$ rpki-client -vvf repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/3130332e3136342e3234382e302f32332d3234203d3e203137393935.roa File: 3130332e3136342e3234382e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: UVa2BFyeyFnWWwBGER708Zkc5wG3hgx7lEbyHJ9YtXM= Subject key identifier: 3A:48:9C:83:1D:AE:AD:CE:26:50:E9:77:2A:EF:D6:BD:3F:B2:FA:25 Certificate issuer: /CN=1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A Certificate serial: 211D9FA079268923CD547E2A416B4A47B7F57A17 Authority key identifier: 1C:22:CD:3D:77:91:A7:91:87:DA:9D:03:4E:B4:BB:5E:D5:E4:64:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/3130332e3136342e3234382e302f32332d3234203d3e203137393935.roa Signing time: Fri 02 Aug 2024 10:03:52 +0000 ROA not before: Fri 02 Aug 2024 09:58:52 +0000 ROA not after: Fri 01 Aug 2025 10:03:52 +0000 asID: 17995 IP address blocks: 103.164.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.crl rsync://repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1d:9f:a0:79:26:89:23:cd:54:7e:2a:41:6b:4a:47:b7:f5:7a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A Validity Not Before: Aug 2 09:58:52 2024 GMT Not After : Aug 1 10:03:52 2025 GMT Subject: CN=3A489C831DAEADCE2650E9772AEFD6BD3FB2FA25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:53:b6:ba:1b:62:3f:95:11:d4:a4:66:a8: 96:b2:ad:96:08:bd:26:25:87:3e:22:2c:81:37:f2: 75:2c:3c:12:f0:a6:ba:5f:39:65:df:b6:a6:da:d1: 26:34:ce:1c:2b:1f:e9:48:a9:88:60:e8:a6:96:95: 06:43:75:bb:72:d9:66:b9:83:6a:ec:93:af:37:d5: d4:03:86:8d:3d:f5:e2:34:14:0a:15:0b:5d:af:d0: b0:09:70:a1:83:50:60:9d:d2:54:23:6d:37:9f:f8: 6d:7e:02:93:8c:38:fa:b9:ed:b6:f9:24:ef:23:03: 4e:d1:1e:40:9c:b9:b7:da:32:62:60:35:ba:c8:8c: 15:d9:0f:e2:13:bc:95:09:4f:3d:2e:c2:ea:93:64: 2a:ee:62:9f:66:fd:d7:7d:50:f6:93:fc:34:84:27: a1:18:65:11:e0:13:d9:eb:4e:5c:4b:35:e6:6e:21: 81:b2:e0:ff:ad:81:75:75:02:e9:00:5c:c8:2e:5f: 9d:5a:71:bd:ac:c7:a9:54:a3:00:96:38:2d:e3:2f: 3e:5b:f7:64:0d:5e:78:a9:52:b9:20:d8:76:56:80: 53:00:9f:85:86:c3:5e:ec:6f:f2:67:63:50:7e:51: 14:72:4b:02:65:1b:f9:f4:7a:40:60:85:af:e2:01: 46:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:48:9C:83:1D:AE:AD:CE:26:50:E9:77:2A:EF:D6:BD:3F:B2:FA:25 X509v3 Authority Key Identifier: keyid:1C:22:CD:3D:77:91:A7:91:87:DA:9D:03:4E:B4:BB:5E:D5:E4:64:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1C22CD3D7791A79187DA9D034EB4BB5ED5E4642A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0041b48d-73c4-4cdd-bcac-a59699bcbbc1/0/3130332e3136342e3234382e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.248.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:fb:8c:04:aa:1d:a8:00:03:b6:4d:36:d6:a2:12:c1:50:49: 1e:19:11:49:6a:58:59:36:52:15:fa:74:ae:de:3b:50:33:b1: c9:53:d4:7b:b5:52:0c:b9:ea:8f:9b:18:02:be:5e:f3:50:cf: 03:58:f7:93:62:88:d7:32:89:66:3f:36:7c:af:c7:33:cc:e2: 28:3d:43:05:ee:0e:bb:29:38:8a:0d:f5:36:1c:a7:4a:1b:ed: 60:52:81:76:f4:af:fd:8b:25:fc:4a:c8:c5:a7:5d:9e:28:19: a0:f4:d6:32:fd:41:d5:77:c2:a2:20:6a:48:53:85:26:db:f4: 28:7c:98:b4:97:34:35:e1:b1:cc:ac:82:5c:8e:d7:ad:4e:92: 07:c7:87:c2:0c:07:08:32:7e:57:75:b5:f1:ad:bf:bd:16:9e: 21:8f:0c:bc:1c:e7:95:d7:d8:2f:39:3d:d2:75:42:8a:bf:40: 03:6a:c0:37:a2:2a:26:dc:f9:19:ba:86:05:72:f9:17:d6:f1: 2c:7d:72:81:f2:c7:c0:3d:19:d4:40:f1:20:8d:ea:ae:3d:d2: 58:52:0c:76:26:2d:5f:9c:06:10:08:fe:a5:c6:32:5c:42:c4: 8b:69:07:ce:98:66:6a:1e:6d:fb:3d:85:b6:e6:fa:8c:75:1d: 4c:ce:ee:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIR2foHkmiSPNVH4qQWtKR7f1ehcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUMyMkNEM0Q3NzkxQTc5MTg3REE5RDAzNEVCNEJCNUVE NUU0NjQyQTAeFw0yNDA4MDIwOTU4NTJaFw0yNTA4MDExMDAzNTJaMDMxMTAvBgNV BAMTKDNBNDg5QzgzMURBRUFEQ0UyNjUwRTk3NzJBRUZENkJEM0ZCMkZBMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLlO2uhtiP5UR1KRmqJayrZYI vSYlhz4iLIE38nUsPBLwprpfOWXftqba0SY0zhwrH+lIqYhg6KaWlQZDdbty2Wa5 g2rsk6831dQDho099eI0FAoVC12v0LAJcKGDUGCd0lQjbTef+G1+ApOMOPq57bb5 JO8jA07RHkCcubfaMmJgNbrIjBXZD+ITvJUJTz0uwuqTZCruYp9m/dd9UPaT/DSE J6EYZRHgE9nrTlxLNeZuIYGy4P+tgXV1AukAXMguX51acb2sx6lUowCWOC3jLz5b 92QNXnipUrkg2HZWgFMAn4WGw17sb/JnY1B+URRySwJlG/n0ekBgha/iAUYxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOkicgx2urc4mUOl3Ku/WvT+y+iUwHwYDVR0j BBgwFoAUHCLNPXeRp5GH2p0DTrS7XtXkZCowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDQxYjQ4ZC03M2M0LTRjZGQtYmNhYy1hNTk2OTliY2JiYzEvMC8xQzIyQ0QzRDc3 OTFBNzkxODdEQTlEMDM0RUI0QkI1RUQ1RTQ2NDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUMyMkNEM0Q3NzkxQTc5MTg3REE5RDAzNEVCNEJCNUVENUU0 NjQyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwNDFiNDhkLTczYzQtNGNkZC1i Y2FjLWE1OTY5OWJjYmJjMS8wLzMxMzAzMzJlMzEzNjM0MmUzMjM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6T4MA0GCSqG SIb3DQEBCwUAA4IBAQAL+4wEqh2oAAO2TTbWohLBUEkeGRFJalhZNlIV+nSu3jtQ M7HJU9R7tVIMueqPmxgCvl7zUM8DWPeTYojXMolmPzZ8r8czzOIoPUMF7g67KTiK DfU2HKdKG+1gUoF29K/9iyX8SsjFp12eKBmg9NYy/UHVd8KiIGpIU4Um2/QofJi0 lzQ14bHMrIJcjtetTpIHx4fCDAcIMn5XdbXxrb+9Fp4hjwy8HOeV19gvOT3SdUKK v0ADasA3oiom3PkZuoYFcvkX1vEsfXKB8sfAPRnUQPEgjequPdJYUgx2Ji1fnAYQ CP6lxjJcQsSLaQfOmGZqHm37PYW25vqMdR1Mzu5n -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org