$ rpki-client -vvf repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa File: 3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa (raw, json) Hash identifier: 1mkw8ohjcO700TBK9T10nksUhfAeTZDi+1XriP4kxvg= Subject key identifier: 7B:0C:C5:CC:BA:C1:2D:B6:F2:30:CB:26:8D:3F:17:83:64:45:40:AE Certificate issuer: /CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Certificate serial: 76197D472A2CFAFF1598A9FC61FFA2C2D837E26F Authority key identifier: B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa Signing time: Wed 31 Jan 2024 03:00:02 +0000 ROA not before: Wed 31 Jan 2024 02:55:02 +0000 ROA not after: Wed 29 Jan 2025 03:00:02 +0000 asID: 149968 IP address blocks: 103.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:19:7d:47:2a:2c:fa:ff:15:98:a9:fc:61:ff:a2:c2:d8:37:e2:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Validity Not Before: Jan 31 02:55:02 2024 GMT Not After : Jan 29 03:00:02 2025 GMT Subject: CN=7B0CC5CCBAC12DB6F230CB268D3F1783644540AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:34:57:b7:7d:a6:db:ec:8d:ab:30:95:7e:a6: 37:4c:6d:09:eb:d9:19:06:bc:aa:dc:b8:96:5f:22: c4:a9:03:e2:9a:88:63:4c:86:2f:fe:81:0c:00:3f: 64:c9:de:dc:53:0a:7d:a9:3f:1d:5f:4c:bf:21:53: 8e:c9:76:a4:21:81:22:2c:fe:9e:40:bf:0c:fe:1f: 09:b2:2d:47:f2:62:83:ea:f4:6c:62:24:d0:37:81: db:95:79:ec:7b:24:e1:6f:b4:7a:54:88:9e:11:8a: 4b:6a:a5:9e:9d:9f:d7:93:50:55:b1:d6:14:6d:db: 6c:b5:2a:6f:58:94:85:a5:ce:73:8f:54:9e:e9:b0: f8:02:b5:dd:ab:1e:e4:7f:7c:fa:17:3c:40:2f:4f: cf:3e:0d:90:18:c1:9f:08:37:aa:cc:08:bc:9d:66: f3:1a:ba:90:12:9e:dc:85:1e:08:4c:36:6e:32:1b: 7d:17:2c:bc:a7:90:5b:b4:c9:2b:cc:bc:22:a9:10: 2a:30:a6:67:6b:7a:74:af:b8:14:5f:aa:9a:b1:bd: 73:cc:bc:df:27:41:0b:c8:64:d8:87:ef:0d:0e:f8: 1a:71:76:60:3b:5d:15:5b:52:8a:f9:63:86:62:09: 33:2b:de:60:a5:33:c0:5f:8d:d0:29:ce:b0:5a:f6: 32:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0C:C5:CC:BA:C1:2D:B6:F2:30:CB:26:8D:3F:17:83:64:45:40:AE X509v3 Authority Key Identifier: keyid:B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.219.0/24 Signature Algorithm: sha256WithRSAEncryption b1:88:b3:fe:35:fd:c4:a7:c7:08:08:4b:21:bc:41:80:41:c9: 35:3d:49:0e:82:f4:45:3b:a7:40:da:81:95:78:7c:57:c7:0d: 3b:56:9d:2b:a8:b3:2f:e4:64:2b:12:23:36:c6:0c:b3:ba:9d: 56:50:ff:5f:42:fe:8f:8a:99:25:15:be:b3:12:b4:a3:48:89: c3:b9:4c:a3:3f:1a:c0:6d:e0:f1:2b:e4:e6:38:8e:90:d7:75: 02:43:08:04:0f:74:3d:f8:46:1e:8b:67:35:2b:99:1a:38:7d: 9b:9b:bf:bd:c4:fc:e7:9f:7a:23:48:bc:60:23:21:31:4b:93: 4a:97:2a:2a:c2:10:d0:0f:57:d1:11:c0:fd:0d:9a:30:3f:13: fc:b3:12:68:63:f0:6c:c9:4a:ea:29:81:8a:54:b6:71:d0:e0: 30:da:85:5f:e7:11:ea:26:9b:7a:6d:fd:11:91:81:9c:4d:64: 50:f5:ff:aa:3f:14:7a:6f:2c:cb:a7:d7:4f:81:03:7a:c2:67: 8e:16:86:eb:ef:eb:63:e9:e4:74:28:d4:4d:7c:e3:58:6f:72: 1a:00:f8:53:95:55:a5:7c:ad:24:6e:52:2c:b4:73:28:0c:85: 70:56:21:f9:cf:10:93:08:31:ea:77:2f:f3:43:b3:09:7b:16: 51:4e:2c:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdhl9Ryos+v8VmKn8Yf+iwtg34m8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0RE MzIxRjdDMDAeFw0yNDAxMzEwMjU1MDJaFw0yNTAxMjkwMzAwMDJaMDMxMTAvBgNV BAMTKDdCMENDNUNDQkFDMTJEQjZGMjMwQ0IyNjhEM0YxNzgzNjQ0NTQwQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTNFe3fabb7I2rMJV+pjdMbQnr 2RkGvKrcuJZfIsSpA+KaiGNMhi/+gQwAP2TJ3txTCn2pPx1fTL8hU47JdqQhgSIs /p5Avwz+HwmyLUfyYoPq9GxiJNA3gduVeex7JOFvtHpUiJ4RiktqpZ6dn9eTUFWx 1hRt22y1Km9YlIWlznOPVJ7psPgCtd2rHuR/fPoXPEAvT88+DZAYwZ8IN6rMCLyd ZvMaupASntyFHghMNm4yG30XLLynkFu0ySvMvCKpECowpmdrenSvuBRfqpqxvXPM vN8nQQvIZNiH7w0O+BpxdmA7XRVbUor5Y4ZiCTMr3mClM8BfjdApzrBa9jIhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUewzFzLrBLbbyMMsmjT8Xg2RFQK4wHwYDVR0j BBgwFoAUtDgcY2dLXZqbjETBPPGefdMh98AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWIzYmU2Mi0zNTk3LTRmZTgtYTc5NS1mYzliYTEyMDIzNDQvMC9CNDM4MUM2MzY3 NEI1RDlBOUI4QzQ0QzEzQ0YxOUU3REQzMjFGN0MwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0REMzIx RjdDMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YjNiZTYyLTM1OTctNGZlOC1h Nzk1LWZjOWJhMTIwMjM0NC8wLzMxMzAzMzJlMzIzMDJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxTbMA0GCSqG SIb3DQEBCwUAA4IBAQCxiLP+Nf3Ep8cICEshvEGAQck1PUkOgvRFO6dA2oGVeHxX xw07Vp0rqLMv5GQrEiM2xgyzup1WUP9fQv6PipklFb6zErSjSInDuUyjPxrAbeDx K+TmOI6Q13UCQwgED3Q9+EYei2c1K5kaOH2bm7+9xPznn3ojSLxgIyExS5NKlyoq whDQD1fREcD9DZowPxP8sxJoY/BsyUrqKYGKVLZx0OAw2oVf5xHqJpt6bf0RkYGc TWRQ9f+qPxR6byzLp9dPgQN6wmeOFobr7+tj6eR0KNRNfONYb3IaAPhTlVWlfK0k blIstHMoDIVwViH5zxCTCDHqdy/zQ7MJexZRTiwy -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org