$ rpki-client -vvf repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa File: 3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa (raw, json) Hash identifier: JTL431lLfyf1jnS6f49Xr8rA/0cGh8If3KjN4ecSxbk= Subject key identifier: 9B:DA:9E:0C:AD:B2:B1:D8:4A:54:EA:46:69:31:5F:C7:AA:C5:C3:95 Certificate issuer: /CN=ED4F41D4EBE684D523406475FAB471CE1B24E360 Certificate serial: 308E51BD24D1BCFAD0C358CE59A7F4FA9D782179 Authority key identifier: ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa Signing time: Fri 05 Jan 2024 00:00:00 +0000 ROA not before: Thu 04 Jan 2024 23:55:00 +0000 ROA not after: Fri 03 Jan 2025 00:00:00 +0000 asID: 147120 IP address blocks: 103.175.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8e:51:bd:24:d1:bc:fa:d0:c3:58:ce:59:a7:f4:fa:9d:78:21:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED4F41D4EBE684D523406475FAB471CE1B24E360 Validity Not Before: Jan 4 23:55:00 2024 GMT Not After : Jan 3 00:00:00 2025 GMT Subject: CN=9BDA9E0CADB2B1D84A54EA4669315FC7AAC5C395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:db:38:c7:7a:e6:1a:a5:9a:45:36:64:60: f2:72:48:eb:4f:d6:9e:61:9b:78:49:e1:30:ec:aa: b3:c5:cb:41:52:b2:d2:8e:b5:02:76:95:59:64:1f: bb:00:59:6a:f2:34:87:06:25:c0:53:5c:57:c2:89: 11:a0:10:11:43:53:de:6e:09:d4:9a:c3:e6:49:67: 5e:d4:e6:99:7b:9f:ee:8d:6a:98:d3:ee:fc:96:4e: a8:ca:b9:e9:e2:35:22:9d:62:84:87:2a:5e:ee:3b: c4:9d:e0:95:d1:4e:61:99:e3:ac:19:0f:10:74:0f: d9:79:28:1f:d3:14:06:45:70:0d:9b:d5:7d:33:13: e2:b7:57:18:c1:ad:99:5f:44:ad:fe:95:e8:80:d8: 94:46:35:22:ca:bc:a9:53:78:a6:c7:44:2c:25:fe: 87:1a:d8:8c:82:da:82:4a:fd:3f:41:87:69:26:4a: e8:ba:ab:b2:d5:8e:35:3d:0b:df:77:49:bb:d0:14: fa:97:28:91:a1:7b:c3:68:80:ea:f0:29:cd:63:09: 96:c0:40:15:e5:ac:2e:56:1f:f6:99:d1:b2:f5:5d: 4d:ae:06:ed:ff:49:d6:20:e2:77:58:db:68:76:1e: c8:ce:5f:cf:95:c3:95:d2:69:b5:fa:7e:75:56:aa: 6b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:DA:9E:0C:AD:B2:B1:D8:4A:54:EA:46:69:31:5F:C7:AA:C5:C3:95 X509v3 Authority Key Identifier: keyid:ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.156.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:dd:48:b2:87:e8:f7:d3:28:10:85:a7:df:20:02:45:f4:09: 9a:c9:88:bc:92:75:f5:a7:d5:24:83:d3:4f:18:f7:5a:b2:7e: 56:86:06:33:76:34:3b:86:cf:ce:d4:5a:f9:3c:7f:b9:32:6d: 31:d2:0b:c1:0c:ea:c5:71:a4:48:92:f3:61:a5:60:94:78:11: 54:ab:22:32:0a:b9:6d:92:79:c0:9e:3a:30:0c:7a:f9:b2:b9: 61:a0:4e:3a:91:0e:47:c9:fb:b6:cb:28:a0:d1:69:46:27:76: 55:7a:09:97:7f:6b:a5:a7:81:11:c3:92:cc:7b:c1:7e:ae:90: ec:53:f1:1a:d3:64:87:9b:6b:1e:c7:ff:2e:93:3d:5d:8c:b6: 2a:f2:cc:48:99:1a:ac:0f:99:02:dc:d9:cf:3f:02:89:40:ee: 05:db:eb:1f:97:ec:85:a8:82:5c:7c:54:70:63:f7:52:b7:f8: 9e:29:a7:84:96:90:e7:f1:f7:80:cb:ef:4f:62:22:97:fc:ee: 1a:48:06:d5:f3:53:bc:1d:a3:fe:06:21:4e:06:7a:c7:a0:13: d7:51:3f:6e:19:2e:dd:8f:f1:d0:8e:67:b0:16:7f:37:69:14: aa:dc:ac:63:37:da:9d:ab:a8:67:fc:d4:e6:0f:a2:25:29:76: a0:11:a5:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMI5RvSTRvPrQw1jOWaf0+p14IXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0RjQxRDRFQkU2ODRENTIzNDA2NDc1RkFCNDcxQ0Ux QjI0RTM2MDAeFw0yNDAxMDQyMzU1MDBaFw0yNTAxMDMwMDAwMDBaMDMxMTAvBgNV BAMTKDlCREE5RTBDQURCMkIxRDg0QTU0RUE0NjY5MzE1RkM3QUFDNUMzOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKY9s4x3rmGqWaRTZkYPJySOtP 1p5hm3hJ4TDsqrPFy0FSstKOtQJ2lVlkH7sAWWryNIcGJcBTXFfCiRGgEBFDU95u CdSaw+ZJZ17U5pl7n+6NapjT7vyWTqjKueniNSKdYoSHKl7uO8Sd4JXRTmGZ46wZ DxB0D9l5KB/TFAZFcA2b1X0zE+K3VxjBrZlfRK3+leiA2JRGNSLKvKlTeKbHRCwl /oca2IyC2oJK/T9Bh2kmSui6q7LVjjU9C993SbvQFPqXKJGhe8NogOrwKc1jCZbA QBXlrC5WH/aZ0bL1XU2uBu3/SdYg4ndY22h2HsjOX8+Vw5XSabX6fnVWqmtdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUm9qeDK2ysdhKVOpGaTFfx6rFw5UwHwYDVR0j BBgwFoAU7U9B1OvmhNUjQGR1+rRxzhsk42AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NmVlN2E1Zi01MTIxLTQxODEtYTYzNS0xMjFiNmU2OWFkNTkvMC9FRDRGNDFENEVC RTY4NEQ1MjM0MDY0NzVGQUI0NzFDRTFCMjRFMzYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQ0RjQxRDRFQkU2ODRENTIzNDA2NDc1RkFCNDcxQ0UxQjI0 RTM2MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2ZWU3YTVmLTUxMjEtNDE4MS1h NjM1LTEyMWI2ZTY5YWQ1OS8wLzMxMzAzMzJlMzEzNzM1MmUzMTM1MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnr5wwDQYJ KoZIhvcNAQELBQADggEBAH3dSLKH6PfTKBCFp98gAkX0CZrJiLySdfWn1SSD008Y 91qyflaGBjN2NDuGz87UWvk8f7kybTHSC8EM6sVxpEiS82GlYJR4EVSrIjIKuW2S ecCeOjAMevmyuWGgTjqRDkfJ+7bLKKDRaUYndlV6CZd/a6WngRHDksx7wX6ukOxT 8RrTZIebax7H/y6TPV2MtiryzEiZGqwPmQLc2c8/AolA7gXb6x+X7IWoglx8VHBj 91K3+J4pp4SWkOfx94DL709iIpf87hpIBtXzU7wdo/4GIU4GesegE9dRP24ZLt2P 8dCOZ7AWfzdpFKrcrGM32p2rqGf81OYPoiUpdqARpdg= -----END CERTIFICATE-----Generated at Fri Sep 27 10:45:37 2024 by rpki-client on console-fra.rpki-client.org