$ rpki-client -vvf repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/3130332e3137302e32342e302f32332d3234203d3e20313432333630.roa File: 3130332e3137302e32342e302f32332d3234203d3e20313432333630.roa (raw, json) Hash identifier: ZEIqrlpuQA8TZ6DDwCnPpX+cLrBZrQ4I6cTUW0D9+r8= Subject key identifier: 65:8A:B8:96:3B:8F:2A:C6:55:83:E2:40:14:D2:55:DB:95:D4:E0:76 Certificate issuer: /CN=AD5F121BCE742FD0358AE347D984F209BC381871 Certificate serial: 1A29E445A2108A8B7C13C28F9750B3228ECC42C4 Authority key identifier: AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5F121BCE742FD0358AE347D984F209BC381871.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/3130332e3137302e32342e302f32332d3234203d3e20313432333630.roa Signing time: Sat 20 Jul 2024 05:00:00 +0000 ROA not before: Sat 20 Jul 2024 04:55:00 +0000 ROA not after: Sat 19 Jul 2025 05:00:00 +0000 asID: 142360 IP address blocks: 103.170.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.crl rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5F121BCE742FD0358AE347D984F209BC381871.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:29:e4:45:a2:10:8a:8b:7c:13:c2:8f:97:50:b3:22:8e:cc:42:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD5F121BCE742FD0358AE347D984F209BC381871 Validity Not Before: Jul 20 04:55:00 2024 GMT Not After : Jul 19 05:00:00 2025 GMT Subject: CN=658AB8963B8F2AC65583E24014D255DB95D4E076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a6:e4:e6:67:aa:0c:ec:2d:b6:49:b2:da:c5: 77:4b:82:3f:b1:18:c0:b1:b5:8f:b9:f4:01:4e:04: bd:82:e9:0d:d9:33:ce:e6:05:a0:bd:b1:a9:6e:2e: 09:5d:9d:06:bc:92:14:3c:48:24:ec:26:98:b3:e1: 92:4e:0e:a8:e5:f0:1f:b1:db:f1:18:47:0c:3b:c0: f3:0b:40:c3:88:df:dc:4e:2f:69:6d:06:88:09:3a: ad:c5:85:7e:0b:77:ca:19:74:64:73:40:0c:c4:10: 80:39:71:d4:2c:a5:37:33:b2:3c:07:37:84:46:53: 23:5b:9f:05:5d:91:c1:94:a2:27:26:4b:ad:67:c0: 11:3e:df:d1:c4:4d:5b:68:af:4d:0b:17:5b:36:8f: 1f:56:0c:b2:3f:e1:9f:6f:59:0c:f9:e3:2c:be:b2: 99:d6:96:0d:51:30:3e:96:3a:8f:93:bd:28:a1:ae: 8b:74:04:3f:3a:65:b4:eb:49:31:b9:38:85:35:3f: 54:d7:96:e7:ed:37:18:eb:8b:83:e0:bf:66:d9:57: 12:e7:56:37:e9:ae:53:31:5a:47:8a:03:02:fc:2e: 41:4d:8d:97:79:23:fb:3c:94:4c:2e:fd:89:d8:ab: b7:40:fb:c4:0b:b4:7f:31:a9:a8:c9:eb:5d:4a:47: 20:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8A:B8:96:3B:8F:2A:C6:55:83:E2:40:14:D2:55:DB:95:D4:E0:76 X509v3 Authority Key Identifier: keyid:AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5F121BCE742FD0358AE347D984F209BC381871.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/3130332e3137302e32342e302f32332d3234203d3e20313432333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.24.0/23 Signature Algorithm: sha256WithRSAEncryption 09:44:f9:5b:05:8b:18:dd:81:d7:3e:1e:3a:4a:dc:65:c6:3b: d3:c2:2f:55:12:b8:39:34:2d:ba:ac:cc:cb:bc:b1:6c:ca:0d: 82:7f:de:71:95:03:0e:06:5f:5c:cf:ba:cb:47:3a:9d:1d:2a: dc:f0:68:e4:97:50:7e:2b:66:7a:cf:29:4a:2e:59:2d:61:68: e1:83:6f:d0:e7:2e:58:7b:46:3f:41:7e:de:1e:27:f8:3c:ca: 0a:7b:b9:7c:43:3f:8e:aa:56:4d:c6:61:02:0b:ab:d5:b3:96: b5:b9:c9:e7:53:5a:c7:34:34:e4:cf:39:34:38:fb:5f:17:60: d9:15:e5:bb:6a:cb:ca:d3:3f:a1:60:cd:e5:5b:62:21:13:73: 50:4c:93:6d:9c:59:18:ff:a9:2b:84:21:44:91:db:62:1c:e1: be:51:17:4a:82:ae:51:05:10:b7:c7:db:95:db:a0:bc:50:18: 48:e2:bc:cf:c7:d4:34:a0:8b:e2:cf:e9:d5:06:4f:9a:9f:c9: 84:96:1f:aa:f3:6c:b3:ab:7b:17:52:22:61:dc:3b:4a:6f:9c: 69:1c:da:a8:ee:bc:41:58:16:f7:b5:df:d0:86:0f:77:32:5b: 64:84:9c:29:21:93:51:13:8d:c9:b1:9c:2a:8d:d8:e3:30:66: 58:4c:8c:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGinkRaIQiot8E8KPl1CzIo7MQsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ1RjEyMUJDRTc0MkZEMDM1OEFFMzQ3RDk4NEYyMDlC QzM4MTg3MTAeFw0yNDA3MjAwNDU1MDBaFw0yNTA3MTkwNTAwMDBaMDMxMTAvBgNV BAMTKDY1OEFCODk2M0I4RjJBQzY1NTgzRTI0MDE0RDI1NURCOTVENEUwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvpuTmZ6oM7C22SbLaxXdLgj+x GMCxtY+59AFOBL2C6Q3ZM87mBaC9saluLgldnQa8khQ8SCTsJpiz4ZJODqjl8B+x 2/EYRww7wPMLQMOI39xOL2ltBogJOq3FhX4Ld8oZdGRzQAzEEIA5cdQspTczsjwH N4RGUyNbnwVdkcGUoicmS61nwBE+39HETVtor00LF1s2jx9WDLI/4Z9vWQz54yy+ spnWlg1RMD6WOo+TvSihrot0BD86ZbTrSTG5OIU1P1TXluftNxjri4Pgv2bZVxLn VjfprlMxWkeKAwL8LkFNjZd5I/s8lEwu/YnYq7dA+8QLtH8xqajJ611KRyBtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZYq4ljuPKsZVg+JAFNJV25XU4HYwHwYDVR0j BBgwFoAUrV8SG850L9A1iuNH2YTyCbw4GHEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjQwYjA5ZS1lOWY4LTQ4MjYtOTJiNS1iYTlkNTc1NzliMjYvMC9BRDVGMTIxQkNF NzQyRkQwMzU4QUUzNDdEOTg0RjIwOUJDMzgxODcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ1RjEyMUJDRTc0MkZEMDM1OEFFMzQ3RDk4NEYyMDlCQzM4 MTg3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDBiMDllLWU5ZjgtNDgyNi05 MmI1LWJhOWQ1NzU3OWIyNi8wLzMxMzAzMzJlMzEzNzMwMmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6oYMA0GCSqG SIb3DQEBCwUAA4IBAQAJRPlbBYsY3YHXPh46StxlxjvTwi9VErg5NC26rMzLvLFs yg2Cf95xlQMOBl9cz7rLRzqdHSrc8Gjkl1B+K2Z6zylKLlktYWjhg2/Q5y5Ye0Y/ QX7eHif4PMoKe7l8Qz+OqlZNxmECC6vVs5a1ucnnU1rHNDTkzzk0OPtfF2DZFeW7 asvK0z+hYM3lW2IhE3NQTJNtnFkY/6krhCFEkdtiHOG+URdKgq5RBRC3x9uV26C8 UBhI4rzPx9Q0oIviz+nVBk+an8mElh+q82yzq3sXUiJh3DtKb5xpHNqo7rxBWBb3 td/Qhg93MltkhJwpIZNRE43JsZwqjdjjMGZYTIzO -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org