$ rpki-client -vvf repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa File: 3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: IwHwotddAWU2g9udtUXGTuKj467I/RXi9GwfJR1ItSs= Subject key identifier: 49:BA:CF:EB:3E:14:16:11:3F:5D:65:E7:82:F8:64:83:49:CF:C7:49 Certificate issuer: /CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Certificate serial: 4A2BDC003E64606BF661141C3B3D2B971486B472 Authority key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:05:22 +0000 ROA not before: Mon 01 Jul 2024 01:00:22 +0000 ROA not after: Mon 30 Jun 2025 01:05:22 +0000 asID: 131717 IP address blocks: 103.110.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2b:dc:00:3e:64:60:6b:f6:61:14:1c:3b:3d:2b:97:14:86:b4:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Validity Not Before: Jul 1 01:00:22 2024 GMT Not After : Jun 30 01:05:22 2025 GMT Subject: CN=49BACFEB3E1416113F5D65E782F8648349CFC749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:60:3c:12:88:39:79:df:96:f8:b4:e5:5a:2a: 0a:8a:48:e6:40:d3:53:60:ae:04:64:5f:73:d9:93: a5:40:99:90:da:9e:4c:b4:14:94:9f:1e:69:ce:48: a4:a3:88:86:ce:86:89:c9:bc:e0:ce:0f:90:eb:df: dc:01:b1:b2:7c:a6:96:86:91:00:d7:4f:d6:4c:60: e1:35:d9:52:9e:69:aa:d0:bf:42:fc:03:62:7e:3b: e9:1f:76:73:6e:37:ff:6b:e3:98:f6:43:99:08:d5: 05:56:49:8e:e6:e9:f7:f7:6e:0f:0e:ce:39:4e:e7: 84:9d:6a:56:ef:00:1c:8a:a6:05:93:fc:d2:2f:5a: 0b:a9:1c:55:87:7c:13:c8:55:d3:ef:b6:67:1f:79: d2:9d:9b:11:cf:99:24:00:f9:d5:76:6e:21:f1:88: 67:44:1a:9c:54:c3:ad:65:a1:6e:0c:13:27:38:ed: 3c:91:cd:49:f0:b2:f9:27:21:ce:be:a9:a2:a0:8b: 70:fd:f6:ac:4b:63:8c:b4:13:ab:76:87:83:31:b7: 53:38:8a:7c:68:68:02:41:c7:60:91:a5:fd:da:ec: c4:ac:9d:4b:b2:94:3b:26:d0:3d:b2:e6:7b:88:35: 4e:f0:e0:63:b2:46:22:e6:ba:68:7e:ed:19:53:c7: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BA:CF:EB:3E:14:16:11:3F:5D:65:E7:82:F8:64:83:49:CF:C7:49 X509v3 Authority Key Identifier: keyid:2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31312e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.11.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:eb:c1:7b:8a:8f:ea:a0:31:b7:5f:c5:c1:2a:a9:bf:48:8e: ec:ec:42:67:4c:a5:ef:bb:62:41:0b:76:25:c9:9d:94:a5:8b: 8b:dd:c7:4e:31:7a:96:c3:81:bc:ea:83:a1:d4:9a:43:97:de: 4a:07:c7:c9:76:40:e1:58:bc:e4:45:07:0f:b0:6d:78:28:7d: 65:69:c4:65:fc:2d:cf:c8:a2:7d:9a:77:32:a4:ca:e1:e1:d2: ea:f7:5f:fa:37:b9:92:74:e5:25:8e:63:26:ab:05:bf:5f:35: 1e:3b:ba:3d:88:72:c4:37:eb:b5:1d:7c:f9:8f:74:50:26:3e: 16:53:13:68:8f:1b:22:0f:40:e8:41:cb:c9:6c:b1:cf:4e:e1: ab:74:fa:c6:df:3b:b4:19:99:6b:22:83:ad:72:7b:d3:ba:f5: 12:0f:29:bb:e4:04:49:be:f3:9d:fb:8a:2f:f6:6c:c8:7a:c7: 39:eb:c1:16:24:d0:9c:e4:6c:c4:4a:0a:c4:09:e4:af:5d:54: e7:12:45:03:1f:e9:29:e9:85:fc:82:86:e7:98:32:de:5d:41: 5d:6a:19:5c:ee:eb:33:ca:5c:33:bc:75:7e:45:07:f5:63:35: f3:08:cb:3c:26:7b:ec:38:9c:d2:82:d4:87:1e:24:5f:bc:bf: 43:64:af:ca -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSivcAD5kYGv2YRQcOz0rlxSGtHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3 MkY0OTk4NTAeFw0yNDA3MDEwMTAwMjJaFw0yNTA2MzAwMTA1MjJaMDMxMTAvBgNV BAMTKDQ5QkFDRkVCM0UxNDE2MTEzRjVENjVFNzgyRjg2NDgzNDlDRkM3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeYDwSiDl535b4tOVaKgqKSOZA 01NgrgRkX3PZk6VAmZDanky0FJSfHmnOSKSjiIbOhonJvODOD5Dr39wBsbJ8ppaG kQDXT9ZMYOE12VKeaarQv0L8A2J+O+kfdnNuN/9r45j2Q5kI1QVWSY7m6ff3bg8O zjlO54SdalbvAByKpgWT/NIvWgupHFWHfBPIVdPvtmcfedKdmxHPmSQA+dV2biHx iGdEGpxUw61loW4MEyc47TyRzUnwsvknIc6+qaKgi3D99qxLY4y0E6t2h4Mxt1M4 inxoaAJBx2CRpf3a7MSsnUuylDsm0D2y5nuINU7w4GOyRiLmumh+7RlTxzMbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSbrP6z4UFhE/XWXngvhkg0nPx0kwHwYDVR0j BBgwFoAUL7mUzRKCKS5tKQf87Nf55HL0mYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZGE3NzNkZC05NWFhLTQ0N2UtOTkzZC00Y2Y0YTEyNzNiMzEvMC8yRkI5OTRDRDEy ODIyOTJFNkQyOTA3RkNFQ0Q3RjlFNDcyRjQ5OTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3MkY0 OTk4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkYTc3M2RkLTk1YWEtNDQ3ZS05 OTNkLTRjZjRhMTI3M2IzMS8wLzMxMzAzMzJlMzEzMTMwMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ24LMA0GCSqG SIb3DQEBCwUAA4IBAQCP68F7io/qoDG3X8XBKqm/SI7s7EJnTKXvu2JBC3YlyZ2U pYuL3cdOMXqWw4G86oOh1JpDl95KB8fJdkDhWLzkRQcPsG14KH1lacRl/C3PyKJ9 mncypMrh4dLq91/6N7mSdOUljmMmqwW/XzUeO7o9iHLEN+u1HXz5j3RQJj4WUxNo jxsiD0DoQcvJbLHPTuGrdPrG3zu0GZlrIoOtcnvTuvUSDym75ARJvvOd+4ov9mzI esc568EWJNCc5GzESgrECeSvXVTnEkUDH+kp6YX8gobnmDLeXUFdahlc7uszylwz vHV+RQf1YzXzCMs8JnvsOJzSgtSHHiRfvL9DZK/K -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org