$ rpki-client -vvf repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa File: 3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa (raw, json) Hash identifier: fB2RJu2KYhnfxlDWynZLpCc1O6xeOkI0WdH4T1VR/HA= Subject key identifier: C7:E9:E6:FD:4B:55:E2:0A:65:04:C6:AC:4E:D7:31:0E:C6:68:E1:A9 Certificate issuer: /CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70 Certificate serial: 5A704128593B31539A0B8B1C45905D5B4D19F6A8 Authority key identifier: C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa Signing time: Mon 15 Jan 2024 22:00:00 +0000 ROA not before: Mon 15 Jan 2024 21:55:00 +0000 ROA not after: Mon 13 Jan 2025 22:00:00 +0000 asID: 147170 IP address blocks: 103.174.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.crl rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:70:41:28:59:3b:31:53:9a:0b:8b:1c:45:90:5d:5b:4d:19:f6:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70 Validity Not Before: Jan 15 21:55:00 2024 GMT Not After : Jan 13 22:00:00 2025 GMT Subject: CN=C7E9E6FD4B55E20A6504C6AC4ED7310EC668E1A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:e9:64:ba:de:48:50:44:bf:55:cf:8e:e7: ab:47:91:e9:ef:61:b6:3f:21:00:86:8e:f9:18:21: 83:2b:1b:92:40:a9:a1:1a:94:f8:cf:e1:2b:52:12: 49:0a:18:09:b9:60:a2:2c:82:d8:7d:87:27:6f:b9: e4:51:97:3b:fb:44:10:9b:bb:10:3b:8b:6f:1e:ea: 02:b1:74:f5:f9:83:5c:3c:bd:f1:c6:e7:21:12:c3: b0:25:5d:14:61:c8:ce:10:50:b8:c2:ce:13:6f:5d: ef:5c:40:9e:a2:f1:8a:4b:69:52:d1:29:4e:4b:24: c5:cd:84:b8:70:48:49:84:a1:c1:d3:29:39:5c:ff: 02:06:e1:fe:16:bd:7b:80:d3:df:bd:fc:15:a9:0a: 7d:71:c6:13:7f:f4:9b:d0:be:59:22:af:98:56:88: cc:ad:ac:4e:27:d2:cc:11:d2:f0:5e:7f:4e:f3:b2: ce:ec:25:14:1d:14:b5:f7:2e:c5:be:a6:c6:5b:70: c1:5c:c1:99:34:a8:05:0e:df:56:3a:24:01:5d:13: af:66:bc:a2:ed:e7:c5:22:98:e6:1e:63:78:10:80: c6:ee:cf:74:01:b1:30:44:6a:ea:75:b1:58:0d:e9: e2:86:d2:0d:35:13:b3:26:f3:c5:0b:3c:7d:87:e7: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E9:E6:FD:4B:55:E2:0A:65:04:C6:AC:4E:D7:31:0E:C6:68:E1:A9 X509v3 Authority Key Identifier: keyid:C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.13.0/24 Signature Algorithm: sha256WithRSAEncryption 19:6c:d7:27:02:23:b3:ae:1f:03:8d:61:65:ec:56:2d:29:f0: 8a:89:6b:4f:43:75:08:a2:c1:52:3a:ed:db:4b:f0:9c:28:51: 20:33:6b:0c:27:0b:f4:5e:d0:9f:91:98:7e:4b:c9:a9:d1:8b: 23:0b:f1:f3:8c:94:63:31:df:d8:6c:33:de:6a:fd:76:09:44: f9:88:df:c7:ab:64:71:35:46:d7:2d:33:f5:ea:f4:cf:7f:6e: 30:43:71:6b:2c:39:83:4b:11:1b:97:50:28:3a:1d:b2:30:c5: 83:62:cf:44:53:38:f0:78:af:69:b2:7f:ae:40:7f:2a:09:c2: 10:b4:64:fd:40:b6:37:14:f4:15:e7:d1:fd:84:a2:54:eb:b2: 63:87:74:f2:3e:ed:20:5e:48:23:2e:f3:61:82:f1:55:e5:3d: 9b:a8:a0:5a:ae:54:f8:e4:57:31:13:08:ac:68:47:a6:75:86: d6:4e:b2:13:e0:6b:1a:1e:d8:d1:67:4d:92:84:cc:d9:fa:87: 22:37:4f:ad:fe:89:6d:91:1b:27:0e:97:11:87:5f:87:ec:27: 75:1b:cb:fa:94:85:ee:21:84:8d:29:80:f9:2a:2c:e2:1f:b3: 06:e5:93:d1:54:3d:3f:a1:c9:99:f2:8e:36:47:3a:ce:0c:22: b3:c1:53:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWnBBKFk7MVOaC4scRZBdW00Z9qgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIw MEVGNUM3MDAeFw0yNDAxMTUyMTU1MDBaFw0yNTAxMTMyMjAwMDBaMDMxMTAvBgNV BAMTKEM3RTlFNkZENEI1NUUyMEE2NTA0QzZBQzRFRDczMTBFQzY2OEUxQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXZOlkut5IUES/Vc+O56tHkenv YbY/IQCGjvkYIYMrG5JAqaEalPjP4StSEkkKGAm5YKIsgth9hydvueRRlzv7RBCb uxA7i28e6gKxdPX5g1w8vfHG5yESw7AlXRRhyM4QULjCzhNvXe9cQJ6i8YpLaVLR KU5LJMXNhLhwSEmEocHTKTlc/wIG4f4WvXuA09+9/BWpCn1xxhN/9JvQvlkir5hW iMytrE4n0swR0vBef07zss7sJRQdFLX3LsW+psZbcMFcwZk0qAUO31Y6JAFdE69m vKLt58UimOYeY3gQgMbuz3QBsTBEaup1sVgN6eKG0g01E7Mm88ULPH2H56OnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx+nm/UtV4gplBMasTtcxDsZo4akwHwYDVR0j BBgwFoAUx4TI7m9848hH/L0czfIycgDvXHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRlMWYwZS0yMzFmLTQ0Y2UtOTBjMy0zMmFjZGY5ZDI2YzAvMC9DNzg0QzhFRTZG N0NFM0M4NDdGQ0JEMUNDREYyMzI3MjAwRUY1QzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIwMEVG NUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGUxZjBlLTIzMWYtNDRjZS05 MGMzLTMyYWNkZjlkMjZjMC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64NMA0GCSqG SIb3DQEBCwUAA4IBAQAZbNcnAiOzrh8DjWFl7FYtKfCKiWtPQ3UIosFSOu3bS/Cc KFEgM2sMJwv0XtCfkZh+S8mp0YsjC/HzjJRjMd/YbDPeav12CUT5iN/Hq2RxNUbX LTP16vTPf24wQ3FrLDmDSxEbl1AoOh2yMMWDYs9EUzjweK9psn+uQH8qCcIQtGT9 QLY3FPQV59H9hKJU67Jjh3TyPu0gXkgjLvNhgvFV5T2bqKBarlT45FcxEwisaEem dYbWTrIT4GsaHtjRZ02ShMzZ+ociN0+t/oltkRsnDpcRh1+H7Cd1G8v6lIXuIYSN KYD5KiziH7MG5ZPRVD0/ocmZ8o42RzrODCKzwVMw -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org