$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa File: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: nBKHI+10Ut06FOJtH41J5R/AAE9svDrS9ER1fZDd350= Subject key identifier: A9:3C:49:79:9A:7B:7B:DD:42:04:7E:C3:1F:82:85:EC:42:68:4A:FF Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 42B1EEBC146B2908464E04B54A51E6D1CBC41445 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa Signing time: Mon 01 Jul 2024 01:05:18 +0000 ROA not before: Mon 01 Jul 2024 01:00:18 +0000 ROA not after: Mon 30 Jun 2025 01:05:18 +0000 asID: 9422 IP address blocks: 103.206.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b1:ee:bc:14:6b:29:08:46:4e:04:b5:4a:51:e6:d1:cb:c4:14:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 1 01:00:18 2024 GMT Not After : Jun 30 01:05:18 2025 GMT Subject: CN=A93C49799A7B7BDD42047EC31F8285EC42684AFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:e1:d9:62:53:5a:e4:71:1b:da:d5:58:d7: d7:b5:20:e4:ad:9f:7e:93:c5:1e:9d:6e:c8:3e:dc: df:e1:07:a0:98:0f:a2:af:1c:8c:99:81:fd:dc:5f: 9f:f0:e2:cc:77:87:0a:03:5b:3c:61:2f:34:51:f6: a4:cc:de:e6:be:16:ed:e6:a4:85:14:c2:ab:e6:66: 4d:a3:ec:49:05:16:5e:10:55:37:49:ef:97:ab:ec: cb:a5:55:94:51:81:5d:8a:51:44:51:07:a0:8d:86: 64:19:95:66:65:fe:a9:ab:4e:d3:8e:0a:c5:f5:cd: 2d:e1:20:58:90:6c:7f:01:21:ed:02:c1:1c:b0:b1: d4:3c:61:64:4a:97:10:17:9e:05:74:e8:dd:cf:99: e2:32:5a:cf:f4:56:b0:2d:82:52:27:76:e6:05:4f: 75:0d:44:f1:7e:39:b3:70:47:8f:c0:41:78:cf:fa: 9b:42:ef:13:9c:f7:29:9c:1d:e4:9d:74:b9:e2:be: 7c:13:57:75:0f:e9:52:a0:07:00:bc:57:48:e0:ba: 54:a6:b1:15:a8:5b:64:ed:1f:42:f1:40:ad:2d:2a: 53:b4:64:f8:ce:75:70:ac:f8:1c:75:d1:92:af:27: a1:49:a3:d0:81:f9:99:e0:7f:32:cb:52:a4:e9:6a: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3C:49:79:9A:7B:7B:DD:42:04:7E:C3:1F:82:85:EC:42:68:4A:FF X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.206.252.0/22 Signature Algorithm: sha256WithRSAEncryption 36:9e:9c:6f:12:51:a0:e3:e4:aa:6b:b9:51:87:d1:92:ab:de: 81:2f:e7:6e:e1:cd:48:bc:8a:b2:a9:59:60:67:18:fb:1e:d3: 31:ac:c1:99:71:f8:83:0f:fc:83:e1:70:fa:4a:32:fa:34:4f: af:b5:d4:b5:0e:c5:12:73:89:67:2d:0e:c1:a3:28:5d:3e:ac: 31:b6:5a:5d:31:c7:75:cf:41:18:43:74:e4:97:17:fe:ca:35: 98:9f:a1:aa:e5:ea:1d:8f:9a:d9:c4:43:21:3f:aa:91:ba:c0: e3:98:df:c2:81:7a:42:73:3f:74:5d:8b:ae:34:66:ef:be:13: 4f:86:55:d6:98:d0:4b:a9:27:1d:74:de:f8:f3:32:0e:5e:18: 69:a9:88:10:66:d3:c1:91:b9:78:18:64:8c:e8:72:1c:9c:63: 08:d8:67:4b:bf:f8:d2:f3:b9:19:5a:5c:ec:f7:3e:a5:36:b6: d2:c9:6c:5b:f7:37:68:6d:36:f0:96:ad:1f:c6:11:40:58:6c: ff:af:a5:00:13:df:14:d9:2c:b0:47:12:ff:5f:13:f7:fa:9c: f5:13:bc:38:1a:62:ec:91:56:2e:e6:6e:ba:32:08:fb:fc:1f: 49:f7:be:58:69:70:f5:e1:ac:6b:e7:07:3b:19:04:61:4e:c6: 05:e7:f1:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQrHuvBRrKQhGTgS1SlHm0cvEFEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA3MDEwMTAwMThaFw0yNTA2MzAwMTA1MThaMDMxMTAvBgNV BAMTKEE5M0M0OTc5OUE3QjdCREQ0MjA0N0VDMzFGODI4NUVDNDI2ODRBRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQUOHZYlNa5HEb2tVY19e1IOSt n36TxR6dbsg+3N/hB6CYD6KvHIyZgf3cX5/w4sx3hwoDWzxhLzRR9qTM3ua+Fu3m pIUUwqvmZk2j7EkFFl4QVTdJ75er7MulVZRRgV2KUURRB6CNhmQZlWZl/qmrTtOO CsX1zS3hIFiQbH8BIe0CwRywsdQ8YWRKlxAXngV06N3PmeIyWs/0VrAtglInduYF T3UNRPF+ObNwR4/AQXjP+ptC7xOc9ymcHeSddLnivnwTV3UP6VKgBwC8V0jgulSm sRWoW2TtH0LxQK0tKlO0ZPjOdXCs+Bx10ZKvJ6FJo9CB+ZngfzLLUqTpaqSxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqTxJeZp7e91CBH7DH4KF7EJoSv8wHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMxMzAzMzJlMzIzMDM2MmUzMjM1MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzOTM0MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfO/DANBgkqhkiG 9w0BAQsFAAOCAQEANp6cbxJRoOPkqmu5UYfRkqvegS/nbuHNSLyKsqlZYGcY+x7T MazBmXH4gw/8g+Fw+koy+jRPr7XUtQ7FEnOJZy0OwaMoXT6sMbZaXTHHdc9BGEN0 5JcX/so1mJ+hquXqHY+a2cRDIT+qkbrA45jfwoF6QnM/dF2LrjRm774TT4ZV1pjQ S6knHXTe+PMyDl4YaamIEGbTwZG5eBhkjOhyHJxjCNhnS7/40vO5GVpc7Pc+pTa2 0slsW/c3aG028JatH8YRQFhs/6+lABPfFNkssEcS/18T9/qc9RO8OBpi7JFWLuZu ujII+/wfSfe+WGlw9eGsa+cHOxkEYU7GBefxIg== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org