$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32342d3234203d3e203436303631.roa File: 3130332e32342e37322e302f32342d3234203d3e203436303631.roa (raw, json) Hash identifier: WznhULhoAr96hBAHamaaGBFJbGkn7dyLR/yoxDJeWgk= Subject key identifier: 39:F5:97:DE:28:DC:98:A2:3D:FA:CD:0B:E2:A1:99:16:9C:83:C7:EF Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 715888D35240DECEDFB285F7F526FD0B63DB8E0C Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32342d3234203d3e203436303631.roa Signing time: Wed 02 Oct 2024 16:00:02 +0000 ROA not before: Wed 02 Oct 2024 15:55:02 +0000 ROA not after: Wed 01 Oct 2025 16:00:02 +0000 asID: 46061 IP address blocks: 103.24.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:58:88:d3:52:40:de:ce:df:b2:85:f7:f5:26:fd:0b:63:db:8e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Oct 2 15:55:02 2024 GMT Not After : Oct 1 16:00:02 2025 GMT Subject: CN=39F597DE28DC98A23DFACD0BE2A199169C83C7EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:e8:ca:d9:33:62:96:fd:d7:84:56:7f:a4: e1:fa:b0:07:e5:cf:a6:a8:6f:d3:78:37:23:3c:87: 7d:a3:75:c7:09:a1:4c:e4:47:5d:d7:dd:e9:ae:08: 12:4d:f9:fd:64:78:ef:54:a2:47:47:ad:23:19:6b: 92:9c:7a:fa:b3:b9:28:b2:46:8d:32:39:af:7e:2d: fd:e8:3a:fe:ae:4a:9a:c5:4b:0e:a3:b6:cb:f7:19: d5:81:24:cc:dd:58:19:8e:87:03:62:74:c6:d0:72: 33:70:d9:72:be:88:63:96:7b:47:31:81:70:53:ba: 49:73:5c:ed:26:97:7c:47:9c:63:b3:c8:dd:49:76: e7:14:28:9f:6a:a1:6b:6d:13:1f:da:40:f4:9a:b2: 6b:36:04:e6:fa:c6:1a:91:c9:a8:db:b5:66:89:a1: 79:4a:3b:bd:8d:ff:5e:33:4d:69:51:b6:e9:f1:bf: 4d:a5:39:61:f1:e0:d7:9a:a5:ee:6f:ff:3d:31:ea: f0:7a:cf:38:c7:fd:a9:68:78:a5:e9:de:69:47:93: 18:a4:45:49:53:a5:1b:76:56:ad:93:46:95:cd:3a: e8:ae:67:12:29:f9:4a:28:c9:ad:fd:bd:ef:fc:60: 53:96:db:77:87:e8:a3:2a:54:dd:47:0f:95:3c:bd: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F5:97:DE:28:DC:98:A2:3D:FA:CD:0B:E2:A1:99:16:9C:83:C7:EF X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37322e302f32342d3234203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.72.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:7e:5a:ae:93:01:24:a2:1e:15:79:6b:9b:35:22:3f:07:4c: 74:59:4c:5b:45:56:b4:85:95:85:ae:36:ef:b3:71:e1:9e:a5: 40:de:53:84:b7:56:c7:46:84:74:29:02:6c:45:03:8e:0a:cd: bb:8b:2d:c8:d5:40:28:18:83:1f:f2:1b:d1:bf:bf:b1:c9:93: be:da:b4:de:35:b2:a9:7d:cf:9f:d0:cd:ad:23:f5:03:89:f3: f6:ed:ed:59:8b:b4:6b:e5:3e:e8:e9:08:f5:14:5a:f4:24:e6: 43:42:2e:98:4d:58:48:67:15:bc:40:cf:8f:0b:85:d4:f8:cb: b6:87:f6:e0:c5:21:b1:c0:17:51:2b:7b:f6:ef:b9:61:e0:e2: 50:7f:4a:1d:ee:87:4d:15:16:fa:e3:aa:c1:8d:27:c6:d0:c8: 24:f5:c7:c1:d9:95:68:e9:13:59:e7:3e:cf:2e:86:59:cc:d5: ed:ee:70:e1:91:10:e7:34:e5:19:7d:52:4c:aa:36:47:01:cb: 11:95:d3:28:11:3d:5c:a1:e8:ad:a1:4e:3e:99:b9:a4:1b:63: 2f:8c:af:5a:26:f0:25:9a:5e:b6:3d:e4:77:3b:0c:a1:56:83: 97:26:6a:01:be:26:21:a3:42:af:10:96:f7:37:d5:29:12:d1: 07:8b:3b:88 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcViI01JA3s7fsoX39Sb9C2PbjgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNDEwMDIxNTU1MDJaFw0yNTEwMDExNjAwMDJaMDMxMTAvBgNV BAMTKDM5RjU5N0RFMjhEQzk4QTIzREZBQ0QwQkUyQTE5OTE2OUM4M0M3RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqkejK2TNilv3XhFZ/pOH6sAfl z6aob9N4NyM8h32jdccJoUzkR13X3emuCBJN+f1keO9UokdHrSMZa5KcevqzuSiy Ro0yOa9+Lf3oOv6uSprFSw6jtsv3GdWBJMzdWBmOhwNidMbQcjNw2XK+iGOWe0cx gXBTuklzXO0ml3xHnGOzyN1JducUKJ9qoWttEx/aQPSasms2BOb6xhqRyajbtWaJ oXlKO72N/14zTWlRtunxv02lOWHx4Neape5v/z0x6vB6zzjH/aloeKXp3mlHkxik RUlTpRt2Vq2TRpXNOuiuZxIp+Uooya39ve/8YFOW23eH6KMqVN1HD5U8vYJDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOfWX3ijcmKI9+s0L4qGZFpyDx+8wHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMxMzAzMzJlMzIzNDJlMzczMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGEgwDQYJKoZIhvcN AQELBQADggEBAG9+Wq6TASSiHhV5a5s1Ij8HTHRZTFtFVrSFlYWuNu+zceGepUDe U4S3VsdGhHQpAmxFA44KzbuLLcjVQCgYgx/yG9G/v7HJk77atN41sql9z5/Qza0j 9QOJ8/bt7VmLtGvlPujpCPUUWvQk5kNCLphNWEhnFbxAz48LhdT4y7aH9uDFIbHA F1Ere/bvuWHg4lB/Sh3uh00VFvrjqsGNJ8bQyCT1x8HZlWjpE1nnPs8uhlnM1e3u cOGREOc05Rl9UkyqNkcByxGV0ygRPVyh6K2hTj6ZuaQbYy+Mr1om8CWaXrY95Hc7 DKFWg5cmagG+JiGjQq8Qlvc31SkS0QeLO4g= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org