$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa File: 3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: t0vWx3i7cD0IWfrHymKFi6iS+XLTpt8CRzLa0PdDNW4= Subject key identifier: 3D:84:A3:38:C1:60:50:DA:E2:D1:2E:0B:5E:4F:51:CE:BE:A8:F3:DB Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 7CFFFD664D6730E7DA5C295576ACE7EBA7CE0ADD Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa Signing time: Sun 07 Jan 2024 09:00:01 +0000 ROA not before: Sun 07 Jan 2024 08:55:01 +0000 ROA not after: Sun 05 Jan 2025 09:00:01 +0000 asID: 131111 IP address blocks: 103.22.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ff:fd:66:4d:67:30:e7:da:5c:29:55:76:ac:e7:eb:a7:ce:0a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jan 7 08:55:01 2024 GMT Not After : Jan 5 09:00:01 2025 GMT Subject: CN=3D84A338C16050DAE2D12E0B5E4F51CEBEA8F3DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:96:36:22:9a:86:d1:ee:b7:57:37:2c:12:bf: d8:3b:0f:b3:60:41:56:81:22:9e:f2:cb:6a:54:bd: 40:40:ef:63:cc:da:a8:31:ea:b8:23:5b:9c:cd:59: dc:e7:2c:7c:5b:31:15:4d:42:2d:f5:bc:d4:a3:cd: 28:f2:a2:72:55:9c:bc:42:e8:71:78:f8:bb:70:c7: a3:e9:eb:4f:fa:f0:10:bf:47:4f:d6:e1:54:f4:52: 6c:c0:f3:8d:da:34:fa:c2:1d:d9:d7:bc:91:05:1b: 30:32:a3:7b:7e:45:14:04:57:50:94:a3:b5:42:f6: 4c:69:d5:3d:fa:ec:e6:57:35:8f:8e:b6:14:50:41: 11:a2:53:f9:76:fb:c9:30:23:10:d4:8e:0d:01:1f: 07:d2:6e:be:77:98:82:7b:6a:af:b5:0e:da:ad:8c: a4:62:4c:17:53:f6:bf:3b:42:f3:99:9b:6f:b8:41: ff:95:79:bc:84:e2:f6:69:2a:36:08:6e:fd:92:bd: 3d:cd:6b:03:b8:a7:4e:76:82:94:66:3f:07:a2:1d: 52:b2:c4:56:8e:b0:f9:35:33:5c:3e:d6:b3:2c:45: 4d:d5:02:3b:40:24:7d:32:ae:e1:b5:8b:1e:da:64: 33:d1:b0:77:03:7e:62:d1:04:9a:fc:30:eb:7e:4e: 1b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:84:A3:38:C1:60:50:DA:E2:D1:2E:0B:5E:4F:51:CE:BE:A8:F3:DB X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.248.0/22 Signature Algorithm: sha256WithRSAEncryption 16:9b:83:6e:8b:24:1d:9c:e0:71:20:80:a3:43:90:54:24:23: 97:e1:b1:11:d5:3c:04:84:5e:61:f3:bd:c1:28:1c:18:cb:36: 2d:1e:ac:7d:13:e8:79:a8:d6:11:ae:ff:af:f7:f3:cb:0c:07: 7c:bd:1d:f8:4b:0e:a5:5b:2a:35:e1:d4:76:f9:b7:1d:e1:7f: bc:93:30:de:e9:a7:d2:f8:70:8b:dc:4c:4b:d0:d7:26:c2:2c: c3:20:29:53:3f:24:15:fd:dd:9b:8e:48:d9:36:d4:98:23:ec: ce:7b:32:67:37:14:e5:d1:6d:6f:33:4b:0b:e8:a6:36:9a:8b: 2f:90:39:77:3e:95:e9:4b:fe:96:ee:03:35:c4:71:dc:cc:c7: bd:19:48:4a:56:54:2e:61:49:9f:cf:bb:a3:54:91:8b:fd:98: e2:51:37:0c:aa:e2:67:00:cd:09:b0:26:c2:02:1a:4a:d5:24: 8c:7d:7c:4a:0e:7a:3f:a5:aa:42:34:b0:8e:7c:88:e6:0e:27: 6f:ff:24:9e:ce:38:b7:93:9c:f0:04:22:6a:0c:4a:91:70:ae: f0:ba:1c:2c:9d:1b:07:a5:98:b8:3c:c0:ba:d4:7b:1a:22:fa: d1:f6:dc:2a:79:d8:65:26:7c:b7:66:a0:b3:95:37:a0:99:f4: b6:55:40:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfP/9Zk1nMOfaXClVdqzn66fOCt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDAxMDcwODU1MDFaFw0yNTAxMDUwOTAwMDFaMDMxMTAvBgNV BAMTKDNEODRBMzM4QzE2MDUwREFFMkQxMkUwQjVFNEY1MUNFQkVBOEYzREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNljYimobR7rdXNywSv9g7D7Ng QVaBIp7yy2pUvUBA72PM2qgx6rgjW5zNWdznLHxbMRVNQi31vNSjzSjyonJVnLxC 6HF4+Ltwx6Pp60/68BC/R0/W4VT0UmzA843aNPrCHdnXvJEFGzAyo3t+RRQEV1CU o7VC9kxp1T367OZXNY+OthRQQRGiU/l2+8kwIxDUjg0BHwfSbr53mIJ7aq+1Dtqt jKRiTBdT9r87QvOZm2+4Qf+VebyE4vZpKjYIbv2SvT3NawO4p052gpRmPweiHVKy xFaOsPk1M1w+1rMsRU3VAjtAJH0yruG1ix7aZDPRsHcDfmLRBJr8MOt+ThtBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPYSjOMFgUNri0S4LXk9Rzr6o89swHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzAzMzJlMzIzMjJlMzIzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxb4MA0GCSqG SIb3DQEBCwUAA4IBAQAWm4NuiyQdnOBxIICjQ5BUJCOX4bER1TwEhF5h873BKBwY yzYtHqx9E+h5qNYRrv+v9/PLDAd8vR34Sw6lWyo14dR2+bcd4X+8kzDe6afS+HCL 3ExL0NcmwizDIClTPyQV/d2bjkjZNtSYI+zOezJnNxTl0W1vM0sL6KY2mosvkDl3 PpXpS/6W7gM1xHHczMe9GUhKVlQuYUmfz7ujVJGL/ZjiUTcMquJnAM0JsCbCAhpK 1SSMfXxKDno/papCNLCOfIjmDidv/ySezji3k5zwBCJqDEqRcK7wuhwsnRsHpZi4 PMC61HsaIvrR9twqedhlJny3ZqCzlTegmfS2VUDO -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org