$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa File: 3130332e372e302e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: MYJNrU0VoWxeODSQuazQKu3caT32XeuZxRTUvcHHTN0= Subject key identifier: EA:B2:79:6E:FE:53:DB:79:68:A1:5E:FC:63:0A:0E:D5:65:20:90:A4 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 4C8FCDE92A6170ABF2ED1BF37DB813B8139CC648 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa Signing time: Sat 13 Jul 2024 06:00:02 +0000 ROA not before: Sat 13 Jul 2024 05:55:02 +0000 ROA not after: Sat 12 Jul 2025 06:00:02 +0000 asID: 38788 IP address blocks: 103.7.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:8f:cd:e9:2a:61:70:ab:f2:ed:1b:f3:7d:b8:13:b8:13:9c:c6:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 13 05:55:02 2024 GMT Not After : Jul 12 06:00:02 2025 GMT Subject: CN=EAB2796EFE53DB7968A15EFC630A0ED5652090A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:32:1c:35:77:6a:21:4f:98:78:04:d9:f7:e8: 97:45:01:40:5f:7f:09:fe:de:8f:26:9d:41:68:6f: e5:5b:4f:03:b3:e6:66:5c:e8:fa:8e:bd:28:54:5e: b4:58:7f:62:f2:da:53:53:3b:64:28:de:6c:12:9e: e7:24:25:98:62:96:f2:f2:9b:f0:c8:d5:09:86:31: 63:5f:8a:42:c1:64:ef:c1:8d:ed:c6:42:7b:6d:32: 5e:fc:1b:53:ad:48:1a:e2:ea:08:36:a6:fb:c4:4f: 7c:00:35:5c:c1:ab:89:a6:54:df:f8:25:e6:06:f4: 89:54:67:30:93:16:43:b2:bc:83:43:9d:d2:99:b5: a4:95:1f:ed:a0:e2:ea:14:2b:48:0e:93:13:74:c1: 96:01:ed:62:a8:38:fe:77:41:70:cb:c9:ec:5d:9a: 88:42:64:f5:ca:45:6a:46:c4:69:cd:87:e6:15:8b: aa:0f:9c:78:ff:32:e9:bb:3b:ad:b2:42:ef:39:4e: ae:ff:e4:d2:0e:86:75:f6:4f:11:1e:95:2c:56:03: fb:74:ce:46:a3:75:f1:e1:ca:0f:ee:2d:05:69:d7: bc:a6:61:bd:93:4b:2d:6f:27:3e:a6:c1:69:d1:f0: 5f:fc:5a:c0:80:32:ad:7b:55:b0:9e:69:59:36:cf: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B2:79:6E:FE:53:DB:79:68:A1:5E:FC:63:0A:0E:D5:65:20:90:A4 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e302e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.0.0/24 Signature Algorithm: sha256WithRSAEncryption 03:15:58:c7:ac:17:a6:ee:e6:fe:4b:41:67:ed:c7:76:31:68: 67:f8:04:9d:47:23:22:26:54:68:37:74:8d:74:fd:2a:08:46: 42:89:b3:6c:81:3e:42:5e:b4:4d:68:39:c9:fc:e2:ec:20:83: aa:5d:25:bd:48:70:a0:01:3f:9d:f8:9c:0d:a0:55:ca:29:c1: b2:7e:f1:87:f1:e9:9f:b5:18:8b:66:1c:fd:c8:91:1f:15:e0: 53:87:85:5b:b5:44:cd:90:f5:3d:c8:df:e9:aa:eb:7d:cf:0d: 91:97:b5:ad:7c:05:3d:71:a1:6d:02:bd:94:90:4c:b4:f0:54: 1e:30:a1:bf:2c:24:f8:06:ff:c1:cc:3a:05:e8:af:91:7c:ae: d0:07:8b:89:9c:c7:db:62:71:47:77:32:e6:37:ab:1d:6d:f3: f8:f0:65:d4:99:1d:e5:aa:fa:a7:d3:5f:83:e6:fb:a3:bf:7a: 56:89:89:d9:e9:e1:ac:58:5f:1f:2a:5f:1f:ca:99:24:a1:b4: fd:c8:87:38:16:63:c3:30:7d:d4:3b:27:ef:d8:92:11:5f:e3: ff:10:70:cf:ee:44:67:1e:ae:dc:87:69:7a:23:27:da:61:16: ef:0f:72:97:9d:fb:e2:73:09:42:04:bd:5c:8e:bc:f2:15:38: 57:a6:1f:b6 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUTI/N6SphcKvy7RvzfbgTuBOcxkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MTMwNTU1MDJaFw0yNTA3MTIwNjAwMDJaMDMxMTAvBgNV BAMTKEVBQjI3OTZFRkU1M0RCNzk2OEExNUVGQzYzMEEwRUQ1NjUyMDkwQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzMhw1d2ohT5h4BNn36JdFAUBf fwn+3o8mnUFob+VbTwOz5mZc6PqOvShUXrRYf2Ly2lNTO2Qo3mwSnuckJZhilvLy m/DI1QmGMWNfikLBZO/Bje3GQnttMl78G1OtSBri6gg2pvvET3wANVzBq4mmVN/4 JeYG9IlUZzCTFkOyvINDndKZtaSVH+2g4uoUK0gOkxN0wZYB7WKoOP53QXDLyexd mohCZPXKRWpGxGnNh+YVi6oPnHj/Mum7O62yQu85Tq7/5NIOhnX2TxEelSxWA/t0 zkajdfHhyg/uLQVp17ymYb2TSy1vJz6mwWnR8F/8WsCAMq17VbCeaVk2z5hRAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQU6rJ5bv5T23looV78YwoO1WUgkKQwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzAyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwcAMA0GCSqGSIb3DQEBCwUA A4IBAQADFVjHrBem7ub+S0Fn7cd2MWhn+ASdRyMiJlRoN3SNdP0qCEZCibNsgT5C XrRNaDnJ/OLsIIOqXSW9SHCgAT+d+JwNoFXKKcGyfvGH8emftRiLZhz9yJEfFeBT h4VbtUTNkPU9yN/pqut9zw2Rl7WtfAU9caFtAr2UkEy08FQeMKG/LCT4Bv/BzDoF 6K+RfK7QB4uJnMfbYnFHdzLmN6sdbfP48GXUmR3lqvqn01+D5vujv3pWiYnZ6eGs WF8fKl8fypkkobT9yIc4FmPDMH3UOyfv2JIRX+P/EHDP7kRnHq7ch2l6IyfaYRbv D3KXnfvicwlCBL1cjrzyFThXph+2 -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org