$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa File: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (raw, json) Hash identifier: kwL1JREwxH10sgLMYdlWUdKS0D8gYxJYzVh+9DEMKo4= Subject key identifier: 97:FA:B3:F5:A4:F5:0E:BE:D0:89:B0:1E:3D:65:9D:AF:DA:D4:47:BC Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 4EEADA08DF1BC5FC0E9BE218F4EAA928E69AFBC7 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa Signing time: Thu 25 Jul 2024 09:00:02 +0000 ROA not before: Thu 25 Jul 2024 08:55:02 +0000 ROA not after: Thu 24 Jul 2025 09:00:02 +0000 asID: 141674 IP address blocks: 103.177.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:da:08:df:1b:c5:fc:0e:9b:e2:18:f4:ea:a9:28:e6:9a:fb:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jul 25 08:55:02 2024 GMT Not After : Jul 24 09:00:02 2025 GMT Subject: CN=97FAB3F5A4F50EBED089B01E3D659DAFDAD447BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2e:fb:ff:73:18:72:f9:53:6f:e2:c8:a1:72: b0:53:fd:82:d4:53:15:15:a3:36:66:ed:9e:2d:4a: 83:a6:74:58:af:57:a6:e2:b8:0b:0c:d5:62:db:e4: db:c1:83:07:fc:9c:20:91:22:3f:3d:7a:a2:33:4b: 54:94:18:d9:2f:03:73:d9:f4:c7:6f:d0:82:7a:f6: 5f:da:e6:50:d3:af:87:40:a1:89:06:83:d7:b4:c4: 40:cd:99:76:c2:92:79:92:1b:91:0e:87:8e:62:e4: 4a:aa:b1:3e:dc:3b:1f:70:f5:07:59:6c:85:71:39: 36:99:a9:17:3f:dd:ab:cf:5a:5e:69:95:d1:0f:10: bc:46:24:04:84:e9:01:3a:73:b2:b6:5d:62:6a:6c: c1:0b:95:86:73:c7:73:2c:71:1d:17:08:2e:6d:dc: 32:e1:cc:9a:25:fe:47:1f:51:a8:21:cb:df:b3:d4: 2e:5f:bf:bd:7b:5c:11:9c:65:ae:33:87:cd:d1:78: d1:41:3d:70:1b:23:c4:27:f6:ce:81:e4:19:28:9d: bd:70:38:cf:73:b9:a9:fd:0a:35:b9:e4:d3:73:ab: 52:2d:68:ca:1e:4d:92:63:d5:87:b4:5c:67:f2:67: 39:ac:9b:69:2a:f8:37:cb:44:2a:83:07:ab:9c:00: e1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FA:B3:F5:A4:F5:0E:BE:D0:89:B0:1E:3D:65:9D:AF:DA:D4:47:BC X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.106.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:e2:30:a8:b0:d5:cd:a2:05:3e:9a:bf:bc:ab:d3:98:5a:a1: ba:3d:74:e0:e0:2e:e6:b3:8b:a8:54:33:ae:f1:4e:7f:4f:e4: b1:48:e4:87:a0:ca:2a:11:1b:04:b3:f7:3c:34:dc:1f:f7:c2: c5:9f:ae:7a:9d:c6:a1:7d:65:da:04:eb:8a:82:5b:de:6b:7f: 21:38:ed:0b:1d:20:b2:c6:0f:de:1b:6b:22:35:6e:de:8c:34: ef:21:6a:4a:9c:30:95:cb:bf:90:2e:37:f9:51:bd:93:67:9e: b6:06:e9:e3:95:41:54:83:ac:f1:0e:f6:be:e9:4e:a9:43:36: 70:d2:ed:ee:3b:5e:a3:35:b8:cd:c4:84:48:db:ec:09:a8:be: 22:74:67:5c:f4:8d:82:ef:9d:95:51:a3:a1:d3:ea:c8:48:4f: 81:d6:5b:24:50:8b:fd:c8:2b:d3:35:cc:69:e8:01:80:f7:f0: 14:8c:7b:10:15:66:68:7f:74:b8:73:ae:f1:e3:cc:e8:13:7f: d5:b7:94:c0:74:f6:02:6d:b1:15:3c:8c:93:c6:a4:4c:31:02: 38:a0:e4:79:38:99:8f:34:4a:e2:0b:f5:94:04:82:eb:c0:f7: 49:30:f8:53:9f:48:c5:b1:d2:d2:6c:6d:f4:2b:64:5c:87:5e: 02:00:6b:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTuraCN8bxfwOm+IY9OqpKOaa+8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNDA3MjUwODU1MDJaFw0yNTA3MjQwOTAwMDJaMDMxMTAvBgNV BAMTKDk3RkFCM0Y1QTRGNTBFQkVEMDg5QjAxRTNENjU5REFGREFENDQ3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaLvv/cxhy+VNv4sihcrBT/YLU UxUVozZm7Z4tSoOmdFivV6biuAsM1WLb5NvBgwf8nCCRIj89eqIzS1SUGNkvA3PZ 9Mdv0IJ69l/a5lDTr4dAoYkGg9e0xEDNmXbCknmSG5EOh45i5EqqsT7cOx9w9QdZ bIVxOTaZqRc/3avPWl5pldEPELxGJASE6QE6c7K2XWJqbMELlYZzx3MscR0XCC5t 3DLhzJol/kcfUaghy9+z1C5fv717XBGcZa4zh83ReNFBPXAbI8Qn9s6B5Bkonb1w OM9zuan9CjW55NNzq1ItaMoeTZJj1Ye0XGfyZzmsm2kq+DfLRCqDB6ucAOHFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl/qz9aT1Dr7QibAePWWdr9rUR7wwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0Y2M2OWU5LWVmNzQtNGI4MS05 MWY0LTdiZmRmOTNmN2JhYS8wLzMxMzAzMzJlMzEzNzM3MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsWowDQYJ KoZIhvcNAQELBQADggEBAEriMKiw1c2iBT6av7yr05haobo9dODgLuazi6hUM67x Tn9P5LFI5IegyioRGwSz9zw03B/3wsWfrnqdxqF9ZdoE64qCW95rfyE47QsdILLG D94bayI1bt6MNO8hakqcMJXLv5AuN/lRvZNnnrYG6eOVQVSDrPEO9r7pTqlDNnDS 7e47XqM1uM3EhEjb7AmoviJ0Z1z0jYLvnZVRo6HT6shIT4HWWyRQi/3IK9M1zGno AYD38BSMexAVZmh/dLhzrvHjzOgTf9W3lMB09gJtsRU8jJPGpEwxAjig5Hk4mY80 SuIL9ZQEguvA90kw+FOfSMWx0tJsbfQrZFyHXgIAayo= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org