$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: kQvwhxRIr0c9iOlMTcfmOkNMf8BdxcPNv83PJwJ+47k= Subject key identifier: 7D:C7:55:7E:C2:3E:7E:DC:B8:5A:AD:D7:48:17:C7:DC:90:A6:27:C4 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 241A3D475A8CA9B60C290702B0CA64DA8A3795C7 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa Signing time: Sat 20 Jul 2024 06:00:01 +0000 ROA not before: Sat 20 Jul 2024 05:55:01 +0000 ROA not after: Sat 19 Jul 2025 06:00:01 +0000 asID: 131111 IP address blocks: 103.174.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1a:3d:47:5a:8c:a9:b6:0c:29:07:02:b0:ca:64:da:8a:37:95:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Jul 20 05:55:01 2024 GMT Not After : Jul 19 06:00:01 2025 GMT Subject: CN=7DC7557EC23E7EDCB85AADD74817C7DC90A627C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b7:9b:b3:24:a8:17:bc:c0:bf:36:81:59:fe: b5:f5:39:4d:f9:ea:ad:0a:e9:09:be:e2:f5:10:a8: 5b:0a:0f:10:8f:75:2a:89:33:92:1e:6f:a9:18:cd: 71:55:b6:db:19:3c:cb:11:6b:b9:ba:ec:72:bb:5b: d6:3b:1f:16:bb:e3:cf:18:6b:b8:7e:e7:f6:4f:39: 6e:77:73:4a:7e:28:e6:fe:4b:6b:af:b6:e2:9b:3a: 09:9d:5f:db:9f:72:bb:ca:10:ff:9e:85:94:bd:d2: 56:91:2c:78:c5:d5:8c:c9:d9:f3:26:ee:8d:0c:8c: cb:65:76:45:e8:9a:64:16:6c:da:27:2f:52:e1:28: 3f:92:16:21:aa:95:d8:93:fb:f9:1c:80:c9:1c:4f: 55:fd:61:ea:58:1c:7a:36:a7:44:45:35:d6:85:f6: 14:97:6f:65:7f:37:bd:56:5d:ea:e9:d5:6c:47:28: ba:47:54:44:e9:4c:5d:23:db:ed:71:de:a0:e4:1c: 6f:69:65:bc:3d:54:02:9a:be:e9:f2:ee:c1:f9:3a: bf:1a:fe:2f:19:4d:a3:47:a6:d6:ae:58:33:92:f1: ae:09:12:f4:e0:84:fb:7f:21:97:96:f3:be:cb:cc: aa:81:f4:73:13:5f:22:47:37:4b:6d:d2:e6:96:10: e0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C7:55:7E:C2:3E:7E:DC:B8:5A:AD:D7:48:17:C7:DC:90:A6:27:C4 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.36.0/23 Signature Algorithm: sha256WithRSAEncryption ad:4c:ee:52:1f:8c:51:93:e6:b9:cb:6c:32:da:36:09:67:6c: 3a:51:76:85:2a:82:ee:b1:dd:3b:fd:91:ac:3c:00:e8:a0:2a: aa:49:70:7d:7a:59:89:ea:0f:73:64:7f:2c:1a:df:f7:de:3e: e1:69:c8:de:ea:dd:82:57:ce:f8:1c:2a:45:c2:6b:b3:d3:0b: a7:c5:29:32:10:61:90:31:67:86:9e:f6:60:fa:c1:c0:88:d9: 83:16:c2:60:e3:4e:5c:e5:f7:94:24:ae:cc:82:2b:9a:65:64: a4:f3:37:c2:23:04:43:3e:19:ea:eb:a4:b6:58:ff:12:d6:ff: 4d:e3:04:9a:8c:98:f9:d5:62:43:00:37:39:40:22:b2:3e:94: a9:f8:6d:57:7e:a9:ec:36:b9:50:0e:45:b2:6b:eb:72:fd:1c: eb:98:e3:6e:95:9f:64:08:49:35:86:96:a5:ed:2d:c2:52:3b: 2c:c3:8d:48:bc:5c:bf:01:d1:54:58:67:d8:a2:5a:07:74:25: 8e:04:57:3f:c6:d7:2c:15:ce:e6:55:aa:de:82:97:fe:90:b8: e5:52:58:b3:af:99:ae:b1:33:19:0e:6f:25:5c:94:f8:0a:53: 9a:8d:8c:23:b3:1f:5f:f9:98:4b:53:69:c3:79:60:a4:c7:3f: 2d:d2:05:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJBo9R1qMqbYMKQcCsMpk2oo3lccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNDA3MjAwNTU1MDFaFw0yNTA3MTkwNjAwMDFaMDMxMTAvBgNV BAMTKDdEQzc1NTdFQzIzRTdFRENCODVBQURENzQ4MTdDN0RDOTBBNjI3QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEt5uzJKgXvMC/NoFZ/rX1OU35 6q0K6Qm+4vUQqFsKDxCPdSqJM5Ieb6kYzXFVttsZPMsRa7m67HK7W9Y7Hxa7488Y a7h+5/ZPOW53c0p+KOb+S2uvtuKbOgmdX9ufcrvKEP+ehZS90laRLHjF1YzJ2fMm 7o0MjMtldkXommQWbNonL1LhKD+SFiGqldiT+/kcgMkcT1X9YepYHHo2p0RFNdaF 9hSXb2V/N71WXerp1WxHKLpHVETpTF0j2+1x3qDkHG9pZbw9VAKavuny7sH5Or8a /i8ZTaNHptauWDOS8a4JEvTghPt/IZeW877LzKqB9HMTXyJHN0tt0uaWEODjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfcdVfsI+fty4Wq3XSBfH3JCmJ8QwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0YTIzYzRlLTM5MzItNDNiZC04 MTc2LWY2MjUxZGRlYTg0Mi8wLzMxMzAzMzJlMzEzNzM0MmUzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64kMA0GCSqG SIb3DQEBCwUAA4IBAQCtTO5SH4xRk+a5y2wy2jYJZ2w6UXaFKoLusd07/ZGsPADo oCqqSXB9elmJ6g9zZH8sGt/33j7hacje6t2CV874HCpFwmuz0wunxSkyEGGQMWeG nvZg+sHAiNmDFsJg405c5feUJK7MgiuaZWSk8zfCIwRDPhnq66S2WP8S1v9N4wSa jJj51WJDADc5QCKyPpSp+G1XfqnsNrlQDkWya+ty/RzrmONulZ9kCEk1hpal7S3C Ujssw41IvFy/AdFUWGfYoloHdCWOBFc/xtcsFc7mVaregpf+kLjlUlizr5musTMZ Dm8lXJT4ClOajYwjsx9f+ZhLU2nDeWCkxz8t0gUL -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org