$ rpki-client -vvf repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa File: 3130332e33392e37332e302f32342d3234203d3e20313530343838.roa (raw, json) Hash identifier: 7nqCoBs4UD5Q0zFXqw657mJUgZK2hC/5uxbKdURPAzM= Subject key identifier: 20:36:03:F3:B7:B5:51:45:5E:E3:A0:AC:2A:FB:27:1A:AA:B3:6A:41 Certificate issuer: /CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Certificate serial: 382A95798A522C29A5B0BCFFB60D8E2746CE7B49 Authority key identifier: D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa Signing time: Mon 04 Nov 2024 05:01:15 +0000 ROA not before: Mon 04 Nov 2024 04:56:15 +0000 ROA not after: Mon 03 Nov 2025 05:01:15 +0000 asID: 150488 IP address blocks: 103.39.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2a:95:79:8a:52:2c:29:a5:b0:bc:ff:b6:0d:8e:27:46:ce:7b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29 Validity Not Before: Nov 4 04:56:15 2024 GMT Not After : Nov 3 05:01:15 2025 GMT Subject: CN=203603F3B7B551455EE3A0AC2AFB271AAAB36A41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f9:9e:b8:0a:61:8a:ff:b4:b2:37:3b:5b:ef: b3:05:f4:ea:5d:99:85:84:7b:8a:2e:28:31:97:01: 51:e7:25:b9:1e:38:ba:d0:58:46:38:f3:74:0a:e0: b6:34:ec:d9:05:b9:ac:aa:d3:2e:f8:51:85:1e:bb: 3d:ff:12:00:16:f6:28:52:d6:65:46:54:7f:2d:4d: 79:dd:68:71:cd:57:4f:47:dc:a0:b7:8a:d9:f6:af: ac:64:1a:0c:8c:cc:41:8a:6a:01:c7:06:5c:b9:a6: 16:92:16:ae:5d:b6:0d:b6:e3:ac:80:c6:a0:61:6b: de:5b:1e:ed:1e:e7:78:26:d4:6f:85:57:e3:08:73: 7a:49:f6:ea:3b:57:fe:ca:70:cf:33:a8:12:8e:66: 11:d8:4a:33:1a:35:d1:e8:a9:49:80:4f:e7:f6:8a: 01:3a:12:1a:a4:c1:6d:74:14:66:74:cf:65:dc:fc: 08:77:2e:4d:6f:64:e4:ff:e6:1f:a5:49:a8:38:68: a1:cd:5f:30:30:64:98:3b:f7:10:02:70:2a:49:aa: 2d:20:0f:9b:d0:cb:28:79:ab:6e:b4:17:d9:17:0e: 8c:e9:6a:e1:46:78:5c:c8:da:3d:7b:59:ce:96:f4: f5:e0:9b:93:86:b4:ad:9b:97:2f:e4:f8:8d:22:8a: a7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:36:03:F3:B7:B5:51:45:5E:E3:A0:AC:2A:FB:27:1A:AA:B3:6A:41 X509v3 Authority Key Identifier: keyid:D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37332e302f32342d3234203d3e20313530343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.73.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ea:ee:28:64:82:1a:b6:ba:74:3a:95:b1:d3:f5:d1:67:09: 95:4b:ae:aa:37:6f:12:a9:c5:fb:c7:11:da:be:63:36:2b:6c: 52:93:4e:27:4a:55:fc:a4:37:32:31:08:74:e5:94:54:a2:7c: d9:01:7d:e4:aa:22:d5:31:a1:18:eb:ff:36:f1:e7:e5:1d:04: 46:9c:56:3e:50:5e:b0:82:ff:fc:dd:ec:d7:a0:11:0f:84:a1: 4f:6e:77:7d:fe:4a:c5:7a:cc:a6:ee:cd:50:a9:1d:a8:52:14: 61:74:f4:a1:08:e9:90:bf:e6:0f:e0:eb:7b:54:ca:c3:9e:39: d2:9d:fa:35:9c:5d:aa:f8:e3:fc:b6:30:8b:8d:25:44:06:18: f1:b2:15:a3:25:73:ef:b8:98:aa:4d:ed:7d:9e:b2:2c:a9:8d: 14:b8:52:41:50:60:2a:a0:03:0e:fb:11:cc:51:d2:d5:40:4b: 3f:6c:ac:85:4f:7c:f8:f4:22:87:c1:e2:f2:2f:f3:26:02:8c: 06:c7:e1:7f:2f:e6:47:29:93:9d:2b:50:1b:70:12:2d:ec:a6: 4f:2a:84:f1:f4:b2:13:bc:4a:06:43:b9:15:e7:64:7f:d0:6c: 5f:75:a6:0c:1c:2b:20:b8:68:c8:05:70:2a:80:8f:9b:bb:5c: 61:f1:9f:d3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOCqVeYpSLCmlsLz/tg2OJ0bOe0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0 OTNCNUQyOTAeFw0yNDExMDQwNDU2MTVaFw0yNTExMDMwNTAxMTVaMDMxMTAvBgNV BAMTKDIwMzYwM0YzQjdCNTUxNDU1RUUzQTBBQzJBRkIyNzFBQUFCMzZBNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz+Z64CmGK/7SyNztb77MF9Opd mYWEe4ouKDGXAVHnJbkeOLrQWEY483QK4LY07NkFuayq0y74UYUeuz3/EgAW9ihS 1mVGVH8tTXndaHHNV09H3KC3itn2r6xkGgyMzEGKagHHBly5phaSFq5dtg2246yA xqBha95bHu0e53gm1G+FV+MIc3pJ9uo7V/7KcM8zqBKOZhHYSjMaNdHoqUmAT+f2 igE6EhqkwW10FGZ0z2Xc/Ah3Lk1vZOT/5h+lSag4aKHNXzAwZJg79xACcCpJqi0g D5vQyyh5q260F9kXDozpauFGeFzI2j17Wc6W9PXgm5OGtK2bly/k+I0iiqcZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIDYD87e1UUVe46CsKvsnGqqzakEwHwYDVR0j BBgwFoAU1uVK9sQ3hoiZuZ9DEs09u0k7XSkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGM3M2FmNS1hMmMwLTQyNGQtODYyZS0xMTJjNThiNzI3MGUvMC9ENkU1NEFGNkM0 Mzc4Njg4OTlCOTlGNDMxMkNEM0RCQjQ5M0I1RDI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDZFNTRBRjZDNDM3ODY4ODk5Qjk5RjQzMTJDRDNEQkI0OTNC NUQyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYzczYWY1LWEyYzAtNDI0ZC04 NjJlLTExMmM1OGI3MjcwZS8wLzMxMzAzMzJlMzMzOTJlMzczMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcnSTANBgkqhkiG 9w0BAQsFAAOCAQEAU+ruKGSCGra6dDqVsdP10WcJlUuuqjdvEqnF+8cR2r5jNits UpNOJ0pV/KQ3MjEIdOWUVKJ82QF95Koi1TGhGOv/NvHn5R0ERpxWPlBesIL//N3s 16ARD4ShT253ff5KxXrMpu7NUKkdqFIUYXT0oQjpkL/mD+Dre1TKw5450p36NZxd qvjj/LYwi40lRAYY8bIVoyVz77iYqk3tfZ6yLKmNFLhSQVBgKqADDvsRzFHS1UBL P2yshU98+PQih8Hi8i/zJgKMBsfhfy/mRymTnStQG3ASLeymTyqE8fSyE7xKBkO5 Fedkf9BsX3WmDBwrILhoyAVwKoCPm7tcYfGf0w== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org