$ rpki-client -vvf repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa File: 3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa (raw, json) Hash identifier: y5FW1sgnfU+HeLMU5Bqbn06zuZEAtwFBXzjZotq5ERw= Subject key identifier: 1B:3C:78:DB:CF:98:C6:95:A7:D2:63:0D:36:F3:D6:A3:65:7C:F7:70 Certificate issuer: /CN=255AA179563123A815C2B4073AD84B69F0967F4D Certificate serial: 3DFECE353FF884CC4A8D2799F689205A01F58BA7 Authority key identifier: 25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa Signing time: Sun 04 Aug 2024 06:00:02 +0000 ROA not before: Sun 04 Aug 2024 05:55:02 +0000 ROA not after: Sun 03 Aug 2025 06:00:02 +0000 asID: 138112 IP address blocks: 103.126.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.crl rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 07:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fe:ce:35:3f:f8:84:cc:4a:8d:27:99:f6:89:20:5a:01:f5:8b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255AA179563123A815C2B4073AD84B69F0967F4D Validity Not Before: Aug 4 05:55:02 2024 GMT Not After : Aug 3 06:00:02 2025 GMT Subject: CN=1B3C78DBCF98C695A7D2630D36F3D6A3657CF770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ef:8a:55:c8:5e:5f:d7:bb:bb:60:44:2e:da: 27:b8:27:d6:78:ed:b5:08:40:09:3f:43:7a:80:b9: fe:d1:ef:6a:16:c1:77:a8:45:56:89:0e:ce:2e:47: 43:48:ab:1f:09:59:9e:8f:84:6c:58:e7:ab:3c:db: b2:3f:68:8e:f5:c5:30:f4:b5:9a:85:b4:1b:31:19: fc:15:fa:cf:6a:f1:bc:18:f6:d0:14:64:9a:18:84: 1f:34:bc:c5:be:80:e6:d6:1f:b5:20:f9:a4:8e:c6: 6b:40:83:1e:57:60:c1:b6:1f:ff:5c:48:d0:17:35: 47:30:16:1b:11:40:53:22:99:74:bd:87:b1:a3:ed: b3:f6:ea:b7:6f:06:f9:37:6d:1f:a8:de:b4:16:74: 18:c6:d5:0c:75:76:18:35:b0:c9:17:b2:42:3c:fb: 47:7a:f1:b6:e8:01:06:81:90:c1:31:a9:d3:77:f0: 03:58:b9:db:0f:cf:3c:b4:d9:1e:9b:83:09:0f:fa: 42:95:cf:d3:db:4e:ce:30:22:48:94:91:2c:ef:35: e2:47:11:5f:97:76:e1:b9:4d:97:df:d3:96:cd:26: 2b:f6:1b:60:aa:6f:d1:68:27:96:a0:f9:f4:11:2c: 41:f1:4b:f2:5d:7c:d7:d9:57:c2:2b:d2:d1:dd:85: 17:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3C:78:DB:CF:98:C6:95:A7:D2:63:0D:36:F3:D6:A3:65:7C:F7:70 X509v3 Authority Key Identifier: keyid:25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.172.0/24 Signature Algorithm: sha256WithRSAEncryption a3:ed:e6:42:1d:33:7d:d4:24:40:73:70:68:40:0a:c7:ad:e7: 13:9a:dc:a7:49:6f:89:5e:6b:38:7d:f5:64:41:c3:e0:3f:41: b0:a7:3f:85:91:6c:f1:42:05:5f:fe:d0:af:90:86:81:aa:cb: 1f:da:31:6c:ff:8a:23:82:70:82:c4:82:17:38:6e:02:f1:7a: 67:e3:e0:09:3b:98:e2:cb:78:50:ed:61:4b:bd:18:ad:96:0b: 9f:f7:ac:a6:34:f4:a8:b0:6b:d2:bd:96:fc:0c:05:46:d6:9e: 66:1c:a5:de:7a:cd:68:39:9c:99:0b:18:52:0d:a5:1e:7e:36: 8c:21:07:9c:43:13:84:98:ff:18:8c:ea:71:f0:59:57:cc:69: 24:d6:b6:78:03:4b:f9:97:41:cd:02:01:04:32:5e:71:89:78: 62:63:bd:fa:89:66:31:db:2d:ea:eb:82:c6:4a:9d:af:b6:54: 04:a7:e8:25:e2:58:27:37:a2:56:e2:2e:04:2a:09:71:6c:11: 70:e4:ac:b0:cc:7e:04:e1:34:23:d2:e6:d5:0a:09:ca:da:3e: 18:31:0f:c7:a6:49:75:9d:91:89:c6:f0:04:7f:c6:8c:34:1d: d9:59:cb:cd:27:13:dd:58:19:06:32:21:af:19:70:da:94:e8: b9:92:7b:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPf7ONT/4hMxKjSeZ9okgWgH1i6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1QUExNzk1NjMxMjNBODE1QzJCNDA3M0FEODRCNjlG MDk2N0Y0RDAeFw0yNDA4MDQwNTU1MDJaFw0yNTA4MDMwNjAwMDJaMDMxMTAvBgNV BAMTKDFCM0M3OERCQ0Y5OEM2OTVBN0QyNjMwRDM2RjNENkEzNjU3Q0Y3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO74pVyF5f17u7YEQu2ie4J9Z4 7bUIQAk/Q3qAuf7R72oWwXeoRVaJDs4uR0NIqx8JWZ6PhGxY56s827I/aI71xTD0 tZqFtBsxGfwV+s9q8bwY9tAUZJoYhB80vMW+gObWH7Ug+aSOxmtAgx5XYMG2H/9c SNAXNUcwFhsRQFMimXS9h7Gj7bP26rdvBvk3bR+o3rQWdBjG1Qx1dhg1sMkXskI8 +0d68bboAQaBkMExqdN38ANYudsPzzy02R6bgwkP+kKVz9PbTs4wIkiUkSzvNeJH EV+XduG5TZff05bNJiv2G2Cqb9FoJ5ag+fQRLEHxS/JdfNfZV8Ir0tHdhRf/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGzx428+YxpWn0mMNNvPWo2V893AwHwYDVR0j BBgwFoAUJVqheVYxI6gVwrQHOthLafCWf00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGI4ZDkwOC0xYjk5LTQ1NWMtYWM3Ni04ZDYyNGRmYTQzYjYvMC8yNTVBQTE3OTU2 MzEyM0E4MTVDMkI0MDczQUQ4NEI2OUYwOTY3RjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1QUExNzk1NjMxMjNBODE1QzJCNDA3M0FEODRCNjlGMDk2 N0Y0RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkYjhkOTA4LTFiOTktNDU1Yy1h Yzc2LThkNjI0ZGZhNDNiNi8wLzMxMzAzMzJlMzEzMjM2MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfqwwDQYJ KoZIhvcNAQELBQADggEBAKPt5kIdM33UJEBzcGhACset5xOa3KdJb4leazh99WRB w+A/QbCnP4WRbPFCBV/+0K+QhoGqyx/aMWz/iiOCcILEghc4bgLxemfj4Ak7mOLL eFDtYUu9GK2WC5/3rKY09Kiwa9K9lvwMBUbWnmYcpd56zWg5nJkLGFINpR5+Nowh B5xDE4SY/xiM6nHwWVfMaSTWtngDS/mXQc0CAQQyXnGJeGJjvfqJZjHbLerrgsZK na+2VASn6CXiWCc3olbiLgQqCXFsEXDkrLDMfgThNCPS5tUKCcraPhgxD8emSXWd kYnG8AR/xow0HdlZy80nE91YGQYyIa8ZcNqU6LmSe4U= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org