$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa File: 3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa (raw, json) Hash identifier: ZkDD1PXfJ1uxwAaNgZHZX7a5tpBbHZ0kvj8I0Rwjsd8= Subject key identifier: 54:CB:E9:9C:50:A5:8C:A8:06:C6:F5:BF:E0:8E:C1:9E:B0:49:B5:74 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 38BB91E6F4075A191BFF2C19E37A086CCE633BD4 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:35 +0000 ROA not before: Mon 01 Jul 2024 00:57:35 +0000 ROA not after: Mon 30 Jun 2025 01:02:35 +0000 asID: 131749 IP address blocks: 103.31.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bb:91:e6:f4:07:5a:19:1b:ff:2c:19:e3:7a:08:6c:ce:63:3b:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:35 2024 GMT Not After : Jun 30 01:02:35 2025 GMT Subject: CN=54CBE99C50A58CA806C6F5BFE08EC19EB049B574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:58:c2:65:f1:2b:9d:d8:fb:16:27:77:90: 6d:d1:3b:1c:de:8c:4a:24:e8:c4:fe:2e:e7:3d:68: ca:7d:5d:24:c4:36:7f:e8:e3:c4:df:16:36:1b:b5: a2:e1:33:6c:c4:88:e3:b9:be:f5:08:ff:a7:33:16: ff:ab:9c:af:be:1d:10:c4:61:00:ba:e7:a9:18:f3: 86:1a:c6:d6:5c:15:68:fe:d6:6d:ec:68:20:04:c5: 15:bb:5d:de:23:0f:28:f3:e7:43:3e:6d:ea:bd:ef: f6:91:3a:8f:3b:85:9d:f0:8e:eb:49:48:a2:70:27: ea:5c:f1:f6:ad:2e:1d:c0:62:8b:eb:cf:85:9e:ce: cd:52:9b:42:5d:dd:4f:4b:98:a0:d8:c8:b9:35:fe: 0c:f0:e5:ec:56:54:ff:f1:52:66:d2:43:60:74:6b: 30:63:35:a5:13:bc:24:5e:b9:9d:73:43:b2:d6:93: 01:3c:2e:69:ea:c4:e7:97:ce:4d:99:c9:ee:93:d5: 49:3b:20:e0:af:1e:2e:41:ef:7c:c6:b8:42:c7:1f: 70:f8:60:85:d8:35:28:8d:8a:88:be:aa:c6:fc:3a: 83:e9:99:52:e1:90:04:f4:5d:0c:52:9c:c2:84:ef: 3b:30:ea:fa:b8:1d:f6:58:61:35:d7:60:04:dd:a4: 3d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:CB:E9:9C:50:A5:8C:A8:06:C6:F5:BF:E0:8E:C1:9E:B0:49:B5:74 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.132.0/22 Signature Algorithm: sha256WithRSAEncryption 54:fa:bd:19:55:81:23:fc:3f:f0:4a:b3:fb:26:5e:63:bc:89: d1:2f:59:28:53:af:58:3d:f2:06:9e:d7:f5:bd:03:7e:11:b0: 57:3b:51:19:f4:25:a9:ae:30:11:56:ab:98:24:75:65:f4:e4: 46:bf:df:c3:8f:5b:ca:d9:02:20:32:f8:21:d6:fd:3b:14:57: 52:78:c6:12:c7:cd:c2:27:ae:1f:96:26:30:92:68:99:d1:b9: aa:8f:fa:46:28:34:c1:f0:4b:db:a2:cf:e5:ef:61:72:24:33: 79:57:6f:76:5c:ea:fe:e6:10:8e:d1:f6:0d:91:32:7f:62:13: a4:d6:e6:bc:53:d7:04:1a:82:fa:fc:cf:06:d0:ee:74:ae:9a: 04:75:55:a4:8b:1b:f1:07:30:c1:93:c6:2a:cd:a1:ef:08:0f: 42:d6:36:d3:06:10:9b:86:73:92:dc:32:fa:29:77:09:12:b4: bd:68:ee:36:14:d2:89:2d:ac:b3:b5:55:0e:b3:38:d0:85:ab: c3:2f:c2:d3:93:83:34:77:c7:e3:ab:51:71:d9:6d:1a:d1:e9: 84:3b:6d:84:c3:ba:46:aa:4e:8d:4a:06:47:21:ea:a6:20:f5: 39:ed:36:08:84:9a:c0:98:d5:60:22:cf:0d:7a:6c:1d:56:26: 11:a7:64:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOLuR5vQHWhkb/ywZ43oIbM5jO9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzVaFw0yNTA2MzAwMTAyMzVaMDMxMTAvBgNV BAMTKDU0Q0JFOTlDNTBBNThDQTgwNkM2RjVCRkUwOEVDMTlFQjA0OUI1NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG7VjCZfErndj7Fid3kG3ROxze jEok6MT+Luc9aMp9XSTENn/o48TfFjYbtaLhM2zEiOO5vvUI/6czFv+rnK++HRDE YQC656kY84YaxtZcFWj+1m3saCAExRW7Xd4jDyjz50M+beq97/aROo87hZ3wjutJ SKJwJ+pc8fatLh3AYovrz4Wezs1Sm0Jd3U9LmKDYyLk1/gzw5exWVP/xUmbSQ2B0 azBjNaUTvCReuZ1zQ7LWkwE8LmnqxOeXzk2Zye6T1Uk7IOCvHi5B73zGuELHH3D4 YIXYNSiNioi+qsb8OoPpmVLhkAT0XQxSnMKE7zsw6vq4HfZYYTXXYATdpD0lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVMvpnFCljKgGxvW/4I7BnrBJtXQwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx+EMA0GCSqG SIb3DQEBCwUAA4IBAQBU+r0ZVYEj/D/wSrP7Jl5jvInRL1koU69YPfIGntf1vQN+ EbBXO1EZ9CWprjARVquYJHVl9ORGv9/Dj1vK2QIgMvgh1v07FFdSeMYSx83CJ64f liYwkmiZ0bmqj/pGKDTB8Evbos/l72FyJDN5V292XOr+5hCO0fYNkTJ/YhOk1ua8 U9cEGoL6/M8G0O50rpoEdVWkixvxBzDBk8YqzaHvCA9C1jbTBhCbhnOS3DL6KXcJ ErS9aO42FNKJLayztVUOszjQhavDL8LTk4M0d8fjq1Fx2W0a0emEO22Ew7pGqk6N SgZHIeqmIPU57TYIhJrAmNVgIs8NemwdViYRp2QJ -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org