$ rpki-client -vvf repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa File: 3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa (raw, json) Hash identifier: amsIxYTpZ45s/bL8zB241EkzG+3zkl2oHZOAPlS66w8= Subject key identifier: D1:2C:F1:70:8C:DB:15:05:9F:5F:D5:02:1F:2B:3E:5E:10:DD:B2:40 Certificate issuer: /CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Certificate serial: 7811040B81FE723B431BC541CE68F420A77FBB1B Authority key identifier: 7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa Signing time: Sat 29 Jun 2024 13:00:01 +0000 ROA not before: Sat 29 Jun 2024 12:55:01 +0000 ROA not after: Sat 28 Jun 2025 13:00:01 +0000 asID: 142401 IP address blocks: 103.172.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:11:04:0b:81:fe:72:3b:43:1b:c5:41:ce:68:f4:20:a7:7f:bb:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Validity Not Before: Jun 29 12:55:01 2024 GMT Not After : Jun 28 13:00:01 2025 GMT Subject: CN=D12CF1708CDB15059F5FD5021F2B3E5E10DDB240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b0:8d:ea:da:b1:fa:92:a4:9c:17:77:88:1f: 02:43:8f:51:4a:32:87:78:a9:c7:26:d8:bc:bb:39: 7b:ca:08:4f:97:09:fd:cf:f7:e7:01:db:f4:3c:36: ee:60:14:47:f3:9a:17:b5:59:37:bf:cb:6b:73:bd: d1:3b:b0:a1:cb:63:c2:78:1e:ea:2f:f7:40:c2:e5: 44:c9:09:bf:ef:d8:ea:3a:c8:9b:91:a3:12:51:b4: 81:d4:b4:e7:8f:b5:93:62:12:7b:32:f0:49:ba:43: ca:1b:40:cb:0c:9a:80:a2:45:ce:78:cf:f7:40:ed: 68:80:dc:0d:a3:77:73:6a:76:27:0d:18:ec:5b:c0: 57:d5:ab:fb:8d:72:9a:c9:2b:b2:30:c3:b0:4d:ce: ce:01:c5:e6:51:9b:c4:95:bc:d8:0a:43:1c:b8:ac: 7b:95:b4:43:34:f8:63:4e:94:ab:c6:29:4f:18:f6: 36:a8:51:fa:e6:03:29:5e:8f:70:74:78:e5:fd:ea: 14:b4:bb:1d:d4:a0:c9:79:b4:38:bf:2e:3c:81:97: 15:3b:5b:33:7a:64:48:15:c6:71:95:8d:e3:7c:06: 50:ff:72:13:8b:c6:3c:c9:77:a3:21:91:d1:16:ff: 28:da:ec:99:3f:56:36:c4:c3:61:df:1e:3e:5a:4b: 5d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2C:F1:70:8C:DB:15:05:9F:5F:D5:02:1F:2B:3E:5E:10:DD:B2:40 X509v3 Authority Key Identifier: keyid:7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234302e302f32342d3234203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.240.0/24 Signature Algorithm: sha256WithRSAEncryption b1:19:70:09:f8:52:75:d3:fd:88:23:f2:41:2c:1e:58:10:cb: 72:49:83:55:5a:8f:36:42:f8:ce:95:ff:16:e1:e4:9e:57:d1: 28:8d:3d:f3:df:f3:bf:b6:26:35:97:79:e0:40:1e:44:ea:87: 8f:7e:8a:52:fb:3c:b4:a7:a6:a8:6a:d1:2e:37:83:cb:c1:32: 87:0c:79:cf:16:49:f5:6b:58:c6:c2:83:2f:1d:eb:e3:57:6a: e7:86:6c:95:fd:4f:f6:e5:db:16:d9:33:b0:aa:0b:59:14:d6: 67:de:bc:f9:20:b1:85:ac:06:e8:ba:3b:62:70:fc:6f:68:cd: 82:1c:c6:1a:b5:ee:60:f4:6b:aa:16:0d:d7:64:4a:85:2c:06: ee:2d:57:3f:08:ef:02:06:ba:fb:77:2d:cc:50:33:50:65:12: d8:2d:b9:16:b8:d6:e8:8a:f6:37:7a:54:79:61:f2:83:64:1d: cd:c9:2f:7b:76:af:22:40:c4:c5:e6:4b:13:6a:95:49:2c:99: a2:20:91:41:be:43:8b:85:e1:87:65:48:cb:c8:35:7f:5d:1d: ab:0e:d5:f5:94:8d:e7:60:8d:6d:cc:3d:b2:22:f4:3d:05:63: fe:e6:9d:0f:bd:72:75:0f:8b:d9:f3:c9:ba:75:ea:49:d9:ba: 51:75:af:76 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeBEEC4H+cjtDG8VBzmj0IKd/uxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJE Qzk1RkFGNTAeFw0yNDA2MjkxMjU1MDFaFw0yNTA2MjgxMzAwMDFaMDMxMTAvBgNV BAMTKEQxMkNGMTcwOENEQjE1MDU5RjVGRDUwMjFGMkIzRTVFMTBEREIyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcsI3q2rH6kqScF3eIHwJDj1FK Mod4qccm2Ly7OXvKCE+XCf3P9+cB2/Q8Nu5gFEfzmhe1WTe/y2tzvdE7sKHLY8J4 Huov90DC5UTJCb/v2Oo6yJuRoxJRtIHUtOePtZNiEnsy8Em6Q8obQMsMmoCiRc54 z/dA7WiA3A2jd3NqdicNGOxbwFfVq/uNcprJK7Iww7BNzs4BxeZRm8SVvNgKQxy4 rHuVtEM0+GNOlKvGKU8Y9jaoUfrmAylej3B0eOX96hS0ux3UoMl5tDi/LjyBlxU7 WzN6ZEgVxnGVjeN8BlD/chOLxjzJd6MhkdEW/yja7Jk/VjbEw2HfHj5aS107AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0SzxcIzbFQWfX9UCHys+XhDdskAwHwYDVR0j BBgwFoAUem5/45FS0cwXT2kiFD+q69yV+vUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTJjMTM4Yy0yZTI0LTQ5ZjUtOGFkYS0wMDI3Y2JhN2YxNzgvMC83QTZFN0ZFMzkx NTJEMUNDMTc0RjY5MjIxNDNGQUFFQkRDOTVGQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJEQzk1 RkFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMmMxMzhjLTJlMjQtNDlmNS04 YWRhLTAwMjdjYmE3ZjE3OC8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPAwDQYJ KoZIhvcNAQELBQADggEBALEZcAn4UnXT/Ygj8kEsHlgQy3JJg1VajzZC+M6V/xbh 5J5X0SiNPfPf87+2JjWXeeBAHkTqh49+ilL7PLSnpqhq0S43g8vBMocMec8WSfVr WMbCgy8d6+NXaueGbJX9T/bl2xbZM7CqC1kU1mfevPkgsYWsBui6O2Jw/G9ozYIc xhq17mD0a6oWDddkSoUsBu4tVz8I7wIGuvt3LcxQM1BlEtgtuRa41uiK9jd6VHlh 8oNkHc3JL3t2ryJAxMXmSxNqlUksmaIgkUG+Q4uF4YdlSMvINX9dHasO1fWUjedg jW3MPbIi9D0FY/7mnQ+9cnUPi9nzybp16knZulF1r3Y= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org