$ rpki-client -vvf repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31352e302f32342d3234203d3e20313437313338.roa File: 3130332e3137372e31352e302f32342d3234203d3e20313437313338.roa (raw, json) Hash identifier: +4WbSauXNfVEwkNGdQJk2Z3BsB9NfQkuMMH5nUfVSVw= Subject key identifier: 6A:4A:FE:AD:6E:61:B1:6C:1B:0F:10:68:FF:EA:82:3A:FA:37:EF:D5 Certificate issuer: /CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Certificate serial: 2AD6D501DB8E2152038698B549077A36B76964EC Authority key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31352e302f32342d3234203d3e20313437313338.roa Signing time: Sun 19 May 2024 18:00:01 +0000 ROA not before: Sun 19 May 2024 17:55:01 +0000 ROA not after: Sun 18 May 2025 18:00:01 +0000 asID: 147138 IP address blocks: 103.177.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d6:d5:01:db:8e:21:52:03:86:98:b5:49:07:7a:36:b7:69:64:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Validity Not Before: May 19 17:55:01 2024 GMT Not After : May 18 18:00:01 2025 GMT Subject: CN=6A4AFEAD6E61B16C1B0F1068FFEA823AFA37EFD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:94:af:e4:ae:55:b3:74:fb:93:00:af:d7:cc: 51:1d:ce:ea:13:ff:8e:d7:3f:9c:b4:4b:2b:85:5a: 9f:8a:ff:df:c5:5f:e5:ac:f6:d6:b5:9f:84:55:0d: 56:e2:28:ce:c6:3a:f5:31:18:9b:e8:b8:f7:cd:10: 17:dd:57:35:48:46:2c:ad:12:ad:b0:e4:92:28:d2: b2:b1:fa:1a:87:1a:34:51:be:ce:e7:cf:f8:8c:93: ce:11:c7:e6:bc:04:fe:44:55:67:e4:27:76:41:55: c8:5f:81:ff:8a:e7:09:22:c0:69:66:b9:bd:dd:44: 79:78:2c:10:93:85:a8:26:28:41:ed:d7:4b:34:18: 8e:7c:8e:bc:4a:c4:89:b0:cd:71:34:14:d2:a1:78: 74:f6:e8:92:de:ca:98:46:d3:7d:6c:9f:36:4a:35: a7:ba:cb:f2:73:38:80:37:08:df:01:48:6b:85:20: 8f:a4:8c:fa:f0:90:bd:16:fc:5f:2b:11:a6:ef:c1: 6f:48:11:a0:f9:ff:d1:2d:4a:9c:e0:ea:8c:64:5f: 5f:9f:23:72:c5:af:bc:ca:93:73:34:fa:63:0e:ad: 5f:73:c5:59:1b:55:c9:f7:f2:7a:3e:06:ba:21:71: e9:09:8d:4f:45:af:68:bd:3f:2f:5c:e4:6b:7d:73: 68:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4A:FE:AD:6E:61:B1:6C:1B:0F:10:68:FF:EA:82:3A:FA:37:EF:D5 X509v3 Authority Key Identifier: keyid:FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31352e302f32342d3234203d3e20313437313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.15.0/24 Signature Algorithm: sha256WithRSAEncryption a8:e9:aa:f1:93:39:8e:23:eb:0e:1c:9e:01:ed:19:b9:23:a0: 20:4e:ed:47:2b:2e:7a:43:b4:f3:59:ea:26:6d:ff:ae:1c:69: e9:72:dc:cf:0f:f6:89:20:24:cc:1d:31:0c:8d:1f:94:72:c6: 2a:17:ed:6e:2d:8f:b0:b1:f8:08:87:75:f0:2f:ca:d6:9f:f0: 85:3f:b0:2c:b7:1a:bf:15:14:39:7b:9f:05:ac:09:0e:b4:59: d6:38:a7:15:48:9e:1a:25:dd:da:7c:44:b5:d5:08:f8:e4:1a: 4a:11:02:73:c2:36:15:11:35:e9:64:a7:32:b1:75:ad:1a:fb: 3f:42:b5:c5:59:d0:30:88:08:bd:18:6f:1d:1a:bf:f5:e3:a6: d1:fb:45:aa:e7:60:79:9b:a4:6f:06:8d:7d:e9:e4:fc:cd:ea: dd:b1:16:4b:9f:57:c2:1c:76:9b:16:4a:b2:ef:0c:50:0b:99: 7e:8e:9c:63:1e:2d:06:c6:bc:89:c2:52:19:73:0f:f6:2c:b3: 9f:ec:ef:8f:95:62:0b:62:54:e4:4d:fc:a7:91:c1:f9:6c:a7: 0a:d8:fd:3d:b3:0e:1b:15:34:17:9a:a2:58:0c:41:92:b6:7c: 4e:5c:d7:96:2d:28:a8:c6:85:cd:6a:09:ac:64:f6:27:72:c8: 93:7d:bc:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKtbVAduOIVIDhpi1SQd6NrdpZOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYx QzFGNkRENDAeFw0yNDA1MTkxNzU1MDFaFw0yNTA1MTgxODAwMDFaMDMxMTAvBgNV BAMTKDZBNEFGRUFENkU2MUIxNkMxQjBGMTA2OEZGRUE4MjNBRkEzN0VGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDalK/krlWzdPuTAK/XzFEdzuoT /47XP5y0SyuFWp+K/9/FX+Ws9ta1n4RVDVbiKM7GOvUxGJvouPfNEBfdVzVIRiyt Eq2w5JIo0rKx+hqHGjRRvs7nz/iMk84Rx+a8BP5EVWfkJ3ZBVchfgf+K5wkiwGlm ub3dRHl4LBCThagmKEHt10s0GI58jrxKxImwzXE0FNKheHT26JLeyphG031snzZK Nae6y/JzOIA3CN8BSGuFII+kjPrwkL0W/F8rEabvwW9IEaD5/9EtSpzg6oxkX1+f I3LFr7zKk3M0+mMOrV9zxVkbVcn38no+BrohcekJjU9Fr2i9Py9c5Gt9c2grAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUakr+rW5hsWwbDxBo/+qCOvo379UwHwYDVR0j BBgwFoAU/3dQfm0fDgtusBEunPvRrxwfbdQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMC9GRjc3NTA3RTZE MUYwRTBCNkVCMDExMkU5Q0ZCRDFBRjFDMUY2REQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYxQzFG NkRENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4LWExYjYtNDMyYy04 NTRiLWNjNmU4Y2YzMmUwNi8wLzMxMzAzMzJlMzEzNzM3MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7EPMA0GCSqG SIb3DQEBCwUAA4IBAQCo6arxkzmOI+sOHJ4B7Rm5I6AgTu1HKy56Q7TzWeombf+u HGnpctzPD/aJICTMHTEMjR+UcsYqF+1uLY+wsfgIh3XwL8rWn/CFP7Astxq/FRQ5 e58FrAkOtFnWOKcVSJ4aJd3afES11Qj45BpKEQJzwjYVETXpZKcysXWtGvs/QrXF WdAwiAi9GG8dGr/146bR+0Wq52B5m6RvBo196eT8zerdsRZLn1fCHHabFkqy7wxQ C5l+jpxjHi0GxryJwlIZcw/2LLOf7O+PlWILYlTkTfynkcH5bKcK2P09sw4bFTQX mqJYDEGStnxOXNeWLSioxoXNagmsZPYncsiTfbxk -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org