$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa File: 3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: l/4DE/0WRKpXXPlYh3wvldMo2X4meWMGqYE3EExh40A= Subject key identifier: 6B:59:74:E8:E2:47:A8:AA:77:6F:F3:97:AC:BC:08:82:2A:70:6A:65 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 15814B1D169E50DBBB3859E4267E0AC99747DBA6 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa Signing time: Tue 09 Jul 2024 15:00:01 +0000 ROA not before: Tue 09 Jul 2024 14:55:01 +0000 ROA not after: Tue 08 Jul 2025 15:00:01 +0000 asID: 131111 IP address blocks: 103.22.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:81:4b:1d:16:9e:50:db:bb:38:59:e4:26:7e:0a:c9:97:47:db:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jul 9 14:55:01 2024 GMT Not After : Jul 8 15:00:01 2025 GMT Subject: CN=6B5974E8E247A8AA776FF397ACBC08822A706A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:9b:17:cf:93:7c:e6:f4:00:0e:b4:03:3f: 07:b0:a7:dd:72:2e:dc:c9:33:b2:83:f2:00:d4:04: 59:6e:40:52:53:e6:69:0d:1e:1d:e5:7e:b8:22:e5: 52:7f:35:6d:38:b8:09:b2:fe:ea:fe:39:79:1e:9e: 7f:9c:ad:d0:7a:00:be:d7:29:27:12:6f:00:9b:54: 66:2a:15:ca:7f:65:54:df:82:f6:c6:bd:22:71:e9: 58:e2:a4:33:a9:4b:6d:6b:79:40:93:a1:bb:4e:fb: 60:ce:7f:ca:d4:28:34:67:e0:9d:e5:17:aa:47:7d: 73:2b:14:49:28:ca:65:cf:32:fd:f2:ac:1a:b5:c6: 66:82:3c:71:c3:5a:f1:a3:d0:42:a4:c0:06:39:01: 2f:b9:6e:81:6b:24:69:f4:76:87:57:ef:bb:40:85: 31:4a:a6:b0:25:52:30:b9:86:32:b0:51:6f:84:ae: 09:56:9b:8f:7f:51:5a:b8:7e:8e:10:e0:a5:90:6b: 54:64:70:b2:89:5a:1c:21:81:e0:a0:5a:7d:a3:19: 85:fb:32:2a:60:83:b7:f4:5d:01:a4:d9:ec:e0:b0: 5e:ed:50:0d:97:dc:71:66:d1:6c:54:6b:93:1f:05: 58:a5:1b:b2:5e:ad:9b:d6:3b:b6:b4:8b:1d:23:87: 07:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:59:74:E8:E2:47:A8:AA:77:6F:F3:97:AC:BC:08:82:2A:70:6A:65 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234392e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.249.0/24 Signature Algorithm: sha256WithRSAEncryption 76:1b:8c:2c:9c:6c:0d:1e:a0:c3:c3:a6:8e:6c:27:43:c4:0b: 00:89:5b:07:5a:da:a8:49:a1:6b:64:2e:3b:4a:4c:6b:46:c0: f5:ef:ba:1f:b8:5e:6e:a9:4d:93:e3:3f:07:f2:8b:b8:f2:56: 8d:8f:16:a3:c4:af:6f:4a:36:fd:74:ca:c9:3d:73:d6:7a:12: 20:17:7f:4c:03:7b:81:5e:66:a3:ad:91:de:c1:a5:6e:91:34: 15:d6:90:32:52:f1:46:a7:9c:d2:14:0f:37:1b:76:fe:8f:f2: 7d:8e:1f:97:ef:b8:7a:f3:30:44:f9:54:34:2a:d6:f2:86:c7: cf:74:a3:9b:7b:8f:99:47:63:e3:34:ad:5d:99:51:d1:3e:44: 52:c5:54:89:e6:e0:3c:53:86:8a:85:a3:57:b1:b1:3b:7a:ff: 75:72:9b:9c:7e:b9:80:49:03:43:18:01:6f:36:00:d7:f0:4c: 5a:70:ca:26:da:b9:9f:01:63:ea:15:23:fd:96:b6:5d:dc:7c: 74:d3:2a:b3:72:61:80:a2:26:aa:24:9d:3f:df:02:86:56:17: 99:67:18:06:26:5e:ca:26:ff:0e:6c:1f:36:b8:6d:53:cb:c9: f2:ae:ea:d1:c5:7b:a1:1e:d0:d0:6d:86:99:7a:f5:1b:71:99: f7:80:bd:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFYFLHRaeUNu7OFnkJn4KyZdH26YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDA3MDkxNDU1MDFaFw0yNTA3MDgxNTAwMDFaMDMxMTAvBgNV BAMTKDZCNTk3NEU4RTI0N0E4QUE3NzZGRjM5N0FDQkMwODgyMkE3MDZBNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw/5sXz5N85vQADrQDPwewp91y LtzJM7KD8gDUBFluQFJT5mkNHh3lfrgi5VJ/NW04uAmy/ur+OXkenn+crdB6AL7X KScSbwCbVGYqFcp/ZVTfgvbGvSJx6VjipDOpS21reUCTobtO+2DOf8rUKDRn4J3l F6pHfXMrFEkoymXPMv3yrBq1xmaCPHHDWvGj0EKkwAY5AS+5boFrJGn0dodX77tA hTFKprAlUjC5hjKwUW+ErglWm49/UVq4fo4Q4KWQa1RkcLKJWhwhgeCgWn2jGYX7 Mipgg7f0XQGk2ezgsF7tUA2X3HFm0WxUa5MfBVilG7JerZvWO7a0ix0jhwedAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa1l06OJHqKp3b/OXrLwIgipwamUwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzAzMzJlMzIzMjJlMzIzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxb5MA0GCSqG SIb3DQEBCwUAA4IBAQB2G4wsnGwNHqDDw6aObCdDxAsAiVsHWtqoSaFrZC47Skxr RsD177ofuF5uqU2T4z8H8ou48laNjxajxK9vSjb9dMrJPXPWehIgF39MA3uBXmaj rZHewaVukTQV1pAyUvFGp5zSFA83G3b+j/J9jh+X77h68zBE+VQ0KtbyhsfPdKOb e4+ZR2PjNK1dmVHRPkRSxVSJ5uA8U4aKhaNXsbE7ev91cpucfrmASQNDGAFvNgDX 8ExacMom2rmfAWPqFSP9lrZd3Hx00yqzcmGAoiaqJJ0/3wKGVheZZxgGJl7KJv8O bB82uG1Ty8nyrurRxXuhHtDQbYaZevUbcZn3gL3B -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org