$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: jWIeEj8fX0qqStZK4DC//9sEKdVwxbP2pcQ0ebAsVP8= Subject key identifier: B8:4C:DC:C6:35:A1:9D:A0:B4:0F:90:F1:8F:93:26:59:FB:99:50:6D Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 5986AA4F128F1E8ACD0EB56E751BEAC62829C74A Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa Signing time: Fri 12 Jul 2024 05:00:02 +0000 ROA not before: Fri 12 Jul 2024 04:55:02 +0000 ROA not after: Fri 11 Jul 2025 05:00:02 +0000 asID: 59149 IP address blocks: 103.254.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:86:aa:4f:12:8f:1e:8a:cd:0e:b5:6e:75:1b:ea:c6:28:29:c7:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Jul 12 04:55:02 2024 GMT Not After : Jul 11 05:00:02 2025 GMT Subject: CN=B84CDCC635A19DA0B40F90F18F932659FB99506D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1f:62:52:38:76:91:bf:5b:64:e0:1e:dc:92: 9a:cc:0f:a1:23:32:32:5a:fd:fe:e2:bd:fc:9a:98: 89:c7:e2:d0:c1:3d:62:eb:3c:25:fd:a5:5a:ca:2c: 0b:3b:b9:3c:36:29:12:b2:1e:2f:40:b3:14:cb:02: 38:76:02:c5:02:f0:28:e0:61:fa:01:34:09:b4:95: fb:aa:8c:bd:48:1b:dc:11:9f:0f:62:ba:d4:eb:79: 02:81:f1:c6:e4:b6:ee:4c:27:55:47:49:80:4e:13: e5:73:f0:3a:2e:b9:48:c6:0a:98:c8:4c:47:23:a9: b9:a0:f0:af:ca:05:31:64:01:bb:ef:e9:46:a0:b0: 55:5d:af:ca:4b:35:96:44:83:b6:04:a5:32:29:31: c0:9d:fa:a9:a3:36:77:ae:2b:2e:df:50:73:0a:02: a1:dc:bc:05:0d:8d:73:6d:66:29:ed:0c:be:6d:c0: 99:ea:0e:5f:30:8b:dc:e2:22:6c:37:a0:1d:fc:59: 12:be:a2:f8:01:eb:44:a9:5f:2e:b8:f6:73:dd:5c: 45:91:85:47:f7:37:d4:ff:fc:4d:39:d6:59:96:a6: c8:da:b1:55:67:25:58:2a:a8:1c:ad:24:25:05:ff: 92:5c:f8:ec:eb:9d:d9:b4:ec:98:c7:59:55:0f:c8: 71:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4C:DC:C6:35:A1:9D:A0:B4:0F:90:F1:8F:93:26:59:FB:99:50:6D X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.171.0/24 Signature Algorithm: sha256WithRSAEncryption 82:ab:7f:d1:be:6f:5f:f5:47:52:13:cd:33:e3:90:6d:75:c6: da:ac:60:8f:0f:52:d6:6e:c9:1d:c4:40:d8:2f:96:f7:19:e9: 95:30:8f:35:b6:39:5d:59:30:39:26:16:fa:c9:94:be:8b:85: c3:22:62:f5:61:71:71:57:4e:11:53:32:6b:5b:54:dc:b5:02: 3e:54:2f:9d:ac:d0:e0:cb:c4:c9:30:48:e0:3f:48:d2:58:0c: 5c:7a:0b:81:cb:4a:fe:a6:83:13:1a:9c:ea:fd:fb:f6:0c:1d: 8d:fa:b3:62:84:25:f6:e0:c1:d8:52:87:cd:e2:c6:bb:24:08: 08:17:6b:1b:2b:ac:a5:2e:4c:b0:aa:5a:dd:cd:75:1d:11:13: 7d:5a:34:7a:10:15:52:0f:34:62:d4:5e:dc:7f:57:b4:86:51: f1:0a:c8:e7:82:6b:0f:db:70:f1:92:9d:16:65:6f:e2:46:d3: ee:b3:cc:6b:34:17:70:b9:51:cf:c5:8d:04:3c:05:da:7e:da: ac:0e:3b:f7:04:d1:4d:99:41:25:9d:a6:b6:4d:b9:3a:b5:16: 6b:1d:7c:50:b0:de:54:c0:ca:13:49:d6:9e:8d:d0:a2:9d:42: b3:89:a9:72:a7:b7:c6:52:52:6f:08:93:0e:bf:ce:17:af:20: d5:b1:42:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWYaqTxKPHorNDrVudRvqxigpx0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNDA3MTIwNDU1MDJaFw0yNTA3MTEwNTAwMDJaMDMxMTAvBgNV BAMTKEI4NENEQ0M2MzVBMTlEQTBCNDBGOTBGMThGOTMyNjU5RkI5OTUwNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVH2JSOHaRv1tk4B7ckprMD6Ej MjJa/f7ivfyamInH4tDBPWLrPCX9pVrKLAs7uTw2KRKyHi9AsxTLAjh2AsUC8Cjg YfoBNAm0lfuqjL1IG9wRnw9iutTreQKB8cbktu5MJ1VHSYBOE+Vz8DouuUjGCpjI TEcjqbmg8K/KBTFkAbvv6UagsFVdr8pLNZZEg7YEpTIpMcCd+qmjNneuKy7fUHMK AqHcvAUNjXNtZintDL5twJnqDl8wi9ziImw3oB38WRK+ovgB60SpXy649nPdXEWR hUf3N9T//E051lmWpsjasVVnJVgqqBytJCUF/5Jc+Ozrndm07JjHWVUPyHHrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuEzcxjWhnaC0D5Dxj5MmWfuZUG0wHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6rMA0GCSqG SIb3DQEBCwUAA4IBAQCCq3/Rvm9f9UdSE80z45BtdcbarGCPD1LWbskdxEDYL5b3 GemVMI81tjldWTA5Jhb6yZS+i4XDImL1YXFxV04RUzJrW1TctQI+VC+drNDgy8TJ MEjgP0jSWAxceguBy0r+poMTGpzq/fv2DB2N+rNihCX24MHYUofN4sa7JAgIF2sb K6ylLkywqlrdzXUdERN9WjR6EBVSDzRi1F7cf1e0hlHxCsjngmsP23Dxkp0WZW/i RtPus8xrNBdwuVHPxY0EPAXaftqsDjv3BNFNmUElnaa2Tbk6tRZrHXxQsN5UwMoT SdaejdCinUKzialyp7fGUlJvCJMOv84XryDVsUIh -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org