$ rpki-client -vvf repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa File: 3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa (raw, json) Hash identifier: TvsZgxlaJcqAXngiObcKPB6k+a5DNdJK4lQnQDkOUbg= Subject key identifier: 57:CA:92:6C:3D:EA:0D:26:17:F6:05:6B:D3:6D:EA:E6:57:0B:95:E6 Certificate issuer: /CN=A385F006CB4A332AED2E94013E7482A62617F17F Certificate serial: 774B0130D1BF0F42BD0E321D95AAA48B85EB323A Authority key identifier: A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa Signing time: Tue 30 Apr 2024 08:00:01 +0000 ROA not before: Tue 30 Apr 2024 07:55:01 +0000 ROA not after: Tue 29 Apr 2025 08:00:01 +0000 asID: 142347 IP address blocks: 103.169.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4b:01:30:d1:bf:0f:42:bd:0e:32:1d:95:aa:a4:8b:85:eb:32:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A385F006CB4A332AED2E94013E7482A62617F17F Validity Not Before: Apr 30 07:55:01 2024 GMT Not After : Apr 29 08:00:01 2025 GMT Subject: CN=57CA926C3DEA0D2617F6056BD36DEAE6570B95E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:09:2b:e4:4e:af:44:2d:f9:80:99:64:f9:1a: a0:c9:7c:76:7e:86:02:c0:85:44:d8:38:91:7b:8a: e4:6c:5a:dd:76:a3:25:a5:c4:14:dd:ff:de:fc:7a: 7d:13:06:0f:1f:36:13:a1:be:5d:f0:91:20:d6:a2: ee:54:44:6f:dd:02:b3:8e:90:46:2f:00:c2:8a:e8: 14:90:41:a3:4b:5f:f0:fe:d2:46:53:cf:73:5a:06: f9:27:4a:18:f6:50:54:ac:78:84:0c:b1:eb:be:07: 8a:82:cf:e0:64:40:26:68:5f:05:34:60:c1:d6:5a: cf:7b:43:2f:05:fa:5d:4c:d4:b0:3d:10:81:4f:cf: 1f:24:bc:15:91:2f:48:e6:e5:7b:05:e5:bd:ea:c7: a0:c6:0f:f4:64:f7:e3:a8:71:a3:66:ad:89:99:eb: 7c:8f:5f:2c:2b:dc:75:dd:ed:f4:b5:c3:3e:22:9e: 34:c0:77:f8:a3:68:c9:40:cf:6c:a3:4d:2c:1d:4d: 3f:61:e0:d2:0b:30:d3:50:a4:1b:6e:0d:63:a9:14: 8f:28:ca:a3:f2:46:08:16:ea:1a:4c:1e:ef:10:05: 4f:68:7b:52:90:5b:2f:c1:a2:a8:3f:25:35:fc:59: ac:6c:53:6e:9b:fc:6f:02:32:84:50:25:73:09:b1: cf:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CA:92:6C:3D:EA:0D:26:17:F6:05:6B:D3:6D:EA:E6:57:0B:95:E6 X509v3 Authority Key Identifier: keyid:A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.188.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:db:81:be:12:2c:63:6c:56:df:f6:15:c7:0b:92:c8:6c:2e: d1:67:f6:a2:65:f4:79:a0:ca:9b:ec:41:9e:d2:a5:24:cc:a7: 01:58:c5:4c:ab:dc:ac:26:8e:99:4e:0d:e8:dd:f6:f2:b6:8f: 49:e7:5c:fc:13:87:56:8f:8f:72:42:9d:60:e7:43:9b:3d:34: 00:90:bb:61:5b:1c:38:66:b6:f3:9b:1d:5f:e7:a8:40:58:1c: 10:50:3b:4b:a5:80:5b:06:bb:76:4a:cf:67:36:95:ac:7f:65: 30:c6:fc:c7:c4:6d:ad:a5:9a:63:e8:0c:ea:5f:16:09:e8:0a: 09:0b:21:cf:37:61:ac:9f:6c:4f:10:01:e5:5b:6d:84:21:75: db:31:37:1e:3d:ce:fe:1b:08:65:3e:95:78:78:87:0d:b0:db: 0c:b8:7a:00:67:40:08:78:96:1f:71:9f:4a:2b:df:79:c3:20: 08:3c:48:70:99:2e:00:6f:dc:f4:9b:57:5b:92:78:ff:dd:48: 66:96:c9:94:5b:05:93:e8:85:f0:38:e1:00:e9:73:2e:d2:d1: f4:8e:80:67:6f:90:dd:c3:63:82:2a:d0:50:7f:f6:b9:3f:1e: 35:40:12:96:4f:1c:7b:ac:ac:91:79:ad:a0:5f:f2:fe:24:1f: 65:1b:f2:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd0sBMNG/D0K9DjIdlaqki4XrMjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYy NjE3RjE3RjAeFw0yNDA0MzAwNzU1MDFaFw0yNTA0MjkwODAwMDFaMDMxMTAvBgNV BAMTKDU3Q0E5MjZDM0RFQTBEMjYxN0Y2MDU2QkQzNkRFQUU2NTcwQjk1RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDECSvkTq9ELfmAmWT5GqDJfHZ+ hgLAhUTYOJF7iuRsWt12oyWlxBTd/978en0TBg8fNhOhvl3wkSDWou5URG/dArOO kEYvAMKK6BSQQaNLX/D+0kZTz3NaBvknShj2UFSseIQMseu+B4qCz+BkQCZoXwU0 YMHWWs97Qy8F+l1M1LA9EIFPzx8kvBWRL0jm5XsF5b3qx6DGD/Rk9+OocaNmrYmZ 63yPXywr3HXd7fS1wz4injTAd/ijaMlAz2yjTSwdTT9h4NILMNNQpBtuDWOpFI8o yqPyRggW6hpMHu8QBU9oe1KQWy/Boqg/JTX8WaxsU26b/G8CMoRQJXMJsc8NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUV8qSbD3qDSYX9gVr023q5lcLleYwHwYDVR0j BBgwFoAUo4XwBstKMyrtLpQBPnSCpiYX8X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmUyYTJlMS0xYjJkLTQ4Y2MtOWRiMy02N2E4MWFmNjcwNjIvMC9BMzg1RjAwNkNC NEEzMzJBRUQyRTk0MDEzRTc0ODJBNjI2MTdGMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYyNjE3 RjE3Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZTJhMmUxLTFiMmQtNDhjYy05 ZGIzLTY3YTgxYWY2NzA2Mi8wLzMxMzAzMzJlMzEzNjM5MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqbwwDQYJ KoZIhvcNAQELBQADggEBADvbgb4SLGNsVt/2FccLkshsLtFn9qJl9HmgypvsQZ7S pSTMpwFYxUyr3KwmjplODejd9vK2j0nnXPwTh1aPj3JCnWDnQ5s9NACQu2FbHDhm tvObHV/nqEBYHBBQO0ulgFsGu3ZKz2c2lax/ZTDG/MfEba2lmmPoDOpfFgnoCgkL Ic83YayfbE8QAeVbbYQhddsxNx49zv4bCGU+lXh4hw2w2wy4egBnQAh4lh9xn0or 33nDIAg8SHCZLgBv3PSbV1uSeP/dSGaWyZRbBZPohfA44QDpcy7S0fSOgGdvkN3D Y4Iq0FB/9rk/HjVAEpZPHHusrJF5raBf8v4kH2Ub8lY= -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:15 2024 by rpki-client on console-fra.rpki-client.org