$ rpki-client -vvf repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137392e302f32342d3234203d3e20313530323236.roa File: 3130332e31372e3137392e302f32342d3234203d3e20313530323236.roa (raw, json) Hash identifier: zZiAzMvnjGpr4Mq+/OGXUdFHQPaHJLr/tCxwWuWhySI= Subject key identifier: C6:FF:2D:7E:31:F0:1A:98:3E:FF:CB:94:7E:5C:95:B0:96:DD:8B:34 Certificate issuer: /CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA Certificate serial: 5A45FD755FF9393939C33F1A600367FFBFFD4CC9 Authority key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137392e302f32342d3234203d3e20313530323236.roa Signing time: Wed 13 Nov 2024 05:02:29 +0000 ROA not before: Wed 13 Nov 2024 04:57:29 +0000 ROA not after: Wed 12 Nov 2025 05:02:29 +0000 asID: 150226 IP address blocks: 103.17.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.crl rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:45:fd:75:5f:f9:39:39:39:c3:3f:1a:60:03:67:ff:bf:fd:4c:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA Validity Not Before: Nov 13 04:57:29 2024 GMT Not After : Nov 12 05:02:29 2025 GMT Subject: CN=C6FF2D7E31F01A983EFFCB947E5C95B096DD8B34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c6:78:89:23:92:81:15:c0:b8:b8:8a:cf:96: 89:07:dd:5b:42:5f:15:41:c9:2b:ee:c4:89:95:ce: eb:05:27:63:f4:91:6f:59:e3:e7:60:bd:e2:c9:51: c5:d0:85:27:6e:b6:d3:c6:2a:48:c4:d7:da:b5:a5: 42:91:ed:8f:36:c6:18:f3:da:96:df:c2:98:8b:ec: 86:13:e0:e8:d6:78:e4:28:4e:b4:64:d0:d6:ac:21: c1:9d:af:bc:e5:b1:5f:ee:a4:5b:b8:8c:bc:fc:c1: 70:0e:79:36:db:e0:f8:7b:ee:c0:82:e5:12:a2:6f: 8f:d2:9b:4c:fb:bb:fd:2c:99:2c:4c:24:62:2b:31: 42:69:ca:48:48:9e:87:ed:f3:76:b4:43:c3:0c:a4: 70:86:0c:2b:9a:76:6f:1e:bb:c4:05:84:00:9d:d0: 1e:41:0d:8b:f2:63:a6:0d:26:5a:47:c0:34:5d:37: 58:1f:c0:e8:17:a0:06:5d:0e:95:39:77:88:ba:c1: 18:58:87:bd:23:51:51:74:b8:23:d4:dc:c2:ec:f4: 78:b8:51:04:60:a3:4b:6c:9f:f1:c5:14:90:04:9e: 0a:b9:06:58:2c:fc:ca:93:17:da:ff:13:a9:9d:d1: ba:7a:11:14:8f:f1:ee:70:58:24:81:19:c1:4f:cf: b8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:FF:2D:7E:31:F0:1A:98:3E:FF:CB:94:7E:5C:95:B0:96:DD:8B:34 X509v3 Authority Key Identifier: keyid:87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137392e302f32342d3234203d3e20313530323236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.179.0/24 Signature Algorithm: sha256WithRSAEncryption aa:6a:a2:53:f4:e6:06:38:8d:b1:95:81:e1:86:8a:c7:5e:76: 64:03:42:00:67:15:a2:1f:14:17:e1:d3:0f:c0:d7:49:42:2f: 47:7f:9c:35:17:df:7d:60:0d:28:dc:bd:40:a1:e3:9f:53:76: ae:98:26:e7:8c:c1:d8:1b:25:7a:ce:b3:08:35:a1:6a:33:78: 95:f1:d4:d6:ca:65:80:92:4a:4b:28:4d:76:74:a7:91:a1:fd: 0c:3f:80:d5:59:d0:b2:28:17:32:8e:47:ea:11:89:e1:b5:1d: 70:c1:60:d7:7d:75:0e:c0:93:e0:8a:b7:5c:90:c7:1a:a2:bc: c8:67:bf:bd:59:b8:0f:f7:1f:46:eb:a3:72:cf:04:6f:d5:c3: cf:fb:94:b6:17:ad:e9:49:b5:e5:22:a2:6a:ba:a4:0f:65:21: 62:42:e2:58:90:a8:21:54:a0:e7:55:d5:10:76:61:ca:16:50: 30:e1:df:a1:b9:ab:fd:5e:d7:0a:39:f7:a2:cf:de:04:8c:94: f7:7d:d5:63:b1:87:6a:08:c9:7c:f6:43:12:a8:1b:cf:ea:2c: 8a:80:16:04:78:b1:48:b8:fd:c6:1a:f5:1b:71:ce:f4:26:61: e8:f1:b0:0a:d4:4c:18:4c:4f:63:87:23:ca:b5:bd:b3:4e:7c: c4:2d:ba:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWkX9dV/5OTk5wz8aYANn/7/9TMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxMUQwNUQ4MkJBRkI3QkVBQjI3NUUwNzlBNzJEREQ1 NTQwNjRFQTAeFw0yNDExMTMwNDU3MjlaFw0yNTExMTIwNTAyMjlaMDMxMTAvBgNV BAMTKEM2RkYyRDdFMzFGMDFBOTgzRUZGQ0I5NDdFNUM5NUIwOTZERDhCMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuxniJI5KBFcC4uIrPlokH3VtC XxVBySvuxImVzusFJ2P0kW9Z4+dgveLJUcXQhSduttPGKkjE19q1pUKR7Y82xhjz 2pbfwpiL7IYT4OjWeOQoTrRk0NasIcGdr7zlsV/upFu4jLz8wXAOeTbb4Ph77sCC 5RKib4/Sm0z7u/0smSxMJGIrMUJpykhInoft83a0Q8MMpHCGDCuadm8eu8QFhACd 0B5BDYvyY6YNJlpHwDRdN1gfwOgXoAZdDpU5d4i6wRhYh70jUVF0uCPU3MLs9Hi4 UQRgo0tsn/HFFJAEngq5Blgs/MqTF9r/E6md0bp6ERSP8e5wWCSBGcFPz7hrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxv8tfjHwGpg+/8uUflyVsJbdizQwHwYDVR0j BBgwFoAUhxHQXYK6+3vqsnXgeact3VVAZOowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWY4MzdiMy1kZmQyLTQyY2MtOWI3OS03NGI2YmFmZDRlMmQvMC84NzExRDA1RDgy QkFGQjdCRUFCMjc1RTA3OUE3MkRERDU1NDA2NEVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODcxMUQwNUQ4MkJBRkI3QkVBQjI3NUUwNzlBNzJEREQ1NTQw NjRFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZjgzN2IzLWRmZDItNDJjYy05 Yjc5LTc0YjZiYWZkNGUyZC8wLzMxMzAzMzJlMzEzNzJlMzEzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxGzMA0GCSqG SIb3DQEBCwUAA4IBAQCqaqJT9OYGOI2xlYHhhorHXnZkA0IAZxWiHxQX4dMPwNdJ Qi9Hf5w1F999YA0o3L1AoeOfU3aumCbnjMHYGyV6zrMINaFqM3iV8dTWymWAkkpL KE12dKeRof0MP4DVWdCyKBcyjkfqEYnhtR1wwWDXfXUOwJPgirdckMcaorzIZ7+9 WbgP9x9G66NyzwRv1cPP+5S2F63pSbXlIqJquqQPZSFiQuJYkKghVKDnVdUQdmHK FlAw4d+huav9XtcKOfeiz94EjJT3fdVjsYdqCMl89kMSqBvP6iyKgBYEeLFIuP3G GvUbcc70JmHo8bAK1EwYTE9jhyPKtb2zTnzELbpG -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org