$ rpki-client -vvf repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa File: 3130332e31342e37352e302f32342d3234203d3e20313334363332.roa (raw, json) Hash identifier: d03ba4w3/cMHa6YrFwbQZXYz0UgEChS2sqo8pZVU9h0= Subject key identifier: 7A:E6:8B:44:C3:2D:D3:DE:AE:2C:F3:DA:E6:8F:78:42:3D:35:9C:31 Certificate issuer: /CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Certificate serial: 4DA77EAB1D5978FCD6E8BD1C91DFCC87AE83F1DB Authority key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa Signing time: Fri 01 Nov 2024 03:42:05 +0000 ROA not before: Fri 01 Nov 2024 03:37:05 +0000 ROA not after: Fri 31 Oct 2025 03:42:05 +0000 asID: 134632 IP address blocks: 103.14.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.crl rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a7:7e:ab:1d:59:78:fc:d6:e8:bd:1c:91:df:cc:87:ae:83:f1:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Validity Not Before: Nov 1 03:37:05 2024 GMT Not After : Oct 31 03:42:05 2025 GMT Subject: CN=7AE68B44C32DD3DEAE2CF3DAE68F78423D359C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:c7:d9:69:30:d2:77:1b:fc:9c:ba:94:4d: d3:7e:63:06:a9:d2:32:ef:49:51:04:29:0f:22:5c: df:f9:45:60:ba:a1:53:c2:a8:c9:85:58:da:63:0b: ee:15:70:32:ea:f1:38:2c:0c:3f:02:50:9f:64:a8: 93:64:7b:f0:fb:2f:a4:d1:18:ec:87:02:da:5f:d6: 7a:5c:59:9a:1e:62:e0:0b:a8:38:f5:e3:a9:6b:6b: df:17:59:1f:74:5c:7f:c4:f1:a1:dc:3e:a3:17:76: c4:1f:60:cd:6d:56:af:22:5e:5d:aa:8d:4f:86:51: ea:b0:c2:5e:43:63:35:96:c0:07:cb:bf:64:ea:36: be:0f:ea:66:8e:c2:5b:d7:7c:de:50:92:26:30:7f: 60:b2:d7:70:08:5c:60:a7:7c:78:c1:34:84:86:14: 8d:47:f0:89:fd:d1:50:ed:7b:71:d7:b6:6f:73:15: 2f:40:05:d7:9e:4f:f3:7f:db:70:cf:8b:a8:41:8e: 7a:b3:33:ff:fa:a2:bb:d5:c3:e8:6a:e1:97:e6:6d: 68:4e:5a:b1:13:98:31:ad:71:c2:cb:06:51:cf:fb: f7:3e:cb:c0:26:b7:e0:86:3c:d4:6a:02:b3:3b:38: 2a:f8:7e:a1:28:41:ac:5b:7e:aa:ed:cf:4b:66:a1: 7e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E6:8B:44:C3:2D:D3:DE:AE:2C:F3:DA:E6:8F:78:42:3D:35:9C:31 X509v3 Authority Key Identifier: keyid:1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.75.0/24 Signature Algorithm: sha256WithRSAEncryption 96:9e:bf:89:89:88:7a:0f:8a:f1:e6:c1:23:77:e5:34:16:71: a8:bf:c1:36:30:b1:2c:df:6a:fb:a0:dd:48:71:09:c9:58:c3: c1:79:9a:48:d3:fb:70:14:a0:5d:a3:ba:ae:99:b5:91:fd:e0: 9a:63:9e:c0:88:4c:81:21:8b:a5:7a:a1:d2:64:65:23:fc:a9: 1f:15:de:7d:00:58:d9:6b:93:0a:a1:c2:6b:e9:d6:d9:0b:fc: f1:21:5b:43:85:29:7b:56:f5:c4:af:ed:46:03:7f:ea:65:cd: 30:23:b4:f8:5f:d6:2e:41:3c:0c:43:22:12:98:23:bf:c6:b5: 6e:eb:8b:0a:02:9c:ce:07:8f:f9:ff:c2:32:bb:1e:c4:c3:73: 99:e2:a3:c7:d9:b7:87:27:cd:e4:d4:10:2e:3f:f0:e9:b7:48: 5d:07:ac:fb:be:5e:b4:7e:27:90:45:f9:ba:bb:6f:01:6b:ea: 7f:5b:5e:4d:ce:db:91:91:51:60:54:18:b9:ee:4f:71:c8:71: 28:d6:ea:e4:df:9b:5a:21:28:22:80:88:cf:c8:39:35:69:88: 45:0b:cc:5c:c0:43:88:34:70:17:06:78:21:4c:95:a0:cf:2d: 22:cd:cf:84:e7:67:31:1e:0a:88:d3:9c:3c:53:f7:e0:96:a3: 35:36:65:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTad+qx1ZePzW6L0ckd/Mh66D8dswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5 MjdFQzczMTAeFw0yNDExMDEwMzM3MDVaFw0yNTEwMzEwMzQyMDVaMDMxMTAvBgNV BAMTKDdBRTY4QjQ0QzMyREQzREVBRTJDRjNEQUU2OEY3ODQyM0QzNTlDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzcfZaTDSdxv8nLqUTdN+Ywap 0jLvSVEEKQ8iXN/5RWC6oVPCqMmFWNpjC+4VcDLq8TgsDD8CUJ9kqJNke/D7L6TR GOyHAtpf1npcWZoeYuALqDj146lra98XWR90XH/E8aHcPqMXdsQfYM1tVq8iXl2q jU+GUeqwwl5DYzWWwAfLv2TqNr4P6maOwlvXfN5QkiYwf2Cy13AIXGCnfHjBNISG FI1H8In90VDte3HXtm9zFS9ABdeeT/N/23DPi6hBjnqzM//6orvVw+hq4ZfmbWhO WrETmDGtccLLBlHP+/c+y8Amt+CGPNRqArM7OCr4fqEoQaxbfqrtz0tmoX4NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeuaLRMMt096uLPPa5o94Qj01nDEwHwYDVR0j BBgwFoAUHupxtMcKR9U74yBP4sSM75J+xzEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMC8xRUVBNzFCNEM3 MEE0N0Q1M0JFMzIwNEZFMkM0OENFRjkyN0VDNzMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5MjdF QzczMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNlLWY0NGEtNGNmYy1i ZjU2LWQ5OWEwOTJkNzMxNC8wLzMxMzAzMzJlMzEzNDJlMzczNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNDM2MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcOSzANBgkqhkiG 9w0BAQsFAAOCAQEAlp6/iYmIeg+K8ebBI3flNBZxqL/BNjCxLN9q+6DdSHEJyVjD wXmaSNP7cBSgXaO6rpm1kf3gmmOewIhMgSGLpXqh0mRlI/ypHxXefQBY2WuTCqHC a+nW2Qv88SFbQ4Upe1b1xK/tRgN/6mXNMCO0+F/WLkE8DEMiEpgjv8a1buuLCgKc zgeP+f/CMrsexMNzmeKjx9m3hyfN5NQQLj/w6bdIXQes+75etH4nkEX5urtvAWvq f1teTc7bkZFRYFQYue5PcchxKNbq5N+bWiEoIoCIz8g5NWmIRQvMXMBDiDRwFwZ4 IUyVoM8tIs3PhOdnMR4KiNOcPFP34JajNTZltQ== -----END CERTIFICATE-----Generated at Sun Nov 24 01:31:57 2024 by rpki-client on console-ams.rpki-client.org