$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa File: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (raw, json) Hash identifier: t1oPzu4VEOt7+PmdI8majMljNsaF8ctMOjhLL1SL0Go= Subject key identifier: E9:24:91:47:09:FE:2E:B2:B5:75:E4:12:89:C4:20:40:57:D2:B3:E5 Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 32FBCC7E4A1150FCB5CE49A48F68B3259FD68810 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa Signing time: Thu 11 Jul 2024 02:34:00 +0000 ROA not before: Thu 11 Jul 2024 02:29:00 +0000 ROA not after: Thu 10 Jul 2025 02:34:00 +0000 asID: 151575 IP address blocks: 103.99.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:fb:cc:7e:4a:11:50:fc:b5:ce:49:a4:8f:68:b3:25:9f:d6:88:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jul 11 02:29:00 2024 GMT Not After : Jul 10 02:34:00 2025 GMT Subject: CN=E924914709FE2EB2B575E41289C4204057D2B3E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f9:a8:4a:06:4b:6a:c7:2c:85:ff:9c:3a:05: 2a:47:db:92:85:0d:35:9f:be:0d:48:cb:2f:0b:31: e9:26:1a:25:52:9f:d4:b5:ba:3d:41:a2:ee:cd:fc: 7a:f4:da:a9:9f:45:34:d4:65:cc:52:ae:41:0d:9c: f4:1b:42:99:d2:f3:4f:14:21:29:5b:56:d0:59:41: 39:f5:a3:09:18:dd:f9:f0:cf:5c:98:db:92:45:53: e0:89:6c:12:63:63:a1:ca:54:76:a2:d9:08:4a:6d: bc:c2:8f:9c:f4:32:7f:f7:c6:8f:ca:09:7c:fc:05: b1:4b:9a:0a:d9:88:5b:8b:09:6d:6a:a7:d9:c9:26: d7:f9:19:cf:05:46:ad:b5:da:0e:23:7e:d2:4a:41: 5f:2a:df:71:44:3b:a5:41:f5:69:03:15:61:a7:f7: 00:c4:bd:cf:e7:18:7c:50:8d:84:f1:a2:b4:27:34: 9b:c4:4e:8d:cb:f0:89:34:ef:97:4f:e0:53:2e:55: 76:91:51:e3:1d:6f:d3:63:9a:24:4c:95:0c:c3:83: ef:fd:e1:fb:36:4f:8b:06:c3:ec:92:fd:81:3c:a8: 23:ee:c8:fe:0c:8e:7a:1c:1b:8e:8d:89:52:1f:91: 8c:28:cd:16:53:a0:6a:87:df:0e:85:ac:26:d9:f0: c1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:24:91:47:09:FE:2E:B2:B5:75:E4:12:89:C4:20:40:57:D2:B3:E5 X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.137.0/24 Signature Algorithm: sha256WithRSAEncryption 05:f7:85:65:ba:42:30:c3:3c:19:e7:a5:e0:06:c5:51:44:65: 99:72:51:e5:91:b3:b6:c6:35:78:72:37:38:e8:3d:ea:b8:54: d6:36:fe:02:9a:b2:8f:3b:5c:54:3c:5e:0f:02:22:85:cf:b8: 35:4d:fc:ec:3b:80:b9:2f:29:0c:d4:0c:08:c2:bd:c9:09:f5: 0b:ae:5f:5b:a7:0d:6c:7e:9b:bc:56:99:82:78:df:53:2b:fa: 90:0c:55:d6:f2:0e:02:f3:c4:c3:16:39:f2:99:d9:61:97:4e: 49:75:38:ed:c8:c7:5b:bc:3c:2f:e8:fb:68:40:94:3c:d7:05: e2:4e:34:ad:27:b7:a2:04:1d:be:f9:45:99:f6:a0:23:33:fb: 94:81:ef:eb:52:75:a2:74:88:ae:e6:ee:ca:3e:71:5a:58:bc: 14:46:50:9e:2c:34:e4:33:42:40:72:7c:fd:f3:65:66:15:60: 70:ae:75:20:81:b6:a0:c2:84:f8:9e:9d:57:f0:39:47:52:0d: c2:b2:69:e9:08:43:72:58:43:95:a3:27:ac:a2:65:01:80:94: 14:fa:41:d9:a4:94:31:1c:66:6b:55:2b:3e:70:31:6e:7f:e9: 9a:cc:e7:1a:a4:ef:d3:3f:77:26:9b:63:70:b1:d8:7a:c4:6c: 93:ba:5e:73 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMvvMfkoRUPy1zkmkj2izJZ/WiBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNDA3MTEwMjI5MDBaFw0yNTA3MTAwMjM0MDBaMDMxMTAvBgNV BAMTKEU5MjQ5MTQ3MDlGRTJFQjJCNTc1RTQxMjg5QzQyMDQwNTdEMkIzRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi+ahKBktqxyyF/5w6BSpH25KF DTWfvg1Iyy8LMekmGiVSn9S1uj1Bou7N/Hr02qmfRTTUZcxSrkENnPQbQpnS808U ISlbVtBZQTn1owkY3fnwz1yY25JFU+CJbBJjY6HKVHai2QhKbbzCj5z0Mn/3xo/K CXz8BbFLmgrZiFuLCW1qp9nJJtf5Gc8FRq212g4jftJKQV8q33FEO6VB9WkDFWGn 9wDEvc/nGHxQjYTxorQnNJvETo3L8Ik075dP4FMuVXaRUeMdb9NjmiRMlQzDg+/9 4fs2T4sGw+yS/YE8qCPuyP4MjnocG46NiVIfkYwozRZToGqH3w6FrCbZ8MF5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6SSRRwn+LrK1deQSicQgQFfSs+UwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMjgwYWYzLWFhMWQtNDI3MS04 YzA2LWEzZmEyODg5ODQyNi8wLzMxMzAzMzJlMzkzOTJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2OJMA0GCSqG SIb3DQEBCwUAA4IBAQAF94VlukIwwzwZ56XgBsVRRGWZclHlkbO2xjV4cjc46D3q uFTWNv4CmrKPO1xUPF4PAiKFz7g1TfzsO4C5LykM1AwIwr3JCfULrl9bpw1sfpu8 VpmCeN9TK/qQDFXW8g4C88TDFjnymdlhl05JdTjtyMdbvDwv6PtoQJQ81wXiTjSt J7eiBB2++UWZ9qAjM/uUge/rUnWidIiu5u7KPnFaWLwURlCeLDTkM0JAcnz982Vm FWBwrnUggbagwoT4np1X8DlHUg3CsmnpCENyWEOVoyesomUBgJQU+kHZpJQxHGZr VSs+cDFuf+mazOcapO/TP3cmm2Nwsdh6xGyTul5z -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org