$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa File: 3130332e372e312e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: Qcbh+h2883zUwr0S+SUXilwq/cneroJBnZ3iaMjWnuk= Subject key identifier: B5:86:CF:D5:94:A7:DC:E7:4C:1E:44:2C:44:9A:79:DD:8A:5B:62:E9 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 26A4D22FD4B2E13B93E705A18E5F039EE458B5CB Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa Signing time: Sat 13 Jul 2024 06:00:02 +0000 ROA not before: Sat 13 Jul 2024 05:55:02 +0000 ROA not after: Sat 12 Jul 2025 06:00:02 +0000 asID: 38788 IP address blocks: 103.7.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a4:d2:2f:d4:b2:e1:3b:93:e7:05:a1:8e:5f:03:9e:e4:58:b5:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 13 05:55:02 2024 GMT Not After : Jul 12 06:00:02 2025 GMT Subject: CN=B586CFD594A7DCE74C1E442C449A79DD8A5B62E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6b:9c:0a:7d:34:b9:50:2d:15:16:63:60:d7: 28:98:63:a2:f9:bf:54:fc:97:5c:d2:92:a9:4e:a2: 65:f9:4e:6b:5c:57:78:7f:5d:48:14:12:de:dd:c1: 16:38:3b:3d:96:0f:6c:2e:c1:b0:d3:55:da:93:b0: 79:b8:89:cc:fa:13:cb:de:ce:16:dd:0e:97:35:3d: da:21:66:17:19:bd:ab:b4:ba:47:79:31:3b:5c:49: 3c:b4:5b:8a:23:77:7c:52:8e:f1:a7:79:7a:f6:97: 54:1c:c6:7e:d5:6f:fe:97:10:06:1e:2a:eb:81:56: 37:ff:3f:ea:82:38:b5:d8:15:99:23:86:bd:fb:62: f1:2a:33:6c:ad:9a:1c:98:1c:af:11:28:3b:97:b6: 4a:d0:7a:00:75:6a:2f:71:6b:a8:be:cd:df:ef:11: d7:4c:2f:4c:9f:c2:8b:3b:49:46:92:30:e6:a7:a2: 7c:9e:d7:dc:12:f5:a2:8f:c4:01:78:1c:30:93:59: 65:8b:cb:20:3d:3a:b8:55:bc:34:b4:a0:76:73:4b: cf:2f:24:9e:af:0f:58:b6:fc:e3:e4:56:a4:7a:b6: db:f7:8f:54:94:a8:16:0b:78:f7:ca:9b:2e:8e:32: e2:de:72:59:d6:04:f1:ae:08:6a:d6:fa:f7:0f:05: e0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:86:CF:D5:94:A7:DC:E7:4C:1E:44:2C:44:9A:79:DD:8A:5B:62:E9 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e372e312e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.1.0/24 Signature Algorithm: sha256WithRSAEncryption 11:c6:fc:85:77:b8:de:f0:39:3d:5a:d9:00:3b:d3:e1:66:d5: 77:f5:1e:3c:d5:aa:5f:ee:24:a7:6a:64:e5:07:2a:ce:50:e3: 3a:a2:12:6f:5f:55:5d:c8:27:c9:0d:72:eb:eb:46:7f:d2:f7: c9:e4:51:fa:4e:98:5f:8d:bd:2a:31:bb:5d:f6:f2:21:f9:5c: e4:9f:70:21:a6:98:32:b5:f0:c7:79:53:85:39:e9:9e:33:88: e6:db:e9:fb:78:1c:3d:f3:4a:16:05:de:77:c3:a8:68:25:e6: 90:d5:9c:bd:4b:b6:18:cd:9a:b9:4f:bb:8d:40:3e:4b:05:40: 66:92:6e:87:ef:0d:41:6c:42:9f:42:3f:23:78:36:70:a4:b4: cc:5a:8a:01:67:4b:6a:44:bb:ec:3b:28:e9:06:14:ad:35:4d: 4f:9e:38:67:03:56:11:d1:32:89:2f:80:7c:0f:17:ca:88:8f: 47:7f:2f:98:f9:66:17:0b:40:07:b4:f9:1c:15:8b:9b:0b:b2: dc:1c:b5:34:1c:e4:55:d1:44:da:cb:f6:64:13:0a:88:d0:5d: 26:e2:8c:d3:96:97:e0:40:6d:83:b1:b4:12:10:37:26:1e:ce: e2:39:24:1e:4d:59:57:7a:10:7f:f3:75:d1:ec:40:a8:e7:e6: c5:90:d3:d5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUJqTSL9Sy4TuT5wWhjl8DnuRYtcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MTMwNTU1MDJaFw0yNTA3MTIwNjAwMDJaMDMxMTAvBgNV BAMTKEI1ODZDRkQ1OTRBN0RDRTc0QzFFNDQyQzQ0OUE3OUREOEE1QjYyRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+a5wKfTS5UC0VFmNg1yiYY6L5 v1T8l1zSkqlOomX5TmtcV3h/XUgUEt7dwRY4Oz2WD2wuwbDTVdqTsHm4icz6E8ve zhbdDpc1PdohZhcZvau0ukd5MTtcSTy0W4ojd3xSjvGneXr2l1Qcxn7Vb/6XEAYe KuuBVjf/P+qCOLXYFZkjhr37YvEqM2ytmhyYHK8RKDuXtkrQegB1ai9xa6i+zd/v EddML0yfwos7SUaSMOanonye19wS9aKPxAF4HDCTWWWLyyA9OrhVvDS0oHZzS88v JJ6vD1i2/OPkVqR6ttv3j1SUqBYLePfKmy6OMuLeclnWBPGuCGrW+vcPBeCFAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUtYbP1ZSn3OdMHkQsRJp53YpbYukwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzEzMDMzMmUzNzJlMzEyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZwcBMA0GCSqGSIb3DQEBCwUA A4IBAQARxvyFd7je8Dk9WtkAO9PhZtV39R481apf7iSnamTlByrOUOM6ohJvX1Vd yCfJDXLr60Z/0vfJ5FH6Tphfjb0qMbtd9vIh+Vzkn3AhppgytfDHeVOFOemeM4jm 2+n7eBw980oWBd53w6hoJeaQ1Zy9S7YYzZq5T7uNQD5LBUBmkm6H7w1BbEKfQj8j eDZwpLTMWooBZ0tqRLvsOyjpBhStNU1PnjhnA1YR0TKJL4B8DxfKiI9Hfy+Y+WYX C0AHtPkcFYubC7LcHLU0HORV0UTay/ZkEwqI0F0m4ozTlpfgQG2DsbQSEDcmHs7i OSQeTVlXehB/83XR7ECo5+bFkNPV -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org