$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa File: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (raw, json) Hash identifier: O0N8YnmOgvwU8r8KKC4SJAWcGP/YV+Rw0wgGJ4ZOg7I= Subject key identifier: FA:DA:A7:85:43:7D:C0:D6:B0:78:D5:EA:0B:74:A7:CA:4A:0C:C3:EC Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 3DE465512C8C60344901E19096DE6C3A6053C241 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa Signing time: Thu 11 Jul 2024 02:32:51 +0000 ROA not before: Thu 11 Jul 2024 02:27:51 +0000 ROA not after: Thu 10 Jul 2025 02:32:51 +0000 asID: 151575 IP address blocks: 103.99.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e4:65:51:2c:8c:60:34:49:01:e1:90:96:de:6c:3a:60:53:c2:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jul 11 02:27:51 2024 GMT Not After : Jul 10 02:32:51 2025 GMT Subject: CN=FADAA785437DC0D6B078D5EA0B74A7CA4A0CC3EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9f:3a:46:95:c3:20:11:47:e1:3a:ee:e2:aa: d1:e4:4e:3a:17:91:24:b5:b4:5c:55:ef:5b:7b:63: e0:02:85:01:ae:d2:7b:ee:3f:2c:b6:9b:23:5a:1b: e9:3a:dd:6e:03:ff:76:c4:7b:90:8f:25:e7:c1:43: 9f:99:58:e9:2a:ee:69:74:e0:ca:18:83:48:06:77: 7a:4c:2b:6d:51:be:3f:f9:97:7d:a2:a3:66:3c:c2: 28:00:e7:a0:b2:73:2d:14:00:6f:53:be:cc:39:29: 19:b3:8d:a8:a5:e8:60:65:9d:24:3a:7f:e1:3d:70: 47:3e:f5:56:94:b2:47:29:a6:c9:f0:62:f0:03:3e: d3:54:85:97:0c:15:8b:b1:f4:00:de:9d:ec:92:97: 4d:2f:ee:19:03:e3:24:48:d5:f6:5f:01:6f:45:3d: c8:28:13:5c:4b:fb:16:d0:86:d6:4a:ff:2c:79:89: ee:74:cc:01:ae:00:50:e7:3b:6e:68:90:39:c7:fd: 9e:ef:b3:a2:58:7d:fe:64:73:4d:02:86:80:28:1e: 3d:ba:f8:7a:94:fb:ea:e3:49:16:b6:51:11:31:23: 9e:85:d6:1a:12:87:9a:3d:76:38:c2:27:95:46:bd: 93:ea:42:63:5b:b8:72:27:7b:52:32:fd:10:89:99: 53:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:DA:A7:85:43:7D:C0:D6:B0:78:D5:EA:0B:74:A7:CA:4A:0C:C3:EC X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.136.0/24 Signature Algorithm: sha256WithRSAEncryption a8:84:d2:a0:26:36:44:3e:a6:e8:af:6d:dc:cf:0c:d8:ba:f9: 81:bb:e8:1b:eb:2b:26:99:9f:1e:8f:b6:e7:17:9b:47:a8:15: 13:20:0d:40:68:b4:b7:db:9f:e9:82:95:5d:02:9e:84:54:e9: d9:8b:f1:25:de:e9:e3:f4:ac:d9:8b:23:bf:6a:52:c3:6f:d6: 23:0b:4a:25:1a:62:45:95:37:64:7b:2f:ad:69:40:63:34:88: 6f:b5:c7:e9:1e:89:a4:4c:9e:bb:70:a9:98:9d:73:45:fa:a1: 5e:e9:0f:37:68:ae:1e:7a:51:61:1e:ac:a1:fc:35:61:f3:d1: e4:65:ec:8a:27:85:1f:fd:2b:1a:f3:40:a4:0f:e2:4c:1f:5d: 9e:1b:8c:5b:83:58:a7:1b:3e:27:c2:f8:f4:84:6f:9a:f5:1e: b0:c8:5b:c8:07:de:8c:c1:ca:6b:c6:31:de:75:53:7f:6a:2e: ef:a8:93:4c:e5:d8:d8:e5:48:82:2c:3e:84:93:fd:9a:c9:e7: d5:e8:3d:bd:1f:26:94:82:68:01:7b:fa:02:ba:cd:25:33:0d: 31:7d:0e:58:51:96:39:aa:ab:a0:29:76:ed:51:78:8c:42:5e: e4:d7:2e:b6:17:9c:8a:53:23:9f:83:9d:ec:c5:1f:3b:a7:1b: 74:d2:0c:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPeRlUSyMYDRJAeGQlt5sOmBTwkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNDA3MTEwMjI3NTFaFw0yNTA3MTAwMjMyNTFaMDMxMTAvBgNV BAMTKEZBREFBNzg1NDM3REMwRDZCMDc4RDVFQTBCNzRBN0NBNEEwQ0MzRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnzpGlcMgEUfhOu7iqtHkTjoX kSS1tFxV71t7Y+AChQGu0nvuPyy2myNaG+k63W4D/3bEe5CPJefBQ5+ZWOkq7ml0 4MoYg0gGd3pMK21Rvj/5l32io2Y8wigA56Cycy0UAG9Tvsw5KRmzjail6GBlnSQ6 f+E9cEc+9VaUskcppsnwYvADPtNUhZcMFYux9ADeneySl00v7hkD4yRI1fZfAW9F PcgoE1xL+xbQhtZK/yx5ie50zAGuAFDnO25okDnH/Z7vs6JYff5kc00ChoAoHj26 +HqU++rjSRa2URExI56F1hoSh5o9djjCJ5VGvZPqQmNbuHIne1Iy/RCJmVMRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+tqnhUN9wNaweNXqC3SnykoMw+wwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2OIMA0GCSqG SIb3DQEBCwUAA4IBAQCohNKgJjZEPqbor23czwzYuvmBu+gb6ysmmZ8ej7bnF5tH qBUTIA1AaLS325/pgpVdAp6EVOnZi/El3unj9KzZiyO/alLDb9YjC0olGmJFlTdk ey+taUBjNIhvtcfpHomkTJ67cKmYnXNF+qFe6Q83aK4eelFhHqyh/DVh89HkZeyK J4Uf/Ssa80CkD+JMH12eG4xbg1inGz4nwvj0hG+a9R6wyFvIB96MwcprxjHedVN/ ai7vqJNM5djY5UiCLD6Ek/2ayefV6D29HyaUgmgBe/oCus0lMw0xfQ5YUZY5qqug KXbtUXiMQl7k1y62F5yKUyOfg53sxR87pxt00gzh -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org