$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa File: 3130332e32342e37322e302f32322d3232203d3e203436303631.roa (raw, json) Hash identifier: STQ8FWii/hKTuO2HgGm9t5vTCO9x73WQ7dbNQLgSBY8= Subject key identifier: FA:95:E8:49:C8:4B:6E:2A:FE:70:A9:C4:F3:49:B3:4A:96:41:53:80 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 2CFE9FFDC7FA09ED79D61E991AA547FC560A1571 Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa Signing time: Wed 02 Oct 2024 09:00:02 +0000 ROA not before: Wed 02 Oct 2024 08:55:02 +0000 ROA not after: Wed 01 Oct 2025 09:00:02 +0000 asID: 46061 IP address blocks: 103.24.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fe:9f:fd:c7:fa:09:ed:79:d6:1e:99:1a:a5:47:fc:56:0a:15:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Oct 2 08:55:02 2024 GMT Not After : Oct 1 09:00:02 2025 GMT Subject: CN=FA95E849C84B6E2AFE70A9C4F349B34A96415380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:77:ec:37:89:2e:1c:0c:27:cd:a0:d9:3d:68: 30:2c:ca:3a:4c:70:01:55:78:6a:ba:9b:aa:4f:77: d1:d4:9f:61:1a:3e:82:91:b2:63:65:42:b8:1f:cf: 04:38:56:9d:52:84:d2:28:b6:c9:33:33:99:79:e0: 27:e2:65:e0:1e:70:e1:aa:14:a1:88:6a:e9:e6:c1: 43:ba:ef:69:8a:b6:ac:d8:87:f5:59:05:e0:ce:81: 82:67:ac:93:85:c0:59:ce:43:d0:53:ec:77:f3:bd: 8b:5f:18:95:e4:2f:9d:12:c1:9f:1f:bc:81:7b:2f: 8c:fc:71:c1:07:0a:f0:86:b3:a7:b5:89:1a:10:14: 86:2d:7f:3d:8c:fd:b3:1f:1f:0a:a2:c9:73:6f:35: bf:d7:1a:4a:fe:2b:1b:91:68:13:35:35:6d:e4:30: 5c:5b:c5:55:97:65:23:bd:1f:2f:b3:3c:46:75:c6: 77:6f:74:31:e1:67:da:54:7e:a5:bb:dc:21:da:af: 75:eb:6e:d3:a8:0d:24:62:a9:bb:16:aa:f3:b2:69: 1e:43:c5:d9:b3:76:85:a6:02:f2:d8:d0:df:e8:5f: 25:91:e5:82:70:2b:6a:60:40:a7:6f:2e:8d:25:b8: 24:a0:52:ec:df:fd:29:44:3b:54:53:d6:f3:e0:9d: a5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:95:E8:49:C8:4B:6E:2A:FE:70:A9:C4:F3:49:B3:4A:96:41:53:80 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32322d3232203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.72.0/22 Signature Algorithm: sha256WithRSAEncryption 17:ca:93:5e:69:01:d4:a5:16:80:90:f8:d8:da:94:c2:0a:99: 14:35:77:7a:eb:02:00:a8:76:95:cc:8c:36:c2:9e:2c:96:da: c2:4a:e1:fd:9f:aa:ce:f3:3c:a2:db:86:74:a2:61:29:ff:cb: 54:b3:c0:e1:1c:b5:d4:7f:3a:05:95:dd:59:76:78:63:a5:ae: 51:3c:cb:50:70:40:07:48:52:8b:4e:69:69:35:de:a4:dc:63: 2f:31:5d:94:51:b0:2b:1d:6e:89:aa:f0:c2:81:a5:36:a7:c0: 49:9d:63:30:2b:56:79:41:6f:4c:fd:5c:72:ab:10:e6:85:d7: 7e:ce:e1:82:73:65:50:5a:8d:a6:ea:01:47:0e:71:c0:b3:1d: 0c:67:e9:56:27:2d:c7:12:56:78:a8:75:8f:df:5e:f4:7d:21: bf:73:e8:f3:fc:55:80:cb:02:32:98:14:09:9a:dc:81:fd:1b: 7e:71:5c:b8:88:79:9c:81:2c:d1:df:d4:ae:e4:b6:64:a2:72: ef:89:44:03:16:47:c1:64:73:b3:e3:74:ca:86:fd:21:1f:65: be:a0:0c:88:03:6f:ea:3a:26:58:41:6f:75:25:36:bc:cd:79: c1:cf:ad:aa:36:00:c7:a9:46:90:cb:c2:79:4f:49:7c:aa:61: 0e:02:27:6a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULP6f/cf6Ce151h6ZGqVH/FYKFXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNDEwMDIwODU1MDJaFw0yNTEwMDEwOTAwMDJaMDMxMTAvBgNV BAMTKEZBOTVFODQ5Qzg0QjZFMkFGRTcwQTlDNEYzNDlCMzRBOTY0MTUzODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxd+w3iS4cDCfNoNk9aDAsyjpM cAFVeGq6m6pPd9HUn2EaPoKRsmNlQrgfzwQ4Vp1ShNIotskzM5l54CfiZeAecOGq FKGIaunmwUO672mKtqzYh/VZBeDOgYJnrJOFwFnOQ9BT7HfzvYtfGJXkL50SwZ8f vIF7L4z8ccEHCvCGs6e1iRoQFIYtfz2M/bMfHwqiyXNvNb/XGkr+KxuRaBM1NW3k MFxbxVWXZSO9Hy+zPEZ1xndvdDHhZ9pUfqW73CHar3XrbtOoDSRiqbsWqvOyaR5D xdmzdoWmAvLY0N/oXyWR5YJwK2pgQKdvLo0luCSgUuzf/SlEO1RT1vPgnaWRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+pXoSchLbir+cKnE80mzSpZBU4AwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMxMzAzMzJlMzIzNDJlMzczMjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnGEgwDQYJKoZIhvcN AQELBQADggEBABfKk15pAdSlFoCQ+NjalMIKmRQ1d3rrAgCodpXMjDbCniyW2sJK 4f2fqs7zPKLbhnSiYSn/y1SzwOEctdR/OgWV3Vl2eGOlrlE8y1BwQAdIUotOaWk1 3qTcYy8xXZRRsCsdbomq8MKBpTanwEmdYzArVnlBb0z9XHKrEOaF137O4YJzZVBa jabqAUcOccCzHQxn6VYnLccSVniodY/fXvR9Ib9z6PP8VYDLAjKYFAma3IH9G35x XLiIeZyBLNHf1K7ktmSicu+JRAMWR8Fkc7PjdMqG/SEfZb6gDIgDb+o6JlhBb3Ul NrzNecHPrao2AMepRpDLwnlPSXyqYQ4CJ2o= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org