$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa File: 3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa (raw, json) Hash identifier: 8BgGQFKQndoiET6mUnD+3KzPxt+C7HWtTI69H8u0uKU= Subject key identifier: 8F:25:4F:E9:90:46:A5:1B:D1:09:77:F0:CF:23:B3:28:14:A4:61:DA Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Certificate serial: 126688F81E6E7A38C4D214F7B8BDDAFF68B6886A Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa Signing time: Thu 21 Mar 2024 10:00:01 +0000 ROA not before: Thu 21 Mar 2024 09:55:01 +0000 ROA not after: Thu 20 Mar 2025 10:00:01 +0000 asID: 147101 IP address blocks: 103.174.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:66:88:f8:1e:6e:7a:38:c4:d2:14:f7:b8:bd:da:ff:68:b6:88:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Validity Not Before: Mar 21 09:55:01 2024 GMT Not After : Mar 20 10:00:01 2025 GMT Subject: CN=8F254FE99046A51BD10977F0CF23B32814A461DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:2d:53:18:5c:1e:93:a6:1a:78:d8:5f:a8: ad:ae:01:4a:e3:7f:01:4c:61:59:d6:5e:da:1e:ef: 08:7e:d7:37:44:45:e0:73:8d:bc:df:44:10:00:1b: 4d:63:bc:09:82:80:03:b5:12:78:29:36:9e:00:c8: d9:e7:4e:64:b6:de:de:0b:57:66:c9:a6:d7:12:6e: 97:34:66:50:d3:6c:3c:bd:27:de:96:0b:2a:14:41: 68:d0:31:4d:d0:8f:40:70:77:ac:c3:f1:a0:ba:a2: 65:3a:ea:25:68:cc:0a:e6:99:a9:90:52:12:e6:e2: ed:4f:90:aa:cc:56:4b:d6:7f:d2:bd:8c:8b:05:41: 4e:90:c4:11:8d:0f:7f:4e:e0:b4:6e:26:b0:9d:f5: f1:06:4b:4f:05:86:63:01:7b:22:2d:07:31:5f:57: 1a:89:ab:d4:ec:99:29:fc:45:a0:a2:8b:22:88:71: 4d:0a:9a:1a:60:37:c3:49:c8:76:f7:21:9f:a9:a6: f3:2c:c3:45:4a:0e:a8:f0:a2:f9:fb:38:db:d6:a6: af:d8:82:9e:e5:92:29:cf:21:a3:4a:49:4b:42:62: 4a:58:63:d4:5a:9c:bb:60:40:70:6e:8b:d0:10:e6: f5:80:c3:c4:2d:6c:c6:5b:c0:8f:48:bb:48:90:5b: 18:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:25:4F:E9:90:46:A5:1B:D1:09:77:F0:CF:23:B3:28:14:A4:61:DA X509v3 Authority Key Identifier: keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.175.0/24 Signature Algorithm: sha256WithRSAEncryption 97:12:b3:b0:ef:a7:73:30:6e:f1:4a:cd:7e:e3:b8:df:8b:e8: e0:39:c3:5d:9b:04:53:a8:b6:30:0b:e5:83:2b:e6:4f:36:6f: 99:85:88:fe:cb:33:5d:f9:ab:1b:02:db:47:ae:65:95:ec:83: 3d:43:96:67:63:09:87:38:7c:27:38:24:9a:a2:10:5d:b5:7f: 7a:01:17:47:30:ed:50:ad:d2:38:8b:0c:07:b2:5b:3e:1d:4d: 0b:ac:28:db:cb:a7:c1:b1:2a:56:8b:ea:28:91:af:de:58:a4: 13:ee:df:27:81:79:27:c9:94:b5:20:d9:ee:5d:45:13:d4:7e: e9:f9:a7:31:21:d2:0b:2c:d3:08:fc:a9:f5:f3:6e:12:7c:e2: ad:5c:75:d3:4b:d6:ea:26:6b:93:cf:1d:0a:9c:0f:4c:9e:37: 83:5b:14:b7:88:98:44:39:02:a9:4f:95:25:8d:9b:26:c9:e8: 3a:40:68:f6:ef:09:fd:52:f9:a5:62:15:ba:ae:b4:37:97:62: b1:db:89:02:5a:5d:01:46:d5:fe:3d:fa:63:ee:c4:1b:df:c3: 9d:e6:b7:08:11:1d:c6:64:74:c0:40:14:b8:d9:19:87:3c:e7: b2:06:c4:c1:f0:dc:1c:a4:38:89:02:84:e7:9e:06:e9:76:c9: ea:2d:7b:c9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEmaI+B5uejjE0hT3uL3a/2i2iGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNE OUE4NkNFNDAeFw0yNDAzMjEwOTU1MDFaFw0yNTAzMjAxMDAwMDFaMDMxMTAvBgNV BAMTKDhGMjU0RkU5OTA0NkE1MUJEMTA5NzdGMENGMjNCMzI4MTRBNDYxREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPi1TGFwek6YaeNhfqK2uAUrj fwFMYVnWXtoe7wh+1zdEReBzjbzfRBAAG01jvAmCgAO1EngpNp4AyNnnTmS23t4L V2bJptcSbpc0ZlDTbDy9J96WCyoUQWjQMU3Qj0Bwd6zD8aC6omU66iVozArmmamQ UhLm4u1PkKrMVkvWf9K9jIsFQU6QxBGND39O4LRuJrCd9fEGS08FhmMBeyItBzFf VxqJq9TsmSn8RaCiiyKIcU0KmhpgN8NJyHb3IZ+ppvMsw0VKDqjwovn7ONvWpq/Y gp7lkinPIaNKSUtCYkpYY9RanLtgQHBui9AQ5vWAw8QtbMZbwI9Iu0iQWxgjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjyVP6ZBGpRvRCXfwzyOzKBSkYdowHwYDVR0j BBgwFoAUd2fPSddmGvq0WHA0HYjS89mobOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTcwZDQ0ZS0wZjcwLTQ1YTMtYWYwNC04MWY0MjlkYjNhNWQvMC83NzY3Q0Y0OUQ3 NjYxQUZBQjQ1ODcwMzQxRDg4RDJGM0Q5QTg2Q0U0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNEOUE4 NkNFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrq8wDQYJ KoZIhvcNAQELBQADggEBAJcSs7Dvp3MwbvFKzX7juN+L6OA5w12bBFOotjAL5YMr 5k82b5mFiP7LM135qxsC20euZZXsgz1DlmdjCYc4fCc4JJqiEF21f3oBF0cw7VCt 0jiLDAeyWz4dTQusKNvLp8GxKlaL6iiRr95YpBPu3yeBeSfJlLUg2e5dRRPUfun5 pzEh0gss0wj8qfXzbhJ84q1cddNL1uoma5PPHQqcD0yeN4NbFLeImEQ5AqlPlSWN mybJ6DpAaPbvCf1S+aViFbqutDeXYrHbiQJaXQFG1f49+mPuxBvfw53mtwgRHcZk dMBAFLjZGYc857IGxMHw3BykOIkChOeeBul2yeote8k= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org