$ rpki-client -vvf repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa File: 3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: FVBFuUrqgSMPY21WdVOmGg4Dr0XlF9EyorL680ZGfxA= Subject key identifier: D7:FB:0A:C9:43:6C:76:B8:45:58:20:6E:D2:53:B9:6E:51:05:A6:78 Certificate issuer: /CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Certificate serial: 54E21A66845744E6BCC07C954E68D901765B8E1A Authority key identifier: 77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa Signing time: Thu 03 Oct 2024 11:00:01 +0000 ROA not before: Thu 03 Oct 2024 10:55:01 +0000 ROA not after: Thu 02 Oct 2025 11:00:01 +0000 asID: 141607 IP address blocks: 103.220.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 20:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e2:1a:66:84:57:44:e6:bc:c0:7c:95:4e:68:d9:01:76:5b:8e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Validity Not Before: Oct 3 10:55:01 2024 GMT Not After : Oct 2 11:00:01 2025 GMT Subject: CN=D7FB0AC9436C76B84558206ED253B96E5105A678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:aa:a0:1e:30:a7:9c:b5:ea:a5:2a:94:ce: d6:35:ba:43:92:2a:7b:73:ba:dd:86:77:14:62:88: 35:65:31:f3:5e:35:68:f1:ee:c8:f3:55:b3:ca:c1: d4:59:75:8e:5d:9d:05:31:f3:f9:cc:55:af:2c:15: a8:1b:25:8e:9a:ad:9c:ef:b1:f9:4c:85:0f:c6:38: f6:37:51:48:50:31:a0:e1:32:fa:a5:c2:94:5c:33: d2:17:89:44:38:66:32:4e:26:f7:41:a1:2f:84:fb: c5:3e:aa:2d:94:47:aa:19:9c:82:39:17:97:98:f7: ac:8a:b5:12:3e:78:50:46:18:2f:9e:50:d5:7e:46: 56:c8:0e:0b:71:7a:2e:39:b7:5a:ac:52:0d:2c:49: 77:b6:a6:84:24:7a:d5:b3:97:ad:fc:de:9c:3b:1c: 5a:bb:d2:1e:17:60:44:5c:0f:ae:dc:d4:68:12:30: 1a:eb:77:6b:19:af:13:5c:da:ad:e0:f8:93:1a:3c: 1f:24:a9:9b:e1:2a:f6:dc:b8:29:49:25:1e:dd:ae: bb:63:38:91:ec:71:b1:60:86:cf:fe:0c:0a:cd:a6: 0d:d1:4a:43:82:5f:3f:ed:9c:fa:bd:ed:04:6c:a4: ab:b6:a3:f0:88:1a:10:06:6f:87:01:1c:4a:74:33: 61:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:FB:0A:C9:43:6C:76:B8:45:58:20:6E:D2:53:B9:6E:51:05:A6:78 X509v3 Authority Key Identifier: keyid:77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32332e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.23.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:d0:d5:42:97:35:11:a8:89:28:89:65:28:4b:84:8d:b0:25: a6:5a:c1:5d:d6:bd:a5:8b:ab:c9:12:63:f8:22:de:20:a5:e5: 5e:81:8c:6e:b2:35:b4:17:6f:d8:6e:20:52:d3:70:ce:a7:ef: a6:bd:98:14:43:65:3d:e6:bc:62:a0:08:ef:e6:ce:e1:ba:b5: 95:e7:48:43:90:11:9a:03:32:b2:34:c4:34:08:c2:e7:ba:80: 71:f4:99:61:e9:f9:24:97:d1:fc:7b:30:65:d6:f8:4b:6b:d2: d4:12:58:76:19:03:97:d8:53:0d:d4:85:3f:98:29:11:5d:33: 4f:b9:d0:5b:93:a6:d0:79:e3:9c:0c:d9:af:7a:f4:9c:fd:2b: fa:a0:7d:8e:4a:4a:d2:f2:8e:d3:16:53:77:da:1a:a5:62:7b: 44:4a:0f:34:a0:62:2d:1c:41:f1:23:40:65:b8:6c:dd:13:83: a2:d0:78:e8:12:6b:91:35:e7:b3:5a:8e:34:34:57:58:f2:e8: 5a:56:20:3f:69:a7:c9:9e:23:f7:98:2b:94:7a:4d:91:f7:de: cb:2f:98:f9:64:1a:6d:91:48:8a:90:5b:f2:03:42:fe:f4:28: a1:0e:23:6f:70:50:fc:a1:00:cb:fd:43:3d:17:65:33:6e:ca: 8f:71:db:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVOIaZoRXROa8wHyVTmjZAXZbjhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVE OEJBMzg2MjAeFw0yNDEwMDMxMDU1MDFaFw0yNTEwMDIxMTAwMDFaMDMxMTAvBgNV BAMTKEQ3RkIwQUM5NDM2Qzc2Qjg0NTU4MjA2RUQyNTNCOTZFNTEwNUE2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRD6qgHjCnnLXqpSqUztY1ukOS Kntzut2GdxRiiDVlMfNeNWjx7sjzVbPKwdRZdY5dnQUx8/nMVa8sFagbJY6arZzv sflMhQ/GOPY3UUhQMaDhMvqlwpRcM9IXiUQ4ZjJOJvdBoS+E+8U+qi2UR6oZnII5 F5eY96yKtRI+eFBGGC+eUNV+RlbIDgtxei45t1qsUg0sSXe2poQketWzl6383pw7 HFq70h4XYERcD67c1GgSMBrrd2sZrxNc2q3g+JMaPB8kqZvhKvbcuClJJR7drrtj OJHscbFghs/+DArNpg3RSkOCXz/tnPq97QRspKu2o/CIGhAGb4cBHEp0M2FPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1/sKyUNsdrhFWCBu0lO5blEFpngwHwYDVR0j BBgwFoAUdx0KucRFsoyIf9e6GN7FFdi6OGIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWFkNmEzZi02Y2EwLTQ2NjktOThmNy02ZjM0ODM3ZmFhNjIvMC83NzFEMEFCOUM0 NDVCMjhDODg3RkQ3QkExOERFQzUxNUQ4QkEzODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVEOEJB Mzg2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWQ2YTNmLTZjYTAtNDY2OS05 OGY3LTZmMzQ4MzdmYWE2Mi8wLzMxMzAzMzJlMzIzMjMwMmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wXMA0GCSqG SIb3DQEBCwUAA4IBAQA70NVClzURqIkoiWUoS4SNsCWmWsFd1r2li6vJEmP4It4g peVegYxusjW0F2/YbiBS03DOp++mvZgUQ2U95rxioAjv5s7hurWV50hDkBGaAzKy NMQ0CMLnuoBx9Jlh6fkkl9H8ezBl1vhLa9LUElh2GQOX2FMN1IU/mCkRXTNPudBb k6bQeeOcDNmvevSc/Sv6oH2OSkrS8o7TFlN32hqlYntESg80oGItHEHxI0BluGzd E4Oi0HjoEmuRNeezWo40NFdY8uhaViA/aafJniP3mCuUek2R997LL5j5ZBptkUiK kFvyA0L+9CihDiNvcFD8oQDL/UM9F2UzbsqPcdvU -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org