$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: LgMxY+C8IWBIXMtNC15cz+Yu8Nh834gvigEyj+73bps= Subject key identifier: 3D:CE:A0:72:C9:A8:00:66:9F:DB:34:AD:91:97:73:F7:19:B0:2F:17 Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Certificate serial: 254EFCD9FCC8701B733A94C776C0D4745974A584 Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa Signing time: Mon 01 Jul 2024 01:03:27 +0000 ROA not before: Mon 01 Jul 2024 00:58:27 +0000 ROA not after: Mon 30 Jun 2025 01:03:27 +0000 asID: 134648 IP address blocks: 103.208.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4e:fc:d9:fc:c8:70:1b:73:3a:94:c7:76:c0:d4:74:59:74:a5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Validity Not Before: Jul 1 00:58:27 2024 GMT Not After : Jun 30 01:03:27 2025 GMT Subject: CN=3DCEA072C9A800669FDB34AD919773F719B02F17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3f:d2:b1:92:a7:63:49:c1:f9:85:e3:a3:cc: 5f:3f:0d:6b:6b:c9:63:64:d9:c9:15:32:91:73:2e: 56:7a:eb:79:fb:99:5f:c9:d0:28:48:a8:8c:12:d9: f1:7a:9b:ea:4d:e0:2d:2d:c1:93:e4:7a:33:2d:07: 88:3c:ab:14:62:b1:a2:62:ba:ac:24:2f:ec:29:da: 66:63:57:55:e9:a8:06:8e:38:7c:b4:92:11:c0:bb: 27:ba:1c:af:82:13:1e:2e:00:de:1f:78:61:60:02: 28:03:73:6c:5a:a0:76:fa:df:2c:56:96:66:db:d3: a7:91:69:56:1a:e7:90:12:1e:34:db:ea:f8:57:ab: e5:f4:b2:ad:98:ef:ce:20:c8:40:4a:70:dc:2a:01: fe:c0:2f:35:04:29:a3:70:5a:b2:4d:e5:4d:0b:d2: 1e:3d:51:c7:52:40:bf:34:d6:0a:21:04:26:1d:e3: 5e:38:d5:a1:7a:fd:02:18:c6:f5:e7:e3:d1:9b:14: 91:85:78:1a:1c:89:c1:04:30:3a:17:d6:db:af:4d: df:9f:9b:32:57:c0:82:38:19:5c:ab:37:db:fa:9e: b2:99:2e:d9:df:64:56:9e:bf:1a:a1:1d:8d:46:1f: 2c:97:d0:22:86:48:06:de:a6:8d:5e:53:58:33:04: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CE:A0:72:C9:A8:00:66:9F:DB:34:AD:91:97:73:F7:19:B0:2F:17 X509v3 Authority Key Identifier: keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.100.0/24 Signature Algorithm: sha256WithRSAEncryption be:40:9a:a5:9d:d7:71:be:1f:b2:e2:25:23:12:9a:32:1c:e9: 7a:c1:a2:f7:93:63:04:bf:74:84:55:2b:db:71:7b:c0:df:8f: ee:2d:39:ba:af:37:17:94:49:c7:72:a0:46:f3:45:6a:b8:c9: 76:ab:03:50:1b:6b:17:c9:25:a9:cb:a0:a9:a1:97:06:09:ab: 79:ce:06:3c:45:1f:92:98:bd:65:28:93:5e:f9:18:70:9b:63: 02:7a:f8:b7:93:61:b2:33:0c:98:6e:0b:57:69:cd:0b:da:fb: b6:b4:21:59:9e:25:02:7a:31:f2:f8:b1:df:c5:a4:db:ae:2a: 75:5b:1d:15:b5:59:a9:a6:4c:c7:00:ed:45:a9:65:61:5a:71: 4d:32:1e:7b:68:9d:3a:4a:8e:5e:bf:fb:0a:bf:e1:bc:48:2f: 32:26:0c:a0:ee:ea:d1:c2:8c:c4:8b:b9:5b:26:b5:66:af:ba: 20:c8:ff:ed:61:b4:27:ed:f9:12:79:aa:64:73:91:3a:38:53: b4:9b:2c:33:8d:3c:f9:e5:e6:c9:45:67:5b:7c:fa:e1:ab:0a: e7:8b:ee:3f:6c:e1:38:c4:ca:69:ca:c9:c1:0d:49:52:5b:c1: e9:18:3b:d2:91:14:25:38:e8:5a:79:3a:b6:ea:35:db:9c:b6: 3d:b9:2b:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJU782fzIcBtzOpTHdsDUdFl0pYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURD QUM2MkM5RjAeFw0yNDA3MDEwMDU4MjdaFw0yNTA2MzAwMTAzMjdaMDMxMTAvBgNV BAMTKDNEQ0VBMDcyQzlBODAwNjY5RkRCMzRBRDkxOTc3M0Y3MTlCMDJGMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxP9KxkqdjScH5heOjzF8/DWtr yWNk2ckVMpFzLlZ663n7mV/J0ChIqIwS2fF6m+pN4C0twZPkejMtB4g8qxRisaJi uqwkL+wp2mZjV1XpqAaOOHy0khHAuye6HK+CEx4uAN4feGFgAigDc2xaoHb63yxW lmbb06eRaVYa55ASHjTb6vhXq+X0sq2Y784gyEBKcNwqAf7ALzUEKaNwWrJN5U0L 0h49UcdSQL801gohBCYd41441aF6/QIYxvXn49GbFJGFeBocicEEMDoX1tuvTd+f mzJXwII4GVyrN9v6nrKZLtnfZFaevxqhHY1GHyyX0CKGSAbepo1eU1gzBIHHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPc6gcsmoAGaf2zStkZdz9xmwLxcwHwYDVR0j BBgwFoAUl9d/CGafuU5OmfeVUZ+2HcrGLJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmM2OTQ0MC04YjE3LTRhNjgtYTBmYS02NjE1OWUyMTYyZTAvMC85N0Q3N0YwODY2 OUZCOTRFNEU5OUY3OTU1MTlGQjYxRENBQzYyQzlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURDQUM2 MkM5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GQwDQYJ KoZIhvcNAQELBQADggEBAL5AmqWd13G+H7LiJSMSmjIc6XrBoveTYwS/dIRVK9tx e8Dfj+4tObqvNxeUScdyoEbzRWq4yXarA1AbaxfJJanLoKmhlwYJq3nOBjxFH5KY vWUok175GHCbYwJ6+LeTYbIzDJhuC1dpzQva+7a0IVmeJQJ6MfL4sd/FpNuuKnVb HRW1WammTMcA7UWpZWFacU0yHntonTpKjl6/+wq/4bxILzImDKDu6tHCjMSLuVsm tWavuiDI/+1htCft+RJ5qmRzkTo4U7SbLDONPPnl5slFZ1t8+uGrCueL7j9s4TjE ymnKycENSVJbwekYO9KRFCU46Fp5OrbqNductj25K5I= -----END CERTIFICATE-----Generated at Mon Nov 25 06:02:38 2024 by rpki-client on console-ams.rpki-client.org