$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa File: 3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa (raw, json) Hash identifier: wc8vaORuO6YGru+QYIoMg5FerWzrR5B/rJOP4jftbB8= Subject key identifier: D6:83:1E:1F:34:F7:73:BA:FD:61:12:B5:8E:A5:5A:7A:D8:FB:98:B8 Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Certificate serial: 52C2677F75DF38C6CE614EEB1CB8E8DC2BAA90AA Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa Signing time: Thu 21 Mar 2024 10:00:01 +0000 ROA not before: Thu 21 Mar 2024 09:55:01 +0000 ROA not after: Thu 20 Mar 2025 10:00:01 +0000 asID: 147101 IP address blocks: 103.174.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:c2:67:7f:75:df:38:c6:ce:61:4e:eb:1c:b8:e8:dc:2b:aa:90:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Validity Not Before: Mar 21 09:55:01 2024 GMT Not After : Mar 20 10:00:01 2025 GMT Subject: CN=D6831E1F34F773BAFD6112B58EA55A7AD8FB98B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:25:f1:34:ea:0d:ef:b2:5d:51:c4:39:71:19: 73:6d:f0:59:4b:e3:88:20:c5:07:d6:57:29:eb:d6: 0b:bd:c1:a1:b5:95:23:ba:47:a4:83:cf:7f:2e:90: 42:54:27:23:28:fa:2f:ff:30:67:5a:fe:7d:b7:7a: 1a:44:3b:63:8a:38:c8:99:da:c9:3a:7c:a0:9a:b8: 97:45:1e:9c:2e:32:16:ee:81:26:c5:1e:c9:66:94: c3:b5:b5:df:d5:2b:a0:7e:b6:1e:dd:22:d9:ad:d6: 2f:a8:0e:e3:ea:2e:bf:3b:8f:2c:ea:65:de:d8:8c: 86:c3:17:ef:ad:9a:f9:e4:46:f8:0a:3d:12:0a:bb: 6d:6b:3b:99:75:1c:ef:41:5b:ca:06:2c:ed:4c:27: aa:d0:d1:4f:71:d2:4d:4f:bc:c9:cb:05:06:fa:9f: 61:8b:58:cf:ac:88:28:03:ef:07:bc:33:8e:93:22: d9:c0:24:a5:31:75:fd:ff:1b:1b:46:75:9a:fb:bd: fe:92:09:e2:01:de:66:c7:a0:6b:99:2d:4d:f2:9e: 05:4e:14:67:77:c2:8c:7b:2d:8e:41:81:66:78:02: 43:3f:e0:14:07:a3:ea:be:18:67:27:a1:37:3d:b7: ed:15:64:b9:81:f0:d5:89:3b:a3:10:31:d0:b3:02: 5d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:83:1E:1F:34:F7:73:BA:FD:61:12:B5:8E:A5:5A:7A:D8:FB:98:B8 X509v3 Authority Key Identifier: keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32342d3234203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.174.0/24 Signature Algorithm: sha256WithRSAEncryption 47:e7:84:62:39:61:78:8d:39:ad:49:eb:4c:7e:95:d1:3c:53: 7e:01:70:f8:0b:b2:d9:92:98:c1:da:a2:c4:8c:3e:ae:cd:74: 0e:b0:35:9e:c0:3f:3a:c5:20:4e:ef:ba:9a:55:9a:32:2d:e9: e0:d9:54:30:eb:20:55:25:3d:e8:01:75:95:ce:93:03:06:94: 28:82:33:70:ee:fa:15:34:16:df:88:ab:60:b7:97:96:e6:92: bd:ca:12:fe:96:0a:66:14:e1:f1:49:08:68:39:75:ea:4b:91: 4e:84:f7:68:d7:1f:97:96:7f:82:c9:4b:94:85:ac:e5:ad:1e: 75:3a:7b:3a:a1:18:c0:09:6f:0f:85:c1:a5:6a:16:73:b3:7d: f9:78:17:6b:2c:2c:ad:8a:64:0f:fc:32:cd:ab:50:07:2c:5d: b3:71:1a:58:62:cd:29:b5:47:42:c8:60:c3:6a:1a:8d:3b:d7: 0c:32:0e:0f:68:95:2b:ac:ce:9a:97:d6:68:4a:99:cc:8f:7c: 20:d4:cb:1d:e4:e8:0f:f0:6f:a8:15:69:f9:db:35:24:d9:22: 46:aa:5d:e2:35:2e:df:2e:ad:51:e3:74:be:62:b5:20:29:a4: 23:c8:c6:b3:d8:ec:7b:c7:f3:a5:e4:24:15:da:8f:64:3f:d5: 08:17:7e:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUsJnf3XfOMbOYU7rHLjo3CuqkKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNE OUE4NkNFNDAeFw0yNDAzMjEwOTU1MDFaFw0yNTAzMjAxMDAwMDFaMDMxMTAvBgNV BAMTKEQ2ODMxRTFGMzRGNzczQkFGRDYxMTJCNThFQTU1QTdBRDhGQjk4QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwJfE06g3vsl1RxDlxGXNt8FlL 44ggxQfWVynr1gu9waG1lSO6R6SDz38ukEJUJyMo+i//MGda/n23ehpEO2OKOMiZ 2sk6fKCauJdFHpwuMhbugSbFHslmlMO1td/VK6B+th7dItmt1i+oDuPqLr87jyzq Zd7YjIbDF++tmvnkRvgKPRIKu21rO5l1HO9BW8oGLO1MJ6rQ0U9x0k1PvMnLBQb6 n2GLWM+siCgD7we8M46TItnAJKUxdf3/GxtGdZr7vf6SCeIB3mbHoGuZLU3yngVO FGd3wox7LY5BgWZ4AkM/4BQHo+q+GGcnoTc9t+0VZLmB8NWJO6MQMdCzAl2hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1oMeHzT3c7r9YRK1jqVaetj7mLgwHwYDVR0j BBgwFoAUd2fPSddmGvq0WHA0HYjS89mobOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTcwZDQ0ZS0wZjcwLTQ1YTMtYWYwNC04MWY0MjlkYjNhNWQvMC83NzY3Q0Y0OUQ3 NjYxQUZBQjQ1ODcwMzQxRDg4RDJGM0Q5QTg2Q0U0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNEOUE4 NkNFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrq4wDQYJ KoZIhvcNAQELBQADggEBAEfnhGI5YXiNOa1J60x+ldE8U34BcPgLstmSmMHaosSM Pq7NdA6wNZ7APzrFIE7vuppVmjIt6eDZVDDrIFUlPegBdZXOkwMGlCiCM3Du+hU0 Ft+Iq2C3l5bmkr3KEv6WCmYU4fFJCGg5depLkU6E92jXH5eWf4LJS5SFrOWtHnU6 ezqhGMAJbw+FwaVqFnOzffl4F2ssLK2KZA/8Ms2rUAcsXbNxGlhizSm1R0LIYMNq Go071wwyDg9olSuszpqX1mhKmcyPfCDUyx3k6A/wb6gVafnbNSTZIkaqXeI1Lt8u rVHjdL5itSAppCPIxrPY7HvH86XkJBXaj2Q/1QgXfvA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:28 2024 by rpki-client on console-fra.rpki-client.org