$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 7oq4FRLBUB7lLbbThElrgZXsIoSH7Cdmk1YFzVPU5qQ= Subject key identifier: 90:DB:FC:5F:22:07:78:94:A4:64:16:C1:99:0F:9E:3F:31:81:78:DE Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 74EBCAA62F3534DD1A80B11EEB4CD8A0E9A87224 Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa Signing time: Fri 29 Dec 2023 19:00:01 +0000 ROA not before: Fri 29 Dec 2023 18:55:01 +0000 ROA not after: Fri 27 Dec 2024 19:00:01 +0000 asID: 138096 IP address blocks: 103.207.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:eb:ca:a6:2f:35:34:dd:1a:80:b1:1e:eb:4c:d8:a0:e9:a8:72:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Dec 29 18:55:01 2023 GMT Not After : Dec 27 19:00:01 2024 GMT Subject: CN=90DBFC5F22077894A46416C1990F9E3F318178DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:70:f9:b0:31:10:b2:52:e7:58:89:c9:56:10: fd:36:bb:39:16:02:7a:37:19:3f:08:c5:00:d9:62: 82:bd:65:08:ef:95:1d:57:6d:1a:db:46:fa:61:b3: 47:ec:46:9b:ea:c8:c9:4b:64:88:ef:12:15:19:e7: e5:dc:28:d8:41:75:dd:96:8a:9a:fb:74:a3:32:29: 9e:f1:4e:e4:9d:1a:fb:3c:6e:60:0b:b0:77:53:58: bb:fb:5f:4e:d5:4c:d2:5e:f2:92:e2:20:65:b3:fd: 30:d1:10:19:29:12:24:f8:1a:a0:d6:c1:e7:e8:0e: f3:2c:7b:ac:96:d2:95:3f:22:4e:13:40:91:51:a4: 8a:6d:59:b0:98:11:4c:9b:56:0a:fb:8c:00:e8:bd: 5f:54:b2:b5:01:e7:0a:49:d1:ad:6e:3b:ec:ff:09: 4b:37:e7:9b:43:48:25:bd:54:05:ad:ff:7a:a6:d1: 5f:6c:1d:c9:39:0d:79:4b:f0:f9:39:e8:c6:90:68: 90:c7:08:15:30:c6:d1:af:49:69:28:12:c4:1a:04: 85:d2:1b:63:c8:b7:0c:ee:da:38:9e:a9:5d:11:6c: 94:fe:f6:29:25:fd:7c:ed:0f:4e:9c:10:6b:0a:ce: 96:1e:fc:02:64:f2:dd:78:c4:11:b2:db:c2:57:39: b7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DB:FC:5F:22:07:78:94:A4:64:16:C1:99:0F:9E:3F:31:81:78:DE X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.239.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:0f:4e:8b:da:d0:2a:b8:6d:b3:ae:32:0f:ba:ff:cc:31:9d: da:79:aa:8c:31:f6:58:70:b4:1b:04:04:11:a6:c6:c9:50:54: 3c:ad:0f:ec:1a:ec:7d:15:6f:52:d7:71:83:0e:57:93:52:d7: c8:3d:98:eb:00:1f:cc:4a:10:e5:9d:76:e8:b3:ac:e5:65:79: 13:3b:5a:6b:68:07:59:38:55:b0:8f:83:47:15:71:e1:ef:70: 04:6a:3c:f1:e9:fe:02:38:40:d0:4c:a1:c3:f2:af:d3:21:cb: 90:59:a8:a5:46:f4:6c:9c:9d:31:cb:1c:7b:0c:34:c7:05:b0: 17:27:16:c3:14:66:42:6d:c3:63:78:4b:db:e3:f8:13:0f:1d: f0:29:87:39:52:fc:c8:f3:a9:6b:34:02:ad:6a:c7:02:35:45: 11:4a:85:62:b2:b4:c6:8b:da:07:b9:e4:57:90:53:91:7b:ee: 28:04:a8:f8:53:06:04:9c:6f:89:51:7b:40:5d:2c:ea:b7:b0: 4b:9e:53:27:20:5e:9b:66:1b:1e:e2:f9:df:43:b4:7d:28:7e: 20:75:54:df:44:1a:5a:00:50:46:d4:5a:45:68:5a:a1:c7:2b: 6c:c6:8f:9c:cf:52:dd:39:c1:27:1d:94:8c:68:7d:c2:a3:0e: ca:42:43:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdOvKpi81NN0agLEe60zYoOmociQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yMzEyMjkxODU1MDFaFw0yNDEyMjcxOTAwMDFaMDMxMTAvBgNV BAMTKDkwREJGQzVGMjIwNzc4OTRBNDY0MTZDMTk5MEY5RTNGMzE4MTc4REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjcPmwMRCyUudYiclWEP02uzkW Ano3GT8IxQDZYoK9ZQjvlR1XbRrbRvphs0fsRpvqyMlLZIjvEhUZ5+XcKNhBdd2W ipr7dKMyKZ7xTuSdGvs8bmALsHdTWLv7X07VTNJe8pLiIGWz/TDREBkpEiT4GqDW wefoDvMse6yW0pU/Ik4TQJFRpIptWbCYEUybVgr7jADovV9UsrUB5wpJ0a1uO+z/ CUs355tDSCW9VAWt/3qm0V9sHck5DXlL8Pk56MaQaJDHCBUwxtGvSWkoEsQaBIXS G2PItwzu2jieqV0RbJT+9ikl/XztD06cEGsKzpYe/AJk8t14xBGy28JXObfZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkNv8XyIHeJSkZBbBmQ+ePzGBeN4wHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+8wDQYJ KoZIhvcNAQELBQADggEBAE0PTova0Cq4bbOuMg+6/8wxndp5qowx9lhwtBsEBBGm xslQVDytD+wa7H0Vb1LXcYMOV5NS18g9mOsAH8xKEOWdduizrOVleRM7WmtoB1k4 VbCPg0cVceHvcARqPPHp/gI4QNBMocPyr9Mhy5BZqKVG9GycnTHLHHsMNMcFsBcn FsMUZkJtw2N4S9vj+BMPHfAphzlS/MjzqWs0Aq1qxwI1RRFKhWKytMaL2ge55FeQ U5F77igEqPhTBgScb4lRe0BdLOq3sEueUycgXptmGx7i+d9DtH0ofiB1VN9EGloA UEbUWkVoWqHHK2zGj5zPUt05wScdlIxofcKjDspCQ2I= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org