$ rpki-client -vvf repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa File: 3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa (raw, json) Hash identifier: P6Kzn4pOEzNhrUR3a5sdPJma1YzP/lWto4PE+883uzI= Subject key identifier: AD:07:24:0E:3F:71:E1:02:91:8D:EA:1C:97:BD:F3:6A:B2:25:92:CA Certificate issuer: /CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Certificate serial: 570CEAD7683B0290F026A4E98E3F12DE47AB0E83 Authority key identifier: 7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa Signing time: Sat 29 Jun 2024 13:00:01 +0000 ROA not before: Sat 29 Jun 2024 12:55:01 +0000 ROA not after: Sat 28 Jun 2025 13:00:01 +0000 asID: 142401 IP address blocks: 103.172.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:0c:ea:d7:68:3b:02:90:f0:26:a4:e9:8e:3f:12:de:47:ab:0e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Validity Not Before: Jun 29 12:55:01 2024 GMT Not After : Jun 28 13:00:01 2025 GMT Subject: CN=AD07240E3F71E102918DEA1C97BDF36AB22592CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8d:78:a9:8a:f7:2b:b9:df:65:2a:d6:aa:63: 33:28:28:a6:3f:b3:0a:cc:0e:11:cd:4e:54:30:4d: a4:1c:e8:f9:31:a1:38:75:32:b1:f3:f7:50:7a:b8: 8e:49:d7:ef:83:3b:c5:d8:53:55:8f:3f:7e:ec:d3: fb:d5:f9:dc:38:8c:98:82:62:2f:6f:32:2a:40:af: 3c:9a:eb:df:69:2f:50:86:1c:2f:b0:95:ab:e9:db: 45:52:41:be:7b:f9:af:fd:54:c1:33:36:c8:cb:ae: 71:fc:09:20:84:56:b1:97:4d:e4:d6:74:aa:f4:09: 0b:be:7e:5b:8c:65:3e:3b:5f:78:9a:56:e4:38:47: f4:a8:ff:e7:c0:fc:2f:c7:ce:c8:f6:9d:ee:b8:f7: 77:f9:03:1d:78:0f:69:3c:f1:b1:1b:f8:23:ef:49: c5:ed:6e:f6:9d:63:d7:e9:62:15:35:d2:bb:55:86: e1:b1:80:d6:67:e0:f5:a6:ed:eb:ef:26:34:e4:ce: 3a:af:fe:2c:a5:b1:43:b7:7c:d1:37:4c:b5:41:27: 99:1b:0d:c5:29:f7:87:1d:e4:68:72:a2:da:a1:04: ee:15:1c:84:8a:70:df:d8:75:96:f5:6c:eb:22:b7: 0e:30:8a:a3:37:12:d9:ca:33:15:fc:f1:c4:59:69: 97:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:07:24:0E:3F:71:E1:02:91:8D:EA:1C:97:BD:F3:6A:B2:25:92:CA X509v3 Authority Key Identifier: keyid:7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32332d3233203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.240.0/23 Signature Algorithm: sha256WithRSAEncryption 97:8f:0f:8a:08:24:ae:95:2b:c7:85:67:22:c5:56:b1:64:df: e4:2f:12:13:94:c1:c2:87:fa:3c:b7:02:28:b8:64:0f:90:34: 64:60:bf:7c:55:ca:3e:22:51:03:6e:c3:21:c6:2e:e4:8a:ac: e9:05:87:58:72:63:2d:84:e0:ee:cb:cf:69:73:fb:db:38:5b: c1:21:b6:88:1a:28:6a:f6:2b:bb:e1:3a:21:7c:51:37:a9:b6: 07:45:fe:f0:21:2b:19:11:16:71:b1:b8:32:62:a4:55:2b:64: e6:d2:04:72:de:78:da:4c:17:b3:5a:26:fd:12:5d:a8:34:91: fb:12:ef:56:97:3d:1d:77:4e:e0:f4:89:01:9a:75:01:94:8d: e6:88:f8:c9:3e:84:76:a5:23:e6:d6:6d:10:a9:3c:bf:e1:25: 0b:ca:81:8b:8f:40:af:ad:5d:20:04:00:76:78:f7:63:ee:35: c5:0b:b9:16:f7:1b:5b:ad:23:fa:ad:4d:28:79:1f:9b:bd:da: 52:24:0f:27:26:37:d1:a0:27:83:02:b0:61:4f:6d:c5:40:b0: 9a:63:95:41:c9:7b:b9:ec:35:21:c3:f2:97:d9:ba:92:03:5d: 93:e1:33:eb:7d:ff:8a:35:52:1b:34:d2:20:1c:9c:1e:04:eb: e7:af:f1:2e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVwzq12g7ApDwJqTpjj8S3kerDoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJE Qzk1RkFGNTAeFw0yNDA2MjkxMjU1MDFaFw0yNTA2MjgxMzAwMDFaMDMxMTAvBgNV BAMTKEFEMDcyNDBFM0Y3MUUxMDI5MThERUExQzk3QkRGMzZBQjIyNTkyQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVjXipivcrud9lKtaqYzMoKKY/ swrMDhHNTlQwTaQc6PkxoTh1MrHz91B6uI5J1++DO8XYU1WPP37s0/vV+dw4jJiC Yi9vMipArzya699pL1CGHC+wlavp20VSQb57+a/9VMEzNsjLrnH8CSCEVrGXTeTW dKr0CQu+fluMZT47X3iaVuQ4R/So/+fA/C/Hzsj2ne6493f5Ax14D2k88bEb+CPv ScXtbvadY9fpYhU10rtVhuGxgNZn4PWm7evvJjTkzjqv/iylsUO3fNE3TLVBJ5kb DcUp94cd5GhyotqhBO4VHISKcN/YdZb1bOsitw4wiqM3EtnKMxX88cRZaZeBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrQckDj9x4QKRjeocl73zarIlksowHwYDVR0j BBgwFoAUem5/45FS0cwXT2kiFD+q69yV+vUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTJjMTM4Yy0yZTI0LTQ5ZjUtOGFkYS0wMDI3Y2JhN2YxNzgvMC83QTZFN0ZFMzkx NTJEMUNDMTc0RjY5MjIxNDNGQUFFQkRDOTVGQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJEQzk1 RkFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMmMxMzhjLTJlMjQtNDlmNS04 YWRhLTAwMjdjYmE3ZjE3OC8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrPAwDQYJ KoZIhvcNAQELBQADggEBAJePD4oIJK6VK8eFZyLFVrFk3+QvEhOUwcKH+jy3Aii4 ZA+QNGRgv3xVyj4iUQNuwyHGLuSKrOkFh1hyYy2E4O7Lz2lz+9s4W8EhtogaKGr2 K7vhOiF8UTeptgdF/vAhKxkRFnGxuDJipFUrZObSBHLeeNpMF7NaJv0SXag0kfsS 71aXPR13TuD0iQGadQGUjeaI+Mk+hHalI+bWbRCpPL/hJQvKgYuPQK+tXSAEAHZ4 92PuNcULuRb3G1utI/qtTSh5H5u92lIkDycmN9GgJ4MCsGFPbcVAsJpjlUHJe7ns NSHD8pfZupIDXZPhM+t9/4o1Uhs00iAcnB4E6+ev8S4= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org