$ rpki-client -vvf repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa File: 3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: s7ZRS2Zcu3hJueMyatfY5+9nMoD7nFYIofv5YO21v9A= Subject key identifier: 7B:75:F7:54:50:EF:7A:09:A4:06:F8:EA:45:9B:9D:8C:CB:F0:59:61 Certificate issuer: /CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Certificate serial: 1AA4886BF26E8FA9D857F3CBEA4332B887915BA6 Authority key identifier: E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa Signing time: Tue 22 Oct 2024 08:02:02 +0000 ROA not before: Tue 22 Oct 2024 07:57:02 +0000 ROA not after: Tue 21 Oct 2025 08:02:02 +0000 asID: 139952 IP address blocks: 103.178.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a4:88:6b:f2:6e:8f:a9:d8:57:f3:cb:ea:43:32:b8:87:91:5b:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1 Validity Not Before: Oct 22 07:57:02 2024 GMT Not After : Oct 21 08:02:02 2025 GMT Subject: CN=7B75F75450EF7A09A406F8EA459B9D8CCBF05961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:3d:98:e3:c7:b1:b3:6a:24:60:b9:d7:d9: d9:af:36:76:f9:20:24:b6:7c:4e:ee:69:ba:cb:a7: 93:a6:24:47:5d:60:a6:a2:81:55:4a:b9:42:8d:ce: a3:ca:a7:e5:59:1e:0f:3f:aa:ef:0a:3c:41:68:60: 03:3a:67:ed:7b:6c:2e:79:63:0c:75:66:57:fa:2b: 81:85:ee:bd:f0:3d:ac:a7:aa:5b:d3:5f:68:68:79: 70:39:51:02:84:e5:91:cd:c7:b2:09:9c:fd:80:31: 12:4c:e7:a5:a4:d0:b8:b0:21:77:7a:a1:ca:8f:82: 14:c8:63:4f:6c:7c:12:71:23:5b:9c:dc:50:20:f1: 29:6a:26:b9:ce:b2:f1:a4:36:15:8e:51:6b:70:21: b5:37:db:dc:52:56:90:77:f9:b8:eb:8d:68:1e:f7: 81:85:c9:f3:50:85:dd:65:8e:11:46:2d:65:04:45: 70:9f:0a:9f:26:4d:60:a1:c9:22:4f:be:08:59:00: 77:92:87:56:c2:6c:f0:ff:c2:24:78:07:65:1f:e3: 7f:11:6b:34:cb:8f:1f:6d:a7:33:43:12:67:b3:c9: df:f7:48:fd:1d:97:56:84:29:73:8e:5d:c1:5e:38: 71:fd:4d:06:a1:f3:52:dd:b4:9d:97:87:d9:a0:54: 82:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:75:F7:54:50:EF:7A:09:A4:06:F8:EA:45:9B:9D:8C:CB:F0:59:61 X509v3 Authority Key Identifier: keyid:E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.170.0/24 Signature Algorithm: sha256WithRSAEncryption 64:e4:0c:35:3a:71:7f:af:a4:aa:66:e6:01:96:d1:e9:a4:6e: 52:e1:9e:12:07:b2:86:67:20:5f:b8:0e:78:68:4f:08:ab:c0: cc:aa:ca:5b:fb:a6:bf:28:d0:f1:4a:66:4e:bc:72:6a:31:3a: 62:78:3d:c1:77:ac:4c:fc:b0:0f:63:05:75:17:10:80:1f:48: c0:60:8b:80:4c:c8:23:7a:c0:28:1b:35:d6:88:08:93:1f:de: 16:3f:24:58:f6:18:00:c6:e2:f8:d9:a7:dd:d8:42:e6:8c:de: 6e:cb:3c:b4:ce:07:80:8e:bc:57:45:0d:26:87:21:da:59:6c: a0:3f:3f:64:dd:2e:ce:51:c0:11:a0:35:48:be:3e:3a:1e:7c: ff:8e:0a:d3:e2:10:d3:c4:24:78:b2:27:da:81:58:c2:13:e5: 28:fa:fc:bf:86:00:5c:cf:8a:5c:6f:3e:95:7c:3c:16:4b:3a: 9a:60:a1:3d:53:0e:4f:a9:43:b0:35:ce:dc:46:7a:1a:bc:9f: 62:41:11:06:81:56:57:29:bf:d5:91:11:fe:d9:83:86:a9:66: 69:96:09:82:20:c8:f4:b0:5f:d1:e2:7e:86:3d:54:dd:49:20: 80:5e:3e:de:e6:c5:ee:a8:8b:1b:d5:b4:ff:fc:1e:4f:15:41: 22:40:18:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGqSIa/Juj6nYV/PL6kMyuIeRW6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBE MDIyNDZGMTAeFw0yNDEwMjIwNzU3MDJaFw0yNTEwMjEwODAyMDJaMDMxMTAvBgNV BAMTKDdCNzVGNzU0NTBFRjdBMDlBNDA2RjhFQTQ1OUI5RDhDQ0JGMDU5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuIT2Y48exs2okYLnX2dmvNnb5 ICS2fE7uabrLp5OmJEddYKaigVVKuUKNzqPKp+VZHg8/qu8KPEFoYAM6Z+17bC55 Ywx1Zlf6K4GF7r3wPaynqlvTX2hoeXA5UQKE5ZHNx7IJnP2AMRJM56Wk0LiwIXd6 ocqPghTIY09sfBJxI1uc3FAg8SlqJrnOsvGkNhWOUWtwIbU329xSVpB3+bjrjWge 94GFyfNQhd1ljhFGLWUERXCfCp8mTWChySJPvghZAHeSh1bCbPD/wiR4B2Uf438R azTLjx9tpzNDEmezyd/3SP0dl1aEKXOOXcFeOHH9TQah81LdtJ2Xh9mgVIKPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUe3X3VFDvegmkBvjqRZudjMvwWWEwHwYDVR0j BBgwFoAU4J0OHSY9vZFNDE4Mqn5eUNAiRvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzAxZmQ0NC04Y2Q2LTRkOWYtOWJkMS04MzY3YWQ5Y2Q5ZWEvMC9FMDlEMEUxRDI2 M0RCRDkxNEQwQzRFMENBQTdFNUU1MEQwMjI0NkYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTA5RDBFMUQyNjNEQkQ5MTREMEM0RTBDQUE3RTVFNTBEMDIy NDZGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMDFmZDQ0LThjZDYtNGQ5Zi05 YmQxLTgzNjdhZDljZDllYS8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsqowDQYJ KoZIhvcNAQELBQADggEBAGTkDDU6cX+vpKpm5gGW0emkblLhnhIHsoZnIF+4Dnho TwirwMyqylv7pr8o0PFKZk68cmoxOmJ4PcF3rEz8sA9jBXUXEIAfSMBgi4BMyCN6 wCgbNdaICJMf3hY/JFj2GADG4vjZp93YQuaM3m7LPLTOB4COvFdFDSaHIdpZbKA/ P2TdLs5RwBGgNUi+PjoefP+OCtPiENPEJHiyJ9qBWMIT5Sj6/L+GAFzPilxvPpV8 PBZLOppgoT1TDk+pQ7A1ztxGehq8n2JBEQaBVlcpv9WREf7Zg4apZmmWCYIgyPSw X9HifoY9VN1JIIBePt7mxe6oixvVtP/8Hk8VQSJAGJ4= -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org