$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa File: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: QxcRI59eBP9vOZvPd8UtIm8nunAIQZZkvPnGGZ6af2w= Subject key identifier: E2:C2:3C:9B:AC:BF:22:46:88:79:1A:A0:5E:70:54:60:27:B7:E8:CC Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 24D2CF39E4AD8F9414CDDA352367E956293432E2 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa Signing time: Mon 03 Jun 2024 09:00:50 +0000 ROA not before: Mon 03 Jun 2024 08:55:50 +0000 ROA not after: Mon 02 Jun 2025 09:00:50 +0000 asID: 45305 IP address blocks: 103.142.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d2:cf:39:e4:ad:8f:94:14:cd:da:35:23:67:e9:56:29:34:32:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Jun 3 08:55:50 2024 GMT Not After : Jun 2 09:00:50 2025 GMT Subject: CN=E2C23C9BACBF224688791AA05E70546027B7E8CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:67:22:f8:71:a4:c5:7e:a4:dc:21:bf:67: ba:cc:b5:60:2f:a5:95:03:02:d6:5c:d0:50:e3:96: fe:74:2b:47:d5:c9:6f:04:12:8b:9c:ab:6e:ce:92: 81:2d:e6:d5:08:3a:32:83:0f:85:58:17:89:42:90: ec:ef:1f:8b:54:46:d0:63:68:be:2c:4c:5e:c1:8a: 50:27:56:82:b0:58:cc:8d:44:b8:f3:de:3d:a1:a1: 60:23:20:50:8f:3a:c3:30:13:57:8f:78:68:1e:b5: 0c:a8:f6:43:7d:26:c5:70:de:b9:d3:7a:a0:cf:2c: 13:70:ae:a6:56:73:60:f4:e7:92:4a:69:45:7c:6e: f8:c8:30:a6:12:f5:99:2c:cc:4a:91:3b:ec:99:cc: 0a:24:e3:cd:1c:8b:1e:44:85:40:08:9f:f4:8a:68: bc:1a:53:b3:25:42:ff:b2:ec:74:ab:ad:91:70:c2: 06:46:35:44:21:de:ee:01:6f:8f:4c:93:77:09:67: 8d:13:a2:82:f4:ad:05:65:43:59:22:d5:0c:57:96: e2:81:e1:d3:a8:7d:ec:e6:27:4a:11:4f:c0:17:c3: cd:84:19:65:0a:3b:94:03:47:d3:9f:34:06:56:c1: 1d:df:a0:b2:81:be:90:51:b6:ef:d8:78:7e:59:41: 4e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C2:3C:9B:AC:BF:22:46:88:79:1A:A0:5E:70:54:60:27:B7:E8:CC X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.255.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:74:16:c4:a8:b1:b6:0e:16:59:76:11:02:71:a2:d2:4d:5d: e6:39:bb:e7:6f:b0:30:44:9b:68:4b:3b:e1:e8:de:46:94:b3: 30:a7:e5:d0:01:51:07:b1:39:db:e9:ee:a5:a9:74:af:3e:fb: 13:6d:a5:54:f7:9a:f7:f9:1c:78:2b:fd:ca:f5:24:41:65:9d: ed:0c:6f:45:6d:7c:4a:de:f0:61:6a:9b:a5:d2:81:15:62:30: 6d:4e:e5:bf:7c:b2:48:47:2e:67:95:34:8a:b1:76:74:44:37: 42:36:63:e2:3c:11:b0:88:ed:24:53:a8:17:1d:52:3f:2b:2a: 56:d9:3b:20:fc:a4:cd:c8:6f:78:e3:c6:c0:34:20:17:87:b1: 51:9f:ec:98:af:dc:36:7c:9a:82:49:b5:5f:a1:09:78:60:91: fb:9a:a3:df:a3:aa:48:ae:30:90:85:ed:e2:ad:a2:9b:de:21: 79:ec:c4:7d:b9:c7:22:b8:d0:2d:c6:49:b7:0e:09:18:7e:93: 4c:5c:3f:e7:2a:0a:0a:a4:fc:53:4a:84:fe:0c:de:11:45:dc: 80:b4:37:63:0e:a0:d2:ab:0f:91:90:03:e1:06:da:fd:9d:b5: e2:b4:3c:7f:00:bc:aa:61:51:27:cb:24:d1:ae:d4:7a:41:46: e7:05:1c:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJNLPOeStj5QUzdo1I2fpVik0MuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA2MDMwODU1NTBaFw0yNTA2MDIwOTAwNTBaMDMxMTAvBgNV BAMTKEUyQzIzQzlCQUNCRjIyNDY4ODc5MUFBMDVFNzA1NDYwMjdCN0U4Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+mci+HGkxX6k3CG/Z7rMtWAv pZUDAtZc0FDjlv50K0fVyW8EEoucq27OkoEt5tUIOjKDD4VYF4lCkOzvH4tURtBj aL4sTF7BilAnVoKwWMyNRLjz3j2hoWAjIFCPOsMwE1ePeGgetQyo9kN9JsVw3rnT eqDPLBNwrqZWc2D055JKaUV8bvjIMKYS9ZkszEqRO+yZzAok480cix5EhUAIn/SK aLwaU7MlQv+y7HSrrZFwwgZGNUQh3u4Bb49Mk3cJZ40TooL0rQVlQ1ki1QxXluKB 4dOofezmJ0oRT8AXw82EGWUKO5QDR9OfNAZWwR3foLKBvpBRtu/YeH5ZQU5XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4sI8m6y/IkaIeRqgXnBUYCe36MwwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ47/MA0GCSqG SIb3DQEBCwUAA4IBAQCOdBbEqLG2DhZZdhECcaLSTV3mObvnb7AwRJtoSzvh6N5G lLMwp+XQAVEHsTnb6e6lqXSvPvsTbaVU95r3+Rx4K/3K9SRBZZ3tDG9FbXxK3vBh apul0oEVYjBtTuW/fLJIRy5nlTSKsXZ0RDdCNmPiPBGwiO0kU6gXHVI/KypW2Tsg /KTNyG9448bANCAXh7FRn+yYr9w2fJqCSbVfoQl4YJH7mqPfo6pIrjCQhe3iraKb 3iF57MR9ucciuNAtxkm3DgkYfpNMXD/nKgoKpPxTSoT+DN4RRdyAtDdjDqDSqw+R kAPhBtr9nbXitDx/ALyqYVEnyyTRrtR6QUbnBRxI -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org