$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa File: 3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa (raw, json) Hash identifier: FuTP+olekR94POOQRMWB2DM9MZrHgp1r/imUNhheQk0= Subject key identifier: 0E:AD:86:84:25:F0:E1:E4:70:10:A7:F1:03:6F:B8:04:BE:AA:A8:4B Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 45C6D1B6DCFA72ADC7100A831F964C3DDA063E1A Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa Signing time: Tue 08 Oct 2024 06:00:01 +0000 ROA not before: Tue 08 Oct 2024 05:55:01 +0000 ROA not after: Tue 07 Oct 2025 06:00:01 +0000 asID: 134644 IP address blocks: 103.207.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c6:d1:b6:dc:fa:72:ad:c7:10:0a:83:1f:96:4c:3d:da:06:3e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Oct 8 05:55:01 2024 GMT Not After : Oct 7 06:00:01 2025 GMT Subject: CN=0EAD868425F0E1E47010A7F1036FB804BEAAA84B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a7:1a:95:2a:b0:a1:ff:f6:3c:b7:d1:cb:35: 0b:91:aa:a2:fe:9a:20:5b:9a:a7:70:1b:11:71:07: d7:6d:80:ea:fb:15:17:1f:de:93:5b:d1:c7:01:48: 2b:6d:c9:b9:5e:b9:0f:84:bd:f3:ff:e6:83:30:da: 3d:13:33:ef:3c:8a:52:43:6e:cc:b7:f4:55:ed:90: fa:a7:c5:49:88:b4:3a:d1:05:7f:88:34:90:9a:f5: d6:80:f4:56:27:7f:4b:07:ed:b7:f1:d4:8a:8b:d8: d8:6e:b6:f3:11:9b:95:db:63:87:fd:e2:9a:1f:b2: 06:1a:72:8f:93:08:9f:e3:b9:31:90:40:0e:69:be: 00:c8:f8:cb:a5:c2:44:00:f5:ac:6c:9a:c3:d9:54: b5:63:ab:89:b6:2b:f7:af:15:b9:da:c0:a6:ba:78: 7d:a5:e9:6d:f1:4f:9e:24:0e:1c:c8:27:55:fd:3e: 0d:dd:a8:ff:36:00:5e:19:68:ca:84:9f:03:f3:45: 25:ee:7c:5d:b7:44:e7:77:c4:04:82:94:31:9c:46: 1d:ad:1f:a1:0f:83:85:d0:15:61:b6:50:e5:0b:2f: 9b:ba:cc:4f:aa:82:3c:de:a7:8e:a0:bb:81:02:5a: bd:80:5b:14:26:f6:f5:91:22:e1:25:2a:ae:3e:2f: 28:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AD:86:84:25:F0:E1:E4:70:10:A7:F1:03:6F:B8:04:BE:AA:A8:4B X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.236.0/23 Signature Algorithm: sha256WithRSAEncryption 93:4e:e0:f2:47:e9:b8:be:41:3e:9c:6b:17:ff:7f:28:95:26: 69:90:0c:86:a3:a6:81:0a:77:5b:d8:a0:b1:be:bb:4f:96:f6: 13:ee:d9:ca:27:10:da:48:70:9a:e9:2d:fc:79:8a:b2:22:ef: 4e:dc:b2:17:66:fd:e1:69:d5:00:f2:1a:2f:0e:93:e8:28:84: 84:21:9f:8e:99:dc:2e:89:a8:e8:8e:38:a1:8d:e4:01:cf:4a: fa:32:bc:41:ec:9e:a2:8f:a5:84:a8:2a:d6:b9:6a:fd:07:f5: 9f:3d:c3:d6:97:2e:ca:5a:92:a5:5d:fe:27:86:a1:a4:28:37: 67:eb:2a:ea:4b:04:5c:24:4d:da:d5:9f:08:50:9f:65:cd:be: 06:4a:6b:59:60:9a:9d:4d:f5:cd:56:3e:8f:b7:b2:b3:67:1a: a4:f1:a8:cf:98:f8:74:cb:ca:85:51:3c:12:61:67:b4:41:5a: fa:99:22:93:89:c5:ef:f9:94:b4:88:d8:14:1a:8a:7a:ee:38: 5e:24:cb:a6:09:a9:84:8f:e9:04:90:a0:fa:ee:af:0d:55:8b: 0c:70:a5:d8:d4:f9:e7:9b:7d:53:19:d7:5b:95:a0:68:dc:46: ab:3b:6e:64:9e:77:a8:19:01:c8:20:50:f3:be:3a:51:69:be: e2:31:8f:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURcbRttz6cq3HEAqDH5ZMPdoGPhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNDEwMDgwNTU1MDFaFw0yNTEwMDcwNjAwMDFaMDMxMTAvBgNV BAMTKDBFQUQ4Njg0MjVGMEUxRTQ3MDEwQTdGMTAzNkZCODA0QkVBQUE4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbpxqVKrCh//Y8t9HLNQuRqqL+ miBbmqdwGxFxB9dtgOr7FRcf3pNb0ccBSCttybleuQ+EvfP/5oMw2j0TM+88ilJD bsy39FXtkPqnxUmItDrRBX+INJCa9daA9FYnf0sH7bfx1IqL2NhutvMRm5XbY4f9 4pofsgYaco+TCJ/juTGQQA5pvgDI+MulwkQA9axsmsPZVLVjq4m2K/evFbnawKa6 eH2l6W3xT54kDhzIJ1X9Pg3dqP82AF4ZaMqEnwPzRSXufF23ROd3xASClDGcRh2t H6EPg4XQFWG2UOULL5u6zE+qgjzep46gu4ECWr2AWxQm9vWRIuElKq4+LyjxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDq2GhCXw4eRwEKfxA2+4BL6qqEswHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnz+wwDQYJ KoZIhvcNAQELBQADggEBAJNO4PJH6bi+QT6caxf/fyiVJmmQDIajpoEKd1vYoLG+ u0+W9hPu2conENpIcJrpLfx5irIi707cshdm/eFp1QDyGi8Ok+gohIQhn46Z3C6J qOiOOKGN5AHPSvoyvEHsnqKPpYSoKta5av0H9Z89w9aXLspakqVd/ieGoaQoN2fr KupLBFwkTdrVnwhQn2XNvgZKa1lgmp1N9c1WPo+3srNnGqTxqM+Y+HTLyoVRPBJh Z7RBWvqZIpOJxe/5lLSI2BQainruOF4ky6YJqYSP6QSQoPrurw1ViwxwpdjU+eeb fVMZ11uVoGjcRqs7bmSed6gZAcggUPO+OlFpvuIxjyg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org