4RUY0RTY3MEVGQkM1QzY5MjAzRDZCMTIwRkE5 MzkyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMDczYWNlLWE2OTEtNDg2My05 YzFjLTU5YjJkYjljYjQ2My8wLzMxMzAzMzJlMzEzNTMyMmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmHYwDQYJ KoZIhvcNAQELBQADggEBABtmJ3oPi6dkusRNrmbYW8YEH1hD0pbRVgphNOcM8NmA 5sj3cuW43Okg+k4gdDNtS1pvDPVKCaKri8DRJFCj8esTHjEC3lgctky4G6h6XB6t YN0r0koCpgNU683EOIMAco/W+Nyn3UJ3y72jKF/6zhcYswqFupYp1nHW8KW+3jbF 9xda+PQsiHRiP9gNABRIEr4fYCPy68zKiGBWOmwrsUYzQ9peJVTbSAJhPS1aLGPK 3vtCa8iBvkycdNDPFMiCQPBtwvVWdaKjRzupsFDgPiO9eKPCl8n5JlqT7vTV02u8 IraygOYalxoaC3zv6wqM/Z20kv88njqkzZx7O1xpt2w= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org