$ rpki-client -vvf repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa File: 3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa (raw, json) Hash identifier: NvcYnOEp6TNwLUBjxvBXiVS/7BTrnJnJ+1wRwh9R1JM= Subject key identifier: 5C:6A:AF:FB:7F:93:69:9B:F2:F5:CE:D8:9B:7E:D8:5B:2C:CE:0A:9E Certificate issuer: /CN=614F5C6E09B1E05A7C0054E62A0CD67BCC61B698 Certificate serial: 5CA801974352C9E9D6D38D39E586183F1709121C Authority key identifier: 61:4F:5C:6E:09:B1:E0:5A:7C:00:54:E6:2A:0C:D6:7B:CC:61:B6:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa Signing time: Fri 08 Nov 2024 08:22:34 +0000 ROA not before: Fri 08 Nov 2024 08:17:34 +0000 ROA not after: Fri 07 Nov 2025 08:22:34 +0000 asID: 151585 IP address blocks: 103.204.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.crl rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a8:01:97:43:52:c9:e9:d6:d3:8d:39:e5:86:18:3f:17:09:12:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=614F5C6E09B1E05A7C0054E62A0CD67BCC61B698 Validity Not Before: Nov 8 08:17:34 2024 GMT Not After : Nov 7 08:22:34 2025 GMT Subject: CN=5C6AAFFB7F93699BF2F5CED89B7ED85B2CCE0A9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:35:0a:9a:29:22:14:d3:3b:3b:f4:a9:b9: 22:32:db:89:a1:3d:19:68:47:8b:1a:03:4a:69:b9: a6:b1:fd:da:4c:36:30:40:f4:43:6c:b2:e6:3f:6a: 0d:be:91:a8:35:72:43:8e:1b:63:89:69:ff:81:e6: 2d:71:57:9d:7e:1f:10:63:d7:bb:ee:33:3c:35:23: 39:db:d1:c6:70:22:c5:d7:f5:b3:6e:3b:e0:0e:c1: dc:ef:d3:6a:93:e8:bc:d4:b1:b4:04:3e:99:16:b5: 77:59:ad:1f:94:0d:50:1a:74:38:50:28:87:5b:16: a1:43:22:5e:59:57:b8:9f:89:76:9a:6f:f8:f1:d9: 92:04:ee:42:99:0d:52:fa:15:8d:ee:4e:33:17:d6: b1:fa:9f:8e:cd:b1:f7:ff:41:6a:80:40:43:26:b6: e3:f9:77:75:62:3f:92:63:5e:4b:67:0c:f6:66:58: e7:69:c1:42:48:a2:7e:be:4a:41:9b:44:95:e8:95: 10:cc:78:91:3e:ac:46:56:31:41:65:bf:54:b6:3d: 6f:e8:0f:16:8d:39:e0:e7:f3:e8:67:d4:9a:09:b5: 39:6d:07:61:e5:f1:c2:a3:ea:df:49:8f:f2:c2:6a: 7c:05:67:1f:f7:77:c3:01:b3:b6:88:18:a5:a9:3c: 94:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6A:AF:FB:7F:93:69:9B:F2:F5:CE:D8:9B:7E:D8:5B:2C:CE:0A:9E X509v3 Authority Key Identifier: keyid:61:4F:5C:6E:09:B1:E0:5A:7C:00:54:E6:2A:0C:D6:7B:CC:61:B6:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/614F5C6E09B1E05A7C0054E62A0CD67BCC61B698.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e660e758-f65b-469a-8a1c-fb01984343b1/0/3130332e3230342e34362e302f32332d3233203d3e20313531353835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.204.46.0/23 Signature Algorithm: sha256WithRSAEncryption 42:ef:51:b5:79:6d:1e:98:61:28:40:77:01:cd:58:d3:90:37: 56:bb:7d:7c:83:d0:d8:39:2f:ae:f6:be:9d:90:0b:eb:fb:d0: 8f:5c:79:be:2e:0b:a3:0c:05:3e:1e:cb:e0:6b:0a:a5:f4:15: 2b:4f:7d:9b:8c:45:b8:f6:08:e4:57:b2:2a:a6:df:99:4d:e8: b1:55:42:b3:ae:aa:8a:d6:25:e9:24:36:c6:16:eb:5a:6c:16: fe:a4:1b:87:e0:0c:02:56:77:15:5a:fd:e6:bf:37:db:e4:cb: 4b:d5:44:53:b3:23:98:9a:d3:e2:5e:2f:d3:ed:10:79:56:5f: 50:27:ba:11:7e:b5:71:00:ac:8e:fd:5a:e6:b7:8a:c4:02:34: 56:3a:bc:48:28:21:20:9c:63:5d:e5:e6:8d:be:7c:51:cf:15: fe:09:e1:c0:6c:a2:00:6e:55:02:6c:47:4d:4f:43:02:ea:68: 48:09:e3:cc:95:a7:86:2c:8f:d2:af:15:d0:f1:f5:ea:11:99: 91:27:b7:a2:4c:59:d6:c0:c6:36:50:89:8b:22:aa:7e:db:d4: 6f:ee:1d:42:b1:4a:45:de:0f:57:fe:69:c5:f6:2d:c6:46:df: 65:15:4a:10:34:7d:4e:96:0e:61:87:dd:da:19:c2:6f:46:36: b3:3a:ba:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXKgBl0NSyenW04055YYYPxcJEhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE0RjVDNkUwOUIxRTA1QTdDMDA1NEU2MkEwQ0Q2N0JD QzYxQjY5ODAeFw0yNDExMDgwODE3MzRaFw0yNTExMDcwODIyMzRaMDMxMTAvBgNV BAMTKDVDNkFBRkZCN0Y5MzY5OUJGMkY1Q0VEODlCN0VEODVCMkNDRTBBOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKiTUKmikiFNM7O/SpuSIy24mh PRloR4saA0ppuaax/dpMNjBA9ENssuY/ag2+kag1ckOOG2OJaf+B5i1xV51+HxBj 17vuMzw1Iznb0cZwIsXX9bNuO+AOwdzv02qT6LzUsbQEPpkWtXdZrR+UDVAadDhQ KIdbFqFDIl5ZV7ifiXaab/jx2ZIE7kKZDVL6FY3uTjMX1rH6n47Nsff/QWqAQEMm tuP5d3ViP5JjXktnDPZmWOdpwUJIon6+SkGbRJXolRDMeJE+rEZWMUFlv1S2PW/o DxaNOeDn8+hn1JoJtTltB2Hl8cKj6t9Jj/LCanwFZx/3d8MBs7aIGKWpPJTBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXGqv+3+TaZvy9c7Ym37YWyzOCp4wHwYDVR0j BBgwFoAUYU9cbgmx4Fp8AFTmKgzWe8xhtpgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjYwZTc1OC1mNjViLTQ2OWEtOGExYy1mYjAxOTg0MzQzYjEvMC82MTRGNUM2RTA5 QjFFMDVBN0MwMDU0RTYyQTBDRDY3QkNDNjFCNjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE0RjVDNkUwOUIxRTA1QTdDMDA1NEU2MkEwQ0Q2N0JDQzYx QjY5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NjBlNzU4LWY2NWItNDY5YS04 YTFjLWZiMDE5ODQzNDNiMS8wLzMxMzAzMzJlMzIzMDM0MmUzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ8wuMA0GCSqG SIb3DQEBCwUAA4IBAQBC71G1eW0emGEoQHcBzVjTkDdWu318g9DYOS+u9r6dkAvr +9CPXHm+LgujDAU+Hsvgawql9BUrT32bjEW49gjkV7Iqpt+ZTeixVUKzrqqK1iXp JDbGFutabBb+pBuH4AwCVncVWv3mvzfb5MtL1URTsyOYmtPiXi/T7RB5Vl9QJ7oR frVxAKyO/Vrmt4rEAjRWOrxIKCEgnGNd5eaNvnxRzxX+CeHAbKIAblUCbEdNT0MC 6mhICePMlaeGLI/SrxXQ8fXqEZmRJ7eiTFnWwMY2UImLIqp+29Rv7h1CsUpF3g9X /mnF9i3GRt9lFUoQNH1Olg5hh93aGcJvRjazOrqq -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org