$ rpki-client -vvf repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa File: 3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: +ESPL9RiV1kXE5HVVZEJFevVqgb2FPlNrLYphfud9Dg= Subject key identifier: 79:08:E5:03:BD:97:00:53:C7:59:E7:2F:46:07:BC:30:90:29:11:B1 Certificate issuer: /CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Certificate serial: 74CD01473FEED0725768E898A9719D1DB5703A99 Authority key identifier: 13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa Signing time: Sat 20 Jul 2024 05:01:08 +0000 ROA not before: Sat 20 Jul 2024 04:56:08 +0000 ROA not after: Sat 19 Jul 2025 05:01:08 +0000 asID: 131111 IP address blocks: 103.174.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:cd:01:47:3f:ee:d0:72:57:68:e8:98:a9:71:9d:1d:b5:70:3a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=131807BDDAAF97ED72214DFBC5C539ACB04FDCBE Validity Not Before: Jul 20 04:56:08 2024 GMT Not After : Jul 19 05:01:08 2025 GMT Subject: CN=7908E503BD970053C759E72F4607BC30902911B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:46:32:a9:17:a0:31:e7:1c:a8:f6:8f:09:5a: 2a:a7:2c:45:54:7f:8e:c8:48:d6:24:c1:8c:8b:8a: 77:44:39:3e:3b:30:a6:ce:50:07:bd:08:8b:32:7b: 71:f1:fb:f0:0f:a9:c8:4f:f8:20:d6:aa:1b:b8:72: 38:7b:5b:38:41:12:d4:ad:3a:90:91:b5:cd:6d:9e: 73:78:e6:05:c5:17:49:9e:d9:55:e0:a0:ae:f0:a5: 07:3f:9b:83:78:1e:d4:6e:90:6c:6f:ef:20:15:41: 17:96:11:52:76:52:5d:82:eb:f5:8a:45:29:45:a8: 1a:91:41:7e:a2:34:a1:3b:22:74:20:bb:2c:e9:e0: 07:fd:fa:9e:ec:1b:f7:fa:45:6b:e7:7e:ef:b3:03: 8d:02:ba:f7:15:41:22:04:3b:5c:de:f4:a6:98:3b: 71:e1:5c:97:3d:fd:59:ce:eb:2f:66:ef:27:9c:df: 21:ff:bf:5b:79:6a:e5:c3:47:2f:06:70:38:62:e8: 14:ca:f1:fc:ae:d3:36:3f:2e:1b:63:0c:82:5d:56: ef:c3:b0:b6:49:b5:84:02:af:2f:cb:16:1b:a2:2c: 9d:ca:d2:1b:4f:3e:f1:80:7c:d9:8b:e3:76:5b:3e: 47:2c:f4:7b:c4:5d:6f:54:b4:93:e5:83:30:77:8e: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:08:E5:03:BD:97:00:53:C7:59:E7:2F:46:07:BC:30:90:29:11:B1 X509v3 Authority Key Identifier: keyid:13:18:07:BD:DA:AF:97:ED:72:21:4D:FB:C5:C5:39:AC:B0:4F:DC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/131807BDDAAF97ED72214DFBC5C539ACB04FDCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf25b968-0927-4594-887e-67f53f967b12/0/3130332e3137342e32342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.24.0/23 Signature Algorithm: sha256WithRSAEncryption 36:5a:8f:19:07:5e:7b:0d:a4:45:43:b5:4a:ea:e3:38:8d:49: c8:a3:73:c2:21:90:45:51:66:14:ff:32:04:f1:a9:71:59:94: f8:08:a8:2b:ad:15:ac:65:0e:14:df:24:5f:fe:6c:38:9a:68: fa:9e:67:12:bc:91:f0:9d:94:13:0c:17:4c:64:66:1b:f7:13: 72:bd:c5:7f:95:ea:14:8d:21:37:06:fc:e8:b3:d1:08:54:25: b2:bd:d7:24:34:99:c9:ca:ed:ab:e3:23:72:cf:ce:ca:9a:d4: 5c:9a:7a:85:bd:b7:f7:f2:d7:01:19:f9:ef:4d:7f:3e:c3:8d: 94:98:4d:3a:bc:61:db:26:df:24:60:b5:44:da:1d:9b:c3:fa: 4b:c3:1d:93:ff:2a:e3:6e:74:08:f9:c3:4e:1b:c0:90:c8:74: 80:6c:3a:50:f3:19:b3:e9:4b:ac:2e:a3:83:5b:ec:e9:98:d7: 17:1c:ea:09:b3:28:d9:16:42:04:f9:48:c5:82:04:1f:44:58: c3:a7:52:79:82:cf:59:7b:f0:59:f2:66:54:c2:63:65:8f:0c: 62:5f:3e:65:d8:f5:90:4e:f0:2f:f8:1c:70:30:6d:63:d3:00: a6:05:c5:7c:1a:73:ff:48:55:a9:9f:c4:44:c5:43:d8:6b:32: f3:d1:0e:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdM0BRz/u0HJXaOiYqXGdHbVwOpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNC MDRGRENCRTAeFw0yNDA3MjAwNDU2MDhaFw0yNTA3MTkwNTAxMDhaMDMxMTAvBgNV BAMTKDc5MDhFNTAzQkQ5NzAwNTNDNzU5RTcyRjQ2MDdCQzMwOTAyOTExQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtRjKpF6Ax5xyo9o8JWiqnLEVU f47ISNYkwYyLindEOT47MKbOUAe9CIsye3Hx+/APqchP+CDWqhu4cjh7WzhBEtSt OpCRtc1tnnN45gXFF0me2VXgoK7wpQc/m4N4HtRukGxv7yAVQReWEVJ2Ul2C6/WK RSlFqBqRQX6iNKE7InQguyzp4Af9+p7sG/f6RWvnfu+zA40CuvcVQSIEO1ze9KaY O3HhXJc9/VnO6y9m7yec3yH/v1t5auXDRy8GcDhi6BTK8fyu0zY/LhtjDIJdVu/D sLZJtYQCry/LFhuiLJ3K0htPPvGAfNmL43ZbPkcs9HvEXW9UtJPlgzB3juLlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeQjlA72XAFPHWecvRge8MJApEbEwHwYDVR0j BBgwFoAUExgHvdqvl+1yIU37xcU5rLBP3L4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjI1Yjk2OC0wOTI3LTQ1OTQtODg3ZS02N2Y1M2Y5NjdiMTIvMC8xMzE4MDdCRERB QUY5N0VENzIyMTRERkJDNUM1MzlBQ0IwNEZEQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMxODA3QkREQUFGOTdFRDcyMjE0REZCQzVDNTM5QUNCMDRG RENCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMjViOTY4LTA5MjctNDU5NC04 ODdlLTY3ZjUzZjk2N2IxMi8wLzMxMzAzMzJlMzEzNzM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64YMA0GCSqG SIb3DQEBCwUAA4IBAQA2Wo8ZB157DaRFQ7VK6uM4jUnIo3PCIZBFUWYU/zIE8alx WZT4CKgrrRWsZQ4U3yRf/mw4mmj6nmcSvJHwnZQTDBdMZGYb9xNyvcV/leoUjSE3 Bvzos9EIVCWyvdckNJnJyu2r4yNyz87KmtRcmnqFvbf38tcBGfnvTX8+w42UmE06 vGHbJt8kYLVE2h2bw/pLwx2T/yrjbnQI+cNOG8CQyHSAbDpQ8xmz6UusLqODW+zp mNcXHOoJsyjZFkIE+UjFggQfRFjDp1J5gs9Ze/BZ8mZUwmNljwxiXz5l2PWQTvAv +BxwMG1j0wCmBcV8GnP/SFWpn8RExUPYazLz0Q5Y -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:51 2024 by rpki-client on console-ams.rpki-client.org