$ rpki-client -vvf repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234312e302f32342d3234203d3e20313432343031.roa File: 3130332e3137322e3234312e302f32342d3234203d3e20313432343031.roa (raw, json) Hash identifier: mpLiI0Yh2/YbAUUynQZjZyHUVEDOZRhdSpsQMN5jDY8= Subject key identifier: F7:7F:41:4A:4E:00:FF:73:5D:13:13:A4:63:9C:02:B6:37:B4:61:66 Certificate issuer: /CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Certificate serial: 10F0B08A06A7BB1608BB1AA17E5D3D1C227928E0 Authority key identifier: 7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234312e302f32342d3234203d3e20313432343031.roa Signing time: Sat 29 Jun 2024 13:00:01 +0000 ROA not before: Sat 29 Jun 2024 12:55:01 +0000 ROA not after: Sat 28 Jun 2025 13:00:01 +0000 asID: 142401 IP address blocks: 103.172.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f0:b0:8a:06:a7:bb:16:08:bb:1a:a1:7e:5d:3d:1c:22:79:28:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5 Validity Not Before: Jun 29 12:55:01 2024 GMT Not After : Jun 28 13:00:01 2025 GMT Subject: CN=F77F414A4E00FF735D1313A4639C02B637B46166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7c:72:03:8c:b1:bb:59:a7:0b:0e:24:1f:9d: 88:0f:8b:e7:ee:5c:66:06:ec:50:1e:28:83:a0:af: 38:17:b8:c1:1d:34:74:89:40:c3:fb:91:8f:91:cf: ac:03:35:83:61:29:44:bf:02:3f:70:ef:6d:17:ff: 9d:35:89:73:0c:20:89:a9:81:89:60:0d:91:bc:ec: a9:0a:67:bd:03:1d:40:3c:7a:db:19:88:1b:50:ae: a5:37:91:93:3c:3f:88:e2:93:11:91:cd:7c:15:e2: 60:ad:c4:02:76:5d:48:93:4d:33:cc:7c:d5:b4:d1: 2f:fa:58:6d:b8:62:62:66:63:8c:8e:9e:ec:c4:42: 80:7f:96:f2:43:4d:52:84:ef:2d:d0:26:1c:67:20: 6b:1c:4e:e0:e9:64:db:e5:c1:1b:0f:a8:d5:fe:2f: f3:34:07:df:aa:1f:a7:7b:b0:88:cb:65:a7:eb:14: d5:bd:7a:f0:44:7e:b8:8c:11:32:a0:ff:2a:d7:92: 0b:ec:53:c8:5a:8a:59:3c:f7:d7:72:3c:ce:be:66: b9:2f:01:55:f6:9c:66:d0:31:5e:f4:50:51:3d:fc: fc:2e:07:a3:f1:dd:b8:74:8e:26:9d:d0:41:25:13: 67:54:18:d6:af:20:f2:c4:51:41:23:a8:5a:15:b6: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7F:41:4A:4E:00:FF:73:5D:13:13:A4:63:9C:02:B6:37:B4:61:66 X509v3 Authority Key Identifier: keyid:7A:6E:7F:E3:91:52:D1:CC:17:4F:69:22:14:3F:AA:EB:DC:95:FA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A6E7FE39152D1CC174F6922143FAAEBDC95FAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/612c138c-2e24-49f5-8ada-0027cba7f178/0/3130332e3137322e3234312e302f32342d3234203d3e20313432343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.241.0/24 Signature Algorithm: sha256WithRSAEncryption 23:92:95:82:1e:f6:7c:e1:eb:de:19:86:66:ea:39:5d:8f:7d: ee:6a:61:dd:c1:7c:59:3d:b8:d5:9f:1a:78:19:3f:6a:ec:e5: db:73:c9:3a:73:b6:98:ab:fc:6b:21:5a:2c:98:49:59:ed:25: 18:40:b6:12:94:31:8a:95:4d:13:e0:e3:91:8f:f6:6f:fa:b9: 32:08:9c:19:8c:58:02:1c:9d:71:03:40:51:e9:0e:96:f6:e5: 29:9e:68:6c:a6:cf:71:af:40:79:2f:b2:ce:66:c1:c2:4c:ca: 66:4a:45:f1:35:00:aa:35:16:71:57:c6:31:f1:0f:29:66:4f: a9:ac:50:59:f2:82:61:19:e9:70:57:76:7f:6e:a8:2d:43:63: 6f:a9:50:0a:aa:77:13:c8:0d:34:a8:5a:59:67:10:89:92:d8: 01:6a:5a:2b:66:dd:58:26:a8:86:c1:d1:48:9f:6e:55:45:d3: 29:e6:c6:55:40:98:cf:d6:5c:dd:cf:ca:cf:16:85:2e:1d:4e: 97:08:4f:c1:5f:1e:f1:3f:5d:b0:31:6d:ba:85:30:5f:3b:7e: 5f:cc:34:31:08:f2:00:81:4b:35:d4:41:fa:0d:1e:2e:4b:49: e9:2f:ca:9a:89:6a:c9:43:b1:91:08:e0:d1:9c:92:0a:06:86: a1:e0:2b:a2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEPCwiganuxYIuxqhfl09HCJ5KOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJE Qzk1RkFGNTAeFw0yNDA2MjkxMjU1MDFaFw0yNTA2MjgxMzAwMDFaMDMxMTAvBgNV BAMTKEY3N0Y0MTRBNEUwMEZGNzM1RDEzMTNBNDYzOUMwMkI2MzdCNDYxNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfHIDjLG7WacLDiQfnYgPi+fu XGYG7FAeKIOgrzgXuMEdNHSJQMP7kY+Rz6wDNYNhKUS/Aj9w720X/501iXMMIImp gYlgDZG87KkKZ70DHUA8etsZiBtQrqU3kZM8P4jikxGRzXwV4mCtxAJ2XUiTTTPM fNW00S/6WG24YmJmY4yOnuzEQoB/lvJDTVKE7y3QJhxnIGscTuDpZNvlwRsPqNX+ L/M0B9+qH6d7sIjLZafrFNW9evBEfriMETKg/yrXkgvsU8hailk899dyPM6+Zrkv AVX2nGbQMV70UFE9/PwuB6Px3bh0jiad0EElE2dUGNavIPLEUUEjqFoVtpfHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU939BSk4A/3NdExOkY5wCtje0YWYwHwYDVR0j BBgwFoAUem5/45FS0cwXT2kiFD+q69yV+vUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTJjMTM4Yy0yZTI0LTQ5ZjUtOGFkYS0wMDI3Y2JhN2YxNzgvMC83QTZFN0ZFMzkx NTJEMUNDMTc0RjY5MjIxNDNGQUFFQkRDOTVGQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0E2RTdGRTM5MTUyRDFDQzE3NEY2OTIyMTQzRkFBRUJEQzk1 RkFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMmMxMzhjLTJlMjQtNDlmNS04 YWRhLTAwMjdjYmE3ZjE3OC8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzNDMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPEwDQYJ KoZIhvcNAQELBQADggEBACOSlYIe9nzh694ZhmbqOV2Pfe5qYd3BfFk9uNWfGngZ P2rs5dtzyTpztpir/GshWiyYSVntJRhAthKUMYqVTRPg45GP9m/6uTIInBmMWAIc nXEDQFHpDpb25SmeaGymz3GvQHkvss5mwcJMymZKRfE1AKo1FnFXxjHxDylmT6ms UFnygmEZ6XBXdn9uqC1DY2+pUAqqdxPIDTSoWllnEImS2AFqWitm3VgmqIbB0Uif blVF0ynmxlVAmM/WXN3Pys8WhS4dTpcIT8FfHvE/XbAxbbqFMF87fl/MNDEI8gCB SzXUQfoNHi5LSekvypqJaslDsZEI4NGckgoGhqHgK6I= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org