$ rpki-client -vvf repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3137322e39362e302f32342d3234203d3e20313437303736.roa File: 3130332e3137322e39362e302f32342d3234203d3e20313437303736.roa (raw, json) Hash identifier: huRfaxbhSwylLxpTR+qFQbNwgI1ST+DGQJKRH6CbwiA= Subject key identifier: 6B:AD:DB:77:87:A4:E8:39:36:80:6C:C2:DA:89:49:E1:09:DA:14:94 Certificate issuer: /CN=25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3 Certificate serial: 31F488997DA1812FA6B8B63B1663E43AFC865624 Authority key identifier: 25:DF:F1:C9:9D:CD:F1:9F:3A:4B:9E:D3:6F:D3:3B:AA:50:1B:87:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3137322e39362e302f32342d3234203d3e20313437303736.roa Signing time: Mon 01 Jul 2024 03:28:46 +0000 ROA not before: Mon 01 Jul 2024 03:23:46 +0000 ROA not after: Mon 30 Jun 2025 03:28:46 +0000 asID: 147076 IP address blocks: 103.172.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.crl rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f4:88:99:7d:a1:81:2f:a6:b8:b6:3b:16:63:e4:3a:fc:86:56:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3 Validity Not Before: Jul 1 03:23:46 2024 GMT Not After : Jun 30 03:28:46 2025 GMT Subject: CN=6BADDB7787A4E83936806CC2DA8949E109DA1494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:29:db:ba:08:cf:da:bc:c7:ff:76:d2:d2:7f: 75:60:ee:49:83:e7:fd:96:7c:6c:25:25:45:1a:fb: 88:fc:b4:e5:db:ef:19:b9:e4:f6:17:1c:11:7e:fb: e1:91:ea:a2:2e:00:8b:f8:15:c5:88:00:71:97:f2: e8:85:16:07:e9:a2:b8:13:b9:90:cf:af:81:64:f5: 25:ea:db:9a:e1:1c:ad:fb:dd:17:4a:1d:63:fd:a7: 94:37:6c:40:70:06:e6:b6:4d:c7:5e:37:30:72:08: b1:d3:5f:ca:3a:a8:f5:3e:a8:42:fa:c7:02:39:cf: 94:6a:fd:da:6b:fe:7f:f8:e7:e3:b6:3b:04:9f:fd: 35:c4:6b:f1:e2:50:6b:32:74:0a:2f:44:7a:a2:ae: f9:b0:9c:21:b1:51:82:d3:0e:29:07:1b:e1:fc:c5: b7:c4:66:5b:81:90:ef:48:66:54:80:83:55:35:d1: d8:77:ef:7e:d3:5d:da:dc:d2:08:f3:e3:b0:32:2c: 4c:9f:f3:e8:18:8c:23:88:79:d3:e0:b0:7e:26:70: 84:2d:0e:0a:cf:ad:13:a0:7e:72:36:4a:ea:15:f9: 96:ac:e3:65:a8:31:1b:46:18:cc:65:15:f9:14:75: 22:d4:2f:3e:63:a1:16:bb:e9:28:fd:66:f3:6b:b9: 95:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:AD:DB:77:87:A4:E8:39:36:80:6C:C2:DA:89:49:E1:09:DA:14:94 X509v3 Authority Key Identifier: keyid:25:DF:F1:C9:9D:CD:F1:9F:3A:4B:9E:D3:6F:D3:3B:AA:50:1B:87:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25DFF1C99DCDF19F3A4B9ED36FD33BAA501B87E3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/398eeb38-7746-4899-9a10-7980f8b90532/0/3130332e3137322e39362e302f32342d3234203d3e20313437303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.96.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:44:cd:1e:7f:1d:6e:9e:b6:2d:8d:33:4f:2f:04:11:3e:b3: 93:6a:42:2d:02:2b:fb:f6:9d:d6:d9:af:92:ba:25:78:c6:ad: 66:a9:80:e2:f4:68:22:45:7a:bb:22:6a:43:10:85:19:0f:e6: ae:67:98:ce:de:34:a1:47:4d:1b:00:1a:d4:ff:1c:c9:04:e3: c4:0b:ce:b0:af:93:7f:19:d3:d3:40:d9:e8:97:41:0d:d5:bd: e8:7a:8f:f3:fd:36:44:da:78:c9:32:5f:70:e6:6f:6b:54:3c: c5:e3:6b:9c:e3:53:3e:1b:e3:d9:0c:29:8d:71:6d:f3:c7:f1: 39:96:ff:68:5a:90:8a:a6:0a:6e:7c:5d:15:c0:02:d0:40:d2: 3c:54:98:08:19:c4:64:2e:ae:b8:01:f8:f9:cd:2d:e4:ae:63: 8d:10:42:56:5d:ba:b3:01:c3:09:d7:79:1f:35:0e:55:b5:85: 55:7c:2d:32:32:29:c9:4b:cb:2b:e2:79:99:aa:4a:c2:e0:52: ba:99:1a:61:f5:97:6e:3a:37:15:96:70:07:f1:5b:3b:9c:be: 9b:21:56:ff:4f:4c:85:ae:d8:5f:b7:42:15:7d:ec:f9:9a:f2: f6:86:38:36:64:a6:ca:3a:31:ce:e3:97:5e:42:b9:fc:95:37: 75:49:b3:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMfSImX2hgS+muLY7FmPkOvyGViQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVERkYxQzk5RENERjE5RjNBNEI5RUQzNkZEMzNCQUE1 MDFCODdFMzAeFw0yNDA3MDEwMzIzNDZaFw0yNTA2MzAwMzI4NDZaMDMxMTAvBgNV BAMTKDZCQUREQjc3ODdBNEU4MzkzNjgwNkNDMkRBODk0OUUxMDlEQTE0OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnKdu6CM/avMf/dtLSf3Vg7kmD 5/2WfGwlJUUa+4j8tOXb7xm55PYXHBF+++GR6qIuAIv4FcWIAHGX8uiFFgfporgT uZDPr4Fk9SXq25rhHK373RdKHWP9p5Q3bEBwBua2TcdeNzByCLHTX8o6qPU+qEL6 xwI5z5Rq/dpr/n/45+O2OwSf/TXEa/HiUGsydAovRHqirvmwnCGxUYLTDikHG+H8 xbfEZluBkO9IZlSAg1U10dh3737TXdrc0gjz47AyLEyf8+gYjCOIedPgsH4mcIQt DgrPrROgfnI2SuoV+Zas42WoMRtGGMxlFfkUdSLULz5joRa76Sj9ZvNruZWBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa63bd4ek6Dk2gGzC2olJ4QnaFJQwHwYDVR0j BBgwFoAUJd/xyZ3N8Z86S57Tb9M7qlAbh+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OThlZWIzOC03NzQ2LTQ4OTktOWExMC03OTgwZjhiOTA1MzIvMC8yNURGRjFDOTlE Q0RGMTlGM0E0QjlFRDM2RkQzM0JBQTUwMUI4N0UzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVERkYxQzk5RENERjE5RjNBNEI5RUQzNkZEMzNCQUE1MDFC ODdFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5OGVlYjM4LTc3NDYtNDg5OS05 YTEwLTc5ODBmOGI5MDUzMi8wLzMxMzAzMzJlMzEzNzMyMmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzAzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6xgMA0GCSqG SIb3DQEBCwUAA4IBAQAcRM0efx1unrYtjTNPLwQRPrOTakItAiv79p3W2a+SuiV4 xq1mqYDi9GgiRXq7ImpDEIUZD+auZ5jO3jShR00bABrU/xzJBOPEC86wr5N/GdPT QNnol0EN1b3oeo/z/TZE2njJMl9w5m9rVDzF42uc41M+G+PZDCmNcW3zx/E5lv9o WpCKpgpufF0VwALQQNI8VJgIGcRkLq64Afj5zS3krmONEEJWXbqzAcMJ13kfNQ5V tYVVfC0yMinJS8sr4nmZqkrC4FK6mRph9ZduOjcVlnAH8Vs7nL6bIVb/T0yFrthf t0IVfez5mvL2hjg2ZKbKOjHO45deQrn8lTd1SbO6 -----END CERTIFICATE-----Generated at Mon Nov 25 02:45:36 2024 by rpki-client on console-ams.rpki-client.org