$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa File: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (raw, json) Hash identifier: 3BxgBY3dX8feRwsm1hvpch2b234JpMx6XR/YBvSI5jE= Subject key identifier: 30:DF:59:CC:6F:70:4E:75:F3:DF:F4:89:66:E4:30:95:F1:3A:D3:B8 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 0FF72230EB35C51F2ADEC9B7B8480F06973D795B Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa Signing time: Sat 27 Jul 2024 09:42:01 +0000 ROA not before: Sat 27 Jul 2024 09:37:01 +0000 ROA not after: Sat 26 Jul 2025 09:42:01 +0000 asID: 138886 IP address blocks: 103.73.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f7:22:30:eb:35:c5:1f:2a:de:c9:b7:b8:48:0f:06:97:3d:79:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Jul 27 09:37:01 2024 GMT Not After : Jul 26 09:42:01 2025 GMT Subject: CN=30DF59CC6F704E75F3DFF48966E43095F13AD3B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:94:3c:69:82:75:eb:3b:b3:82:32:e6:74:f9: 6d:7c:ad:fe:97:22:15:76:79:35:f8:87:f6:36:f8: 55:ef:a3:f1:f1:f4:1d:c4:b2:98:f7:6d:13:29:65: 13:7a:48:fa:2f:48:ed:ca:d5:00:21:5d:ef:6a:58: 5f:16:91:7a:17:f1:40:6f:10:79:9f:1e:d9:f8:f6: 43:61:7e:29:6a:22:69:a0:24:88:4c:d2:b1:67:74: 1f:31:2d:9e:9d:db:9b:03:e1:bc:f2:79:75:d3:05: 27:e3:c9:97:5e:9a:59:a2:13:da:2f:84:e8:55:40: 8f:e1:5f:02:d5:70:2e:a0:ed:7f:35:dc:4f:de:0b: 0e:b2:63:97:5c:b0:7d:de:c8:a8:28:e7:cf:83:4a: e2:59:62:28:f9:30:95:0b:d8:10:e3:23:65:8b:bf: 5f:0b:36:f9:c6:1a:59:17:3a:19:9b:c2:b5:c0:10: fc:4c:94:04:0b:22:64:23:23:94:d0:db:6b:0d:49: 11:a2:2d:84:61:97:78:37:8d:cd:3d:31:16:e5:fa: 5d:fe:5b:c7:45:cb:d2:6f:2f:a6:c8:da:71:12:b4: 51:c5:e7:f9:4e:18:f7:a6:c6:bc:5c:ac:13:4e:59: c0:27:fb:ac:86:f7:15:83:bb:8d:f3:96:0e:45:f8: e4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DF:59:CC:6F:70:4E:75:F3:DF:F4:89:66:E4:30:95:F1:3A:D3:B8 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.159.0/24 Signature Algorithm: sha256WithRSAEncryption a1:1f:c8:3f:4b:58:d7:ef:4d:cc:e3:b2:30:9e:b3:fb:08:a5: 4b:74:3b:22:35:fb:91:0d:35:3d:e5:42:2b:21:4f:85:f9:f9: d1:23:4f:5f:3e:35:93:ce:b7:59:cd:fd:cf:09:a5:4c:73:e5: 85:a7:90:f9:d3:71:60:e2:29:61:7b:4c:a5:24:05:26:94:b5: 51:d2:8b:23:92:2d:e9:c9:b6:08:33:a7:5f:b3:17:d8:ef:4f: ce:b5:d4:63:bd:dd:59:82:00:27:b5:57:bf:67:1d:0b:fa:1d: a0:1d:83:bf:36:21:94:a3:e3:13:83:b0:f9:29:9b:6c:e7:e6: 44:59:dc:b5:7c:6b:60:17:ee:be:cd:eb:61:78:79:b7:b0:d9: 34:5a:be:b3:94:8a:2e:ed:38:32:1e:3a:92:71:18:2e:f7:94: 3f:d9:b3:2d:43:60:84:c5:83:41:58:d2:44:0f:40:9f:21:48: e3:a2:e3:e3:95:be:99:5d:cc:4d:2a:ad:65:56:18:e6:7d:35: 0d:83:6b:81:e2:bf:11:91:1e:bb:cd:e1:a4:2e:cf:68:09:42: 1f:a2:9a:54:3d:34:32:c7:af:97:73:d0:f1:01:cd:b4:b1:07: 25:97:7d:22:93:f7:25:26:ae:72:1d:c4:86:26:27:6d:06:08: 2d:e1:bf:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD/ciMOs1xR8q3sm3uEgPBpc9eVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNDA3MjcwOTM3MDFaFw0yNTA3MjYwOTQyMDFaMDMxMTAvBgNV BAMTKDMwREY1OUNDNkY3MDRFNzVGM0RGRjQ4OTY2RTQzMDk1RjEzQUQzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQlDxpgnXrO7OCMuZ0+W18rf6X IhV2eTX4h/Y2+FXvo/Hx9B3Espj3bRMpZRN6SPovSO3K1QAhXe9qWF8WkXoX8UBv EHmfHtn49kNhfilqImmgJIhM0rFndB8xLZ6d25sD4bzyeXXTBSfjyZdemlmiE9ov hOhVQI/hXwLVcC6g7X813E/eCw6yY5dcsH3eyKgo58+DSuJZYij5MJUL2BDjI2WL v18LNvnGGlkXOhmbwrXAEPxMlAQLImQjI5TQ22sNSRGiLYRhl3g3jc09MRbl+l3+ W8dFy9JvL6bI2nEStFHF5/lOGPemxrxcrBNOWcAn+6yG9xWDu43zlg5F+ORzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMN9ZzG9wTnXz3/SJZuQwlfE607gwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDA2Y2RiLTE3OTEtNDc4ZC05 ZDI4LTllMzdhNmY4MDljYy8wLzMxMzAzMzJlMzczMzJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0mfMA0GCSqG SIb3DQEBCwUAA4IBAQChH8g/S1jX703M47IwnrP7CKVLdDsiNfuRDTU95UIrIU+F +fnRI09fPjWTzrdZzf3PCaVMc+WFp5D503Fg4ilhe0ylJAUmlLVR0osjki3pybYI M6dfsxfY70/OtdRjvd1ZggAntVe/Zx0L+h2gHYO/NiGUo+MTg7D5KZts5+ZEWdy1 fGtgF+6+zetheHm3sNk0Wr6zlIou7TgyHjqScRgu95Q/2bMtQ2CExYNBWNJED0Cf IUjjouPjlb6ZXcxNKq1lVhjmfTUNg2uB4r8RkR67zeGkLs9oCUIfoppUPTQyx6+X c9DxAc20sQcll30ik/clJq5yHcSGJidtBggt4b/8 -----END CERTIFICATE-----Generated at Fri Sep 27 16:31:00 2024 by rpki-client on console-fra.rpki-client.org