$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa File: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (raw, json) Hash identifier: Ai97/AeZ67d5F3AYWobNbu9wLgxWIRH2a6eXmHZgojQ= Subject key identifier: 30:28:0D:43:C9:BD:2D:65:92:D9:1A:25:D4:83:CD:ED:1E:EE:39:27 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 1BA121D94EED968C3CEA1C0A616447829E0E445F Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa Signing time: Thu 25 Jul 2024 09:00:02 +0000 ROA not before: Thu 25 Jul 2024 08:55:02 +0000 ROA not after: Thu 24 Jul 2025 09:00:02 +0000 asID: 141674 IP address blocks: 103.177.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a1:21:d9:4e:ed:96:8c:3c:ea:1c:0a:61:64:47:82:9e:0e:44:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jul 25 08:55:02 2024 GMT Not After : Jul 24 09:00:02 2025 GMT Subject: CN=30280D43C9BD2D6592D91A25D483CDED1EEE3927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:8b:b5:72:d0:3b:78:00:fc:a3:5c:72:26: 77:68:cf:cd:79:ad:5b:37:ec:14:61:4a:9b:72:e7: 3d:fd:ae:a4:5b:0f:57:d5:d1:9b:b8:b9:35:bc:a1: 8a:29:af:ef:a0:f2:54:f1:6c:d3:ad:e6:5c:ac:f6: 0a:04:27:97:3d:1b:23:f0:2c:09:bf:03:15:24:46: 61:b5:b0:4d:e2:e7:dc:24:50:e2:24:70:85:86:d0: 37:da:83:31:b2:5b:1c:27:6d:d6:14:b1:6a:7d:e5: 83:4e:95:4b:8c:e8:ca:10:68:22:b2:1b:6b:76:ca: b3:40:52:39:cf:c2:60:63:dd:ca:23:f8:e1:76:53: 6a:ae:02:da:69:ba:2f:19:b4:08:8e:e6:a3:0d:cd: cb:8e:c4:0c:36:66:6e:14:74:08:52:50:f3:04:a9: 98:67:4e:34:7b:62:b5:29:54:31:03:ac:b1:88:49: 2c:ea:f8:d7:4f:72:30:77:3b:56:39:ef:e1:d3:ea: e9:d8:e5:81:58:ed:bc:1b:4e:90:c1:67:3d:10:58: 70:8a:ee:d6:76:55:9c:90:21:0a:fd:80:b7:2d:5d: 78:a9:4b:1e:07:76:41:e0:74:1f:23:d0:5a:22:f8: 1b:3e:04:93:d8:5d:03:45:c6:5a:a6:9f:f0:07:eb: 69:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:28:0D:43:C9:BD:2D:65:92:D9:1A:25:D4:83:CD:ED:1E:EE:39:27 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.106.0/24 Signature Algorithm: sha256WithRSAEncryption 36:74:ea:57:c4:48:a3:63:76:f9:56:92:a8:bb:98:5d:c2:27: 86:73:3d:3e:e6:c6:93:56:35:4b:74:44:22:60:63:93:79:4d: 06:77:5a:6b:94:a7:9d:78:72:f6:de:9c:cc:5d:cb:b7:56:f2: 12:94:eb:84:d8:d3:90:70:95:23:24:b7:e0:25:04:25:22:7a: 89:6c:73:f9:ad:c8:f6:84:9e:ec:1f:14:97:44:90:6a:a8:97: d6:e6:4e:cf:d5:6a:ee:c3:10:f8:3c:60:b4:98:5f:3b:69:8f: 32:05:2e:1a:7b:e9:58:fd:d6:a2:b8:39:47:27:7f:b1:11:d3: d2:90:e2:d9:9b:0a:5d:7b:46:43:5c:ef:8d:c9:bc:f2:16:46: 15:1d:da:10:6e:84:6e:21:69:c5:e5:3b:56:5e:8f:6f:dd:c9: d0:9c:58:1b:f6:30:8a:76:7b:37:f1:cb:91:dc:da:72:da:42: c3:56:56:15:76:ab:5a:2b:61:11:9b:da:66:bf:0b:67:1f:5f: cf:ac:43:1a:8d:80:4c:25:27:ac:61:52:91:4e:39:15:31:c5: 97:94:43:97:81:17:41:ff:7d:9b:11:3a:4a:c3:83:f2:45:c3: 9e:76:ec:d6:d8:48:b9:51:32:db:b2:c0:d3:89:5e:be:7d:bf: 30:88:aa:79 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG6Eh2U7tlow86hwKYWRHgp4ORF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNDA3MjUwODU1MDJaFw0yNTA3MjQwOTAwMDJaMDMxMTAvBgNV BAMTKDMwMjgwRDQzQzlCRDJENjU5MkQ5MUEyNUQ0ODNDREVEMUVFRTM5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9fou1ctA7eAD8o1xyJndoz815 rVs37BRhSpty5z39rqRbD1fV0Zu4uTW8oYopr++g8lTxbNOt5lys9goEJ5c9GyPw LAm/AxUkRmG1sE3i59wkUOIkcIWG0DfagzGyWxwnbdYUsWp95YNOlUuM6MoQaCKy G2t2yrNAUjnPwmBj3coj+OF2U2quAtppui8ZtAiO5qMNzcuOxAw2Zm4UdAhSUPME qZhnTjR7YrUpVDEDrLGISSzq+NdPcjB3O1Y57+HT6unY5YFY7bwbTpDBZz0QWHCK 7tZ2VZyQIQr9gLctXXipSx4HdkHgdB8j0Foi+Bs+BJPYXQNFxlqmn/AH62nvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMCgNQ8m9LWWS2Rol1IPN7R7uOScwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0Y2M2OWU5LWVmNzQtNGI4MS05 MWY0LTdiZmRmOTNmN2JhYS8wLzMxMzAzMzJlMzEzNzM3MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsWowDQYJ KoZIhvcNAQELBQADggEBADZ06lfESKNjdvlWkqi7mF3CJ4ZzPT7mxpNWNUt0RCJg Y5N5TQZ3WmuUp514cvbenMxdy7dW8hKU64TY05BwlSMkt+AlBCUieolsc/mtyPaE nuwfFJdEkGqol9bmTs/Vau7DEPg8YLSYXztpjzIFLhp76Vj91qK4OUcnf7ER09KQ 4tmbCl17RkNc743JvPIWRhUd2hBuhG4hacXlO1Zej2/dydCcWBv2MIp2ezfxy5Hc 2nLaQsNWVhV2q1orYRGb2ma/C2cfX8+sQxqNgEwlJ6xhUpFOORUxxZeUQ5eBF0H/ fZsROkrDg/JFw5527NbYSLlRMtuywNOJXr59vzCIqnk= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org