$ rpki-client -vvf repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa File: 3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa (raw, json) Hash identifier: uishawwbIWA59fc6E2EnmmHu56G13qCCnCUtoDK7S+I= Subject key identifier: F2:32:52:4D:CB:2A:7F:7C:8D:BC:11:79:34:1F:20:91:4E:E5:1D:26 Certificate issuer: /CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF Certificate serial: 2214150D4677B13F9245E969BBDF38D26FF7EA3C Authority key identifier: 2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa Signing time: Tue 20 Aug 2024 07:00:02 +0000 ROA not before: Tue 20 Aug 2024 06:55:02 +0000 ROA not after: Tue 19 Aug 2025 07:00:02 +0000 asID: 132652 IP address blocks: 103.25.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:14:15:0d:46:77:b1:3f:92:45:e9:69:bb:df:38:d2:6f:f7:ea:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF Validity Not Before: Aug 20 06:55:02 2024 GMT Not After : Aug 19 07:00:02 2025 GMT Subject: CN=F232524DCB2A7F7C8DBC1179341F20914EE51D26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:86:34:0a:c9:cf:55:84:70:e6:0d:af:36:21: 8d:fc:f9:4b:49:44:8d:98:0a:8c:d0:c0:d3:84:3f: 44:15:78:da:4c:e0:95:5a:23:05:34:b1:3e:1e:c2: 0b:4a:bf:a7:a3:57:f6:d1:b7:e2:42:d5:ab:a1:53: 47:0a:a0:2b:66:ca:14:8d:91:ac:fb:a5:72:56:66: 7c:b0:88:cc:91:48:1f:69:18:47:8b:56:02:f5:9c: fe:46:0b:3b:67:75:8c:00:a7:98:3d:91:98:9d:6c: 9c:d7:84:07:8d:63:c9:86:4c:87:79:41:76:1f:b0: de:7c:49:8d:5e:2a:9a:52:04:cf:78:bb:08:46:94: 61:d8:4c:1d:23:da:c9:27:b6:d7:81:72:37:dd:44: b5:05:03:94:f5:97:05:bb:91:2f:2c:d3:72:a8:b3: 8b:18:09:15:9b:49:3c:21:6c:e2:7c:56:48:b8:5e: 0e:cb:0b:3a:8b:95:75:43:a8:1a:75:e9:91:12:bc: c7:cc:2b:14:40:b5:5a:b6:54:68:d3:b7:c7:e2:a1: 99:ee:98:de:99:14:2d:6e:bc:71:8f:5e:7f:a3:d9: 16:77:8b:61:a7:69:03:6b:19:c4:07:e7:16:50:76: 59:f4:8b:ab:d7:81:8f:ab:d2:ff:1d:c2:3c:9a:c0: 01:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:32:52:4D:CB:2A:7F:7C:8D:BC:11:79:34:1F:20:91:4E:E5:1D:26 X509v3 Authority Key Identifier: keyid:2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.192.0/22 Signature Algorithm: sha256WithRSAEncryption 31:be:99:fd:e3:07:f7:f5:d5:fc:88:66:0f:af:74:d4:05:21: f9:68:c5:e5:ed:27:8c:da:61:13:7e:93:89:af:9d:1e:02:28: 62:37:89:50:fb:84:07:33:ef:01:30:c3:ed:55:98:32:e8:c1: e2:8b:c0:ec:a6:30:3a:8d:e6:c4:d7:a7:29:09:12:f8:ab:2f: 5e:e7:58:db:c2:6c:fb:b2:01:6d:95:99:af:4e:cd:bf:45:70: 1a:a7:b9:e6:0f:56:2f:ea:5a:f2:fe:60:d0:45:e5:c0:69:dc: c1:21:4a:03:6e:f2:aa:7f:32:31:60:aa:dc:88:f1:c5:79:98: 28:f5:5c:54:29:01:ae:71:51:72:ac:13:1e:c9:53:11:8f:d3: 8b:bd:17:4b:8d:40:9c:e7:d2:00:f2:a7:c4:3c:f1:72:d1:fc: 2a:74:9d:e9:1f:96:cb:f8:75:a3:0b:3f:e8:5e:bc:b7:5f:0f: ed:0a:37:fb:59:8a:a2:26:18:e0:73:6d:a4:ac:49:b0:da:5c: bc:6f:30:33:6c:c1:f7:2d:2a:be:22:0e:a2:8d:7f:f5:47:37: 88:8e:8f:79:61:51:a6:3b:16:06:5c:96:28:ef:40:f1:cd:0c: 99:e2:25:ec:81:9f:86:a5:94:44:c1:30:42:b6:49:91:80:2d: 55:8b:1c:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIhQVDUZ3sT+SRelpu9840m/36jwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUxOUI5NzQwNUQ0OThEM0IwNjdBOUExMDA5Q0RDMUUw MkZCMTFDRjAeFw0yNDA4MjAwNjU1MDJaFw0yNTA4MTkwNzAwMDJaMDMxMTAvBgNV BAMTKEYyMzI1MjREQ0IyQTdGN0M4REJDMTE3OTM0MUYyMDkxNEVFNTFEMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqhjQKyc9VhHDmDa82IY38+UtJ RI2YCozQwNOEP0QVeNpM4JVaIwU0sT4ewgtKv6ejV/bRt+JC1auhU0cKoCtmyhSN kaz7pXJWZnywiMyRSB9pGEeLVgL1nP5GCztndYwAp5g9kZidbJzXhAeNY8mGTId5 QXYfsN58SY1eKppSBM94uwhGlGHYTB0j2skntteBcjfdRLUFA5T1lwW7kS8s03Ko s4sYCRWbSTwhbOJ8Vki4Xg7LCzqLlXVDqBp16ZESvMfMKxRAtVq2VGjTt8fioZnu mN6ZFC1uvHGPXn+j2RZ3i2GnaQNrGcQH5xZQdln0i6vXgY+r0v8dwjyawAF7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8jJSTcsqf3yNvBF5NB8gkU7lHSYwHwYDVR0j BBgwFoAULhm5dAXUmNOwZ6mhAJzcHgL7Ec8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjYzMmEyYy00MDZlLTQ1ZDctYTAyOC0yNjA0NzRjNzcwMzgvMC8yRTE5Qjk3NDA1 RDQ5OEQzQjA2N0E5QTEwMDlDREMxRTAyRkIxMUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUxOUI5NzQwNUQ0OThEM0IwNjdBOUExMDA5Q0RDMUUwMkZC MTFDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNjMyYTJjLTQwNmUtNDVkNy1h MDI4LTI2MDQ3NGM3NzAzOC8wLzMxMzAzMzJlMzIzNTJlMzEzOTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxnAMA0GCSqG SIb3DQEBCwUAA4IBAQAxvpn94wf39dX8iGYPr3TUBSH5aMXl7SeM2mETfpOJr50e AihiN4lQ+4QHM+8BMMPtVZgy6MHii8DspjA6jebE16cpCRL4qy9e51jbwmz7sgFt lZmvTs2/RXAap7nmD1Yv6lry/mDQReXAadzBIUoDbvKqfzIxYKrciPHFeZgo9VxU KQGucVFyrBMeyVMRj9OLvRdLjUCc59IA8qfEPPFy0fwqdJ3pH5bL+HWjCz/oXry3 Xw/tCjf7WYqiJhjgc22krEmw2ly8bzAzbMH3LSq+Ig6ijX/1RzeIjo95YVGmOxYG XJYo70DxzQyZ4iXsgZ+GpZREwTBCtkmRgC1Vixwg -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:09 2024 by rpki-client on console-ams.rpki-client.org