$ rpki-client -vvf repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa File: 3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa (raw, json) Hash identifier: 5QR0rWF2IYw3MMT+ABenqub20374tAd3/MqhQ2MqKAw= Subject key identifier: 9E:62:AD:26:7C:51:2E:77:FC:86:24:DA:98:E3:DA:DA:D2:19:6E:A2 Certificate issuer: /CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Certificate serial: 10DF974030726834E25A8BB69523C186E8EC5867 Authority key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa Signing time: Sat 14 Sep 2024 10:00:01 +0000 ROA not before: Sat 14 Sep 2024 09:55:01 +0000 ROA not after: Sat 13 Sep 2025 10:00:01 +0000 asID: 147096 IP address blocks: 103.174.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:df:97:40:30:72:68:34:e2:5a:8b:b6:95:23:c1:86:e8:ec:58:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Validity Not Before: Sep 14 09:55:01 2024 GMT Not After : Sep 13 10:00:01 2025 GMT Subject: CN=9E62AD267C512E77FC8624DA98E3DADAD2196EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:73:bf:d0:e9:e7:e8:61:4d:8b:e5:b3:d8:03: f0:77:a0:70:c2:69:8b:f0:50:d5:62:b9:64:a2:a9: 49:43:6a:08:fa:b4:a7:1d:15:82:8c:4c:83:6a:de: cb:ae:11:9e:e6:61:5d:80:42:bf:2c:40:43:0f:f5: 22:9c:7e:7a:53:9d:81:29:92:18:56:e0:19:82:ac: 5d:34:7b:e6:91:55:c0:04:da:f2:3f:fa:1b:4d:19: 31:c3:88:d5:7c:97:c7:8a:9c:45:f5:9b:aa:7c:ab: b5:82:7a:18:48:3a:fe:98:57:86:e8:25:ae:3b:44: 49:c2:b8:b3:fc:bc:f8:93:25:e7:98:0d:1b:3d:b1: 25:65:fa:27:d5:95:1f:49:08:cc:f6:dc:3e:df:e8: d1:d8:5b:67:35:e5:3c:f4:27:77:5c:13:92:6b:ff: 9b:ad:f1:b7:3e:8d:6a:5e:83:a6:3a:eb:a4:5b:9e: 63:d0:e2:16:66:5e:67:bd:3d:ff:32:9e:5c:d0:cd: 6a:da:85:0f:40:60:fd:ba:23:9a:f5:a3:9d:a0:5a: 9a:2f:7e:0b:c6:ea:ab:24:3a:5a:4e:e6:4a:7e:65: 72:1c:09:0a:ab:ca:c3:dd:d6:59:c2:9e:2f:e0:db: 0e:a6:3f:7b:9a:8a:5e:6b:b8:89:0a:95:c5:cb:2d: 7b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:62:AD:26:7C:51:2E:77:FC:86:24:DA:98:E3:DA:DA:D2:19:6E:A2 X509v3 Authority Key Identifier: keyid:25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/3130332e3137342e3132332e302f32342d3234203d3e20313437303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.123.0/24 Signature Algorithm: sha256WithRSAEncryption 10:94:b9:cc:8d:37:93:ec:46:83:e0:f4:8f:53:42:8d:4d:e6: 2f:17:48:68:2a:99:c7:2a:0c:b8:6b:aa:71:49:58:22:a3:fc: 47:cc:da:e8:05:76:24:e9:68:bd:ae:da:ce:fe:0f:d2:1a:4d: bc:c7:9f:d5:b6:bf:11:8a:32:17:06:11:ae:b2:ea:bb:e1:4c: cd:be:2a:59:61:a3:2b:c9:61:c5:9f:53:f8:81:2f:47:08:c0: 40:4a:9d:0b:03:41:86:ed:36:93:b7:6d:09:81:97:f8:71:01: a1:fe:c8:32:7a:98:0e:63:97:19:67:1c:e0:29:fb:4e:71:92: c0:9a:f8:91:6d:ce:50:76:d1:b8:2d:28:72:f4:2c:69:47:0a: 0c:ee:2d:79:57:39:28:28:e5:fe:48:3d:60:fe:7e:94:4a:ab: 29:fe:d7:91:54:cb:17:b9:5a:64:a4:32:eb:3e:b7:99:b9:42: 90:f4:b4:3a:0b:30:39:8c:ce:3a:69:b2:fe:33:ad:80:f4:58: 03:eb:de:53:4b:f9:f2:23:9a:1c:68:6d:3b:f6:6b:d3:fe:92: b8:91:4f:7c:46:6e:50:71:2d:85:9c:97:92:b0:18:ce:1c:73: f1:a6:c3:e6:a4:8e:f8:d5:ae:09:75:8f:8f:c5:72:96:76:28: 24:69:9b:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEN+XQDByaDTiWou2lSPBhujsWGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDcz RUJCM0ZFMDAeFw0yNDA5MTQwOTU1MDFaFw0yNTA5MTMxMDAwMDFaMDMxMTAvBgNV BAMTKDlFNjJBRDI2N0M1MTJFNzdGQzg2MjREQTk4RTNEQURBRDIxOTZFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6c7/Q6efoYU2L5bPYA/B3oHDC aYvwUNViuWSiqUlDagj6tKcdFYKMTINq3suuEZ7mYV2AQr8sQEMP9SKcfnpTnYEp khhW4BmCrF00e+aRVcAE2vI/+htNGTHDiNV8l8eKnEX1m6p8q7WCehhIOv6YV4bo Ja47REnCuLP8vPiTJeeYDRs9sSVl+ifVlR9JCMz23D7f6NHYW2c15Tz0J3dcE5Jr /5ut8bc+jWpeg6Y666RbnmPQ4hZmXme9Pf8ynlzQzWrahQ9AYP26I5r1o52gWpov fgvG6qskOlpO5kp+ZXIcCQqrysPd1lnCni/g2w6mP3uail5ruIkKlcXLLXvlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnmKtJnxRLnf8hiTamOPa2tIZbqIwHwYDVR0j BBgwFoAUJfKD8+7DnVQd81lokEXSBz67P+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMC8yNUYyODNGM0VF QzM5RDU0MURGMzU5Njg5MDQ1RDIwNzNFQkIzRkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVGMjgzRjNFRUMzOUQ1NDFERjM1OTY4OTA0NUQyMDczRUJC M0ZFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdhLTA5NmItNGU5NS1h NjU2LWRhYmU5OGFjNmY2ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnswDQYJ KoZIhvcNAQELBQADggEBABCUucyNN5PsRoPg9I9TQo1N5i8XSGgqmccqDLhrqnFJ WCKj/EfM2ugFdiTpaL2u2s7+D9IaTbzHn9W2vxGKMhcGEa6y6rvhTM2+KllhoyvJ YcWfU/iBL0cIwEBKnQsDQYbtNpO3bQmBl/hxAaH+yDJ6mA5jlxlnHOAp+05xksCa +JFtzlB20bgtKHL0LGlHCgzuLXlXOSgo5f5IPWD+fpRKqyn+15FUyxe5WmSkMus+ t5m5QpD0tDoLMDmMzjppsv4zrYD0WAPr3lNL+fIjmhxobTv2a9P+kriRT3xGblBx LYWcl5KwGM4cc/Gmw+akjvjVrgl1j4/FcpZ2KCRpm5E= -----END CERTIFICATE-----Generated at Mon Nov 25 06:02:38 2024 by rpki-client on console-ams.rpki-client.org