$ rpki-client -vvf repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa File: 3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa (raw, json) Hash identifier: FtpzaYLenr8oA7MPkNe6ThfGPPPCsKvMsZxh6bXX7AE= Subject key identifier: 07:F2:CD:18:31:6E:7F:CB:9A:6E:F0:73:E7:36:E4:8F:58:82:82:67 Certificate issuer: /CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Certificate serial: 2917FD658C47277FCBAACB9C5813207DA4C3BB3C Authority key identifier: 6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa Signing time: Wed 25 Sep 2024 06:00:02 +0000 ROA not before: Wed 25 Sep 2024 05:55:02 +0000 ROA not after: Wed 24 Sep 2025 06:00:02 +0000 asID: 147093 IP address blocks: 103.174.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 20:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:17:fd:65:8c:47:27:7f:cb:aa:cb:9c:58:13:20:7d:a4:c3:bb:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4 Validity Not Before: Sep 25 05:55:02 2024 GMT Not After : Sep 24 06:00:02 2025 GMT Subject: CN=07F2CD18316E7FCB9A6EF073E736E48F58828267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:13:71:46:6e:6e:24:b3:86:02:cb:3e:e3: fc:8b:3d:d7:db:f0:09:b2:bb:76:42:7a:33:79:6d: 96:90:07:eb:d7:2a:5d:76:0e:4b:7c:5b:2c:fd:e7: 6d:2f:73:f4:0f:0d:d6:c8:89:5a:10:71:4d:35:43: 7c:f8:46:a6:d0:90:1f:b4:64:78:33:f6:9f:58:97: 2e:67:c3:6a:b4:a5:27:19:78:cd:ac:24:41:86:1c: 7c:92:84:2e:20:75:81:3b:d1:61:eb:3f:9e:6d:4c: c7:dd:84:ee:11:38:45:3f:d0:03:af:95:31:e9:d2: 54:8d:6e:3d:7d:c8:65:59:88:3c:d4:1d:53:c9:78: 83:38:4c:fe:b0:41:79:13:89:36:50:da:08:1f:7a: 1a:7c:8b:a1:ad:a1:27:51:b7:36:65:21:a3:9a:26: db:01:60:76:e4:cf:3d:a9:1e:c8:48:da:84:56:a7: 68:0e:5d:45:57:88:78:77:f0:0c:62:08:90:bf:37: 59:64:38:d2:34:ed:00:73:98:e3:e2:ca:1f:2f:b0: 4a:d1:bb:47:c6:79:04:74:fa:79:76:36:5c:9a:3b: c4:be:c5:8d:8a:0f:51:ae:c1:30:7d:c6:2d:a9:51: 21:9c:f0:18:19:f9:97:fa:65:ce:9b:2f:33:6f:e9: 70:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F2:CD:18:31:6E:7F:CB:9A:6E:F0:73:E7:36:E4:8F:58:82:82:67 X509v3 Authority Key Identifier: keyid:6D:39:05:08:CE:26:22:C5:BA:AA:3B:EE:95:AA:61:27:FE:5B:E5:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D390508CE2622C5BAAA3BEE95AA6127FE5BE5F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce482ada-d0c8-464b-a007-8519489cb1c4/0/3130332e3137342e31362e302f32332d3234203d3e20313437303933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.16.0/23 Signature Algorithm: sha256WithRSAEncryption bf:19:29:c8:7d:e8:dc:86:eb:45:37:7a:ec:15:e4:29:89:e8: 16:ee:2a:e9:07:5c:3d:c7:e1:d6:17:63:c1:ef:3b:50:8b:39: 2c:dd:15:c7:a4:be:2d:08:92:15:09:13:c0:8a:01:51:a6:59: 79:9d:84:ea:e8:d7:69:0a:3b:71:90:c7:85:5b:ce:fc:e3:e3: 60:59:3c:2c:86:70:b4:9e:fc:fa:8d:56:eb:2c:c3:35:72:fe: ee:ac:bf:28:dc:11:fd:22:8e:27:05:73:9a:57:fd:41:7e:97: 04:31:f4:ce:4b:88:92:0c:a8:e9:50:75:3e:55:a2:3a:0f:de: da:f1:e6:09:4b:23:ab:0e:f3:41:52:d7:41:f5:fc:b0:45:e9: c2:b8:91:6f:53:25:4e:f4:10:b8:63:41:b0:9f:9d:3a:17:99: 42:1b:bf:41:25:a5:11:9c:66:be:c0:04:35:d7:f5:0c:e7:0d: 02:dc:ad:01:cc:aa:a3:c8:e6:f1:5f:70:c6:f1:9e:07:49:56: a7:e8:b8:c6:f7:a2:c5:01:29:36:33:48:07:fa:21:0b:5c:ce: ad:34:d1:2d:d8:c7:dc:2a:5d:7e:0e:5c:37:38:95:12:97:a7: 3e:b6:cf:23:32:c3:2a:50:83:ee:f1:85:74:cb:00:8a:1a:51: 64:7f:05:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKRf9ZYxHJ3/LqsucWBMgfaTDuzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdG RTVCRTVGNDAeFw0yNDA5MjUwNTU1MDJaFw0yNTA5MjQwNjAwMDJaMDMxMTAvBgNV BAMTKDA3RjJDRDE4MzE2RTdGQ0I5QTZFRjA3M0U3MzZFNDhGNTg4MjgyNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr5BNxRm5uJLOGAss+4/yLPdfb 8Amyu3ZCejN5bZaQB+vXKl12Dkt8Wyz9520vc/QPDdbIiVoQcU01Q3z4RqbQkB+0 ZHgz9p9Yly5nw2q0pScZeM2sJEGGHHyShC4gdYE70WHrP55tTMfdhO4ROEU/0AOv lTHp0lSNbj19yGVZiDzUHVPJeIM4TP6wQXkTiTZQ2ggfehp8i6GtoSdRtzZlIaOa JtsBYHbkzz2pHshI2oRWp2gOXUVXiHh38AxiCJC/N1lkONI07QBzmOPiyh8vsErR u0fGeQR0+nl2NlyaO8S+xY2KD1GuwTB9xi2pUSGc8BgZ+Zf6Zc6bLzNv6XDvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB/LNGDFuf8uabvBz5zbkj1iCgmcwHwYDVR0j BBgwFoAUbTkFCM4mIsW6qjvulaphJ/5b5fQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTQ4MmFkYS1kMGM4LTQ2NGItYTAwNy04NTE5NDg5Y2IxYzQvMC82RDM5MDUwOENF MjYyMkM1QkFBQTNCRUU5NUFBNjEyN0ZFNUJFNUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQzOTA1MDhDRTI2MjJDNUJBQUEzQkVFOTVBQTYxMjdGRTVC RTVGNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlNDgyYWRhLWQwYzgtNDY0Yi1h MDA3LTg1MTk0ODljYjFjNC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64QMA0GCSqG SIb3DQEBCwUAA4IBAQC/GSnIfejchutFN3rsFeQpiegW7irpB1w9x+HWF2PB7ztQ izks3RXHpL4tCJIVCRPAigFRpll5nYTq6NdpCjtxkMeFW8784+NgWTwshnC0nvz6 jVbrLMM1cv7urL8o3BH9Io4nBXOaV/1BfpcEMfTOS4iSDKjpUHU+VaI6D97a8eYJ SyOrDvNBUtdB9fywRenCuJFvUyVO9BC4Y0Gwn506F5lCG79BJaURnGa+wAQ11/UM 5w0C3K0BzKqjyObxX3DG8Z4HSVan6LjG96LFASk2M0gH+iELXM6tNNEt2MfcKl1+ Dlw3OJUSl6c+ts8jMsMqUIPu8YV0ywCKGlFkfwWw -----END CERTIFICATE-----Generated at Thu Nov 28 23:26:30 2024 by rpki-client on console-ams.rpki-client.org