$ rpki-client -vvf repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa File: 3130332e3137382e38362e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: L0+ufR2O1ax5oE/AG50W3KROh6ggSv3rdUyms/8wcSk= Subject key identifier: A4:87:36:68:48:36:58:1D:85:BB:C0:38:71:6E:7C:E1:0B:21:F8:F1 Certificate issuer: /CN=A62202F88CE61D6BD47195FB36103CDD061D7D27 Certificate serial: 4A12F2E3C55968B4615BA88200451DCFD510AF06 Authority key identifier: A6:22:02:F8:8C:E6:1D:6B:D4:71:95:FB:36:10:3C:DD:06:1D:7D:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A62202F88CE61D6BD47195FB36103CDD061D7D27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa Signing time: Sun 14 Jul 2024 23:57:24 +0000 ROA not before: Sun 14 Jul 2024 23:52:24 +0000 ROA not after: Sun 13 Jul 2025 23:57:24 +0000 asID: 48465 IP address blocks: 103.178.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/A62202F88CE61D6BD47195FB36103CDD061D7D27.crl rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/A62202F88CE61D6BD47195FB36103CDD061D7D27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A62202F88CE61D6BD47195FB36103CDD061D7D27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:12:f2:e3:c5:59:68:b4:61:5b:a8:82:00:45:1d:cf:d5:10:af:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A62202F88CE61D6BD47195FB36103CDD061D7D27 Validity Not Before: Jul 14 23:52:24 2024 GMT Not After : Jul 13 23:57:24 2025 GMT Subject: CN=A48736684836581D85BBC038716E7CE10B21F8F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:9f:90:02:e2:8c:0c:55:43:df:cc:46:89: 87:d2:e1:f8:92:e6:8a:e2:e1:12:64:79:b1:b2:e7: e6:f0:70:b0:60:14:a9:04:1a:ce:9f:16:8a:90:21: c3:6c:30:2b:02:c5:c9:67:fe:46:a1:e6:ef:5b:1b: bb:02:22:e2:90:8c:cd:9b:2e:d6:ec:88:9e:f1:2a: 06:cd:0e:c5:7c:7a:e9:01:77:b1:d8:1e:42:2d:7d: 2e:81:a9:30:45:dc:74:2b:d3:ba:5d:ec:2d:21:57: c3:56:2e:46:a1:3e:3c:a4:f8:66:c3:92:5a:01:b7: 47:fa:ef:a5:19:d1:99:3d:bd:d2:0d:d1:8f:f6:ac: 2b:18:08:32:e4:bb:32:e9:1c:c0:0c:01:32:57:c9: 0e:6c:ff:2f:ce:01:cd:92:fb:88:da:ea:e9:ee:b1: c5:99:5f:3f:65:53:bf:e2:9b:c7:60:b9:d8:33:b5: 69:5e:8d:be:ab:99:5e:e7:6e:63:6f:42:a6:58:65: 1e:d9:64:b4:24:13:4b:64:ab:bd:ba:96:d5:c8:dc: 18:7f:9c:14:68:13:d9:e0:ea:40:e5:75:e7:f1:eb: ef:79:3c:46:b3:17:9c:b7:79:65:85:ec:13:2a:8a: b2:00:63:de:86:ec:23:dc:a6:8c:69:69:91:bb:0e: 73:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:36:68:48:36:58:1D:85:BB:C0:38:71:6E:7C:E1:0B:21:F8:F1 X509v3 Authority Key Identifier: keyid:A6:22:02:F8:8C:E6:1D:6B:D4:71:95:FB:36:10:3C:DD:06:1D:7D:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/A62202F88CE61D6BD47195FB36103CDD061D7D27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A62202F88CE61D6BD47195FB36103CDD061D7D27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.86.0/24 Signature Algorithm: sha256WithRSAEncryption 12:97:d9:a5:fe:ae:4b:5f:fc:80:81:ad:27:0f:c5:22:e9:d9: e4:a7:8f:e2:13:fc:d1:a4:08:f2:f6:a9:3e:24:23:5a:7f:63: 4a:50:38:75:3e:c4:d2:83:d3:db:0e:d1:6e:92:68:b5:31:2c: 7e:b6:82:a8:7e:a6:76:7a:99:f2:9e:6f:91:4d:52:9e:88:d5: 7b:d0:08:37:6e:b3:52:f9:5a:44:31:e2:9c:6d:a2:4f:01:39: f8:a5:c7:52:8f:a1:88:7b:9f:23:c6:f0:b1:34:61:e0:e9:8c: 9f:85:f7:22:41:42:aa:70:32:9d:ae:06:69:c2:f2:3b:7b:e0: 47:24:e7:47:dc:95:09:47:f7:b9:90:79:1f:c8:e1:f7:ce:3a: 92:7f:94:2e:6c:9c:5a:55:9b:ea:2a:5d:87:97:4e:40:df:05: 80:8e:ff:43:27:02:7f:de:b1:7e:b3:cd:89:c7:c2:e7:69:4f: d9:92:1e:b1:ac:3e:f7:45:79:47:69:00:97:31:09:bd:38:b6: e3:12:53:85:f2:30:67:89:33:11:7b:50:e4:15:09:00:ac:1d: cf:cb:e3:07:b3:8c:32:dd:89:a2:3e:a6:01:e8:b1:bc:d7:17: dc:65:d3:65:31:60:d8:94:69:e6:70:e0:a0:51:7d:77:ae:c0: ed:59:ca:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUShLy48VZaLRhW6iCAEUdz9UQrwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYyMjAyRjg4Q0U2MUQ2QkQ0NzE5NUZCMzYxMDNDREQw NjFEN0QyNzAeFw0yNDA3MTQyMzUyMjRaFw0yNTA3MTMyMzU3MjRaMDMxMTAvBgNV BAMTKEE0ODczNjY4NDgzNjU4MUQ4NUJCQzAzODcxNkU3Q0UxMEIyMUY4RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEX5+QAuKMDFVD38xGiYfS4fiS 5ori4RJkebGy5+bwcLBgFKkEGs6fFoqQIcNsMCsCxcln/kah5u9bG7sCIuKQjM2b LtbsiJ7xKgbNDsV8eukBd7HYHkItfS6BqTBF3HQr07pd7C0hV8NWLkahPjyk+GbD kloBt0f676UZ0Zk9vdIN0Y/2rCsYCDLkuzLpHMAMATJXyQ5s/y/OAc2S+4ja6unu scWZXz9lU7/im8dgudgztWlejb6rmV7nbmNvQqZYZR7ZZLQkE0tkq726ltXI3Bh/ nBRoE9ng6kDldefx6+95PEazF5y3eWWF7BMqirIAY96G7CPcpoxpaZG7DnONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpIc2aEg2WB2Fu8A4cW584Qsh+PEwHwYDVR0j BBgwFoAUpiIC+IzmHWvUcZX7NhA83QYdfScwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDczODMxNC1hOTc1LTRmZDEtOWJjOS01MjEzOGY4M2I1NmUvMC9BNjIyMDJGODhD RTYxRDZCRDQ3MTk1RkIzNjEwM0NERDA2MUQ3RDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTYyMjAyRjg4Q0U2MUQ2QkQ0NzE5NUZCMzYxMDNDREQwNjFE N0QyNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNzM4MzE0LWE5NzUtNGZkMS05 YmM5LTUyMTM4ZjgzYjU2ZS8wLzMxMzAzMzJlMzEzNzM4MmUzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeyVjANBgkqhkiG 9w0BAQsFAAOCAQEAEpfZpf6uS1/8gIGtJw/FIunZ5KeP4hP80aQI8vapPiQjWn9j SlA4dT7E0oPT2w7RbpJotTEsfraCqH6mdnqZ8p5vkU1SnojVe9AIN26zUvlaRDHi nG2iTwE5+KXHUo+hiHufI8bwsTRh4OmMn4X3IkFCqnAyna4GacLyO3vgRyTnR9yV CUf3uZB5H8jh9846kn+ULmycWlWb6ipdh5dOQN8FgI7/QycCf96xfrPNicfC52lP 2ZIesaw+90V5R2kAlzEJvTi24xJThfIwZ4kzEXtQ5BUJAKwdz8vjB7OMMt2Joj6m AeixvNcX3GXTZTFg2JRp5nDgoFF9d67A7VnK5w== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org