$ rpki-client -vvf repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/3130332e3137322e31382e302f32342d3234203d3e20313432333832.roa File: 3130332e3137322e31382e302f32342d3234203d3e20313432333832.roa (raw, json) Hash identifier: m7s1hZ0i1sdaUYwPmVwkipgDbv7huwk84zvoGbVUCls= Subject key identifier: 5F:4F:DF:03:90:99:FD:0A:90:A0:D9:10:EB:D9:59:98:46:67:86:4A Certificate issuer: /CN=07560F77A1685B4C155E037BCDB207359FA510B4 Certificate serial: 0CAFC19E7824CE65E5804941248B6934801B4843 Authority key identifier: 07:56:0F:77:A1:68:5B:4C:15:5E:03:7B:CD:B2:07:35:9F:A5:10:B4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07560F77A1685B4C155E037BCDB207359FA510B4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/3130332e3137322e31382e302f32342d3234203d3e20313432333832.roa Signing time: Wed 31 Jul 2024 07:00:00 +0000 ROA not before: Wed 31 Jul 2024 06:55:00 +0000 ROA not after: Wed 30 Jul 2025 07:00:00 +0000 asID: 142382 IP address blocks: 103.172.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/07560F77A1685B4C155E037BCDB207359FA510B4.crl rsync://repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/07560F77A1685B4C155E037BCDB207359FA510B4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07560F77A1685B4C155E037BCDB207359FA510B4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:af:c1:9e:78:24:ce:65:e5:80:49:41:24:8b:69:34:80:1b:48:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07560F77A1685B4C155E037BCDB207359FA510B4 Validity Not Before: Jul 31 06:55:00 2024 GMT Not After : Jul 30 07:00:00 2025 GMT Subject: CN=5F4FDF039099FD0A90A0D910EBD959984667864A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:75:79:9a:41:a3:27:be:38:6c:f7:d6:52: 11:19:09:8c:3b:9a:14:19:f6:d7:c2:e3:16:21:99: a9:e1:a1:35:55:cd:b0:7b:0c:a5:22:be:84:3a:2f: e6:9e:c6:09:95:9a:c9:84:20:1f:b7:bb:bd:3c:b4: c2:12:5b:75:1a:80:d2:7d:1d:75:e5:45:e6:21:69: 83:bc:94:0f:f5:22:e7:01:66:60:76:a4:ab:1d:ea: 00:ab:ec:bb:e4:dc:6a:7c:a9:e7:21:b4:23:3b:56: 77:ef:f7:89:03:ad:72:bd:5c:ec:0b:c1:aa:9f:c3: a4:bc:6c:25:af:c0:77:13:c5:7a:13:77:5a:5e:a4: cb:cb:71:eb:2d:83:c3:2c:c7:f0:d7:40:99:d9:5b: 67:53:73:df:3f:99:d8:30:99:9f:9e:29:8f:17:f6: de:e1:ef:7d:eb:80:57:8c:81:8b:49:da:11:dd:03: cd:46:87:8f:ca:47:95:21:ec:0b:3b:60:fe:a6:ec: 09:80:6d:62:53:52:70:30:71:ba:bf:a2:70:45:94: 4a:6b:4c:33:c1:51:88:37:ea:c9:04:70:fc:33:0a: f9:e0:6b:e4:a6:22:84:1b:ef:d4:0c:a0:06:17:d2: 0b:f1:54:83:37:f3:84:0d:73:d6:27:2e:ea:ea:ff: 5c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4F:DF:03:90:99:FD:0A:90:A0:D9:10:EB:D9:59:98:46:67:86:4A X509v3 Authority Key Identifier: keyid:07:56:0F:77:A1:68:5B:4C:15:5E:03:7B:CD:B2:07:35:9F:A5:10:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/07560F77A1685B4C155E037BCDB207359FA510B4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07560F77A1685B4C155E037BCDB207359FA510B4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c08cc0b3-2508-477f-9f25-6684d6572dda/0/3130332e3137322e31382e302f32342d3234203d3e20313432333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.18.0/24 Signature Algorithm: sha256WithRSAEncryption 36:72:70:d0:f6:f5:61:a3:b3:b4:f0:d4:40:94:b1:63:1a:a5: 1a:57:10:c5:58:5b:2c:22:2b:45:67:e5:14:af:e2:a2:7c:1a: 16:12:a5:5a:0c:ee:86:71:6f:b4:70:c6:0b:e5:db:82:46:c1: dc:de:dc:02:af:03:b6:7c:f6:a7:85:38:05:f4:4c:63:73:5f: ba:52:3e:2d:87:fe:78:21:93:33:b1:30:ec:d8:78:e4:30:06: 8f:4a:02:df:c9:d8:38:fd:ad:ee:f1:d3:42:94:64:d5:27:bb: c4:19:f8:6c:f4:d7:e1:51:81:e4:77:80:06:73:b3:c5:71:70: 02:08:3b:16:e6:6d:22:67:79:3d:77:88:75:6f:1f:8c:ba:21: 43:b1:16:90:d3:08:9f:0e:48:77:c0:4f:c6:91:2c:ae:62:5b: 74:7d:ae:2d:d3:54:51:1a:a0:2e:72:b3:66:40:2c:12:e9:77: 62:4e:b5:b9:70:11:f7:59:f5:27:06:c1:9d:d1:74:1c:c3:79: 52:2a:c1:1d:66:68:18:00:ce:ea:38:44:aa:d3:db:c5:00:ed: 27:cc:19:9c:23:4c:d6:07:27:bf:d1:47:a2:e2:c7:1b:43:be: a8:f4:7d:14:1a:88:64:6e:ac:89:b8:d4:61:82:e0:f3:6d:1d: 14:92:04:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDK/BnngkzmXlgElBJItpNIAbSEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDc1NjBGNzdBMTY4NUI0QzE1NUUwMzdCQ0RCMjA3MzU5 RkE1MTBCNDAeFw0yNDA3MzEwNjU1MDBaFw0yNTA3MzAwNzAwMDBaMDMxMTAvBgNV BAMTKDVGNEZERjAzOTA5OUZEMEE5MEEwRDkxMEVCRDk1OTk4NDY2Nzg2NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAsXV5mkGjJ744bPfWUhEZCYw7 mhQZ9tfC4xYhmanhoTVVzbB7DKUivoQ6L+aexgmVmsmEIB+3u708tMISW3UagNJ9 HXXlReYhaYO8lA/1IucBZmB2pKsd6gCr7Lvk3Gp8qechtCM7Vnfv94kDrXK9XOwL waqfw6S8bCWvwHcTxXoTd1pepMvLcestg8Msx/DXQJnZW2dTc98/mdgwmZ+eKY8X 9t7h733rgFeMgYtJ2hHdA81Gh4/KR5Uh7As7YP6m7AmAbWJTUnAwcbq/onBFlEpr TDPBUYg36skEcPwzCvnga+SmIoQb79QMoAYX0gvxVIM384QNc9YnLurq/1zDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX0/fA5CZ/QqQoNkQ69lZmEZnhkowHwYDVR0j BBgwFoAUB1YPd6FoW0wVXgN7zbIHNZ+lELQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDhjYzBiMy0yNTA4LTQ3N2YtOWYyNS02Njg0ZDY1NzJkZGEvMC8wNzU2MEY3N0Ex Njg1QjRDMTU1RTAzN0JDREIyMDczNTlGQTUxMEI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDc1NjBGNzdBMTY4NUI0QzE1NUUwMzdCQ0RCMjA3MzU5RkE1 MTBCNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwOGNjMGIzLTI1MDgtNDc3Zi05 ZjI1LTY2ODRkNjU3MmRkYS8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wSMA0GCSqG SIb3DQEBCwUAA4IBAQA2cnDQ9vVho7O08NRAlLFjGqUaVxDFWFssIitFZ+UUr+Ki fBoWEqVaDO6GcW+0cMYL5duCRsHc3twCrwO2fPanhTgF9Exjc1+6Uj4th/54IZMz sTDs2HjkMAaPSgLfydg4/a3u8dNClGTVJ7vEGfhs9NfhUYHkd4AGc7PFcXACCDsW 5m0iZ3k9d4h1bx+MuiFDsRaQ0wifDkh3wE/GkSyuYlt0fa4t01RRGqAucrNmQCwS 6XdiTrW5cBH3WfUnBsGd0XQcw3lSKsEdZmgYAM7qOESq09vFAO0nzBmcI0zWBye/ 0Uei4scbQ76o9H0UGohkbqyJuNRhguDzbR0UkgTj -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org