$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa File: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (raw, json) Hash identifier: mLpG+Ebaxu7VmgybbNggsrQpRLSxQf3knk2BCycnQVs= Subject key identifier: 55:9E:3B:4E:20:69:54:0E:70:AA:C1:F9:5A:48:A7:45:F1:69:4C:B1 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 07BDBE5EF94169C37A20FEFE16427FFB1BED2780 Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa Signing time: Wed 17 Jul 2024 06:00:02 +0000 ROA not before: Wed 17 Jul 2024 05:55:02 +0000 ROA not after: Wed 16 Jul 2025 06:00:02 +0000 asID: 142396 IP address blocks: 103.172.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bd:be:5e:f9:41:69:c3:7a:20:fe:fe:16:42:7f:fb:1b:ed:27:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Jul 17 05:55:02 2024 GMT Not After : Jul 16 06:00:02 2025 GMT Subject: CN=559E3B4E2069540E70AAC1F95A48A745F1694CB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ce:d8:f8:91:62:0c:83:5d:d3:8b:60:32:d4: a0:6b:f3:c4:6d:84:23:15:b2:38:df:e6:45:72:eb: 82:69:18:33:44:b0:05:ee:e8:a2:a4:28:c2:4b:9f: 51:da:ba:20:23:a8:a7:85:0a:18:97:23:32:e0:3d: c9:10:df:c0:26:d0:f4:a3:6f:a9:1b:d5:34:ef:51: c0:81:e7:4a:38:b5:84:4b:e4:4a:a3:5e:6d:21:28: 09:13:90:f0:ec:0c:62:5a:99:65:5a:94:3f:d2:cb: ee:77:36:74:f0:1d:e1:12:be:51:f7:73:df:19:90: f3:5b:46:21:f3:cf:2a:92:7a:09:e4:fb:95:1f:18: 3b:5c:b7:84:a6:c8:33:b7:be:03:9d:ef:f4:ac:a6: 93:20:a4:33:4d:23:13:1d:5d:9d:0b:94:de:02:28: 54:3e:21:67:d6:5c:b5:f2:4d:8e:7a:88:0c:6d:6d: ce:24:9d:82:17:9b:e5:1c:eb:2d:49:ae:1a:db:78: ac:99:39:0b:31:fa:81:17:a3:1c:e4:58:87:1b:27: 61:ad:84:21:e3:c1:68:a4:6c:13:62:31:25:31:e5: 9b:21:08:d1:a3:19:d0:e1:94:83:72:aa:13:1e:61: 18:95:71:b3:29:7d:0d:f9:86:8d:b6:9c:fd:e5:a1: 58:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:9E:3B:4E:20:69:54:0E:70:AA:C1:F9:5A:48:A7:45:F1:69:4C:B1 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.171.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:e7:3d:2c:a8:93:7e:83:eb:2e:f1:fe:dc:d5:e1:ce:f3:0f: 96:a6:7a:04:0d:d5:0d:6a:10:d7:d7:70:fc:eb:0d:0c:b3:dd: 4d:b0:a3:f9:9b:bf:31:ba:4e:34:3b:23:13:e4:2a:df:2d:a6: 56:41:ac:61:c3:b8:d5:21:3f:bb:b4:f5:cf:75:ca:44:44:ac: c0:5f:c2:f4:7c:63:17:93:dd:b3:1a:57:c6:fc:ed:9f:53:36: 1f:55:e6:e4:39:39:ef:3b:f8:b9:eb:48:e6:7c:b7:b1:30:62: 08:1f:fc:d5:dc:61:b7:33:20:c2:45:cb:e8:22:a7:47:d3:ac: 5b:71:d4:39:bb:09:57:66:d0:7f:5e:ef:a3:bf:84:d2:a5:d7: 67:86:f3:f9:6d:f8:c8:79:c3:12:70:3c:3a:44:85:03:6d:4d: 74:b1:dc:66:e6:43:1c:a3:9e:75:b6:2d:30:a8:a2:3b:a7:a0: d8:ab:76:c2:16:b7:0c:56:dd:de:ad:52:be:47:d3:b2:ee:9e: b8:53:c3:07:79:63:11:69:21:88:59:f9:d3:c9:72:c5:3c:07: 15:00:90:8c:c6:1c:bc:63:1a:77:c3:8f:55:01:ca:4c:e7:8c: 7a:8f:49:84:00:5c:43:7b:e5:3c:7b:fc:3b:f0:3c:b7:d0:03: ad:cc:1d:14 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB72+XvlBacN6IP7+FkJ/+xvtJ4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNDA3MTcwNTU1MDJaFw0yNTA3MTYwNjAwMDJaMDMxMTAvBgNV BAMTKDU1OUUzQjRFMjA2OTU0MEU3MEFBQzFGOTVBNDhBNzQ1RjE2OTRDQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXztj4kWIMg13Ti2Ay1KBr88Rt hCMVsjjf5kVy64JpGDNEsAXu6KKkKMJLn1HauiAjqKeFChiXIzLgPckQ38Am0PSj b6kb1TTvUcCB50o4tYRL5EqjXm0hKAkTkPDsDGJamWValD/Sy+53NnTwHeESvlH3 c98ZkPNbRiHzzyqSegnk+5UfGDtct4SmyDO3vgOd7/SsppMgpDNNIxMdXZ0LlN4C KFQ+IWfWXLXyTY56iAxtbc4knYIXm+Uc6y1JrhrbeKyZOQsx+oEXoxzkWIcbJ2Gt hCHjwWikbBNiMSUx5ZshCNGjGdDhlINyqhMeYRiVcbMpfQ35ho22nP3loVgrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVZ47TiBpVA5wqsH5WkinRfFpTLEwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2YzliLWQ4ZmMtNGQ4Yy04 MGNiLWZkMjI0MTIwOGRkZS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrKswDQYJ KoZIhvcNAQELBQADggEBAHznPSyok36D6y7x/tzV4c7zD5amegQN1Q1qENfXcPzr DQyz3U2wo/mbvzG6TjQ7IxPkKt8tplZBrGHDuNUhP7u09c91ykRErMBfwvR8YxeT 3bMaV8b87Z9TNh9V5uQ5Oe87+LnrSOZ8t7EwYggf/NXcYbczIMJFy+gip0fTrFtx 1Dm7CVdm0H9e76O/hNKl12eG8/lt+Mh5wxJwPDpEhQNtTXSx3GbmQxyjnnW2LTCo ojunoNirdsIWtwxW3d6tUr5H07LunrhTwwd5YxFpIYhZ+dPJcsU8BxUAkIzGHLxj GnfDj1UBykznjHqPSYQAXEN75Tx7/DvwPLfQA63MHRQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org