$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32322d3234203d3e203436303233.roa File: 3130332e32342e3130342e302f32322d3234203d3e203436303233.roa (raw, json) Hash identifier: oCQ5+TewkT94F6YQc3t9d8Mk2pfuxixSoxXdPVkaXH4= Subject key identifier: B1:8E:D4:45:CA:6E:5D:3D:2A:62:02:FB:B3:FF:01:08:54:29:56:BC Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 799B0A9184EF8F239E2905A61A6D5C4CEE4AA9D1 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32322d3234203d3e203436303233.roa Signing time: Tue 12 Nov 2024 12:28:53 +0000 ROA not before: Tue 12 Nov 2024 12:23:53 +0000 ROA not after: Tue 11 Nov 2025 12:28:53 +0000 asID: 46023 IP address blocks: 103.24.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9b:0a:91:84:ef:8f:23:9e:29:05:a6:1a:6d:5c:4c:ee:4a:a9:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Nov 12 12:23:53 2024 GMT Not After : Nov 11 12:28:53 2025 GMT Subject: CN=B18ED445CA6E5D3D2A6202FBB3FF0108542956BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1a:f5:00:bc:47:9e:e5:c0:23:93:ea:4e:33: 55:b1:29:b1:d2:c5:bc:62:0d:68:69:21:d5:34:c6: fe:21:eb:5c:27:a0:d2:86:8e:90:06:71:f6:4f:e5: 36:f5:3b:4e:2a:41:30:2f:66:4d:d3:fb:25:72:36: 69:22:ba:17:2a:1b:ac:a2:73:8e:68:5c:44:28:5a: 63:27:62:5b:67:d8:01:c1:78:82:14:0d:ad:19:34: c4:b3:2e:ee:3f:60:e9:a6:a8:82:49:11:9b:08:98: c1:86:7a:d3:7f:51:a8:71:9d:02:5d:70:5e:6b:c9: 61:3a:a1:55:0e:db:4d:cc:76:35:06:a8:49:95:45: 0d:40:76:97:d3:5d:20:2c:f5:40:ca:6f:9c:59:e6: 19:60:71:12:9b:47:4c:fc:f6:1e:a5:c4:2f:bd:70: 56:da:81:5a:a8:1e:8d:02:ec:be:83:f5:08:11:a1: a0:92:a5:dc:ba:00:31:06:e5:ef:33:4c:93:b2:58: e6:18:24:36:9a:16:27:7c:de:41:ea:ca:d9:8f:66: 90:18:f5:10:80:46:21:ef:2d:b0:97:a1:32:8e:f9: 07:21:e1:98:7b:7f:cc:c6:ca:f0:06:fc:ca:4c:83: 4d:a0:01:d9:ca:41:79:64:96:2d:32:9e:7e:3b:3b: 88:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8E:D4:45:CA:6E:5D:3D:2A:62:02:FB:B3:FF:01:08:54:29:56:BC X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32322d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.104.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:43:de:9e:45:e9:81:0d:80:06:88:9f:c3:29:88:06:47:62: c2:6f:43:67:f8:c1:c3:8f:ec:30:6c:23:7d:f1:5f:06:ee:7f: ea:c9:ba:1e:b7:59:5e:b3:41:5e:a3:d0:cb:c4:57:f0:18:5c: 7e:44:0d:cc:68:d0:b9:d2:80:58:c6:b6:80:b5:b0:39:1e:03: 66:93:93:01:c2:8e:17:c5:3e:d4:8d:50:39:81:92:dc:65:67: 5f:f5:20:1a:2d:de:16:44:d3:3d:5d:0d:b5:6f:c6:d9:7d:20: 6b:37:15:4c:9f:98:4f:d1:77:47:83:cd:52:0c:1b:fd:6c:e8: 86:78:e5:75:30:44:a5:1f:26:75:c9:2c:36:b9:b9:7c:ef:48: 77:50:89:68:fb:be:ed:d3:2f:27:a4:a8:7f:ee:02:ed:f9:f1: 62:06:a3:72:d4:26:07:f2:0a:29:ef:bb:05:83:0f:58:17:89: 0c:8f:f3:e1:56:79:7d:17:8b:9e:61:ad:f3:30:f2:a2:2d:38: d5:5c:ca:5a:76:28:bb:ca:fe:31:c5:57:04:34:3d:e1:37:7a: f3:c8:e6:a8:97:53:a7:dc:fa:7f:a4:67:9e:96:7d:39:ba:23: b7:ad:97:38:89:b1:71:38:44:79:b3:d8:a9:60:fb:65:36:29: 83:bf:0b:be -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeZsKkYTvjyOeKQWmGm1cTO5KqdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDExMTIxMjIzNTNaFw0yNTExMTExMjI4NTNaMDMxMTAvBgNV BAMTKEIxOEVENDQ1Q0E2RTVEM0QyQTYyMDJGQkIzRkYwMTA4NTQyOTU2QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeGvUAvEee5cAjk+pOM1WxKbHS xbxiDWhpIdU0xv4h61wnoNKGjpAGcfZP5Tb1O04qQTAvZk3T+yVyNmkiuhcqG6yi c45oXEQoWmMnYltn2AHBeIIUDa0ZNMSzLu4/YOmmqIJJEZsImMGGetN/UahxnQJd cF5ryWE6oVUO203MdjUGqEmVRQ1AdpfTXSAs9UDKb5xZ5hlgcRKbR0z89h6lxC+9 cFbagVqoHo0C7L6D9QgRoaCSpdy6ADEG5e8zTJOyWOYYJDaaFid83kHqytmPZpAY 9RCARiHvLbCXoTKO+Qch4Zh7f8zGyvAG/MpMg02gAdnKQXlkli0ynn47O4iLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsY7URcpuXT0qYgL7s/8BCFQpVrwwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzAzMzJlMzIzNDJlMzEzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcYaDANBgkqhkiG 9w0BAQsFAAOCAQEAHkPenkXpgQ2ABoifwymIBkdiwm9DZ/jBw4/sMGwjffFfBu5/ 6sm6HrdZXrNBXqPQy8RX8BhcfkQNzGjQudKAWMa2gLWwOR4DZpOTAcKOF8U+1I1Q OYGS3GVnX/UgGi3eFkTTPV0NtW/G2X0gazcVTJ+YT9F3R4PNUgwb/WzohnjldTBE pR8mdcksNrm5fO9Id1CJaPu+7dMvJ6Sof+4C7fnxYgajctQmB/IKKe+7BYMPWBeJ DI/z4VZ5fReLnmGt8zDyoi041VzKWnYou8r+McVXBDQ94Td688jmqJdTp9z6f6Rn npZ9Obojt62XOImxcThEebPYqWD7ZTYpg78Lvg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org