$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e36342e31342e302f32342d3234203d3e20313335343438.roa File: 3130332e36342e31342e302f32342d3234203d3e20313335343438.roa (raw, json) Hash identifier: Jaeupoc495yN/UI2bKkXUAr91uZ2OZrpKOmjx1QFaQY= Subject key identifier: C6:0F:89:09:D8:B0:01:61:BC:55:94:92:F0:86:C1:37:87:AA:7D:70 Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 0EE15A1A087411034518F9C84B27FE968897E4A0 Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e36342e31342e302f32342d3234203d3e20313335343438.roa Signing time: Mon 01 Jul 2024 01:04:37 +0000 ROA not before: Mon 01 Jul 2024 00:59:37 +0000 ROA not after: Mon 30 Jun 2025 01:04:37 +0000 asID: 135448 IP address blocks: 103.64.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e1:5a:1a:08:74:11:03:45:18:f9:c8:4b:27:fe:96:88:97:e4:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jul 1 00:59:37 2024 GMT Not After : Jun 30 01:04:37 2025 GMT Subject: CN=C60F8909D8B00161BC559492F086C13787AA7D70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:ea:e1:a3:d0:c2:0e:91:8b:c5:e6:f4:bc: 3f:30:65:44:ac:c1:2e:55:b0:3e:f0:70:74:86:b0: e8:90:34:ce:7c:40:0c:35:c7:ae:ce:e2:35:38:00: 8b:af:37:2c:f6:9a:f0:88:99:59:35:9d:04:c4:04: de:59:f9:3a:43:29:e5:66:63:bd:5d:a2:ed:1f:d2: ac:83:5d:f2:64:17:37:b7:13:5a:09:96:75:59:ca: ff:d1:18:1e:5f:26:52:7d:f4:dd:ff:4b:c5:82:e3: 9b:09:d4:80:5f:d7:b1:21:a2:3a:93:24:2b:97:0c: 8d:36:bb:28:66:ed:0c:73:08:4b:85:6c:97:6e:34: 87:db:9f:44:73:9c:d4:b6:96:66:ee:27:be:b8:77: 0d:dd:0e:05:f3:e4:9e:74:6d:35:47:39:bc:37:14: 8b:e7:a3:d3:b8:57:b5:38:15:99:0f:23:f8:f8:e5: 17:5a:b6:33:73:30:2a:74:e0:db:72:00:f6:31:38: 7f:6b:7f:33:29:b2:e7:22:10:dc:51:eb:5b:c4:e3: 11:31:c0:37:dd:ff:d8:91:fa:d9:d8:59:33:bb:56: 0c:58:16:5b:39:ac:18:98:0c:1c:1d:c3:ba:e0:b4: 39:b1:af:ad:c5:aa:06:29:a0:de:8f:e3:e0:f1:ec: 5c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0F:89:09:D8:B0:01:61:BC:55:94:92:F0:86:C1:37:87:AA:7D:70 X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/3130332e36342e31342e302f32342d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.64.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:bb:f6:16:1e:41:8d:82:ae:3f:3e:a4:ce:9f:3f:72:59:c1: 03:47:86:22:70:10:ee:42:2c:b5:c1:c4:10:65:2b:2a:da:37: 6e:28:d6:75:4c:4b:c7:db:5a:ae:8f:8b:ec:ec:63:8a:ae:4a: 81:34:fd:d9:8b:cc:db:28:ba:a0:46:5c:11:2c:29:45:82:b0: b3:d8:df:e3:3e:b0:3e:69:18:88:7f:3e:6c:ee:10:7a:ea:82: 29:41:c4:6c:66:8e:e9:2f:37:da:73:bc:bb:f6:de:a4:3d:d6: fe:9f:f8:bf:16:66:87:b8:ed:5e:c2:34:56:b7:3c:03:95:b8: 08:69:35:75:ce:5e:2e:23:1f:69:21:6a:a3:cb:f2:9d:d2:5a: 63:85:75:6c:5e:35:97:d1:a5:23:58:cb:21:0a:eb:49:ca:0a: ec:e6:7f:df:c0:73:64:b6:78:4f:00:d8:19:61:b9:e7:26:b0: cb:94:0d:3d:1d:3c:00:5d:20:7b:2e:f0:6a:91:d7:97:45:b7: a0:c6:e9:88:53:49:07:08:26:fc:cb:64:1b:1f:0c:e6:a5:79: 30:b6:f8:4a:a3:39:aa:84:30:ae:10:0a:8d:42:38:7c:d1:e0: b1:f2:9d:c2:d5:0a:ed:ef:7c:2b:04:63:d2:2c:93:d1:87:5a: bb:5e:0e:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDuFaGgh0EQNFGPnISyf+loiX5KAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNDA3MDEwMDU5MzdaFw0yNTA2MzAwMTA0MzdaMDMxMTAvBgNV BAMTKEM2MEY4OTA5RDhCMDAxNjFCQzU1OTQ5MkYwODZDMTM3ODdBQTdENzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpK+rho9DCDpGLxeb0vD8wZUSs wS5VsD7wcHSGsOiQNM58QAw1x67O4jU4AIuvNyz2mvCImVk1nQTEBN5Z+TpDKeVm Y71dou0f0qyDXfJkFze3E1oJlnVZyv/RGB5fJlJ99N3/S8WC45sJ1IBf17EhojqT JCuXDI02uyhm7QxzCEuFbJduNIfbn0RznNS2lmbuJ764dw3dDgXz5J50bTVHObw3 FIvno9O4V7U4FZkPI/j45RdatjNzMCp04NtyAPYxOH9rfzMpsuciENxR61vE4xEx wDfd/9iR+tnYWTO7VgxYFls5rBiYDBwdw7rgtDmxr63FqgYpoN6P4+Dx7FytAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxg+JCdiwAWG8VZSS8IbBN4eqfXAwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzMxMzAzMzJlMzYzNDJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdADjANBgkqhkiG 9w0BAQsFAAOCAQEAbbv2Fh5BjYKuPz6kzp8/clnBA0eGInAQ7kIstcHEEGUrKto3 bijWdUxLx9taro+L7Oxjiq5KgTT92YvM2yi6oEZcESwpRYKws9jf4z6wPmkYiH8+ bO4QeuqCKUHEbGaO6S832nO8u/bepD3W/p/4vxZmh7jtXsI0Vrc8A5W4CGk1dc5e LiMfaSFqo8vyndJaY4V1bF41l9GlI1jLIQrrScoK7OZ/38BzZLZ4TwDYGWG55yaw y5QNPR08AF0gey7wapHXl0W3oMbpiFNJBwgm/MtkGx8M5qV5MLb4SqM5qoQwrhAK jUI4fNHgsfKdwtUK7e98KwRj0iyT0Ydau14O+g== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org