$ rpki-client -vvf repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa File: 3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa (raw, json) Hash identifier: iJSB4Tl2dCbFuiTRh7IWs9g86a1v/pjGccwQNvmJqM4= Subject key identifier: 5A:7A:BF:87:09:8D:3B:B9:F5:6E:01:E2:F6:BF:1D:8D:EE:AD:C7:BA Certificate issuer: /CN=CD93E5B741D83CA78E83C5AD92156B086BC05233 Certificate serial: 79B9B0AF9B70BD125EC6714EA0F7B549A4D737E4 Authority key identifier: CD:93:E5:B7:41:D8:3C:A7:8E:83:C5:AD:92:15:6B:08:6B:C0:52:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa Signing time: Sat 28 Sep 2024 09:00:01 +0000 ROA not before: Sat 28 Sep 2024 08:55:01 +0000 ROA not after: Sat 27 Sep 2025 09:00:01 +0000 asID: 141133 IP address blocks: 103.158.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.crl rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b9:b0:af:9b:70:bd:12:5e:c6:71:4e:a0:f7:b5:49:a4:d7:37:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD93E5B741D83CA78E83C5AD92156B086BC05233 Validity Not Before: Sep 28 08:55:01 2024 GMT Not After : Sep 27 09:00:01 2025 GMT Subject: CN=5A7ABF87098D3BB9F56E01E2F6BF1D8DEEADC7BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ee:7f:ce:4f:3d:38:b3:d1:4d:c0:f7:53:71: 62:9a:12:4d:5c:28:20:bc:eb:40:27:b7:28:d6:37: d5:85:da:97:98:38:17:d7:9d:ad:b1:fe:67:ef:4f: 2a:54:59:50:43:14:07:be:39:00:39:1c:d3:76:ca: 70:3d:b4:93:30:17:21:f6:2b:75:a2:87:67:65:7c: a1:5e:ca:9c:f7:12:8a:2d:b1:63:b5:67:99:7a:a4: f2:13:1f:e8:b3:9f:b2:cf:2b:14:67:3c:ff:20:b7: 0d:29:0a:54:06:dd:b2:33:14:96:22:90:40:38:8c: 2d:d2:89:6f:b0:57:0f:e0:50:44:59:d6:8a:90:dd: 0d:06:6f:b7:04:e5:65:ec:76:8c:51:71:6c:14:8e: bc:e1:6e:3a:8b:e1:8a:48:bd:4e:d8:a8:c2:1c:b8: b6:71:39:0d:3e:67:47:60:54:ac:7b:a1:4f:64:59: 63:f0:f0:6e:3d:30:c1:7d:7f:79:a3:59:a4:fc:cc: 22:37:27:e9:88:19:66:4b:65:dc:bd:ae:5b:52:e3: dd:ab:48:a1:a5:55:2c:29:4e:b7:3c:85:b7:aa:b5: e6:a2:ef:1d:9f:35:65:08:af:9a:02:05:27:d4:e4: d7:57:a4:70:69:09:24:0f:a8:fa:13:ee:b9:0e:dc: 81:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7A:BF:87:09:8D:3B:B9:F5:6E:01:E2:F6:BF:1D:8D:EE:AD:C7:BA X509v3 Authority Key Identifier: keyid:CD:93:E5:B7:41:D8:3C:A7:8E:83:C5:AD:92:15:6B:08:6B:C0:52:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/CD93E5B741D83CA78E83C5AD92156B086BC05233.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD93E5B741D83CA78E83C5AD92156B086BC05233.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfddcb4b-6d8e-459b-8aa2-99a60886256a/0/3130332e3135382e3139362e302f32342d3234203d3e20313431313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.196.0/24 Signature Algorithm: sha256WithRSAEncryption b5:b9:7b:cc:b0:98:57:c0:06:d5:28:3c:cd:32:1d:b5:2b:47: 2a:5a:e5:63:5d:6d:e5:69:c9:08:90:49:a6:13:74:eb:88:ad: 0d:41:f8:4e:01:d6:89:91:30:ec:3b:1b:75:83:13:5b:03:d1: 13:b8:f1:fe:76:a4:39:35:8f:42:2b:2c:cb:43:55:c2:b5:e0: c6:dc:07:fa:1c:f6:0b:e2:11:67:60:d0:2a:bc:6b:8c:76:07: b1:e4:df:b5:54:f6:d9:26:02:52:26:d3:7f:8e:46:27:3f:6d: bb:0a:6a:67:c8:09:fc:d0:5e:51:dd:a9:f2:7a:6b:3c:71:ed: dd:37:58:78:8a:a6:75:3e:36:f2:7d:0a:d2:67:fe:78:44:15: 9d:53:86:aa:96:e6:99:95:a3:42:d1:2e:d7:b1:3a:1d:64:8f: ac:ad:7d:9f:fc:3b:a6:4c:c6:17:9e:c1:89:23:ae:42:75:cd: 6f:c8:09:d9:61:f7:13:88:37:97:df:ee:5f:ca:e9:ca:85:bb: e6:aa:8b:ff:18:ba:00:2f:d5:18:40:df:bc:9f:2e:cb:93:79: 8d:a7:11:ad:d7:ea:66:24:03:2f:9b:77:ec:70:60:52:9d:a3: 99:72:ea:d6:1b:73:48:03:4d:db:2f:fe:c0:01:25:5f:0f:3e: 53:55:73:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUebmwr5twvRJexnFOoPe1SaTXN+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q5M0U1Qjc0MUQ4M0NBNzhFODNDNUFEOTIxNTZCMDg2 QkMwNTIzMzAeFw0yNDA5MjgwODU1MDFaFw0yNTA5MjcwOTAwMDFaMDMxMTAvBgNV BAMTKDVBN0FCRjg3MDk4RDNCQjlGNTZFMDFFMkY2QkYxRDhERUVBREM3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt7n/OTz04s9FNwPdTcWKaEk1c KCC860AntyjWN9WF2peYOBfXna2x/mfvTypUWVBDFAe+OQA5HNN2ynA9tJMwFyH2 K3Wih2dlfKFeypz3EootsWO1Z5l6pPITH+izn7LPKxRnPP8gtw0pClQG3bIzFJYi kEA4jC3SiW+wVw/gUERZ1oqQ3Q0Gb7cE5WXsdoxRcWwUjrzhbjqL4YpIvU7YqMIc uLZxOQ0+Z0dgVKx7oU9kWWPw8G49MMF9f3mjWaT8zCI3J+mIGWZLZdy9rltS492r SKGlVSwpTrc8hbeqteai7x2fNWUIr5oCBSfU5NdXpHBpCSQPqPoT7rkO3IFjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWnq/hwmNO7n1bgHi9r8dje6tx7owHwYDVR0j BBgwFoAUzZPlt0HYPKeOg8WtkhVrCGvAUjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmRkY2I0Yi02ZDhlLTQ1OWItOGFhMi05OWE2MDg4NjI1NmEvMC9DRDkzRTVCNzQx RDgzQ0E3OEU4M0M1QUQ5MjE1NkIwODZCQzA1MjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q5M0U1Qjc0MUQ4M0NBNzhFODNDNUFEOTIxNTZCMDg2QkMw NTIzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZGRjYjRiLTZkOGUtNDU5Yi04 YWEyLTk5YTYwODg2MjU2YS8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsQwDQYJ KoZIhvcNAQELBQADggEBALW5e8ywmFfABtUoPM0yHbUrRypa5WNdbeVpyQiQSaYT dOuIrQ1B+E4B1omRMOw7G3WDE1sD0RO48f52pDk1j0IrLMtDVcK14MbcB/oc9gvi EWdg0Cq8a4x2B7Hk37VU9tkmAlIm03+ORic/bbsKamfICfzQXlHdqfJ6azxx7d03 WHiKpnU+NvJ9CtJn/nhEFZ1ThqqW5pmVo0LRLtexOh1kj6ytfZ/8O6ZMxheewYkj rkJ1zW/ICdlh9xOIN5ff7l/K6cqFu+aqi/8YugAv1RhA37yfLsuTeY2nEa3X6mYk Ay+bd+xwYFKdo5ly6tYbc0gDTdsv/sABJV8PPlNVc10= -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org