$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa File: 3130332e3234362e302e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: Ccc9Rz2j35EkvfbNz2T6X50a6oTWv2x4bbeSyVrqI+E= Subject key identifier: 48:51:93:A6:C4:53:F1:FE:CB:E3:42:84:D1:E4:7B:1B:57:B0:20:E6 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 0C305F9FC610D6F557E879491FC266FB2F53D3D5 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa Signing time: Mon 01 Jul 2024 01:05:17 +0000 ROA not before: Mon 01 Jul 2024 01:00:17 +0000 ROA not after: Mon 30 Jun 2025 01:05:17 +0000 asID: 9422 IP address blocks: 103.246.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:30:5f:9f:c6:10:d6:f5:57:e8:79:49:1f:c2:66:fb:2f:53:d3:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 1 01:00:17 2024 GMT Not After : Jun 30 01:05:17 2025 GMT Subject: CN=485193A6C453F1FECBE34284D1E47B1B57B020E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cc:e5:2b:1f:c3:42:d6:bc:e8:bc:7a:54:6d: c9:7d:90:ab:d6:80:3e:a0:31:2d:3b:29:46:61:fe: bd:6c:73:e2:34:9b:af:ea:37:13:8a:dd:d3:9f:5d: 3d:d1:6d:cf:50:16:5d:7b:52:ed:b3:fb:16:1b:7f: 30:67:6b:b8:1a:7c:58:b7:7c:61:6d:e1:ba:10:60: 61:26:15:17:1b:1b:f2:80:0b:e9:05:e4:3a:fb:f9: 60:46:f1:b4:07:be:a1:a4:e5:7c:3b:9c:64:f6:6c: a1:43:b5:54:58:d1:f0:6b:d5:cd:d7:0e:49:48:67: f7:bd:d6:93:4f:ee:5e:32:23:f2:ad:9c:f3:a8:88: 1f:18:a9:81:4e:40:84:c1:a0:94:d3:59:65:b2:b1: cf:58:7d:06:fd:4c:bd:e2:62:7d:9d:b6:b3:91:e3: d0:14:a7:31:d1:5c:d5:e2:78:27:d9:53:12:2f:5e: ac:41:71:4f:46:57:4b:61:8b:14:f1:0d:e4:3f:d1: a3:6e:52:40:af:cb:39:ab:a5:30:74:01:16:c4:03: 1e:68:31:d6:23:75:13:39:0c:ac:6e:2c:6e:2c:e1: 60:4c:fb:36:25:86:94:e6:42:90:97:31:ef:4f:75: 9d:4c:37:56:88:4c:1d:94:3a:19:44:20:b9:8e:9a: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:51:93:A6:C4:53:F1:FE:CB:E3:42:84:D1:E4:7B:1B:57:B0:20:E6 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3130332e3234362e302e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.0.0/22 Signature Algorithm: sha256WithRSAEncryption 70:f7:c9:ab:96:b3:c7:8d:de:d7:61:48:76:27:d9:40:28:66: ab:4d:34:d3:ec:8c:f1:92:80:fd:1d:5e:37:17:e0:a8:31:f6: a4:89:6d:f4:f8:a8:cb:73:51:f3:14:06:5d:bd:83:1c:c9:e1: e0:6a:75:4f:95:db:a6:de:40:eb:2f:d7:65:57:de:94:11:2f: 3a:10:be:b0:fd:9c:2f:9f:60:70:02:4b:e0:7c:41:9b:9d:da: f7:ff:19:2f:3a:ce:5f:13:37:63:5d:f4:66:04:40:12:06:25: 2a:90:5f:8e:f2:79:7e:27:67:14:d3:8d:ac:dc:95:ec:3a:11: 80:20:4a:f5:4e:b2:e7:82:6d:5d:4b:bc:01:d5:3f:8e:e8:74: 91:de:75:3c:2a:12:57:2c:6b:98:c6:f6:ef:5f:ab:b2:2c:17: ce:16:fd:08:65:9b:16:56:b4:69:2d:ec:71:fc:1e:02:28:1d: 5a:d7:cb:bc:28:cd:b0:47:fe:51:b2:66:c3:77:d1:a0:2a:e1: 62:52:74:82:6c:22:f6:1f:19:0d:8f:2a:6b:cd:7b:ef:78:1b: 9d:85:e3:76:f7:d6:3c:13:b3:88:17:92:9d:f5:b8:9d:7d:8b: 4b:72:07:d4:0e:97:e0:82:8c:74:83:b3:76:07:6a:b7:1e:5f: 42:14:82:54 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUDDBfn8YQ1vVX6HlJH8Jm+y9T09UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA3MDEwMTAwMTdaFw0yNTA2MzAwMTA1MTdaMDMxMTAvBgNV BAMTKDQ4NTE5M0E2QzQ1M0YxRkVDQkUzNDI4NEQxRTQ3QjFCNTdCMDIwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMzOUrH8NC1rzovHpUbcl9kKvW gD6gMS07KUZh/r1sc+I0m6/qNxOK3dOfXT3Rbc9QFl17Uu2z+xYbfzBna7gafFi3 fGFt4boQYGEmFRcbG/KAC+kF5Dr7+WBG8bQHvqGk5Xw7nGT2bKFDtVRY0fBr1c3X DklIZ/e91pNP7l4yI/KtnPOoiB8YqYFOQITBoJTTWWWysc9YfQb9TL3iYn2dtrOR 49AUpzHRXNXieCfZUxIvXqxBcU9GV0thixTxDeQ/0aNuUkCvyzmrpTB0ARbEAx5o MdYjdRM5DKxuLG4s4WBM+zYlhpTmQpCXMe9PdZ1MN1aITB2UOhlEILmOmowpAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUSFGTpsRT8f7L40KE0eR7G1ewIOYwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMzEzMDMzMmUzMjM0MzYyZTMwMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn9gAwDQYJKoZIhvcNAQEL BQADggEBAHD3yauWs8eN3tdhSHYn2UAoZqtNNNPsjPGSgP0dXjcX4Kgx9qSJbfT4 qMtzUfMUBl29gxzJ4eBqdU+V26beQOsv12VX3pQRLzoQvrD9nC+fYHACS+B8QZud 2vf/GS86zl8TN2Nd9GYEQBIGJSqQX47yeX4nZxTTjazclew6EYAgSvVOsueCbV1L vAHVP47odJHedTwqElcsa5jG9u9fq7IsF84W/QhlmxZWtGkt7HH8HgIoHVrXy7wo zbBH/lGyZsN30aAq4WJSdIJsIvYfGQ2PKmvNe+94G52F43b31jwTs4gXkp31uJ19 i0tyB9QOl+CCjHSDs3YHarceX0IUglQ= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org