$ rpki-client -vvf repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa (raw, json) Hash identifier: YPeNafffbCxEDeGWTOYrUeYYiluS0g8ccyYN1CwbY9k= Subject key identifier: A7:C4:E7:6F:07:AA:32:36:94:2C:C0:30:6E:71:BD:A4:10:17:73:13 Certificate issuer: /CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Certificate serial: 6F48D8AE191E09F097572787E5BE532316C8214C Authority key identifier: B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa Signing time: Mon 02 Sep 2024 19:00:00 +0000 ROA not before: Mon 02 Sep 2024 18:55:00 +0000 ROA not after: Mon 01 Sep 2025 19:00:00 +0000 asID: 142400 IP address blocks: 103.172.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:48:d8:ae:19:1e:09:f0:97:57:27:87:e5:be:53:23:16:c8:21:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Validity Not Before: Sep 2 18:55:00 2024 GMT Not After : Sep 1 19:00:00 2025 GMT Subject: CN=A7C4E76F07AA3236942CC0306E71BDA410177313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:60:f1:ab:51:11:bd:01:3c:cb:1c:9e:e9: 22:34:a9:b7:dc:ef:2a:01:9e:b8:9b:33:64:a8:bb: ae:2f:5c:1e:e3:07:32:80:05:24:89:13:01:64:c5: ce:83:13:74:cf:40:b4:71:ef:81:7c:dc:8f:10:85: 9b:63:ba:a2:d0:ec:e0:8c:c6:0c:d3:32:71:ac:f2: 37:03:79:33:8f:f8:50:95:c1:ff:53:49:33:53:0a: 30:a2:42:45:95:23:ca:4a:03:c7:fb:32:e8:3d:6e: 32:da:87:b0:1e:64:83:5b:3a:a7:83:8d:ad:64:16: c1:e1:02:16:41:4f:08:81:4a:95:0e:0e:17:88:45: 29:1f:7a:9d:fc:be:b2:cc:38:3f:73:35:a7:65:96: 5d:8d:20:09:ea:b0:b6:fe:43:a6:69:cf:f7:d6:9b: 23:10:1a:12:59:31:7c:85:88:16:9c:41:7d:b8:62: 52:22:91:4f:27:94:df:a8:ac:a3:ff:b2:a7:88:b5: d7:c9:79:51:dc:b5:a3:dc:d3:7f:77:06:67:94:0d: e4:93:1f:96:26:d5:2c:f8:19:a6:68:0a:23:3d:9d: db:12:32:a9:c0:94:e4:49:06:5d:23:f4:8e:ee:9c: ab:2a:c7:92:f5:4b:0e:b9:83:a4:c1:d0:b5:5f:54: 10:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C4:E7:6F:07:AA:32:36:94:2C:C0:30:6E:71:BD:A4:10:17:73:13 X509v3 Authority Key Identifier: keyid:B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/24 Signature Algorithm: sha256WithRSAEncryption 09:73:a1:69:82:ae:bb:f6:3c:d7:ab:1d:b3:21:cb:ce:2d:02: 76:44:f7:ac:0f:36:e5:fc:67:f3:82:ea:4e:01:35:27:54:ff: ab:55:5a:a9:b6:e7:be:3f:4f:71:fd:3d:0f:32:6a:d7:a1:dc: 4b:4b:1a:a3:fc:03:f7:a0:38:9d:0f:fe:eb:4a:c5:3d:a1:f4: 95:34:5a:87:d9:80:e7:c0:d6:85:8e:a1:57:3a:dc:2c:4f:80: 59:12:ec:fb:a7:57:4b:61:de:9d:53:49:d9:72:98:c5:3c:f3: 8e:43:3d:2c:17:b2:1a:e7:32:88:a1:38:62:1e:f5:ce:45:30: 85:91:62:6a:73:45:9a:d3:01:74:6e:83:4c:04:dd:d9:38:66: 5b:b1:3f:6b:6c:ae:94:24:b1:71:da:51:84:be:7c:de:40:c3: 68:99:30:15:36:f1:0e:92:c9:9a:6a:82:57:d2:8d:52:6c:bb: 44:94:ab:80:09:29:c0:67:d5:5f:23:dc:dc:34:bc:c2:b1:29: 22:7b:9c:cb:84:2a:24:84:ea:9f:08:89:9a:88:02:56:b3:05: dc:54:13:1b:71:d1:96:c5:c1:e2:d5:51:a0:54:75:d8:0d:08: c3:32:32:25:65:30:39:42:a7:f5:d9:c2:04:76:54:35:ad:d6: 2c:16:b0:1d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb0jYrhkeCfCXVyeH5b5TIxbIIUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4 NkU4M0QwMzAeFw0yNDA5MDIxODU1MDBaFw0yNTA5MDExOTAwMDBaMDMxMTAvBgNV BAMTKEE3QzRFNzZGMDdBQTMyMzY5NDJDQzAzMDZFNzFCREE0MTAxNzczMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuyWDxq1ERvQE8yxye6SI0qbfc 7yoBnribM2Sou64vXB7jBzKABSSJEwFkxc6DE3TPQLRx74F83I8QhZtjuqLQ7OCM xgzTMnGs8jcDeTOP+FCVwf9TSTNTCjCiQkWVI8pKA8f7Mug9bjLah7AeZINbOqeD ja1kFsHhAhZBTwiBSpUODheIRSkfep38vrLMOD9zNadlll2NIAnqsLb+Q6Zpz/fW myMQGhJZMXyFiBacQX24YlIikU8nlN+orKP/sqeItdfJeVHctaPc0393BmeUDeST H5Ym1Sz4GaZoCiM9ndsSMqnAlORJBl0j9I7unKsqx5L1Sw65g6TB0LVfVBBLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUp8TnbweqMjaULMAwbnG9pBAXcxMwHwYDVR0j BBgwFoAUtXh9ZI5w1g4OCVEOvxgJ1oboPQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmY1ZjA3Yy1mMDdiLTRhYWEtYTBjMi1kZjE3YzkxMGM1ODYvMC9CNTc4N0Q2NDhF NzBENjBFMEUwOTUxMEVCRjE4MDlENjg2RTgzRDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4NkU4 M0QwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrLowDQYJ KoZIhvcNAQELBQADggEBAAlzoWmCrrv2PNerHbMhy84tAnZE96wPNuX8Z/OC6k4B NSdU/6tVWqm2574/T3H9PQ8yateh3EtLGqP8A/egOJ0P/utKxT2h9JU0WofZgOfA 1oWOoVc63CxPgFkS7PunV0th3p1TSdlymMU8845DPSwXshrnMoihOGIe9c5FMIWR YmpzRZrTAXRug0wE3dk4ZluxP2tsrpQksXHaUYS+fN5Aw2iZMBU28Q6SyZpqglfS jVJsu0SUq4AJKcBn1V8j3Nw0vMKxKSJ7nMuEKiSE6p8IiZqIAlazBdxUExtx0ZbF weLVUaBUddgNCMMyMiVlMDlCp/XZwgR2VDWt1iwWsB0= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org