$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa File: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (raw, json) Hash identifier: i1T+k/Fj5jmrloNHibD0LTah+LErHR2m6DpQ2W7p/XI= Subject key identifier: A1:89:CA:EF:8F:5D:D6:74:C8:27:8B:8D:DC:E1:18:AB:1E:F3:64:38 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 76573F7980B7DB9024109CB26BCADBFDCA180FDF Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa Signing time: Thu 30 May 2024 12:37:13 +0000 ROA not before: Thu 30 May 2024 12:32:13 +0000 ROA not after: Thu 29 May 2025 12:37:13 +0000 asID: 59149 IP address blocks: 103.254.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:57:3f:79:80:b7:db:90:24:10:9c:b2:6b:ca:db:fd:ca:18:0f:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: May 30 12:32:13 2024 GMT Not After : May 29 12:37:13 2025 GMT Subject: CN=A189CAEF8F5DD674C8278B8DDCE118AB1EF36438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:6e:c2:55:7a:68:4a:92:4a:cf:66:c9:ae: da:63:1f:a6:07:98:47:80:4e:7a:9f:bc:dd:94:43: 58:ac:8a:a7:d5:e2:e8:09:ea:06:88:a9:78:40:41: fb:03:6e:0b:0d:93:33:ff:48:4a:c6:e4:ef:69:96: af:8d:aa:b1:26:16:80:dc:1d:b9:b9:c1:14:fa:31: 70:f8:78:12:f9:73:a4:ed:3c:ca:2b:e8:e1:72:64: cd:fc:6d:3d:51:6e:56:8c:54:17:61:f2:0d:63:e0: 87:32:96:5f:e7:aa:a5:92:aa:98:50:30:94:a4:46: 83:5b:ec:1d:9f:52:3e:0c:fa:19:b6:7a:f2:88:77: 35:9d:88:4c:03:ba:1a:c6:51:60:1c:6e:52:f8:f9: 8c:18:89:fe:11:0f:9b:c4:1c:28:dd:a4:78:dc:f6: f9:a5:1f:02:3b:b6:4c:c8:ae:03:41:fa:36:74:57: 4d:87:79:32:d4:73:eb:a2:45:06:26:b5:7c:ef:a8: 97:54:d6:6f:93:27:cb:86:99:5c:a4:b8:ba:dc:f2: 74:08:ae:49:0f:be:af:f1:0c:45:25:19:f9:46:cf: bf:85:03:08:e8:5d:40:7e:35:bf:0e:e4:0f:50:53: d1:fc:fd:e0:72:26:3f:70:25:d7:18:93:03:72:02: 6d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:89:CA:EF:8F:5D:D6:74:C8:27:8B:8D:DC:E1:18:AB:1E:F3:64:38 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:aa:56:40:e8:ae:1d:8c:52:b8:3f:f7:60:75:d7:c7:ff:e0: b1:2c:66:aa:8f:64:89:7e:b2:52:69:d5:b6:af:d9:46:9d:a2: 1f:5a:6c:e3:17:ce:5e:3a:19:9d:9c:32:26:d4:f9:02:79:cb: 26:45:87:5c:67:d5:dc:b7:66:ab:f8:18:99:8b:b9:6d:a1:49: 15:8e:b4:68:c7:b0:68:8b:c7:42:80:29:ba:c7:22:95:f5:15: e9:04:9a:e3:d1:e5:97:f9:c2:98:b8:8c:e4:53:56:10:18:cc: f1:71:0b:c6:d5:18:f4:08:0a:56:ee:95:9b:c7:08:b2:77:6e: 9e:b3:55:b5:72:dc:fa:be:d4:14:68:65:11:ca:17:c7:c7:91: 19:96:1b:76:2d:66:c4:e8:21:4a:75:d1:3c:7c:02:50:40:d1: 6e:62:72:e1:65:0d:bb:15:5a:0e:5a:8a:dc:fe:27:03:d2:27: bd:b2:3c:2d:57:84:27:80:7e:a8:97:3a:0d:9b:5e:0a:cf:32: 8b:67:7b:80:57:6a:3a:c5:45:bd:1a:11:82:50:6e:3c:26:f5: 0f:6e:2c:44:59:4e:37:6c:a2:31:8f:54:b1:de:9e:3b:f5:c6: 7e:a3:11:ec:31:8c:c0:bd:53:55:7b:db:eb:2d:0c:ce:82:b1: 0e:7b:f1:15 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdlc/eYC325AkEJyya8rb/coYD98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNDA1MzAxMjMyMTNaFw0yNTA1MjkxMjM3MTNaMDMxMTAvBgNV BAMTKEExODlDQUVGOEY1REQ2NzRDODI3OEI4RERDRTExOEFCMUVGMzY0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImW7CVXpoSpJKz2bJrtpjH6YH mEeATnqfvN2UQ1isiqfV4ugJ6gaIqXhAQfsDbgsNkzP/SErG5O9plq+NqrEmFoDc Hbm5wRT6MXD4eBL5c6TtPMor6OFyZM38bT1RblaMVBdh8g1j4Icyll/nqqWSqphQ MJSkRoNb7B2fUj4M+hm2evKIdzWdiEwDuhrGUWAcblL4+YwYif4RD5vEHCjdpHjc 9vmlHwI7tkzIrgNB+jZ0V02HeTLUc+uiRQYmtXzvqJdU1m+TJ8uGmVykuLrc8nQI rkkPvq/xDEUlGflGz7+FAwjoXUB+Nb8O5A9QU9H8/eByJj9wJdcYkwNyAm0xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoYnK749d1nTIJ4uN3OEYqx7zZDgwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQBtqlZA6K4djFK4P/dgddfH/+CxLGaqj2SJfrJSadW2r9lG naIfWmzjF85eOhmdnDIm1PkCecsmRYdcZ9Xct2ar+BiZi7ltoUkVjrRox7Boi8dC gCm6xyKV9RXpBJrj0eWX+cKYuIzkU1YQGMzxcQvG1Rj0CApW7pWbxwiyd26es1W1 ctz6vtQUaGURyhfHx5EZlht2LWbE6CFKddE8fAJQQNFuYnLhZQ27FVoOWorc/icD 0ie9sjwtV4QngH6olzoNm14KzzKLZ3uAV2o6xUW9GhGCUG48JvUPbixEWU43bKIx j1Sx3p479cZ+oxHsMYzAvVNVe9vrLQzOgrEOe/EV -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org