$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa File: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (raw, json) Hash identifier: AhfedWLCTEc5EhocODFri+NBZVGPcnF3DEyLO8J+BrU= Subject key identifier: 56:6F:6F:98:59:7C:4D:9B:A9:48:49:4F:21:07:3A:04:9C:21:E1:16 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 7ABBC19BC3B5BB1D02CBDAFC3D57C0EFD47127FA Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa Signing time: Mon 01 Jul 2024 01:04:06 +0000 ROA not before: Mon 01 Jul 2024 00:59:06 +0000 ROA not after: Mon 30 Jun 2025 01:04:06 +0000 asID: 45305 IP address blocks: 103.28.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:bb:c1:9b:c3:b5:bb:1d:02:cb:da:fc:3d:57:c0:ef:d4:71:27:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jul 1 00:59:06 2024 GMT Not After : Jun 30 01:04:06 2025 GMT Subject: CN=566F6F98597C4D9BA948494F21073A049C21E116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4c:33:00:46:72:8e:6f:cd:2c:84:aa:56:af: a8:dd:64:cf:31:ab:0d:81:18:c6:10:65:da:76:b1: de:62:f1:2f:a6:f0:d2:b3:d2:2d:6b:74:0c:13:6a: 23:d1:21:c9:b4:9c:ee:05:80:79:0d:39:d9:35:f0: f3:c0:b0:c7:2f:2b:46:34:3c:ac:90:75:a9:41:56: 10:a8:a7:5f:3a:79:68:d3:a1:fe:61:91:62:5a:4a: 11:b3:57:46:e6:cd:26:3f:52:bc:81:51:b6:35:5d: 57:9f:eb:eb:15:88:42:40:49:17:d7:0d:06:df:87: 46:07:ad:c2:b6:06:47:76:78:1a:e1:4b:39:49:48: e3:aa:c4:b4:66:eb:9f:72:1d:79:bf:32:2b:b1:c7: 23:94:8e:64:ce:98:64:e2:15:69:08:28:ea:ec:3a: ca:30:ca:9e:b8:ea:de:05:f6:61:3b:5e:19:61:d1: db:1f:f6:14:7c:d2:46:24:b7:bd:1f:15:14:f3:49: b4:64:27:e7:14:61:81:c7:35:4f:ea:8a:22:21:94: 4b:0f:cf:c0:ff:1c:75:b4:04:b6:0d:e2:99:0c:8b: 5f:0a:da:e1:0b:74:74:fd:02:23:42:52:24:f2:ed: f1:3e:d6:d1:ab:81:02:b4:5a:6a:80:aa:3f:a3:0e: c8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6F:6F:98:59:7C:4D:9B:A9:48:49:4F:21:07:3A:04:9C:21:E1:16 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3130332e32382e3131322e302f32322d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.112.0/22 Signature Algorithm: sha256WithRSAEncryption 54:27:02:b9:ff:bf:d8:df:28:0c:2c:45:d4:b2:14:ed:37:26: c9:1e:b0:73:fb:21:a4:4d:f4:f2:31:03:75:d5:e6:4b:7e:df: e3:01:6a:fd:df:c1:78:dc:61:c4:4d:b6:5e:d4:bd:c0:5d:d8: 23:7a:a7:5a:e4:e2:c6:06:bb:6f:42:a6:7c:5e:2a:d9:0a:10: 6a:30:51:6f:f3:0b:7d:e0:d6:ab:60:1f:cb:55:67:b4:ab:7a: 11:51:c0:03:38:c0:ba:b4:d6:ef:ef:b0:a8:12:d6:66:b3:1c: cb:56:b6:43:98:4a:ba:09:0b:68:58:ed:1a:0d:24:94:71:a4: 28:a4:49:7c:1f:59:2c:06:fd:a7:fc:13:7b:95:cd:a4:61:5a: 60:b9:1c:6a:d5:aa:40:3f:95:0f:90:05:3b:ff:fb:40:36:1c: 31:e8:6f:f1:59:b5:1d:63:2d:26:0f:c5:77:01:57:dc:13:4a: 6c:97:b6:66:b5:4c:92:ef:ca:31:ec:d5:7a:0f:c8:57:fb:7d: 52:43:32:ac:2a:13:fe:93:a3:5d:d7:7a:44:29:8e:c6:df:6d: 83:0c:eb:4b:77:23:06:38:d0:67:5c:a7:8c:57:a8:14:7f:4d: 58:08:fc:8d:e7:a5:3e:ca:90:2e:81:e0:79:e1:f6:27:8f:9b: f0:7d:65:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUervBm8O1ux0Cy9r8PVfA79RxJ/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNDA3MDEwMDU5MDZaFw0yNTA2MzAwMTA0MDZaMDMxMTAvBgNV BAMTKDU2NkY2Rjk4NTk3QzREOUJBOTQ4NDk0RjIxMDczQTA0OUMyMUUxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVTDMARnKOb80shKpWr6jdZM8x qw2BGMYQZdp2sd5i8S+m8NKz0i1rdAwTaiPRIcm0nO4FgHkNOdk18PPAsMcvK0Y0 PKyQdalBVhCop186eWjTof5hkWJaShGzV0bmzSY/UryBUbY1XVef6+sViEJASRfX DQbfh0YHrcK2Bkd2eBrhSzlJSOOqxLRm659yHXm/MiuxxyOUjmTOmGTiFWkIKOrs Osowyp646t4F9mE7Xhlh0dsf9hR80kYkt70fFRTzSbRkJ+cUYYHHNU/qiiIhlEsP z8D/HHW0BLYN4pkMi18K2uELdHT9AiNCUiTy7fE+1tGrgQK0WmqAqj+jDsiJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVm9vmFl8TZupSElPIQc6BJwh4RYwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMxMzAzMzJlMzIzODJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcccDANBgkqhkiG 9w0BAQsFAAOCAQEAVCcCuf+/2N8oDCxF1LIU7TcmyR6wc/shpE308jEDddXmS37f 4wFq/d/BeNxhxE22XtS9wF3YI3qnWuTixga7b0KmfF4q2QoQajBRb/MLfeDWq2Af y1VntKt6EVHAAzjAurTW7++wqBLWZrMcy1a2Q5hKugkLaFjtGg0klHGkKKRJfB9Z LAb9p/wTe5XNpGFaYLkcatWqQD+VD5AFO//7QDYcMehv8Vm1HWMtJg/FdwFX3BNK bJe2ZrVMku/KMezVeg/IV/t9UkMyrCoT/pOjXdd6RCmOxt9tgwzrS3cjBjjQZ1yn jFeoFH9NWAj8jeelPsqQLoHgeeH2J4+b8H1loQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org