$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa File: 3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa (raw, json) Hash identifier: qpuK7V2nx9vyZ2D5zBXh89xjEgPE/ctXWC9yCVNhPpA= Subject key identifier: D2:29:4F:FB:80:BD:C7:41:EF:DB:40:81:B7:4F:5B:F3:2C:65:2B:3B Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 09DB2020DA525C320C65F7B8B051AAACA25CA785 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:35 +0000 ROA not before: Mon 01 Jul 2024 00:57:35 +0000 ROA not after: Mon 30 Jun 2025 01:02:35 +0000 asID: 131749 IP address blocks: 103.31.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:db:20:20:da:52:5c:32:0c:65:f7:b8:b0:51:aa:ac:a2:5c:a7:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:35 2024 GMT Not After : Jun 30 01:02:35 2025 GMT Subject: CN=D2294FFB80BDC741EFDB4081B74F5BF32C652B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b0:ce:39:ec:24:a4:04:f1:f5:23:ee:56:d1: df:9a:1e:1c:46:fe:e5:5d:53:17:06:a8:89:ae:07: dc:fa:aa:9a:26:21:ee:a2:92:48:6f:46:68:d3:4e: 12:0e:16:10:96:37:67:ed:68:04:c7:c0:9a:36:e2: 62:ca:42:c1:40:ba:0a:63:61:57:2e:08:8a:93:03: 5b:f8:9e:f6:58:8b:8a:f8:0b:12:f9:61:42:c3:e3: f8:9b:ce:c6:b9:69:d0:be:6e:3c:47:87:e5:8c:b5: 1a:e2:dd:64:f9:d5:19:77:f2:bc:4b:93:c8:44:ad: bb:5b:e8:98:7d:59:e3:e9:f9:bb:d1:e0:ed:9d:b1: 28:95:af:69:1c:a9:f2:28:b7:85:4e:a3:bf:ef:69: cf:05:e1:2b:06:d5:cf:20:d7:0a:e8:f9:0c:4d:eb: b4:2c:c3:21:7f:ce:c8:28:46:89:a8:a3:1d:aa:e3: 31:fd:55:ab:4a:91:6d:5b:b5:81:61:4f:a8:9a:7c: e7:b1:48:7e:08:47:d1:70:d6:08:75:c9:34:d2:b0: 90:4b:af:1d:f0:de:0f:ab:5f:ac:f1:c1:ec:b7:43: 69:67:a2:7d:eb:27:50:e6:d4:d3:fa:90:10:d1:97: 18:a8:17:b5:8c:e0:52:3e:95:fd:1d:67:5a:c4:15: 2a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:29:4F:FB:80:BD:C7:41:EF:DB:40:81:B7:4F:5B:F3:2C:65:2B:3B X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133332e302f32342d3234203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.133.0/24 Signature Algorithm: sha256WithRSAEncryption 85:2c:7c:4f:8a:fd:9a:f7:01:7e:0f:13:21:75:84:6c:01:2f: 16:9d:e4:de:c0:10:ba:3f:2c:69:7d:57:9d:7c:69:da:93:f4: 3d:a0:c9:42:d1:f0:6f:c2:96:ff:6a:74:a0:94:5f:1f:4b:ea: 1d:20:f7:6c:d4:bb:5a:9f:ee:b7:91:92:f8:b4:3c:55:e9:cb: d4:d9:9e:83:86:bc:ef:b4:d9:db:fd:d6:d3:f3:90:a5:fe:44: 8b:41:b6:8e:0f:8b:b9:ab:24:b1:9b:06:66:f2:01:81:cc:87: 9f:f9:38:34:16:3b:fe:84:1a:4e:cc:76:d3:4b:71:02:4a:af: 35:20:04:f7:1c:b3:e7:b2:e9:ad:a8:56:6d:5e:0d:a1:4a:0c: f5:be:7e:95:47:5a:06:60:1f:67:a4:08:e1:1e:7d:fb:3c:5e: 6f:9a:ee:4d:47:1d:00:cc:2c:ee:35:7c:20:77:34:ec:15:05: 7b:da:09:21:d8:46:03:9d:29:df:79:8b:7a:ce:99:44:e2:33: 1b:f9:89:98:66:b5:ed:e3:c1:a4:4c:3e:cd:ee:65:ce:66:9d: 61:0a:4d:d7:c0:0b:86:6d:bc:e5:29:fc:6b:5c:bd:10:8d:b9: 83:27:b0:1a:8e:08:84:af:49:5b:ef:31:9b:75:62:e7:08:5a: e3:88:6e:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCdsgINpSXDIMZfe4sFGqrKJcp4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzVaFw0yNTA2MzAwMTAyMzVaMDMxMTAvBgNV BAMTKEQyMjk0RkZCODBCREM3NDFFRkRCNDA4MUI3NEY1QkYzMkM2NTJCM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6sM457CSkBPH1I+5W0d+aHhxG /uVdUxcGqImuB9z6qpomIe6ikkhvRmjTThIOFhCWN2ftaATHwJo24mLKQsFAugpj YVcuCIqTA1v4nvZYi4r4CxL5YULD4/ibzsa5adC+bjxHh+WMtRri3WT51Rl38rxL k8hErbtb6Jh9WePp+bvR4O2dsSiVr2kcqfIot4VOo7/vac8F4SsG1c8g1wro+QxN 67QswyF/zsgoRomoox2q4zH9VatKkW1btYFhT6iafOexSH4IR9Fw1gh1yTTSsJBL rx3w3g+rX6zxwey3Q2lnon3rJ1Dm1NP6kBDRlxioF7WM4FI+lf0dZ1rEFSrFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0ilP+4C9x0Hv20CBt09b8yxlKzswHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx+FMA0GCSqG SIb3DQEBCwUAA4IBAQCFLHxPiv2a9wF+DxMhdYRsAS8WneTewBC6PyxpfVedfGna k/Q9oMlC0fBvwpb/anSglF8fS+odIPds1Ltan+63kZL4tDxV6cvU2Z6DhrzvtNnb /dbT85Cl/kSLQbaOD4u5qySxmwZm8gGBzIef+Tg0Fjv+hBpOzHbTS3ECSq81IAT3 HLPnsumtqFZtXg2hSgz1vn6VR1oGYB9npAjhHn37PF5vmu5NRx0AzCzuNXwgdzTs FQV72gkh2EYDnSnfeYt6zplE4jMb+YmYZrXt48GkTD7N7mXOZp1hCk3XwAuGbbzl KfxrXL0QjbmDJ7AajgiEr0lb7zGbdWLnCFrjiG4x -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org