$ rpki-client -vvf repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa File: 3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa (raw, json) Hash identifier: tAC47GZWAk57N7JUQK/yK+bfJXVME8gsmEtBrgW13QQ= Subject key identifier: 75:F6:CA:84:DE:97:C8:DB:FE:FA:19:E6:1B:BB:7D:5C:39:1E:2E:A3 Certificate issuer: /CN=1472DDF3B8546A8B201733914AFB7036FC6742F3 Certificate serial: 7F94BFD82E12544C51FB055B57B911AEE6663831 Authority key identifier: 14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa Signing time: Wed 17 Apr 2024 10:09:22 +0000 ROA not before: Wed 17 Apr 2024 10:04:22 +0000 ROA not after: Wed 16 Apr 2025 10:09:22 +0000 asID: 138855 IP address blocks: 103.170.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.crl rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:94:bf:d8:2e:12:54:4c:51:fb:05:5b:57:b9:11:ae:e6:66:38:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1472DDF3B8546A8B201733914AFB7036FC6742F3 Validity Not Before: Apr 17 10:04:22 2024 GMT Not After : Apr 16 10:09:22 2025 GMT Subject: CN=75F6CA84DE97C8DBFEFA19E61BBB7D5C391E2EA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e2:42:98:e9:64:f3:0d:0d:b9:e7:29:ca:bc: 96:c6:a3:90:00:a5:f2:cf:b3:dc:a7:0e:a7:e8:e5: dd:8d:32:1b:82:37:c9:20:6f:b9:b3:bc:6c:a1:dc: d7:ed:a6:3f:d4:6a:9f:48:e1:a2:d2:d3:3a:f7:1b: 63:cd:82:06:78:ef:f0:d7:bf:bb:40:6a:46:35:5d: a3:77:a7:de:b3:f4:04:34:a9:da:60:d8:39:44:2f: 0a:03:43:6a:da:6a:43:36:e7:a0:90:87:fe:51:42: 0a:26:b5:37:0a:a4:1f:b4:cf:d6:b1:c8:9c:87:42: b0:a1:af:ea:8b:7f:69:e2:73:0d:f5:ab:a8:88:ae: 9b:9b:45:b3:a6:f6:7d:4f:a2:d7:2b:18:2d:ba:44: 87:0a:79:cf:81:6d:75:ab:5f:d9:81:96:6e:ac:e9: 8c:af:ca:b6:4f:b4:7e:ad:10:53:61:6f:53:d6:5e: 31:1b:96:2f:e7:e6:00:19:61:f9:2c:ee:a7:27:de: 4c:37:2e:0e:6b:71:0e:45:b7:78:4c:59:8c:3a:e9: e5:6a:4a:67:17:dd:40:f7:9b:15:39:c2:95:c8:f1: 57:b3:04:4d:02:8b:c5:68:4a:bb:f7:52:f4:b7:d5: 5f:cf:e0:12:93:f4:51:9a:4f:10:00:1a:e9:10:b3: db:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F6:CA:84:DE:97:C8:DB:FE:FA:19:E6:1B:BB:7D:5C:39:1E:2E:A3 X509v3 Authority Key Identifier: keyid:14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.196.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:2b:ce:3d:fc:49:1f:92:e6:69:f6:7d:4c:cf:05:45:85:eb: 1e:a0:33:31:a8:b2:40:2d:11:9f:ea:50:0f:3c:60:70:27:a6: 5e:e8:88:4a:94:0b:65:48:95:6b:42:da:60:92:3b:cc:3b:ff: 30:b9:07:dd:74:09:a5:e0:e2:5c:1b:36:4c:fd:2c:56:73:0c: 6e:74:cd:bf:21:6d:a9:38:dd:8d:34:8a:5e:28:9e:3d:23:be: 75:dd:56:65:ff:37:4d:ea:f7:00:6c:b6:7e:d9:6f:ad:a4:a9: 6b:71:83:82:c6:c7:51:b8:92:6c:79:22:db:b8:90:4e:39:76: 9a:3a:ac:87:e3:a3:20:b8:a6:9a:6c:7f:3c:8d:9e:9a:36:b1: 56:ce:3b:dd:14:5b:8b:f6:76:48:42:7b:2d:de:07:44:18:48: e6:1a:98:76:9a:f1:b1:1b:b0:fc:cf:d0:1c:85:a9:b5:94:04: f3:09:3b:56:a2:21:8c:a1:f6:ce:f9:78:d9:73:c4:ac:34:4f: 52:c0:b2:e9:8a:bd:5a:38:5e:a5:8e:d7:42:ea:18:3d:86:7d: c0:54:fc:b5:3e:a1:89:d9:af:e0:8e:8d:fd:94:58:b2:e6:d9: e2:87:f3:36:d7:4e:9f:38:49:30:db:d8:28:2a:88:67:d4:09: 01:6a:e2:8c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf5S/2C4SVExR+wVbV7kRruZmODEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ3MkRERjNCODU0NkE4QjIwMTczMzkxNEFGQjcwMzZG QzY3NDJGMzAeFw0yNDA0MTcxMDA0MjJaFw0yNTA0MTYxMDA5MjJaMDMxMTAvBgNV BAMTKDc1RjZDQTg0REU5N0M4REJGRUZBMTlFNjFCQkI3RDVDMzkxRTJFQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO4kKY6WTzDQ255ynKvJbGo5AA pfLPs9ynDqfo5d2NMhuCN8kgb7mzvGyh3Nftpj/Uap9I4aLS0zr3G2PNggZ47/DX v7tAakY1XaN3p96z9AQ0qdpg2DlELwoDQ2raakM256CQh/5RQgomtTcKpB+0z9ax yJyHQrChr+qLf2nicw31q6iIrpubRbOm9n1PotcrGC26RIcKec+BbXWrX9mBlm6s 6YyvyrZPtH6tEFNhb1PWXjEbli/n5gAZYfks7qcn3kw3Lg5rcQ5Ft3hMWYw66eVq SmcX3UD3mxU5wpXI8VezBE0Ci8VoSrv3UvS31V/P4BKT9FGaTxAAGukQs9tXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdfbKhN6XyNv++hnmG7t9XDkeLqMwHwYDVR0j BBgwFoAUFHLd87hUaosgFzORSvtwNvxnQvMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTFhNzQ2ZS01M2UzLTRjMjMtYjllNS1mNjRmM2VmM2QxMzYvMC8xNDcyRERGM0I4 NTQ2QThCMjAxNzMzOTE0QUZCNzAzNkZDNjc0MkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQ3MkRERjNCODU0NkE4QjIwMTczMzkxNEFGQjcwMzZGQzY3 NDJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMWE3NDZlLTUzZTMtNGMyMy1i OWU1LWY2NGYzZWYzZDEzNi8wLzMxMzAzMzJlMzEzNzMwMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqsQwDQYJ KoZIhvcNAQELBQADggEBAIorzj38SR+S5mn2fUzPBUWF6x6gMzGoskAtEZ/qUA88 YHAnpl7oiEqUC2VIlWtC2mCSO8w7/zC5B910CaXg4lwbNkz9LFZzDG50zb8hbak4 3Y00il4onj0jvnXdVmX/N03q9wBstn7Zb62kqWtxg4LGx1G4kmx5Itu4kE45dpo6 rIfjoyC4pppsfzyNnpo2sVbOO90UW4v2dkhCey3eB0QYSOYamHaa8bEbsPzP0ByF qbWUBPMJO1aiIYyh9s75eNlzxKw0T1LAsumKvVo4XqWO10LqGD2GfcBU/LU+oYnZ r+COjf2UWLLm2eKH8zbXTp84STDb2CgqiGfUCQFq4ow= -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org