$ rpki-client -vvf repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: Y894tdiQ2SK7ZtAbdyyCgDH4fuPwQfxtnJRFazcsN6o= Subject key identifier: 07:24:E9:29:DE:88:39:1A:82:D2:03:7B:10:AD:6B:F8:7B:E9:77:4F Certificate issuer: /CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Certificate serial: 7FFCDB7724E3A09D5B8B01D0D1D7D8FFD52AA0FA Authority key identifier: 13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa Signing time: Sat 19 Aug 2023 05:01:00 +0000 ROA not before: Sat 19 Aug 2023 04:56:00 +0000 ROA not after: Sat 17 Aug 2024 05:01:00 +0000 asID: 131111 IP address blocks: 103.174.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 03:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:fc:db:77:24:e3:a0:9d:5b:8b:01:d0:d1:d7:d8:ff:d5:2a:a0:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Validity Not Before: Aug 19 04:56:00 2023 GMT Not After : Aug 17 05:01:00 2024 GMT Subject: CN=0724E929DE88391A82D2037B10AD6BF87BE9774F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:aa:34:85:69:f2:10:c6:d0:ab:e7:d1:7b: 1c:ac:23:fa:49:0b:6a:c9:59:87:f3:d3:eb:48:50: 0f:cd:31:07:93:8f:e8:10:6b:d6:75:ec:e2:4f:da: 25:1b:4a:d9:48:d5:24:96:1c:82:95:93:6f:3c:e5: ca:c3:9c:e9:0b:a0:09:92:ca:a5:9f:49:a5:56:98: 51:7c:83:a1:65:b6:a1:5a:5c:e0:90:36:14:d5:ea: c3:ff:26:be:b6:5d:1b:4a:36:15:ce:78:9d:40:8b: 27:fb:fc:d4:76:9c:45:da:e2:c0:c0:c7:3e:91:74: bf:ce:ca:68:99:a5:5c:a4:36:05:f2:bd:16:1e:6f: dd:3e:9d:d3:d3:d1:bf:b1:4e:82:13:59:73:c5:c8: ca:78:4d:55:5c:f9:36:fb:76:5f:42:4f:08:da:e2: ac:ea:21:b6:ff:9b:3e:51:c3:be:bc:e4:66:f5:df: 38:99:e3:01:3b:f8:d8:d6:69:ef:b0:d0:d7:59:0f: fc:9f:a5:6b:ae:17:0f:68:b0:e1:a3:74:cf:3f:c6: e3:ec:06:a9:ef:aa:12:83:d1:f6:b8:b4:c2:21:ea: fa:74:32:af:23:94:ff:e5:c5:a8:9c:f5:1e:f1:37: 3b:0f:24:d4:35:56:f8:bb:8e:9c:63:dc:81:79:19: 08:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:24:E9:29:DE:88:39:1A:82:D2:03:7B:10:AD:6B:F8:7B:E9:77:4F X509v3 Authority Key Identifier: keyid:13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.24.0/23 Signature Algorithm: sha256WithRSAEncryption 69:39:82:23:00:f9:59:51:c7:45:96:d9:89:e8:cf:98:79:19: 88:94:c4:06:07:f7:c2:74:36:08:d6:b3:f6:39:3c:b1:91:69: 05:27:c8:34:03:b0:5c:ba:cc:af:3e:48:2a:7f:0e:2b:2a:91: a3:f9:f8:46:59:a7:fc:51:8b:24:9f:69:4c:0a:cd:37:a4:43: a0:df:82:12:0e:d7:02:0c:55:4a:d4:35:d0:ea:bf:3e:17:3d: 11:c6:02:a9:bf:24:2a:e8:d1:c0:6d:f8:9e:c1:c5:2d:e9:6d: 22:94:ea:b8:0d:39:4e:08:8b:26:99:e1:b2:b2:0f:ce:83:e0: 65:6f:6b:3d:82:47:86:d1:5e:41:5a:12:14:e7:25:8b:ed:b4: 2c:8b:fb:a3:cd:75:ed:d5:d6:23:11:09:ba:11:b4:f2:b0:bd: 0f:01:41:f3:2d:fc:e8:12:85:16:a4:d6:6e:02:8f:67:c6:28: 45:96:a9:0c:83:50:af:75:3f:9f:eb:10:e7:9f:92:b6:db:58: 1c:1f:0c:39:38:7a:75:bc:c8:16:36:d4:f0:06:6f:de:a2:5b: 79:fb:24:ac:8e:ab:99:16:42:05:ef:86:41:e4:5b:f2:23:43: ce:ef:72:53:c9:cb:3f:ad:00:a1:38:b0:db:7c:e4:06:e8:61: 28:2f:18:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf/zbdyTjoJ1biwHQ0dfY/9UqoPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNC MDRGRENCRTAeFw0yMzA4MTkwNDU2MDBaFw0yNDA4MTcwNTAxMDBaMDMxMTAvBgNV BAMTKDA3MjRFOTI5REU4ODM5MUE4MkQyMDM3QjEwQUQ2QkY4N0JFOTc3NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Bao0hWnyEMbQq+fRexysI/pJ C2rJWYfz0+tIUA/NMQeTj+gQa9Z17OJP2iUbStlI1SSWHIKVk2885crDnOkLoAmS yqWfSaVWmFF8g6FltqFaXOCQNhTV6sP/Jr62XRtKNhXOeJ1Aiyf7/NR2nEXa4sDA xz6RdL/OymiZpVykNgXyvRYeb90+ndPT0b+xToITWXPFyMp4TVVc+Tb7dl9CTwja 4qzqIbb/mz5Rw7685Gb13ziZ4wE7+NjWae+w0NdZD/yfpWuuFw9osOGjdM8/xuPs BqnvqhKD0fa4tMIh6vp0Mq8jlP/lxaic9R7xNzsPJNQ1Vvi7jpxj3IF5GQhRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUByTpKd6IORqC0gN7EK1r+Hvpd08wHwYDVR0j BBgwFoAUExgHvdqvl+1yIU37xcU5rLBP3L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjI1Yjk2OC0wOTI3LTQ1OTQtODg3ZS02N2Y1M2Y5NjdiMTIvMC8xMzE4MDdCRERB QUY5N0VENzIyMTRERkJDNUM1MzlBQ0IwNEZEQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNCMDRG RENCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMjViOTY4LTA5MjctNDU5NC04 ODdlLTY3ZjUzZjk2N2IxMi8wLzMxMzAzMzJlMzEzNzM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64YMA0GCSqG SIb3DQEBCwUAA4IBAQBpOYIjAPlZUcdFltmJ6M+YeRmIlMQGB/fCdDYI1rP2OTyx kWkFJ8g0A7BcusyvPkgqfw4rKpGj+fhGWaf8UYskn2lMCs03pEOg34ISDtcCDFVK 1DXQ6r8+Fz0RxgKpvyQq6NHAbfiewcUt6W0ilOq4DTlOCIsmmeGysg/Og+Blb2s9 gkeG0V5BWhIU5yWL7bQsi/ujzXXt1dYjEQm6EbTysL0PAUHzLfzoEoUWpNZuAo9n xihFlqkMg1CvdT+f6xDnn5K221gcHww5OHp1vMgWNtTwBm/eolt5+ySsjquZFkIF 74ZB5FvyI0PO73JTycs/rQChOLDbfOQG6GEoLxi+ -----END CERTIFICATE-----Generated at Thu Apr 18 03:33:44 2024 by rpki-client on console-ams.rpki-client.org