$ rpki-client -vvf repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa File: 3130332e33392e36382e302f32342d3234203d3e20313530323730.roa (raw, json) Hash identifier: +j7LagtiA8DZoXzNOV4ipiXaXeq17wIoKxvndY1v7cs= Subject key identifier: 34:38:5B:10:88:D1:4B:4F:A7:F3:1F:80:EC:B8:54:BF:24:8C:CB:A3 Certificate issuer: /CN=75890247E178C40DD3F9A5968202F684AEB89D9A Certificate serial: 1A79A0B2DB5B580A85C3AAF42A0A45B008EECB38 Authority key identifier: 75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa Signing time: Fri 20 Sep 2024 05:00:03 +0000 ROA not before: Fri 20 Sep 2024 04:55:03 +0000 ROA not after: Fri 19 Sep 2025 05:00:03 +0000 asID: 150270 IP address blocks: 103.39.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:79:a0:b2:db:5b:58:0a:85:c3:aa:f4:2a:0a:45:b0:08:ee:cb:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75890247E178C40DD3F9A5968202F684AEB89D9A Validity Not Before: Sep 20 04:55:03 2024 GMT Not After : Sep 19 05:00:03 2025 GMT Subject: CN=34385B1088D14B4FA7F31F80ECB854BF248CCBA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:20:88:52:b4:ac:67:ad:25:e9:f4:b2:46:c0: ea:5e:ce:6e:08:ed:54:4c:43:e3:ce:0b:0f:df:8f: 09:34:58:3b:b3:3c:3a:f0:28:bb:fa:f5:7e:dd:8a: 99:65:82:4c:4f:a4:14:45:21:f9:49:d3:87:fe:b3: 15:e2:8f:7f:45:48:67:77:48:88:db:88:4c:60:0c: d4:b3:a4:c0:de:3a:a3:c7:40:92:c2:92:d5:4d:c1: 28:18:33:9f:49:62:6d:b9:2a:c3:7f:3d:7c:9e:ca: 4d:88:32:4d:b0:73:ac:3e:59:1d:3e:0f:b2:d1:d4: 47:7f:17:60:9d:a0:18:6f:c2:b3:51:57:27:b3:9e: 2d:f2:a3:66:66:4c:82:7c:76:1e:8f:ba:b7:9a:08: 7f:42:0a:a8:33:0f:b4:f5:10:d3:40:6c:1e:90:0b: 5f:68:fa:98:bb:c6:e4:ac:e4:82:12:56:82:fd:98: 3f:2c:e3:dd:3a:43:51:8a:d5:f9:dc:a5:92:40:1f: ae:14:fb:84:7f:22:f8:00:ec:0d:2d:83:eb:4f:c0: fc:cb:8e:ef:99:5d:bb:0c:aa:a6:e8:44:6c:75:c4: 62:7f:d2:57:72:3d:38:51:d5:43:81:46:5c:fe:de: 9d:f3:82:06:08:43:0b:2b:45:a6:f1:60:d2:5c:cc: 50:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:38:5B:10:88:D1:4B:4F:A7:F3:1F:80:EC:B8:54:BF:24:8C:CB:A3 X509v3 Authority Key Identifier: keyid:75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.68.0/24 Signature Algorithm: sha256WithRSAEncryption 87:6e:a5:26:ad:0b:db:67:ef:ec:d1:4b:1b:f4:16:cf:10:88: 78:96:ad:01:01:29:2e:b0:d1:ae:50:6d:7d:e9:f8:05:91:ae: dc:c1:a5:bf:c1:6e:78:05:12:62:9c:fe:ca:49:2c:a2:25:81: 93:18:b6:e4:23:f5:34:88:a5:b6:26:78:c2:ce:a5:e9:b7:86: 34:20:4e:c3:f1:53:a1:b5:0a:77:5d:da:67:0e:47:c3:09:08: 6a:04:b8:ea:c3:33:36:71:ab:e6:35:b4:6d:e8:ed:2b:ce:e9: 2d:c6:5e:44:ec:9f:2d:3b:ca:1a:df:89:62:7d:ff:f8:4a:12: a9:bb:55:eb:19:25:a3:1a:5f:b0:1f:ea:7a:e2:aa:e1:e0:15: 2a:d0:9f:41:03:1a:03:a1:e2:34:f1:66:cf:25:aa:7c:f4:63: b2:3a:09:de:44:13:5b:f5:54:9a:e9:8f:c2:b5:49:ec:95:1e: eb:8c:1f:ac:02:b6:b4:25:51:5a:22:2c:0e:e1:13:cd:c7:c8: 6f:3c:f2:26:ff:e6:a6:90:61:2b:5c:66:1a:14:99:21:36:8a: ba:3a:28:af:d3:5f:c6:71:37:dc:4d:4b:1d:8b:49:d8:48:d7: 15:bf:4c:00:95:22:1d:7f:61:34:dc:41:be:ca:67:05:6d:22: a8:72:5e:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGnmgsttbWAqFw6r0KgpFsAjuyzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRB RUI4OUQ5QTAeFw0yNDA5MjAwNDU1MDNaFw0yNTA5MTkwNTAwMDNaMDMxMTAvBgNV BAMTKDM0Mzg1QjEwODhEMTRCNEZBN0YzMUY4MEVDQjg1NEJGMjQ4Q0NCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaIIhStKxnrSXp9LJGwOpezm4I 7VRMQ+POCw/fjwk0WDuzPDrwKLv69X7dipllgkxPpBRFIflJ04f+sxXij39FSGd3 SIjbiExgDNSzpMDeOqPHQJLCktVNwSgYM59JYm25KsN/PXyeyk2IMk2wc6w+WR0+ D7LR1Ed/F2CdoBhvwrNRVyezni3yo2ZmTIJ8dh6PureaCH9CCqgzD7T1ENNAbB6Q C19o+pi7xuSs5IISVoL9mD8s4906Q1GK1fncpZJAH64U+4R/IvgA7A0tg+tPwPzL ju+ZXbsMqqboRGx1xGJ/0ldyPThR1UOBRlz+3p3zggYIQwsrRabxYNJczFARAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNDhbEIjRS0+n8x+A7LhUvySMy6MwHwYDVR0j BBgwFoAUdYkCR+F4xA3T+aWWggL2hK64nZowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjI2YmU3Yi0yZTI4LTQ5NTAtYWE0Yy0yMTg1ZTY0N2RiM2YvMC83NTg5MDI0N0Ux NzhDNDBERDNGOUE1OTY4MjAyRjY4NEFFQjg5RDlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRBRUI4 OUQ5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMjZiZTdiLTJlMjgtNDk1MC1h YTRjLTIxODVlNjQ3ZGIzZi8wLzMxMzAzMzJlMzMzOTJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcnRDANBgkqhkiG 9w0BAQsFAAOCAQEAh26lJq0L22fv7NFLG/QWzxCIeJatAQEpLrDRrlBtfen4BZGu 3MGlv8FueAUSYpz+ykksoiWBkxi25CP1NIiltiZ4ws6l6beGNCBOw/FTobUKd13a Zw5HwwkIagS46sMzNnGr5jW0bejtK87pLcZeROyfLTvKGt+JYn3/+EoSqbtV6xkl oxpfsB/qeuKq4eAVKtCfQQMaA6HiNPFmzyWqfPRjsjoJ3kQTW/VUmumPwrVJ7JUe 64wfrAK2tCVRWiIsDuETzcfIbzzyJv/mppBhK1xmGhSZITaKujoor9NfxnE33E1L HYtJ2EjXFb9MAJUiHX9hNNxBvspnBW0iqHJeeg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org