$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa File: 3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: gz67Kx7+sZjJmb0oO9yWkCJ9MsjPuGh0w6izfHnQwkA= Subject key identifier: C5:18:5B:7B:13:8C:1D:65:01:73:39:BE:A9:76:18:42:79:61:7F:9F Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 214D894E37D750EFC28DCB58E7A65370C94C5E0A Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa Signing time: Thu 14 Mar 2024 09:02:02 +0000 ROA not before: Thu 14 Mar 2024 08:57:02 +0000 ROA not after: Thu 13 Mar 2025 09:02:02 +0000 asID: 140470 IP address blocks: 103.159.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:4d:89:4e:37:d7:50:ef:c2:8d:cb:58:e7:a6:53:70:c9:4c:5e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Mar 14 08:57:02 2024 GMT Not After : Mar 13 09:02:02 2025 GMT Subject: CN=C5185B7B138C1D65017339BEA976184279617F9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:26:90:44:1f:6e:d6:75:f8:d5:ee:11:e6:2c: 2a:19:47:51:e2:56:21:ff:30:59:8e:b8:55:4b:aa: c7:12:a0:13:d0:10:a8:c3:e1:3c:74:c5:25:28:eb: 06:a4:7a:82:b7:9d:6d:57:9d:40:2f:22:16:fb:86: 90:f7:14:1d:0f:90:40:6b:b8:a3:03:30:7e:61:52: d8:41:f8:5b:f8:00:79:af:de:80:07:e0:79:59:2a: 3f:9b:de:a8:63:c7:31:da:ee:43:8a:07:d9:1f:02: 11:4f:3f:3c:2e:6d:66:47:3a:ba:df:ef:d4:30:b1: 50:98:93:e3:0d:b2:bf:ec:1e:cf:b6:1f:3f:4a:07: 89:87:77:34:6c:af:2c:bd:67:5e:4c:f0:08:49:e1: 78:6d:f6:b0:7e:1d:07:ac:80:5b:18:56:49:47:7f: 55:83:c5:2c:ce:1c:87:6e:a7:2b:f0:d5:29:50:d5: 65:0f:ef:8f:48:c0:72:ce:88:76:35:4e:f7:50:ce: f7:bd:63:b8:89:f9:26:3f:78:4c:dc:57:e5:e9:56: 16:05:40:b3:0a:9e:ce:6f:0e:cc:2c:0b:0f:87:66: f9:b2:c2:9d:6f:cf:b8:d5:f1:8a:27:ba:4a:e7:1e: d0:51:99:e8:94:c2:35:39:60:7d:5d:d8:bc:2e:c5: 0f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:18:5B:7B:13:8C:1D:65:01:73:39:BE:A9:76:18:42:79:61:7F:9F X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/24 Signature Algorithm: sha256WithRSAEncryption a7:52:f8:b3:0d:ca:03:c9:5b:93:81:f0:9d:ef:2a:b7:7f:e0: cd:36:40:83:98:65:3e:94:28:e1:04:f7:33:ed:e6:90:ad:bf: dd:82:0d:73:e7:3c:2b:31:a8:fe:ee:86:2f:98:f4:54:9a:8e: 84:cb:83:d8:62:88:5b:27:44:7b:fb:cb:65:6d:18:e1:1c:c8: a3:70:6a:e7:fd:2d:3a:e9:6a:21:7b:a3:8e:32:3b:c5:c5:25: 7e:27:ea:c0:6e:d4:5b:e4:33:0b:a2:a6:ce:86:37:e4:e7:2b: 13:ee:b5:89:8b:2b:05:93:71:8e:77:da:30:ab:67:ec:2e:46: d2:15:c8:e8:d5:67:f3:f3:f5:48:d0:aa:03:b9:6d:7e:f5:1c: c5:64:9e:cc:8c:09:e0:1d:8e:cb:d3:22:bd:2f:70:f6:6c:1d: 92:c4:ab:84:90:ca:cc:e0:5e:a3:c4:ab:be:49:23:da:c7:a4: 55:b2:8f:66:18:da:5e:b8:72:66:a6:0c:e6:5d:fa:e6:2b:3b: e9:e5:77:ea:9d:61:8e:a9:69:4c:b6:4e:56:a1:37:c6:8d:38: 67:d4:3d:df:77:fc:c3:2b:ba:23:5a:d7:10:09:3e:a3:ab:1e: 3b:89:a0:4c:e4:2c:59:9b:86:0e:af:1f:53:ed:ef:03:37:93: 20:87:30:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIU2JTjfXUO/CjctY56ZTcMlMXgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNDAzMTQwODU3MDJaFw0yNTAzMTMwOTAyMDJaMDMxMTAvBgNV BAMTKEM1MTg1QjdCMTM4QzFENjUwMTczMzlCRUE5NzYxODQyNzk2MTdGOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTJpBEH27WdfjV7hHmLCoZR1Hi ViH/MFmOuFVLqscSoBPQEKjD4Tx0xSUo6wakeoK3nW1XnUAvIhb7hpD3FB0PkEBr uKMDMH5hUthB+Fv4AHmv3oAH4HlZKj+b3qhjxzHa7kOKB9kfAhFPPzwubWZHOrrf 79QwsVCYk+MNsr/sHs+2Hz9KB4mHdzRsryy9Z15M8AhJ4Xht9rB+HQesgFsYVklH f1WDxSzOHIdupyvw1SlQ1WUP749IwHLOiHY1TvdQzve9Y7iJ+SY/eEzcV+XpVhYF QLMKns5vDswsCw+HZvmywp1vz7jV8YonukrnHtBRmeiUwjU5YH1d2LwuxQ81AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxRhbexOMHWUBczm+qXYYQnlhf58wHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn8QwDQYJ KoZIhvcNAQELBQADggEBAKdS+LMNygPJW5OB8J3vKrd/4M02QIOYZT6UKOEE9zPt 5pCtv92CDXPnPCsxqP7uhi+Y9FSajoTLg9hiiFsnRHv7y2VtGOEcyKNwauf9LTrp aiF7o44yO8XFJX4n6sBu1FvkMwuips6GN+TnKxPutYmLKwWTcY532jCrZ+wuRtIV yOjVZ/Pz9UjQqgO5bX71HMVknsyMCeAdjsvTIr0vcPZsHZLEq4SQyszgXqPEq75J I9rHpFWyj2YY2l64cmamDOZd+uYrO+nld+qdYY6paUy2TlahN8aNOGfUPd93/MMr uiNa1xAJPqOrHjuJoEzkLFmbhg6vH1Pt7wM3kyCHMAI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org