$ rpki-client -vvf repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa File: 3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa (raw, json) Hash identifier: uxFDN486bX8Jo5b4g3bjbfrWmmksPEMYWLqjJXd74OQ= Subject key identifier: 8D:B3:A7:74:8B:EF:0F:2A:A9:17:40:2E:1D:E2:14:A7:1D:20:F6:9C Certificate issuer: /CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Certificate serial: 3A4D85C69CB133E9720EB08D03F58D3AA4A1086A Authority key identifier: 7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa Signing time: Tue 23 Apr 2024 10:00:00 +0000 ROA not before: Tue 23 Apr 2024 09:55:00 +0000 ROA not after: Tue 22 Apr 2025 10:00:00 +0000 asID: 142386 IP address blocks: 103.172.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4d:85:c6:9c:b1:33:e9:72:0e:b0:8d:03:f5:8d:3a:a4:a1:08:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Validity Not Before: Apr 23 09:55:00 2024 GMT Not After : Apr 22 10:00:00 2025 GMT Subject: CN=8DB3A7748BEF0F2AA917402E1DE214A71D20F69C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:21:e5:5d:af:36:2e:01:80:16:02:5f:2e:32: 91:b7:6d:6b:c1:f1:44:58:b5:30:e2:9d:70:3d:ac: 5b:79:db:55:0c:70:72:d0:c5:ea:97:e6:88:86:bd: ec:6b:51:68:4e:c4:3c:60:2d:f9:c7:ad:6a:ca:3f: bf:ae:a4:5c:ec:b7:4e:c5:f8:b4:fb:03:65:40:ab: 3f:60:68:86:b8:01:d9:7a:6d:d9:7e:d7:5d:ff:be: 87:08:88:f1:24:80:51:fa:b4:98:95:5c:d3:94:e3: 4a:b7:85:6c:8a:34:87:d1:1b:3e:ed:36:f8:a1:a6: f8:c2:73:b3:4a:e0:44:0e:80:e2:89:09:c7:46:a6: 03:75:d1:1b:10:20:b8:15:9d:7e:6d:25:6c:8c:a3: 49:43:85:d2:1d:80:95:df:5c:88:5a:3e:62:d1:12: b5:41:34:bf:92:43:9c:19:d6:5d:f6:c5:fb:53:8c: 29:81:8c:9d:11:e6:34:d5:61:e5:24:71:88:b6:4a: 99:11:f6:88:73:fd:db:4a:6c:5e:18:55:3f:c5:fa: 56:3d:dc:f1:ba:66:ff:4f:c1:76:ef:c9:6e:ce:5d: 1b:60:4c:79:c9:78:f4:24:89:bb:2b:ea:27:52:f0: 5e:ad:d1:b5:8c:b6:21:32:4f:9b:f9:be:59:9d:15: 81:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B3:A7:74:8B:EF:0F:2A:A9:17:40:2E:1D:E2:14:A7:1D:20:F6:9C X509v3 Authority Key Identifier: keyid:7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.70.0/23 Signature Algorithm: sha256WithRSAEncryption b8:14:c2:5d:9a:41:52:64:4d:e6:41:d1:2c:f6:86:2d:2f:d5: 81:9c:a4:de:38:19:de:37:cf:69:d3:0c:c2:e7:d5:fd:96:d7: 79:8b:bf:a7:c4:7f:5b:fb:6c:af:2c:e2:3c:6f:1d:e2:1f:43: 52:1d:26:da:d9:94:b6:97:37:25:7c:c3:3d:3c:1e:14:b3:e8: ce:c6:b3:0e:f1:c6:71:49:e6:3a:07:c9:b8:47:ac:c3:31:9e: 32:b0:0f:37:43:99:d4:04:00:e9:09:ac:80:9a:a9:bd:ff:f0: a3:a7:ce:bc:27:93:21:8c:4f:a3:bc:0d:89:97:68:83:d6:54: f0:da:c4:57:66:70:73:ab:69:0e:86:a2:37:71:c8:e4:18:db: 68:71:01:75:ec:91:64:c9:54:f2:1c:26:f7:ba:f0:a5:41:61: 09:0c:72:3c:2b:5c:98:bd:7f:2d:55:84:29:84:0d:9f:fa:44: 53:6e:e6:88:92:31:8e:ee:8c:da:26:84:2a:f0:86:0e:82:a4: c2:66:f5:cc:c5:e4:a1:09:90:5a:4b:7a:92:45:34:32:e6:f7: 68:45:69:f8:b3:f0:88:2b:25:82:2d:74:6d:87:b5:2a:ec:ff: 97:fb:b1:b3:19:1a:fe:b4:3e:2e:95:ec:13:19:03:1b:3d:4b: 0d:f3:d5:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOk2FxpyxM+lyDrCNA/WNOqShCGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQy NzY5RURGMTAeFw0yNDA0MjMwOTU1MDBaFw0yNTA0MjIxMDAwMDBaMDMxMTAvBgNV BAMTKDhEQjNBNzc0OEJFRjBGMkFBOTE3NDAyRTFERTIxNEE3MUQyMEY2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+IeVdrzYuAYAWAl8uMpG3bWvB 8URYtTDinXA9rFt521UMcHLQxeqX5oiGvexrUWhOxDxgLfnHrWrKP7+upFzst07F +LT7A2VAqz9gaIa4Adl6bdl+113/vocIiPEkgFH6tJiVXNOU40q3hWyKNIfRGz7t NvihpvjCc7NK4EQOgOKJCcdGpgN10RsQILgVnX5tJWyMo0lDhdIdgJXfXIhaPmLR ErVBNL+SQ5wZ1l32xftTjCmBjJ0R5jTVYeUkcYi2SpkR9ohz/dtKbF4YVT/F+lY9 3PG6Zv9PwXbvyW7OXRtgTHnJePQkibsr6idS8F6t0bWMtiEyT5v5vlmdFYElAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjbOndIvvDyqpF0AuHeIUpx0g9pwwHwYDVR0j BBgwFoAUfkbC7lCCNU8UlN5q6mzaZCdp7fEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGZmMDIyYS05YjE2LTRiNGMtOThhMi01MzQ5OTRmNTg5ZDAvMC83RTQ2QzJFRTUw ODIzNTRGMTQ5NERFNkFFQTZDREE2NDI3NjlFREYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQyNzY5 RURGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwZmYwMjJhLTliMTYtNGI0Yy05 OGEyLTUzNDk5NGY1ODlkMC8wLzMxMzAzMzJlMzEzNzMyMmUzNzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6xGMA0GCSqG SIb3DQEBCwUAA4IBAQC4FMJdmkFSZE3mQdEs9oYtL9WBnKTeOBneN89p0wzC59X9 ltd5i7+nxH9b+2yvLOI8bx3iH0NSHSba2ZS2lzclfMM9PB4Us+jOxrMO8cZxSeY6 B8m4R6zDMZ4ysA83Q5nUBADpCayAmqm9//Cjp868J5MhjE+jvA2Jl2iD1lTw2sRX ZnBzq2kOhqI3ccjkGNtocQF17JFkyVTyHCb3uvClQWEJDHI8K1yYvX8tVYQphA2f +kRTbuaIkjGO7ozaJoQq8IYOgqTCZvXMxeShCZBaS3qSRTQy5vdoRWn4s/CIKyWC LXRth7Uq7P+X+7GzGRr+tD4ulewTGQMbPUsN89XH -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:31 2024 by rpki-client on console-fra.rpki-client.org