$ rpki-client -vvf repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa File: 3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa (raw, json) Hash identifier: dR97kutQJDfdqRMw3g6v2Ivop1oOeZPQjWSUUweIFKQ= Subject key identifier: 37:1B:0B:03:DC:80:CA:D4:BB:18:51:BB:DA:0C:CF:2F:8E:D1:7B:AC Certificate issuer: /CN=9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F Certificate serial: 335BD9A83F647356AC4C1F8F53B45413B354AF32 Authority key identifier: 9A:F7:BD:04:7F:3C:54:F9:CE:58:26:DC:91:96:C2:A3:2E:4A:7C:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa Signing time: Wed 25 Sep 2024 12:00:00 +0000 ROA not before: Wed 25 Sep 2024 11:55:00 +0000 ROA not after: Wed 24 Sep 2025 12:00:00 +0000 asID: 151553 IP address blocks: 103.255.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.crl rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5b:d9:a8:3f:64:73:56:ac:4c:1f:8f:53:b4:54:13:b3:54:af:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F Validity Not Before: Sep 25 11:55:00 2024 GMT Not After : Sep 24 12:00:00 2025 GMT Subject: CN=371B0B03DC80CAD4BB1851BBDA0CCF2F8ED17BAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2d:73:bb:85:b5:d4:59:72:91:53:0e:4f:33: a5:c4:26:f5:00:cc:4a:0e:27:5d:80:e6:ac:81:94: 55:f8:ce:58:29:cd:73:70:0d:c7:c6:d4:c7:91:ba: a1:83:77:a3:b2:69:2f:84:0e:af:d8:ed:d4:ef:d4: c7:ff:fc:30:c9:60:3e:e4:62:88:4f:35:64:1f:50: 7b:ba:1d:42:93:91:29:30:f5:56:47:2e:02:52:96: c1:26:66:d9:32:5c:1e:bb:65:b4:08:b7:b7:93:5f: 59:eb:68:30:a9:47:b2:23:c9:49:e8:ae:b4:44:be: 48:ae:a6:66:50:66:5c:48:c7:a3:15:54:a0:e1:52: 68:12:fa:82:41:fe:98:59:94:53:0e:be:bf:09:78: 57:b8:23:a3:97:c3:10:c5:8f:66:cc:8c:83:b8:78: d7:ea:5c:64:ea:84:29:ce:5b:a9:b4:93:e4:ac:48: cd:8f:ce:7b:db:bb:2e:cf:8a:13:c3:27:75:3f:8e: 76:bc:12:89:d7:df:0c:45:95:f8:d3:0e:59:21:1d: a7:b3:00:4d:29:79:c6:6a:92:cb:c1:bb:b5:30:10: 4f:42:b7:46:10:60:97:3a:74:5a:7d:90:32:9f:f4: 1d:34:8e:5e:f2:cf:e2:e4:b6:8a:2e:64:f2:8d:06: f4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1B:0B:03:DC:80:CA:D4:BB:18:51:BB:DA:0C:CF:2F:8E:D1:7B:AC X509v3 Authority Key Identifier: keyid:9A:F7:BD:04:7F:3C:54:F9:CE:58:26:DC:91:96:C2:A3:2E:4A:7C:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.99.0/24 Signature Algorithm: sha256WithRSAEncryption a7:55:dc:f0:56:bc:c2:bc:5f:98:37:cb:7a:33:bc:e5:fb:06: ca:83:a9:a4:45:68:ac:c2:11:81:ff:d2:98:e4:23:9a:b8:8e: 41:cd:62:b7:00:65:d0:42:68:85:65:5d:0e:13:9c:f4:aa:40: 2e:89:bf:ba:a1:35:74:44:30:42:1f:b3:3c:17:79:b0:5c:4c: c3:4a:0e:e3:d1:4a:7b:1c:f4:aa:47:e0:d3:ac:7d:02:f8:3f: d4:99:c8:82:54:fc:97:39:a7:64:d2:6a:14:74:c7:68:79:8e: 33:9a:8c:f3:4c:9a:24:0b:98:1d:81:fe:8a:00:95:63:11:64: 4a:59:6a:1a:d1:dd:9e:5b:86:83:a6:95:2d:98:c3:42:f5:47: 43:bb:19:a4:6c:af:92:cd:86:63:3d:d8:87:d5:7a:4e:23:f5: 18:8f:0c:bb:5f:31:95:a5:7d:7f:19:50:79:f9:17:49:4a:d1: 80:26:ff:99:19:2a:de:0d:2e:14:7b:c6:c3:93:c8:be:4e:a1: c2:28:1b:65:68:db:81:1e:9c:87:59:d2:36:1f:40:7f:e2:23: c8:09:8c:fd:9b:a8:68:0d:2c:8f:cc:57:7e:7b:23:15:bf:d0: 02:50:43:92:ff:e1:47:14:2f:a2:75:3c:76:b5:6d:c3:4f:b7: 5e:69:59:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM1vZqD9kc1asTB+PU7RUE7NUrzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFGN0JEMDQ3RjNDNTRGOUNFNTgyNkRDOTE5NkMyQTMy RTRBN0M1RjAeFw0yNDA5MjUxMTU1MDBaFw0yNTA5MjQxMjAwMDBaMDMxMTAvBgNV BAMTKDM3MUIwQjAzREM4MENBRDRCQjE4NTFCQkRBMENDRjJGOEVEMTdCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmLXO7hbXUWXKRUw5PM6XEJvUA zEoOJ12A5qyBlFX4zlgpzXNwDcfG1MeRuqGDd6OyaS+EDq/Y7dTv1Mf//DDJYD7k YohPNWQfUHu6HUKTkSkw9VZHLgJSlsEmZtkyXB67ZbQIt7eTX1nraDCpR7IjyUno rrREvkiupmZQZlxIx6MVVKDhUmgS+oJB/phZlFMOvr8JeFe4I6OXwxDFj2bMjIO4 eNfqXGTqhCnOW6m0k+SsSM2Pznvbuy7PihPDJ3U/jna8EonX3wxFlfjTDlkhHaez AE0pecZqksvBu7UwEE9Ct0YQYJc6dFp9kDKf9B00jl7yz+LktoouZPKNBvRZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNxsLA9yAytS7GFG72gzPL47Re6wwHwYDVR0j BBgwFoAUmve9BH88VPnOWCbckZbCoy5KfF8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTdmYjE3ZS05ZDU4LTRkNTEtODQ2ZS0wYTg0Yzg2OTkxNDIvMC85QUY3QkQwNDdG M0M1NEY5Q0U1ODI2REM5MTk2QzJBMzJFNEE3QzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFGN0JEMDQ3RjNDNTRGOUNFNTgyNkRDOTE5NkMyQTMyRTRB N0M1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1N2ZiMTdlLTlkNTgtNGQ1MS04 NDZlLTBhODRjODY5OTE0Mi8wLzMxMzAzMzJlMzIzNTM1MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/9jMA0GCSqG SIb3DQEBCwUAA4IBAQCnVdzwVrzCvF+YN8t6M7zl+wbKg6mkRWiswhGB/9KY5COa uI5BzWK3AGXQQmiFZV0OE5z0qkAuib+6oTV0RDBCH7M8F3mwXEzDSg7j0Up7HPSq R+DTrH0C+D/UmciCVPyXOadk0moUdMdoeY4zmozzTJokC5gdgf6KAJVjEWRKWWoa 0d2eW4aDppUtmMNC9UdDuxmkbK+SzYZjPdiH1XpOI/UYjwy7XzGVpX1/GVB5+RdJ StGAJv+ZGSreDS4Ue8bDk8i+TqHCKBtlaNuBHpyHWdI2H0B/4iPICYz9m6hoDSyP zFd+eyMVv9ACUEOS/+FHFC+idTx2tW3DT7deaVn2 -----END CERTIFICATE-----Generated at Sat Nov 23 00:47:42 2024 by rpki-client on console-fra.rpki-client.org