$ rpki-client -vvf repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa File: 3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa (raw, json) Hash identifier: ik3JwPueGh0lC4/wMe1++inmZhlbllGr5PVZbJzidbY= Subject key identifier: F2:24:C2:85:DF:0E:04:5C:7F:CC:9B:86:7B:FE:B9:F4:30:A3:B1:6B Certificate issuer: /CN=CA13A9BAC29315E5C5DACF0BC7388C342AD6E592 Certificate serial: 6EC3EB1AEE99B78694C19736186DBF28A039BDF4 Authority key identifier: CA:13:A9:BA:C2:93:15:E5:C5:DA:CF:0B:C7:38:8C:34:2A:D6:E5:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa Signing time: Tue 06 Aug 2024 06:00:44 +0000 ROA not before: Tue 06 Aug 2024 05:55:44 +0000 ROA not after: Tue 05 Aug 2025 06:00:44 +0000 asID: 142394 IP address blocks: 103.172.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.crl rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c3:eb:1a:ee:99:b7:86:94:c1:97:36:18:6d:bf:28:a0:39:bd:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA13A9BAC29315E5C5DACF0BC7388C342AD6E592 Validity Not Before: Aug 6 05:55:44 2024 GMT Not After : Aug 5 06:00:44 2025 GMT Subject: CN=F224C285DF0E045C7FCC9B867BFEB9F430A3B16B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:dc:09:de:fd:ed:c6:08:19:14:a4:83:71:33: 07:f4:85:13:d8:a3:4f:de:30:60:ef:68:d8:eb:85: 35:09:89:b7:b0:53:0b:b4:80:f5:49:74:18:0c:bd: ab:dd:c5:14:88:82:52:99:a2:0e:6c:be:a9:24:be: 1d:a3:dc:0b:69:db:6c:a4:fa:c5:64:f9:d2:03:42: ab:29:36:37:20:59:46:0f:38:8f:7c:8e:fd:f9:56: 64:a5:cb:74:98:31:4f:87:aa:3c:a3:11:68:e1:19: fe:ec:4b:75:69:97:ea:fc:1d:7c:07:24:c4:3c:e1: 80:9a:38:15:ba:5e:ca:fc:37:56:f3:66:bc:f9:c5: 87:0d:2d:45:47:1c:1a:1c:2c:44:ce:00:ed:fa:b4: 9b:55:9f:93:cf:16:2b:74:a9:6e:02:0e:d6:9a:0d: fe:4e:ff:04:a1:c9:a2:7a:bb:1d:db:36:a4:25:a4: 36:12:b8:cf:77:48:65:16:ec:31:4c:af:7c:8f:ca: b4:10:f9:3b:fd:ef:81:bc:f9:95:77:1c:c4:4d:1d: 26:c6:6f:d2:1b:b0:ba:ff:6f:87:0e:e3:df:5a:c4: 9c:85:33:f2:90:6f:21:fb:69:5e:ad:0d:33:b1:93: 3d:a5:69:b6:24:bb:7e:db:99:fd:91:1f:88:28:cb: f3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:24:C2:85:DF:0E:04:5C:7F:CC:9B:86:7B:FE:B9:F4:30:A3:B1:6B X509v3 Authority Key Identifier: keyid:CA:13:A9:BA:C2:93:15:E5:C5:DA:CF:0B:C7:38:8C:34:2A:D6:E5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.196.0/23 Signature Algorithm: sha256WithRSAEncryption 90:61:c6:1d:6c:d0:06:ed:7e:3e:17:99:1b:d0:aa:00:f5:25: 55:e0:65:f5:d4:d6:5e:f2:7f:49:fd:c4:9f:ce:43:e4:0b:d1: 6c:60:32:de:31:36:5a:0f:0d:a6:83:99:c6:42:72:91:2f:b4: 3d:ff:96:f3:82:46:d0:1f:f0:22:e5:18:c6:4b:0e:cb:f9:4f: e9:48:fd:aa:17:ff:64:55:02:5f:6c:70:26:7f:c0:35:e1:61: 0f:02:94:bf:d8:62:11:64:06:9f:4c:4b:11:32:97:94:bf:8a: 06:ae:e1:9f:2e:43:63:92:eb:e4:bf:c8:3b:8f:e5:29:14:7a: 54:57:2f:31:99:ef:86:29:39:9e:9b:66:80:9c:a6:32:a0:85: bc:2e:77:e2:6d:52:cd:c0:02:3a:3e:10:67:38:2e:ab:6a:0b: 34:7a:13:99:2c:e4:bd:05:be:ef:a2:78:e9:1d:c1:52:29:dd: ce:89:24:b6:bb:79:8b:d8:6c:c1:14:c1:aa:ff:89:a8:95:4d: 12:8f:91:44:f2:98:aa:82:b7:32:e0:52:8b:07:56:0d:c9:39: 60:3d:42:52:43:8d:40:50:e7:48:67:d2:16:59:ec:6f:06:b1: 28:56:1b:75:42:73:81:dd:3c:e3:48:71:de:47:6d:0f:81:49: 4f:de:4d:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbsPrGu6Zt4aUwZc2GG2/KKA5vfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExM0E5QkFDMjkzMTVFNUM1REFDRjBCQzczODhDMzQy QUQ2RTU5MjAeFw0yNDA4MDYwNTU1NDRaFw0yNTA4MDUwNjAwNDRaMDMxMTAvBgNV BAMTKEYyMjRDMjg1REYwRTA0NUM3RkNDOUI4NjdCRkVCOUY0MzBBM0IxNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr3Ane/e3GCBkUpINxMwf0hRPY o0/eMGDvaNjrhTUJibewUwu0gPVJdBgMvavdxRSIglKZog5svqkkvh2j3Atp22yk +sVk+dIDQqspNjcgWUYPOI98jv35VmSly3SYMU+HqjyjEWjhGf7sS3Vpl+r8HXwH JMQ84YCaOBW6Xsr8N1bzZrz5xYcNLUVHHBocLETOAO36tJtVn5PPFit0qW4CDtaa Df5O/wShyaJ6ux3bNqQlpDYSuM93SGUW7DFMr3yPyrQQ+Tv974G8+ZV3HMRNHSbG b9IbsLr/b4cO499axJyFM/KQbyH7aV6tDTOxkz2labYku37bmf2RH4goy/N3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8iTChd8OBFx/zJuGe/659DCjsWswHwYDVR0j BBgwFoAUyhOpusKTFeXF2s8LxziMNCrW5ZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Mzk3Y2ZjNS1lMGIwLTQ4MjAtYjg1OS03OTYyNTIwMWVjYWYvMC9DQTEzQTlCQUMy OTMxNUU1QzVEQUNGMEJDNzM4OEMzNDJBRDZFNTkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExM0E5QkFDMjkzMTVFNUM1REFDRjBCQzczODhDMzQyQUQ2 RTU5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzOTdjZmM1LWUwYjAtNDgyMC1i ODU5LTc5NjI1MjAxZWNhZi8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMQwDQYJ KoZIhvcNAQELBQADggEBAJBhxh1s0Abtfj4XmRvQqgD1JVXgZfXU1l7yf0n9xJ/O Q+QL0WxgMt4xNloPDaaDmcZCcpEvtD3/lvOCRtAf8CLlGMZLDsv5T+lI/aoX/2RV Al9scCZ/wDXhYQ8ClL/YYhFkBp9MSxEyl5S/igau4Z8uQ2OS6+S/yDuP5SkUelRX LzGZ74YpOZ6bZoCcpjKghbwud+JtUs3AAjo+EGc4LqtqCzR6E5ks5L0Fvu+ieOkd wVIp3c6JJLa7eYvYbMEUwar/iaiVTRKPkUTymKqCtzLgUosHVg3JOWA9QlJDjUBQ 50hn0hZZ7G8GsShWG3VCc4HdPONIcd5HbQ+BSU/eTUo= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org