$ rpki-client -vvf repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa File: 3130332e3131302e382e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: 6z/aBJVjmnV5y30TyBAs1DIg7YaA2W+Hxhks9f6rrXI= Subject key identifier: 51:D7:E8:AF:AF:50:7A:D9:EC:BC:A5:12:67:96:6B:FD:9B:1A:05:4F Certificate issuer: /CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Certificate serial: 6827EC81102532754D6D4344653D191BA0DD3FFA Authority key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:05:21 +0000 ROA not before: Mon 01 Jul 2024 01:00:21 +0000 ROA not after: Mon 30 Jun 2025 01:05:21 +0000 asID: 131717 IP address blocks: 103.110.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:27:ec:81:10:25:32:75:4d:6d:43:44:65:3d:19:1b:a0:dd:3f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Validity Not Before: Jul 1 01:00:21 2024 GMT Not After : Jun 30 01:05:21 2025 GMT Subject: CN=51D7E8AFAF507AD9ECBCA51267966BFD9B1A054F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:ac:fd:af:d2:0c:1b:50:e1:fb:79:0a:35: 64:f9:8e:5a:3d:06:c2:27:c9:60:b6:0b:d1:3e:a5: 04:5a:ea:8b:a7:c8:52:c0:9c:3b:20:05:54:a5:77: 23:c7:e4:bc:5b:6a:9d:a9:72:51:6c:04:5d:9b:df: a9:65:46:ba:a3:ef:9a:7b:c3:e8:fc:33:7b:a8:90: a1:92:02:50:0d:f3:74:db:38:ef:f9:f3:26:fa:60: 36:3d:aa:50:0e:31:3b:8a:b1:e9:f1:c5:9f:ca:11: 19:41:97:88:e6:4c:e9:33:13:81:ed:f0:a5:51:07: b3:f4:29:ee:0f:1b:d6:ca:da:bd:1b:a4:e3:42:07: 5f:93:9a:9e:68:d0:68:cc:41:9a:89:a3:b3:26:33: a7:7b:0f:68:4a:1e:41:ae:fe:15:e6:5b:05:37:c9: 2d:43:f7:0a:98:ce:da:0a:40:15:f3:a8:02:c0:56: ba:6a:fc:03:bb:52:9a:c9:5f:6e:84:1c:f5:18:ce: 90:18:44:b1:46:97:c2:a3:8f:b7:6d:5a:99:29:6d: d9:63:6b:c7:31:fc:72:c8:3b:0a:97:c9:be:a6:9f: 63:50:00:bd:bc:7e:d7:5d:5a:df:c3:d5:5f:79:93: fe:d0:9d:70:ff:59:f2:35:3f:94:07:0b:b2:f0:d8: 7b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D7:E8:AF:AF:50:7A:D9:EC:BC:A5:12:67:96:6B:FD:9B:1A:05:4F X509v3 Authority Key Identifier: keyid:2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.8.0/24 Signature Algorithm: sha256WithRSAEncryption 48:77:8b:88:4e:a8:6b:5d:d1:91:0a:f8:85:62:a2:5a:a2:3f: 38:75:0d:34:33:5c:c9:b7:2a:58:53:56:05:76:d0:de:f3:d2: 28:30:41:c6:9e:cc:46:e0:34:ac:98:6a:91:d0:16:91:88:73: c3:32:27:98:bf:c0:2c:b7:c5:e3:58:78:f0:33:d7:4f:22:28: 7d:24:74:b6:5b:04:e2:7f:25:39:75:c6:4d:d9:06:e8:23:20: 24:08:b4:72:ce:51:ff:ab:e4:d7:85:ee:bd:39:d3:51:26:b2: 46:93:98:e7:e8:62:07:84:4c:a0:59:a6:6f:63:94:5f:84:12: 5c:8f:ab:21:47:5c:54:d0:f4:25:05:22:a9:8b:e4:4f:55:65: 97:43:e4:dc:82:41:86:5d:64:98:5c:00:18:bc:b7:c5:d3:8c: 4b:a2:48:7e:e0:79:79:2d:7a:7d:68:f7:d6:01:4a:25:95:b1: c4:50:de:8f:b9:3b:46:4a:f0:1c:3f:97:3b:97:ba:36:98:24: 9b:76:e6:2c:6f:a8:65:f6:d8:d9:be:75:53:85:51:55:5d:75: 4d:08:fd:e7:27:65:92:3f:e8:54:7a:c9:87:85:19:db:a1:95: 28:63:39:60:8c:30:19:d8:91:08:3b:ce:03:e4:1d:d0:1a:59: 36:63:42:cb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaCfsgRAlMnVNbUNEZT0ZG6DdP/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3 MkY0OTk4NTAeFw0yNDA3MDEwMTAwMjFaFw0yNTA2MzAwMTA1MjFaMDMxMTAvBgNV BAMTKDUxRDdFOEFGQUY1MDdBRDlFQ0JDQTUxMjY3OTY2QkZEOUIxQTA1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLcKz9r9IMG1Dh+3kKNWT5jlo9 BsInyWC2C9E+pQRa6ounyFLAnDsgBVSldyPH5Lxbap2pclFsBF2b36llRrqj75p7 w+j8M3uokKGSAlAN83TbOO/58yb6YDY9qlAOMTuKsenxxZ/KERlBl4jmTOkzE4Ht 8KVRB7P0Ke4PG9bK2r0bpONCB1+Tmp5o0GjMQZqJo7MmM6d7D2hKHkGu/hXmWwU3 yS1D9wqYztoKQBXzqALAVrpq/AO7UprJX26EHPUYzpAYRLFGl8Kjj7dtWpkpbdlj a8cx/HLIOwqXyb6mn2NQAL28ftddWt/D1V95k/7QnXD/WfI1P5QHC7Lw2HtJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUdfor69QetnsvKUSZ5Zr/ZsaBU8wHwYDVR0j BBgwFoAUL7mUzRKCKS5tKQf87Nf55HL0mYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZGE3NzNkZC05NWFhLTQ0N2UtOTkzZC00Y2Y0YTEyNzNiMzEvMC8yRkI5OTRDRDEy ODIyOTJFNkQyOTA3RkNFQ0Q3RjlFNDcyRjQ5OTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3MkY0 OTk4NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkYTc3M2RkLTk1YWEtNDQ3ZS05 OTNkLTRjZjRhMTI3M2IzMS8wLzMxMzAzMzJlMzEzMTMwMmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGduCDANBgkqhkiG 9w0BAQsFAAOCAQEASHeLiE6oa13RkQr4hWKiWqI/OHUNNDNcybcqWFNWBXbQ3vPS KDBBxp7MRuA0rJhqkdAWkYhzwzInmL/ALLfF41h48DPXTyIofSR0tlsE4n8lOXXG TdkG6CMgJAi0cs5R/6vk14XuvTnTUSayRpOY5+hiB4RMoFmmb2OUX4QSXI+rIUdc VND0JQUiqYvkT1Vll0Pk3IJBhl1kmFwAGLy3xdOMS6JIfuB5eS16fWj31gFKJZWx xFDej7k7RkrwHD+XO5e6Npgkm3bmLG+oZfbY2b51U4VRVV11TQj95ydlkj/oVHrJ h4UZ26GVKGM5YIwwGdiRCDvOA+Qd0BpZNmNCyw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org