$ rpki-client -vvf repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa File: 3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa (raw, json) Hash identifier: t0mUR/zp3XH1m2fJiPnmnqzWHnodGZoiDzslttEx9xw= Subject key identifier: 51:70:E6:5C:FA:B0:55:DD:2F:FA:3A:D2:CC:59:5C:C0:4D:30:AA:52 Certificate issuer: /CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Certificate serial: 2DABADA79636773CB93CF365A480266DB65DCD5B Authority key identifier: E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa Signing time: Sat 20 Jan 2024 16:00:01 +0000 ROA not before: Sat 20 Jan 2024 15:55:01 +0000 ROA not after: Sat 18 Jan 2025 16:00:01 +0000 asID: 147086 IP address blocks: 103.172.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ab:ad:a7:96:36:77:3c:b9:3c:f3:65:a4:80:26:6d:b6:5d:cd:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Validity Not Before: Jan 20 15:55:01 2024 GMT Not After : Jan 18 16:00:01 2025 GMT Subject: CN=5170E65CFAB055DD2FFA3AD2CC595CC04D30AA52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:21:bb:7b:c1:a0:91:c7:2d:88:e2:de:e1:77: 46:39:09:b0:e9:d4:c8:c8:5e:8e:59:a5:af:61:ec: d6:6e:36:01:7b:53:71:75:16:42:01:43:57:b1:07: b9:85:22:1f:ba:9b:35:12:7f:dd:de:26:33:cc:e1: 6e:d5:a4:54:53:38:36:3d:f8:e8:7b:94:8e:5b:26: 0c:78:23:57:b8:8b:eb:a6:c5:ae:6f:5e:f1:01:d5: c7:40:8a:88:01:5c:47:3c:f8:02:e2:a3:4e:ca:4c: b5:c0:35:45:ed:33:4e:82:23:c5:da:f2:25:80:d4: a6:50:72:fe:49:e2:79:38:9e:7b:c9:22:bc:a0:d5: 9e:ee:9d:2a:25:19:c2:73:06:69:05:4b:20:12:05: 8d:12:9e:36:fd:a4:fb:ba:8c:8b:41:52:5c:cc:b5: 38:17:ee:96:c4:7d:60:62:03:d3:a8:59:7d:75:e3: 1c:f4:02:96:bf:27:41:70:76:a2:ff:03:3c:c6:2a: ca:89:19:e1:0c:54:57:6a:4d:9d:cd:e1:d1:0f:e2: a7:ac:88:19:fe:2b:45:58:a4:fe:e1:ca:97:08:ad: af:53:d7:b7:8d:7d:ac:61:80:14:2e:29:9a:e2:ad: fe:ea:05:34:0a:06:17:5d:8a:14:6b:7d:6b:fb:74: e1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:70:E6:5C:FA:B0:55:DD:2F:FA:3A:D2:CC:59:5C:C0:4D:30:AA:52 X509v3 Authority Key Identifier: keyid:E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.243.0/24 Signature Algorithm: sha256WithRSAEncryption b7:28:f5:a7:2f:11:63:2f:d6:22:0f:e9:92:47:86:56:59:95: 1a:71:5c:60:88:0c:cf:9e:ac:ec:69:c8:06:c3:d2:d4:96:8b: 11:3b:2c:03:4e:0e:a0:bb:4a:7d:43:ca:f9:b3:42:64:b0:4f: e8:51:f3:10:f7:21:fd:90:3c:49:50:83:67:b9:5b:f8:ab:34: b1:74:c2:0e:16:14:fc:62:a7:32:da:e4:6f:ea:27:99:5c:32: ef:cd:6e:23:ac:dc:51:49:fd:68:47:ec:62:e7:38:0c:ce:09: 83:d9:3f:b8:51:15:f2:1f:bb:07:55:31:75:bc:9c:c2:f2:bc: f1:21:1b:86:64:61:dd:ed:88:f4:ad:8e:fa:47:99:10:fa:43: b9:6a:06:e8:c0:19:e8:c6:22:67:46:8c:65:a4:9f:de:92:c3: a7:ac:37:e7:0d:6e:1d:27:a9:b6:b8:7b:26:fc:9b:12:22:c8: 81:f1:98:88:58:db:83:42:6d:94:60:4b:75:4a:02:c2:9e:26: 00:b2:94:19:a9:18:f6:ef:93:47:57:c4:e1:d8:95:12:43:94: 36:cb:96:d9:ce:f4:c7:3b:5d:1e:f6:c4:33:1b:4b:ba:65:92: d9:73:f9:d7:52:5f:33:2a:ad:19:0f:a4:e6:25:89:da:a2:d4: 16:59:ae:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULautp5Y2dzy5PPNlpIAmbbZdzVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNG QUY1NzU2RjAeFw0yNDAxMjAxNTU1MDFaFw0yNTAxMTgxNjAwMDFaMDMxMTAvBgNV BAMTKDUxNzBFNjVDRkFCMDU1REQyRkZBM0FEMkNDNTk1Q0MwNEQzMEFBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqIbt7waCRxy2I4t7hd0Y5CbDp 1MjIXo5Zpa9h7NZuNgF7U3F1FkIBQ1exB7mFIh+6mzUSf93eJjPM4W7VpFRTODY9 +Oh7lI5bJgx4I1e4i+umxa5vXvEB1cdAiogBXEc8+ALio07KTLXANUXtM06CI8Xa 8iWA1KZQcv5J4nk4nnvJIryg1Z7unSolGcJzBmkFSyASBY0Snjb9pPu6jItBUlzM tTgX7pbEfWBiA9OoWX114xz0Apa/J0FwdqL/AzzGKsqJGeEMVFdqTZ3N4dEP4qes iBn+K0VYpP7hypcIra9T17eNfaxhgBQuKZrirf7qBTQKBhddihRrfWv7dOGNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUXDmXPqwVd0v+jrSzFlcwE0wqlIwHwYDVR0j BBgwFoAU4q7sffiXqdbk8NHRxDEqA/r1dW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjZkOGY5Ny1jODA2LTQ3OTktODVlMC04Y2NmMThkYmJiMzEvMC9FMkFFRUM3REY4 OTdBOUQ2RTRGMEQxRDFDNDMxMkEwM0ZBRjU3NTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNGQUY1 NzU2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNmQ4Zjk3LWM4MDYtNDc5OS04 NWUwLThjY2YxOGRiYmIzMS8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPMwDQYJ KoZIhvcNAQELBQADggEBALco9acvEWMv1iIP6ZJHhlZZlRpxXGCIDM+erOxpyAbD 0tSWixE7LANODqC7Sn1DyvmzQmSwT+hR8xD3If2QPElQg2e5W/irNLF0wg4WFPxi pzLa5G/qJ5lcMu/NbiOs3FFJ/WhH7GLnOAzOCYPZP7hRFfIfuwdVMXW8nMLyvPEh G4ZkYd3tiPStjvpHmRD6Q7lqBujAGejGImdGjGWkn96Sw6esN+cNbh0nqba4eyb8 mxIiyIHxmIhY24NCbZRgS3VKAsKeJgCylBmpGPbvk0dXxOHYlRJDlDbLltnO9Mc7 XR72xDMbS7plktlz+ddSXzMqrRkPpOYlidqi1BZZrk8= -----END CERTIFICATE-----Generated at Mon Nov 25 10:49:15 2024 by rpki-client on console-fra.rpki-client.org