$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa File: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (raw, json) Hash identifier: fDg3pcJLO4nMKHIhIadc4UOWwJA6xSlIAC7zIOEu60s= Subject key identifier: B2:65:4B:21:D4:73:AE:AD:D0:03:82:09:F6:20:02:FF:28:9A:08:86 Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 3D4FE5BD0A933F67DC2F8EF34B5FCA5979A4F69A Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa Signing time: Thu 11 Jul 2024 02:32:39 +0000 ROA not before: Thu 11 Jul 2024 02:27:39 +0000 ROA not after: Thu 10 Jul 2025 02:32:39 +0000 asID: 151575 IP address blocks: 103.99.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4f:e5:bd:0a:93:3f:67:dc:2f:8e:f3:4b:5f:ca:59:79:a4:f6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jul 11 02:27:39 2024 GMT Not After : Jul 10 02:32:39 2025 GMT Subject: CN=B2654B21D473AEADD0038209F62002FF289A0886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:91:4b:34:ee:87:3c:39:6d:16:80:56:94:4f: c7:58:1e:cf:79:01:48:d8:3a:50:fc:13:5b:ee:14: 3b:e7:c1:29:b3:47:59:7f:6d:04:4a:99:ab:90:08: e6:e6:19:02:71:65:84:e6:68:25:af:cc:3f:50:88: 19:ac:b4:98:14:68:dc:4b:c3:e4:9c:32:d5:5b:61: d0:60:c4:83:48:c4:78:43:ad:cd:d8:08:19:60:c7: c9:bf:93:45:b3:ad:f4:1a:d7:5c:93:fb:d7:e4:bb: 1d:55:36:bd:2a:89:89:90:83:0f:dd:7b:e3:53:88: b2:57:1a:72:9a:55:37:ff:d7:57:81:2e:f8:b8:9d: f2:ba:8a:33:06:c6:cc:f5:69:01:34:78:e6:cf:01: 8c:dd:db:eb:b9:c8:38:98:73:ea:00:bf:3e:c5:15: 19:eb:74:39:8c:47:c9:1e:e9:52:2e:8c:c7:7b:48: d2:c9:1e:a3:f3:6e:58:60:43:5a:50:8b:ce:92:6b: 6c:d5:c8:5c:0b:f0:75:01:4d:f1:12:56:52:fb:74: 87:8d:e4:f5:1b:c1:bf:c0:87:70:ee:f2:53:df:31: 31:f9:2c:14:89:e6:38:ee:e9:5e:90:c4:cc:06:18: 18:75:a9:91:b8:c4:55:7e:0c:2e:74:c3:3b:8f:56: 90:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:65:4B:21:D4:73:AE:AD:D0:03:82:09:F6:20:02:FF:28:9A:08:86 X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.136.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:e6:c4:ac:2b:f0:6e:78:80:8d:ab:d4:3e:69:ba:5e:94:6e: f9:0b:55:36:43:16:7d:bd:a5:fc:e7:88:c8:57:8b:32:9b:76: 6b:e2:da:40:04:21:f8:cc:59:a6:58:dd:04:b7:1a:ab:1d:c0: 8c:44:db:0d:e7:8c:ec:d8:19:f2:3a:aa:a1:ba:18:f8:0d:f8: 2f:6e:32:0e:31:bb:dd:99:e6:f1:c9:82:7e:6b:58:02:59:43: af:ad:cc:5d:ae:58:77:6b:9f:e5:ad:76:54:8a:92:b0:fb:f4: 1b:9b:4c:6f:eb:e3:89:7f:24:99:6a:e7:2b:2b:9b:14:71:96: c5:d7:15:7a:b4:d8:39:4f:12:36:20:d6:49:7c:ee:f8:ea:07: a4:15:bd:e4:e4:dd:b2:3a:84:6e:69:40:3d:15:4d:92:7e:aa: 07:a4:2f:28:c8:de:04:7c:61:7c:f4:b6:8b:12:64:e6:46:5f: e8:91:c5:56:91:ab:40:b5:1c:5e:f6:ff:df:fb:a9:12:c9:60: cb:19:8e:bd:6c:0b:39:61:48:f0:c8:1f:37:7e:6f:6d:e4:4d: 12:ef:7d:13:07:0b:d1:e8:e1:d1:3b:10:d8:77:49:8c:5f:fc: c2:ba:7c:39:2c:70:6a:84:26:94:dd:92:af:08:29:48:ff:02: c7:02:a8:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPU/lvQqTP2fcL47zS1/KWXmk9powDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNDA3MTEwMjI3MzlaFw0yNTA3MTAwMjMyMzlaMDMxMTAvBgNV BAMTKEIyNjU0QjIxRDQ3M0FFQUREMDAzODIwOUY2MjAwMkZGMjg5QTA4ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSkUs07oc8OW0WgFaUT8dYHs95 AUjYOlD8E1vuFDvnwSmzR1l/bQRKmauQCObmGQJxZYTmaCWvzD9QiBmstJgUaNxL w+ScMtVbYdBgxINIxHhDrc3YCBlgx8m/k0WzrfQa11yT+9fkux1VNr0qiYmQgw/d e+NTiLJXGnKaVTf/11eBLvi4nfK6ijMGxsz1aQE0eObPAYzd2+u5yDiYc+oAvz7F FRnrdDmMR8ke6VIujMd7SNLJHqPzblhgQ1pQi86Sa2zVyFwL8HUBTfESVlL7dIeN 5PUbwb/Ah3Du8lPfMTH5LBSJ5jju6V6QxMwGGBh1qZG4xFV+DC50wzuPVpDlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUsmVLIdRzrq3QA4IJ9iAC/yiaCIYwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2OIMA0GCSqG SIb3DQEBCwUAA4IBAQAu5sSsK/BueICNq9Q+abpelG75C1U2QxZ9vaX854jIV4sy m3Zr4tpABCH4zFmmWN0EtxqrHcCMRNsN54zs2BnyOqqhuhj4DfgvbjIOMbvdmebx yYJ+a1gCWUOvrcxdrlh3a5/lrXZUipKw+/Qbm0xv6+OJfySZaucrK5sUcZbF1xV6 tNg5TxI2INZJfO746gekFb3k5N2yOoRuaUA9FU2SfqoHpC8oyN4EfGF89LaLEmTm Rl/okcVWkatAtRxe9v/f+6kSyWDLGY69bAs5YUjwyB83fm9t5E0S730TBwvR6OHR OxDYd0mMX/zCunw5LHBqhCaU3ZKvCClI/wLHAqjZ -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:09 2024 by rpki-client on console-fra.rpki-client.org