$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa File: 3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: jzy1GxSXpYLUufAgZH2zrSTmlNZd4F6Q4dTSAXnqmVA= Subject key identifier: D6:76:D8:8C:09:20:52:DE:8D:66:D2:3E:22:09:F8:52:0E:23:63:C7 Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 57B3E075133010168B46A44D8F8403C89B04C732 Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa Signing time: Thu 14 Mar 2024 09:02:02 +0000 ROA not before: Thu 14 Mar 2024 08:57:02 +0000 ROA not after: Thu 13 Mar 2025 09:02:02 +0000 asID: 140470 IP address blocks: 103.159.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b3:e0:75:13:30:10:16:8b:46:a4:4d:8f:84:03:c8:9b:04:c7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Mar 14 08:57:02 2024 GMT Not After : Mar 13 09:02:02 2025 GMT Subject: CN=D676D88C092052DE8D66D23E2209F8520E2363C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:ae:88:24:e7:76:b1:0a:ec:50:ca:d8:44: 23:4f:e1:8d:10:e6:f1:2a:74:72:86:0a:b2:14:0b: 4b:d1:4f:71:df:7a:f0:e5:df:2a:93:32:59:59:08: 66:5d:81:54:66:af:6f:77:8b:ab:3a:e3:50:65:43: e1:cf:c7:7f:a7:04:fe:f0:23:45:db:a2:9b:36:a8: d4:24:5c:58:ad:c2:f6:5d:a8:93:d5:3d:95:7a:3b: 53:24:57:f8:e4:88:c9:ee:c7:7d:5c:55:fa:55:59: ed:6c:e5:0a:88:48:dd:e9:da:51:eb:f2:2b:c0:78: 2f:5f:2a:b3:16:33:2b:62:ba:e0:12:1d:7e:77:0e: c8:28:94:39:6a:a2:f7:86:d2:b7:ca:a2:c8:2d:9a: 13:bf:9c:bc:4c:c3:bc:ce:52:87:ec:23:57:59:9f: 9f:bd:df:51:11:a8:61:e4:0f:fc:be:ca:6c:03:b5: 4d:ff:e5:7e:41:b8:2c:63:b4:fa:b8:54:89:11:2a: 08:04:8f:8f:3e:05:34:62:68:89:13:9f:fa:4d:31: 53:f5:61:d7:58:7a:2f:2f:c1:e5:44:d0:70:4e:7a: 52:73:c8:a7:af:07:1b:77:5c:ed:f1:35:7a:3e:9c: 01:69:d0:c3:e0:36:52:98:94:e9:65:d2:fb:05:57: 1d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:76:D8:8C:09:20:52:DE:8D:66:D2:3E:22:09:F8:52:0E:23:63:C7 X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.197.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:bd:ec:ab:20:eb:09:62:55:ec:cb:bf:8a:c4:8e:09:72:a8: 5b:29:48:5a:65:37:c5:f9:68:00:9c:39:e3:b6:76:d3:4e:1b: a8:10:d1:e7:38:01:80:03:b6:52:c1:7d:20:0f:a2:dd:2d:86: 3a:14:52:b7:94:49:a3:c1:2e:21:44:54:73:d1:69:38:c9:22: ba:24:48:28:e8:98:df:18:d5:52:8c:7b:54:f1:12:bf:7a:2b: 6c:a9:1e:2c:5e:21:9f:d8:f7:78:5b:d3:fd:db:8e:19:71:2f: 0b:26:22:70:a7:f9:4f:7a:db:ff:04:4f:ba:c7:46:88:54:ec: 2a:da:14:6a:af:49:c7:77:16:3d:24:06:59:11:32:65:1a:c9: ed:8b:a1:0f:b4:d9:f1:0a:df:8a:e3:f5:f9:b5:14:61:d6:79: b8:ab:ed:17:6d:0e:5c:26:7d:57:a2:43:17:87:21:9b:63:24: fb:76:21:53:72:e0:c6:ec:14:0e:21:84:2c:fb:4a:4b:82:29: 75:c8:00:c0:8b:6c:52:c1:8c:cf:10:75:74:bc:88:3a:84:fd: 46:74:6d:23:9e:bf:ce:ad:45:01:d3:06:b6:3b:96:6a:2b:ce: e7:ab:27:fe:1a:22:be:6d:92:a8:09:75:ee:f1:6c:3d:ee:0a: dd:4c:ab:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV7PgdRMwEBaLRqRNj4QDyJsExzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNDAzMTQwODU3MDJaFw0yNTAzMTMwOTAyMDJaMDMxMTAvBgNV BAMTKEQ2NzZEODhDMDkyMDUyREU4RDY2RDIzRTIyMDlGODUyMEUyMzYzQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Vq6IJOd2sQrsUMrYRCNP4Y0Q 5vEqdHKGCrIUC0vRT3HfevDl3yqTMllZCGZdgVRmr293i6s641BlQ+HPx3+nBP7w I0Xbops2qNQkXFitwvZdqJPVPZV6O1MkV/jkiMnux31cVfpVWe1s5QqISN3p2lHr 8ivAeC9fKrMWMytiuuASHX53DsgolDlqoveG0rfKosgtmhO/nLxMw7zOUofsI1dZ n5+931ERqGHkD/y+ymwDtU3/5X5BuCxjtPq4VIkRKggEj48+BTRiaIkTn/pNMVP1 YddYei8vweVE0HBOelJzyKevBxt3XO3xNXo+nAFp0MPgNlKYlOll0vsFVx2xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1nbYjAkgUt6NZtI+Ign4Ug4jY8cwHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn8UwDQYJ KoZIhvcNAQELBQADggEBABu97Ksg6wliVezLv4rEjglyqFspSFplN8X5aACcOeO2 dtNOG6gQ0ec4AYADtlLBfSAPot0thjoUUreUSaPBLiFEVHPRaTjJIrokSCjomN8Y 1VKMe1TxEr96K2ypHixeIZ/Y93hb0/3bjhlxLwsmInCn+U962/8ET7rHRohU7Cra FGqvScd3Fj0kBlkRMmUaye2LoQ+02fEK34rj9fm1FGHWebir7RdtDlwmfVeiQxeH IZtjJPt2IVNy4MbsFA4hhCz7SkuCKXXIAMCLbFLBjM8QdXS8iDqE/UZ0bSOev86t RQHTBrY7lmorzuerJ/4aIr5tkqgJde7xbD3uCt1Mq8E= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org