$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32342d3234203d3e20313331373439.roa File: 3130332e33312e3133342e302f32342d3234203d3e20313331373439.roa (raw, json) Hash identifier: KYT+Q0QdA+7lJOIYWRYGedtQ8m66EUEb2FwATZn7b2I= Subject key identifier: 78:75:9D:FC:F4:55:2A:D7:24:B3:5A:5D:46:AA:DF:3F:08:1F:BC:78 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 33A0EA8185C85887D62B862C6A39B771EB946388 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32342d3234203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:34 +0000 ROA not before: Mon 01 Jul 2024 00:57:34 +0000 ROA not after: Mon 30 Jun 2025 01:02:34 +0000 asID: 131749 IP address blocks: 103.31.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a0:ea:81:85:c8:58:87:d6:2b:86:2c:6a:39:b7:71:eb:94:63:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:34 2024 GMT Not After : Jun 30 01:02:34 2025 GMT Subject: CN=78759DFCF4552AD724B35A5D46AADF3F081FBC78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3c:0f:ef:10:f3:80:72:0e:f4:d9:f9:3e:cc: 54:dc:23:73:ca:9a:ea:d2:56:b9:e3:39:d3:6c:31: 62:c0:47:b6:e1:50:ad:5e:dd:93:7c:8f:0e:38:f1: e6:79:58:9a:89:b9:5e:a6:0a:e4:56:10:59:71:c6: bd:1b:d1:c0:4a:37:44:5e:8a:a9:d3:0d:1c:93:01: 02:14:95:5d:1a:e5:9c:88:e2:f7:02:a6:e4:38:fb: b1:ac:85:c0:39:13:79:fc:c6:55:80:0e:e5:d1:ec: 71:13:c7:33:9d:8d:12:09:41:6e:56:07:15:76:cd: 51:c4:d6:c5:f3:0d:f0:81:93:0c:1d:b2:dd:71:d5: 20:82:35:8b:c0:f1:49:79:c8:f2:c0:4b:89:93:14: 8b:b8:62:bb:8a:5d:3e:c5:88:31:58:0a:ab:fe:8b: d3:ae:d8:88:33:a1:db:29:04:7b:60:85:70:87:23: 8e:20:47:ca:c2:83:c3:6e:5d:74:7a:07:ad:30:6b: 83:48:0d:13:bb:fc:df:35:b1:b6:7b:63:f5:b4:7a: 86:67:90:fe:13:79:0a:cf:fc:35:9c:a8:cc:5f:3a: 2e:39:71:31:e3:10:5e:1f:b0:b7:ae:bc:15:de:3d: 65:95:c6:12:21:45:be:39:85:b3:09:22:27:80:ab: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:75:9D:FC:F4:55:2A:D7:24:B3:5A:5D:46:AA:DF:3F:08:1F:BC:78 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133342e302f32342d3234203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.134.0/24 Signature Algorithm: sha256WithRSAEncryption 49:16:a1:30:3f:70:38:30:cf:c7:20:1b:4f:2e:30:92:1a:1f: 56:d4:2d:f7:18:74:49:88:06:c7:fc:09:4d:38:f6:2e:b8:9d: a1:c3:42:7a:78:bf:eb:34:90:e1:20:c4:d9:68:9a:4a:3d:5d: bf:d9:3d:24:4f:77:51:0f:ed:76:14:1f:96:15:6b:a2:5e:48: 82:dd:8a:08:4f:cd:f3:42:22:d2:dd:85:1e:4d:f3:1a:68:cb: 6b:9f:2d:17:b7:c7:41:a6:4c:48:55:1e:7b:dd:65:66:bc:bb: f9:8c:f6:6b:5e:50:09:31:8c:0a:3e:3a:1d:dc:af:ae:12:88: af:dd:f1:d8:a5:92:4e:55:fa:f9:b2:49:69:17:11:34:d7:3c: ac:ff:21:61:d7:29:1d:74:df:8a:2a:75:4f:aa:2e:eb:b9:eb: 11:a1:17:9b:d4:5c:f9:4c:f6:3a:fb:47:2f:62:e1:c8:11:07: dc:df:10:c1:26:69:de:a5:1f:21:c2:87:e0:e2:e4:f0:f6:f7: 74:28:3e:99:81:15:33:42:89:0a:c0:cb:1b:35:6a:3e:bc:3a: 86:91:a7:14:c4:f5:2d:4a:34:eb:a8:22:b3:c1:d4:fd:b4:a7: 06:29:21:d2:36:7b:5a:ea:11:58:be:1c:06:58:f4:a8:06:4b: 0b:ca:bb:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM6DqgYXIWIfWK4Ysajm3ceuUY4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzRaFw0yNTA2MzAwMTAyMzRaMDMxMTAvBgNV BAMTKDc4NzU5REZDRjQ1NTJBRDcyNEIzNUE1RDQ2QUFERjNGMDgxRkJDNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSPA/vEPOAcg702fk+zFTcI3PK murSVrnjOdNsMWLAR7bhUK1e3ZN8jw448eZ5WJqJuV6mCuRWEFlxxr0b0cBKN0Re iqnTDRyTAQIUlV0a5ZyI4vcCpuQ4+7GshcA5E3n8xlWADuXR7HETxzOdjRIJQW5W BxV2zVHE1sXzDfCBkwwdst1x1SCCNYvA8Ul5yPLAS4mTFIu4YruKXT7FiDFYCqv+ i9Ou2IgzodspBHtghXCHI44gR8rCg8NuXXR6B60wa4NIDRO7/N81sbZ7Y/W0eoZn kP4TeQrP/DWcqMxfOi45cTHjEF4fsLeuvBXePWWVxhIhRb45hbMJIieAq8l9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeHWd/PRVKtcks1pdRqrfPwgfvHgwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMxMzAzMzJlMzMzMTJlMzEzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx+GMA0GCSqG SIb3DQEBCwUAA4IBAQBJFqEwP3A4MM/HIBtPLjCSGh9W1C33GHRJiAbH/AlNOPYu uJ2hw0J6eL/rNJDhIMTZaJpKPV2/2T0kT3dRD+12FB+WFWuiXkiC3YoIT83zQiLS 3YUeTfMaaMtrny0Xt8dBpkxIVR573WVmvLv5jPZrXlAJMYwKPjod3K+uEoiv3fHY pZJOVfr5sklpFxE01zys/yFh1ykddN+KKnVPqi7ruesRoReb1Fz5TPY6+0cvYuHI EQfc3xDBJmnepR8hwofg4uTw9vd0KD6ZgRUzQokKwMsbNWo+vDqGkacUxPUtSjTr qCKzwdT9tKcGKSHSNnta6hFYvhwGWPSoBksLyruS -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org