$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa File: 3130332e32342e3130342e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: RgROg0bd6gQr67p7nLCZA2hX91iNe++oIgyboKMiPUw= Subject key identifier: 40:53:39:B7:CF:67:E5:1F:9C:8F:47:B3:53:67:66:42:D2:D4:A2:F6 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 375FE320ACFCE9F4792592E8778C2DD97638B046 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa Signing time: Tue 12 Nov 2024 12:32:30 +0000 ROA not before: Tue 12 Nov 2024 12:27:30 +0000 ROA not after: Tue 11 Nov 2025 12:32:30 +0000 asID: 46023 IP address blocks: 103.24.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5f:e3:20:ac:fc:e9:f4:79:25:92:e8:77:8c:2d:d9:76:38:b0:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Nov 12 12:27:30 2024 GMT Not After : Nov 11 12:32:30 2025 GMT Subject: CN=405339B7CF67E51F9C8F47B353676642D2D4A2F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b9:d5:6e:3c:2b:03:a5:06:3f:3c:38:25:37: 2f:31:b7:bc:44:af:d9:2d:e4:08:c7:02:bf:fb:b3: b7:18:10:3e:17:6b:d3:ff:51:7d:4d:6c:2b:97:c7: 24:d9:0f:41:05:7b:a0:87:5d:08:56:b5:9e:ab:67: c2:b6:53:62:61:a4:0f:a9:6e:a8:ce:d8:00:28:63: f7:80:29:9a:b2:a8:6c:fd:ba:b3:d0:c2:b8:fb:75: 8a:1d:28:ea:a3:ba:23:1d:6a:5c:9d:78:10:30:ab: 34:2c:8c:ba:92:7a:19:58:7c:0b:9c:98:37:82:82: 26:bb:04:04:f8:65:2f:84:d3:16:2c:c9:bc:0f:83: 7e:ba:8f:56:a1:10:43:5c:92:4a:32:c9:1e:ef:62: 4a:fc:b9:74:a2:66:7a:10:0d:f7:e9:ae:9d:20:34: d5:5f:9c:ca:30:da:24:c7:de:5d:8f:16:ea:3a:da: b4:74:d5:8d:43:e3:bc:b7:88:a2:45:a3:aa:3b:a3: 61:8e:f9:86:ba:3f:8e:7f:c9:20:92:d1:4f:e5:b2: 15:fb:52:ad:b7:36:44:44:a8:71:73:75:e4:fd:95: ce:cf:3f:30:86:83:85:33:2f:93:b4:ea:ba:fe:1b: 7e:05:a2:c9:55:4d:56:1b:f4:db:25:0e:99:30:35: f1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:53:39:B7:CF:67:E5:1F:9C:8F:47:B3:53:67:66:42:D2:D4:A2:F6 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.104.0/23 Signature Algorithm: sha256WithRSAEncryption ad:27:38:6f:e7:01:f9:76:18:7f:f7:05:0c:70:d7:fe:17:94: d5:87:fe:90:33:7f:6f:0e:25:1c:9e:b9:02:65:dd:ce:4a:f5: 74:94:23:c7:dc:13:ed:44:34:7a:7e:8c:03:59:5b:84:17:72: 79:b9:c1:c0:1d:a4:b4:cd:07:47:40:48:4f:9a:4d:77:97:77: 60:9a:96:a7:0e:0b:85:cd:cc:01:a5:1a:64:8e:c5:cc:59:5f: 1b:da:fd:da:ef:e8:0e:ab:a9:61:6f:0f:5f:17:00:e8:93:2b: c5:dc:fc:52:c2:7c:33:1a:37:fd:0c:c5:28:d2:86:3f:a9:1b: 02:89:5a:6f:9d:cb:ae:b9:e1:2f:52:8f:98:c2:5a:26:82:f6: 0c:04:63:1b:91:25:a4:cf:b0:7b:40:16:b8:fa:ff:6a:c4:6a: 0c:4b:21:2b:b9:b1:55:34:c3:f6:a5:c4:bf:d1:64:2d:c8:65: e5:c4:ac:21:a4:9d:6e:46:24:fb:76:07:cd:2e:89:83:c6:7c: d1:5f:d9:28:02:86:a1:65:a9:8f:e6:23:e4:1e:96:67:01:ef: 50:44:dd:b1:1d:54:9c:be:91:09:cd:53:6f:aa:29:99:1d:fc: 72:ca:35:d4:a6:b4:e6:9f:f8:03:d0:8d:79:51:8c:64:96:20: ab:af:92:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN1/jIKz86fR5JZLod4wt2XY4sEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDExMTIxMjI3MzBaFw0yNTExMTExMjMyMzBaMDMxMTAvBgNV BAMTKDQwNTMzOUI3Q0Y2N0U1MUY5QzhGNDdCMzUzNjc2NjQyRDJENEEyRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkudVuPCsDpQY/PDglNy8xt7xE r9kt5AjHAr/7s7cYED4Xa9P/UX1NbCuXxyTZD0EFe6CHXQhWtZ6rZ8K2U2JhpA+p bqjO2AAoY/eAKZqyqGz9urPQwrj7dYodKOqjuiMdalydeBAwqzQsjLqSehlYfAuc mDeCgia7BAT4ZS+E0xYsybwPg366j1ahEENckkoyyR7vYkr8uXSiZnoQDffprp0g NNVfnMow2iTH3l2PFuo62rR01Y1D47y3iKJFo6o7o2GO+Ya6P45/ySCS0U/lshX7 Uq23NkREqHFzdeT9lc7PPzCGg4UzL5O06rr+G34FoslVTVYb9NslDpkwNfEhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQFM5t89n5R+cj0ezU2dmQtLUovYwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzAzMzJlMzIzNDJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcYaDANBgkqhkiG 9w0BAQsFAAOCAQEArSc4b+cB+XYYf/cFDHDX/heU1Yf+kDN/bw4lHJ65AmXdzkr1 dJQjx9wT7UQ0en6MA1lbhBdyebnBwB2ktM0HR0BIT5pNd5d3YJqWpw4Lhc3MAaUa ZI7FzFlfG9r92u/oDqupYW8PXxcA6JMrxdz8UsJ8Mxo3/QzFKNKGP6kbAolab53L rrnhL1KPmMJaJoL2DARjG5ElpM+we0AWuPr/asRqDEshK7mxVTTD9qXEv9FkLchl 5cSsIaSdbkYk+3YHzS6Jg8Z80V/ZKAKGoWWpj+Yj5B6WZwHvUETdsR1UnL6RCc1T b6opmR38cso11Ka05p/4A9CNeVGMZJYgq6+Sqg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org