$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa File: 3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa (raw, json) Hash identifier: FLVGwqj4yD54Hf3ac0cSht3WEYb1ToOJ+k3OEsbAbwE= Subject key identifier: 5C:65:BE:12:A2:CC:DD:3E:20:D0:D3:A1:68:CA:95:F4:86:7E:02:74 Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Certificate serial: 5942110921D22E6056F6CAE2FC86CD4BAB4B3337 Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa Signing time: Thu 15 Aug 2024 09:00:01 +0000 ROA not before: Thu 15 Aug 2024 08:55:01 +0000 ROA not after: Thu 14 Aug 2025 09:00:01 +0000 asID: 147124 IP address blocks: 103.175.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:42:11:09:21:d2:2e:60:56:f6:ca:e2:fc:86:cd:4b:ab:4b:33:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Validity Not Before: Aug 15 08:55:01 2024 GMT Not After : Aug 14 09:00:01 2025 GMT Subject: CN=5C65BE12A2CCDD3E20D0D3A168CA95F4867E0274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:40:14:8f:31:fe:b4:0a:70:69:f3:35:dc:80: e9:84:53:2b:d8:99:ff:9d:f4:53:42:d6:72:19:d1: 4f:7f:ab:68:b3:3b:a4:b0:7a:9d:2e:06:6a:dc:77: bf:f8:66:8c:60:e2:d9:44:c1:9d:12:e8:72:88:54: e2:76:ca:a3:2c:43:3f:2b:57:c8:9f:7e:02:5e:57: e3:3e:de:ba:1f:1e:97:03:46:53:25:97:8f:2e:12: 7d:3b:b3:09:65:ba:83:bb:02:bf:6f:2a:3a:18:7b: 58:94:79:41:03:b6:b9:52:40:b6:d5:e3:0b:24:16: 7a:f5:60:26:4e:65:ba:da:af:63:d1:02:91:09:b6: 49:dd:bd:0b:0d:c3:eb:a1:ab:f7:fa:a8:29:a4:b1: 8c:9c:1b:1c:2e:d3:1a:27:43:54:ce:40:22:ea:15: a6:5a:97:41:02:b2:70:80:b1:5e:f1:e8:1c:f2:ac: 5d:96:f3:df:a7:97:5d:ee:9a:32:a7:92:e2:6e:ce: a8:52:9e:fb:c9:1e:80:5f:2b:10:8c:79:9a:48:8b: 78:85:dc:bb:4c:42:27:38:5b:32:64:db:17:d9:31: 22:21:b1:98:cf:86:45:ed:d4:ac:ba:5a:1b:11:b4: a0:e1:2a:37:27:1b:ac:1c:29:0e:9e:b2:9c:c0:bf: 8c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:65:BE:12:A2:CC:DD:3E:20:D0:D3:A1:68:CA:95:F4:86:7E:02:74 X509v3 Authority Key Identifier: keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.206.0/23 Signature Algorithm: sha256WithRSAEncryption 89:0c:51:54:2a:5f:3c:10:50:fb:32:10:31:76:5d:41:7a:a0: 7a:20:c4:2e:a5:49:21:c8:72:59:18:95:7d:52:ca:1a:eb:22: ca:d9:34:13:58:f2:43:e9:0b:80:e0:19:4a:45:26:c1:87:9a: ce:34:18:6d:2b:2d:ec:17:65:ce:72:14:4a:32:c4:0c:b1:33: 0a:bc:5c:14:2c:a4:30:84:df:49:89:9a:a9:07:dc:5f:8d:a5: 9f:55:1f:a1:3d:56:90:79:e7:2c:8a:d3:ff:62:80:4b:eb:6d: d8:60:e5:b1:e2:49:b3:ed:3d:18:99:8e:98:71:68:6c:57:d4: 90:dd:8b:84:52:7c:cf:cf:b3:90:c0:4d:9d:7d:3d:2d:48:25: 31:d3:32:d3:f9:11:ed:b6:db:f0:f4:26:c9:0f:be:3b:96:07: f8:6b:bf:fb:2b:27:53:14:ab:08:f4:26:64:3c:dd:64:75:0e: 7f:54:d4:f0:8f:f5:88:52:13:87:32:3a:1e:d6:1e:09:d3:14: d4:5f:17:92:8a:46:57:1b:12:69:5d:41:61:c9:f6:34:1b:ce: 42:8a:73:a4:2a:47:c9:63:ee:89:b8:2d:97:36:e4:9d:a2:28: 39:d1:00:9e:65:6c:dc:1c:a6:f0:46:52:65:e9:8b:40:06:14: b7:8c:41:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWUIRCSHSLmBW9sri/IbNS6tLMzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4 MzFDNUZBODAeFw0yNDA4MTUwODU1MDFaFw0yNTA4MTQwOTAwMDFaMDMxMTAvBgNV BAMTKDVDNjVCRTEyQTJDQ0REM0UyMEQwRDNBMTY4Q0E5NUY0ODY3RTAyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRQBSPMf60CnBp8zXcgOmEUyvY mf+d9FNC1nIZ0U9/q2izO6Swep0uBmrcd7/4Zoxg4tlEwZ0S6HKIVOJ2yqMsQz8r V8iffgJeV+M+3rofHpcDRlMll48uEn07swlluoO7Ar9vKjoYe1iUeUEDtrlSQLbV 4wskFnr1YCZOZbrar2PRApEJtkndvQsNw+uhq/f6qCmksYycGxwu0xonQ1TOQCLq FaZal0ECsnCAsV7x6BzyrF2W89+nl13umjKnkuJuzqhSnvvJHoBfKxCMeZpIi3iF 3LtMQic4WzJk2xfZMSIhsZjPhkXt1Ky6WhsRtKDhKjcnG6wcKQ6espzAv4w/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXGW+EqLM3T4g0NOhaMqV9IZ+AnQwHwYDVR0j BBgwFoAUSmiLcqgEpCapCW7KYBBaTYMcX6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWE2YTY3ZC1jYmEzLTQyN2ItOTA1NS01ZjUyOGYyZDIzMmYvMC80QTY4OEI3MkE4 MDRBNDI2QTkwOTZFQ0E2MDEwNUE0RDgzMUM1RkE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4MzFD NUZBOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhYTZhNjdkLWNiYTMtNDI3Yi05 MDU1LTVmNTI4ZjJkMjMyZi8wLzMxMzAzMzJlMzEzNzM1MmUzMjMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr84wDQYJ KoZIhvcNAQELBQADggEBAIkMUVQqXzwQUPsyEDF2XUF6oHogxC6lSSHIclkYlX1S yhrrIsrZNBNY8kPpC4DgGUpFJsGHms40GG0rLewXZc5yFEoyxAyxMwq8XBQspDCE 30mJmqkH3F+NpZ9VH6E9VpB55yyK0/9igEvrbdhg5bHiSbPtPRiZjphxaGxX1JDd i4RSfM/Ps5DATZ19PS1IJTHTMtP5Ee222/D0JskPvjuWB/hrv/srJ1MUqwj0JmQ8 3WR1Dn9U1PCP9YhSE4cyOh7WHgnTFNRfF5KKRlcbEmldQWHJ9jQbzkKKc6QqR8lj 7om4LZc25J2iKDnRAJ5lbNwcpvBGUmXpi0AGFLeMQQk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org