$ rpki-client -vvf repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa File: 3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa (raw, json) Hash identifier: xYxxyrQkuQeP1ZXr19Z8s6G5oCtciWVbaGSbTT9Dbxg= Subject key identifier: 88:EF:60:0A:5D:10:40:99:77:D0:31:13:89:5D:EB:58:80:0C:5F:53 Certificate issuer: /CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Certificate serial: 677AD5C68E56BEE1A5A55BC4AA27C6C1C681DD11 Authority key identifier: E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa Signing time: Wed 25 Sep 2024 09:00:00 +0000 ROA not before: Wed 25 Sep 2024 08:55:00 +0000 ROA not after: Wed 24 Sep 2025 09:00:00 +0000 asID: 147075 IP address blocks: 103.172.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7a:d5:c6:8e:56:be:e1:a5:a5:5b:c4:aa:27:c6:c1:c6:81:dd:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Validity Not Before: Sep 25 08:55:00 2024 GMT Not After : Sep 24 09:00:00 2025 GMT Subject: CN=88EF600A5D10409977D03113895DEB58800C5F53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:83:48:54:e1:2d:0d:b3:93:e9:0f:8b:00: f1:0a:50:5c:70:98:d0:db:a2:28:f4:7c:76:ea:78: 1b:c2:58:c1:fb:2b:71:2b:38:94:ec:63:65:e6:f7: 6e:1e:cc:fb:46:29:29:52:3a:82:09:f5:c2:f0:3a: a2:c6:63:82:53:ef:25:7e:db:36:47:04:f6:11:4f: f0:91:7e:6c:c8:0b:af:eb:61:35:25:3d:4a:84:49: 45:97:7d:1c:c0:56:61:16:c0:02:11:e6:bb:47:63: 21:03:a0:0e:29:de:54:52:c7:c3:ce:9b:d2:f8:22: 8c:ef:b7:18:ca:2d:69:c1:96:b8:4f:35:79:7c:4c: c4:ab:8e:02:a6:e0:d2:72:72:9d:78:6e:79:c1:e0: fb:ac:d8:6d:31:5a:01:f7:58:82:f3:1d:be:3a:53: e5:ba:e2:2c:79:be:4f:ba:64:6e:9e:d5:21:e4:61: b3:e5:ca:bb:de:3f:ac:aa:dc:e7:46:f1:47:ab:23: c2:cf:0a:a2:15:b1:b2:3b:4e:bc:f6:aa:70:cc:85: d2:dd:3d:ff:79:1c:8c:26:08:3c:a9:67:1d:0c:29: f4:a8:cb:0a:34:9c:e7:84:19:ca:0a:0c:6b:6d:49: cd:0e:33:ce:03:c2:93:d6:63:db:6a:61:dc:a9:f6: 19:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EF:60:0A:5D:10:40:99:77:D0:31:13:89:5D:EB:58:80:0C:5F:53 X509v3 Authority Key Identifier: keyid:E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/3130332e3137322e3139342e302f32332d3233203d3e20313437303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.194.0/23 Signature Algorithm: sha256WithRSAEncryption 49:51:26:3a:bb:35:5f:1e:33:7d:7f:fa:e7:c5:fa:7d:bb:33: b6:11:d9:2d:f9:f1:f6:2b:66:08:0d:35:d9:3f:79:86:93:23: 7d:44:9a:51:a5:0b:8b:8c:c7:ed:95:e4:12:2b:c0:a3:d8:d1: 96:a8:ec:e0:a8:de:a5:33:ca:31:a4:34:f1:3c:1d:2b:c5:c7: 2b:f9:6d:3d:49:d8:b1:66:9f:9b:46:05:47:63:ec:ad:e2:f2: 90:26:22:1e:88:fe:28:a8:94:4e:f4:66:f0:39:8c:c9:58:ad: bf:74:3b:e3:d9:66:d7:54:c5:9c:da:bb:96:bb:72:bc:1d:20: e9:af:c5:b9:14:fd:db:0e:d9:70:47:11:99:e7:99:70:67:3e: 0a:36:8d:2b:a3:d8:cb:ff:7c:e9:71:21:dd:7f:66:1f:5d:58: f5:9c:ca:34:de:21:fc:cd:4e:96:8c:c4:f9:e4:b2:b5:38:e8: 09:9c:82:55:01:6b:53:37:79:90:9c:ab:36:62:91:78:ae:a9: 63:26:52:b2:ce:9f:03:ba:ac:7f:a3:43:b9:0d:d7:87:0a:6b: b0:56:51:e2:e4:7f:5a:29:aa:13:f6:85:85:a6:bf:39:51:bd: 26:42:ee:eb:3f:d7:11:97:c0:8d:ff:47:30:f5:fd:a0:f0:b0: b5:32:b8:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ3rVxo5WvuGlpVvEqifGwcaB3REwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3 QjJBRTRCRTAeFw0yNDA5MjUwODU1MDBaFw0yNTA5MjQwOTAwMDBaMDMxMTAvBgNV BAMTKDg4RUY2MDBBNUQxMDQwOTk3N0QwMzExMzg5NURFQjU4ODAwQzVGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSUINIVOEtDbOT6Q+LAPEKUFxw mNDboij0fHbqeBvCWMH7K3ErOJTsY2Xm924ezPtGKSlSOoIJ9cLwOqLGY4JT7yV+ 2zZHBPYRT/CRfmzIC6/rYTUlPUqESUWXfRzAVmEWwAIR5rtHYyEDoA4p3lRSx8PO m9L4IozvtxjKLWnBlrhPNXl8TMSrjgKm4NJycp14bnnB4Pus2G0xWgH3WILzHb46 U+W64ix5vk+6ZG6e1SHkYbPlyrveP6yq3OdG8UerI8LPCqIVsbI7Trz2qnDMhdLd Pf95HIwmCDypZx0MKfSoywo0nOeEGcoKDGttSc0OM84DwpPWY9tqYdyp9hnrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiO9gCl0QQJl30DETiV3rWIAMX1MwHwYDVR0j BBgwFoAU5IY04db7LooGpIgltNfuxHsq5L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2VjMmNiNi0zNWFkLTQxMDEtOTgyZS0yZTM0ZDU2NmVmZGEvMC9FNDg2MzRFMUQ2 RkIyRThBMDZBNDg4MjVCNEQ3RUVDNDdCMkFFNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ4NjM0RTFENkZCMkU4QTA2QTQ4ODI1QjREN0VFQzQ3QjJB RTRCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZWMyY2I2LTM1YWQtNDEwMS05 ODJlLTJlMzRkNTY2ZWZkYS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMIwDQYJ KoZIhvcNAQELBQADggEBAElRJjq7NV8eM31/+ufF+n27M7YR2S358fYrZggNNdk/ eYaTI31EmlGlC4uMx+2V5BIrwKPY0Zao7OCo3qUzyjGkNPE8HSvFxyv5bT1J2LFm n5tGBUdj7K3i8pAmIh6I/iiolE70ZvA5jMlYrb90O+PZZtdUxZzau5a7crwdIOmv xbkU/dsO2XBHEZnnmXBnPgo2jSuj2Mv/fOlxId1/Zh9dWPWcyjTeIfzNTpaMxPnk srU46AmcglUBa1M3eZCcqzZikXiuqWMmUrLOnwO6rH+jQ7kN14cKa7BWUeLkf1op qhP2hYWmvzlRvSZC7us/1xGXwI3/RzD1/aDwsLUyuAs= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org