$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa File: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (raw, json) Hash identifier: vqKRXz1Z+D53aNx6JJbbcFdSy7WexJ3003sbBpFgitw= Subject key identifier: 6C:46:F4:F2:A4:F4:CE:E7:9E:40:E7:92:D0:FE:B8:6D:DA:EB:D7:D2 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 20EE16E66209FD6EB180948C0B95BA44FAD8471E Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa Signing time: Wed 17 Jul 2024 06:00:02 +0000 ROA not before: Wed 17 Jul 2024 05:55:02 +0000 ROA not after: Wed 16 Jul 2025 06:00:02 +0000 asID: 142396 IP address blocks: 103.172.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ee:16:e6:62:09:fd:6e:b1:80:94:8c:0b:95:ba:44:fa:d8:47:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Jul 17 05:55:02 2024 GMT Not After : Jul 16 06:00:02 2025 GMT Subject: CN=6C46F4F2A4F4CEE79E40E792D0FEB86DDAEBD7D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:f7:67:c5:06:ee:33:13:82:b5:a1:a1:c5: dc:47:4c:1b:27:bf:92:e8:c5:36:21:f3:b6:9c:38: 34:a1:ab:ae:85:ac:9d:ec:67:de:0c:f2:cf:67:c7: be:cc:d1:c2:2f:e4:2d:83:c5:fc:e2:ec:2e:6a:15: 15:28:74:80:16:c7:aa:6b:ff:c8:b2:be:a9:57:0b: a9:e6:0a:25:ce:37:e1:1c:80:84:eb:9c:82:3f:33: 30:8b:b5:8d:25:55:e9:7d:b0:d9:c5:33:4d:e3:1e: 25:fa:c2:ba:6f:19:c6:e7:90:ae:57:56:69:d4:68: d9:a4:78:3d:b3:be:d3:18:99:a8:17:49:13:a3:c4: 28:57:62:57:9f:30:15:1e:50:14:30:a2:8b:c8:cd: 4f:ba:93:79:da:dd:e7:86:33:7a:6f:81:12:58:84: ac:81:9a:b7:95:7f:33:e7:81:ff:5e:f2:32:bd:de: 12:39:a8:82:72:00:9b:4a:53:54:47:97:26:59:40: 56:c7:15:99:08:10:be:97:12:71:62:44:77:2b:bb: 64:48:e7:d9:85:77:4f:63:78:bc:76:12:97:ea:83: 45:48:fb:4f:64:36:3f:ee:aa:8a:51:63:8e:97:77: d1:9a:d2:08:26:97:4e:91:ca:f9:81:1d:b0:a5:e5: c0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:46:F4:F2:A4:F4:CE:E7:9E:40:E7:92:D0:FE:B8:6D:DA:EB:D7:D2 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.170.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ae:f7:6a:b6:93:82:d3:77:fe:66:b1:77:74:1a:f4:19:a2: 3d:9d:35:b5:3d:a3:06:38:a2:f2:05:8d:a8:ef:6d:b7:df:b1: 24:0f:f3:36:91:fd:81:38:84:72:e3:c9:da:68:4d:13:f2:49: 1c:9d:0d:66:6a:7c:2a:55:37:bc:53:0d:42:5d:31:d3:cc:47: ea:48:f4:b0:fd:1d:6a:16:e7:a9:a4:f4:c6:69:c1:65:26:ee: ba:02:ba:08:bf:0f:98:6a:4e:d0:3c:c6:ae:07:90:45:29:4d: 14:0f:f3:70:f8:d8:00:54:28:13:36:fc:80:33:e9:e0:00:33: 2a:c0:ff:58:70:31:8c:11:de:31:95:f7:79:db:4b:fa:ad:9c: 2e:6e:63:a3:e1:21:0e:ba:7f:e5:b9:7e:f4:ca:10:3e:3c:d7: af:ea:9b:d6:85:bd:7a:af:35:c7:ef:c7:cc:e7:d5:bf:e9:76: 6c:80:bc:53:40:3f:48:48:31:9f:68:74:70:7f:ac:03:ba:fa: 41:75:ac:0d:3c:30:5a:d6:8d:7d:bc:33:97:82:05:69:ca:b4: c6:b3:96:b4:8d:63:50:53:a2:20:1e:4d:b9:29:55:0b:f6:d3: 42:ff:87:3c:0a:f6:06:cc:ac:f3:59:d9:12:dd:52:70:72:c6: 76:4b:e4:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIO4W5mIJ/W6xgJSMC5W6RPrYRx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNDA3MTcwNTU1MDJaFw0yNTA3MTYwNjAwMDJaMDMxMTAvBgNV BAMTKDZDNDZGNEYyQTRGNENFRTc5RTQwRTc5MkQwRkVCODZEREFFQkQ3RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwBfdnxQbuMxOCtaGhxdxHTBsn v5LoxTYh87acODShq66FrJ3sZ94M8s9nx77M0cIv5C2Dxfzi7C5qFRUodIAWx6pr /8iyvqlXC6nmCiXON+EcgITrnII/MzCLtY0lVel9sNnFM03jHiX6wrpvGcbnkK5X VmnUaNmkeD2zvtMYmagXSROjxChXYlefMBUeUBQwoovIzU+6k3na3eeGM3pvgRJY hKyBmreVfzPngf9e8jK93hI5qIJyAJtKU1RHlyZZQFbHFZkIEL6XEnFiRHcru2RI 59mFd09jeLx2Epfqg0VI+09kNj/uqopRY46Xd9Ga0ggml06RyvmBHbCl5cCZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbEb08qT0zueeQOeS0P64bdrr19IwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKowDQYJ KoZIhvcNAQELBQADggEBACCu92q2k4LTd/5msXd0GvQZoj2dNbU9owY4ovIFjajv bbffsSQP8zaR/YE4hHLjydpoTRPySRydDWZqfCpVN7xTDUJdMdPMR+pI9LD9HWoW 56mk9MZpwWUm7roCugi/D5hqTtA8xq4HkEUpTRQP83D42ABUKBM2/IAz6eAAMyrA /1hwMYwR3jGV93nbS/qtnC5uY6PhIQ66f+W5fvTKED4816/qm9aFvXqvNcfvx8zn 1b/pdmyAvFNAP0hIMZ9odHB/rAO6+kF1rA08MFrWjX28M5eCBWnKtMazlrSNY1BT oiAeTbkpVQv200L/hzwK9gbMrPNZ2RLdUnByxnZL5Kk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org