$ rpki-client -vvf repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32332d3234203d3e20313530313936.roa File: 3130332e3232392e31342e302f32332d3234203d3e20313530313936.roa (raw, json) Hash identifier: 39y9HiPJ86binrj+mB7U7fpMJXOHug7TI1oUGeBTLXs= Subject key identifier: 49:B3:0B:E0:7B:F0:66:AE:BD:9D:D0:94:43:51:BF:3B:E6:EE:0B:7B Certificate issuer: /CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Certificate serial: 324890F51D1D62B619CB218E547A8EA65E37FE48 Authority key identifier: 73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32332d3234203d3e20313530313936.roa Signing time: Mon 29 Jul 2024 08:34:33 +0000 ROA not before: Mon 29 Jul 2024 08:29:33 +0000 ROA not after: Mon 28 Jul 2025 08:34:33 +0000 asID: 150196 IP address blocks: 103.229.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:48:90:f5:1d:1d:62:b6:19:cb:21:8e:54:7a:8e:a6:5e:37:fe:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Validity Not Before: Jul 29 08:29:33 2024 GMT Not After : Jul 28 08:34:33 2025 GMT Subject: CN=49B30BE07BF066AEBD9DD0944351BF3BE6EE0B7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:04:c7:94:9c:0a:c0:0e:da:ad:ed:19:35: 01:db:76:fa:2f:14:ea:3a:b5:be:87:17:6e:40:2c: 58:9d:8e:b5:5e:62:5b:d8:a3:7c:bd:b0:6c:1d:8c: 5e:fe:84:33:85:91:ed:ba:8f:7f:ef:76:a5:76:fb: b0:54:6d:d0:b7:c5:7c:36:03:c9:9d:c3:0c:c9:98: 56:93:6f:6a:2b:20:6d:0e:57:d0:a6:e0:b2:ae:a0: be:f2:77:59:fe:0e:fe:5e:14:33:66:b1:ad:6b:99: af:27:b2:fb:d5:35:b5:fa:2a:b8:d6:eb:16:82:e0: bd:ac:5a:c9:39:c5:bc:4e:ad:1d:b0:da:d5:ce:cc: 53:aa:33:41:da:dc:42:82:51:e4:4d:26:ee:57:38: f6:1d:ab:05:f4:bb:bf:9a:54:8f:8f:59:3c:15:1e: ca:ac:7f:c8:ff:45:c7:e5:15:3f:a4:4b:b4:fc:99: 06:56:ca:3f:58:97:c5:0a:5f:87:3a:97:5f:e3:d4: 93:c3:41:22:4d:5e:15:f9:ed:39:d4:8b:cc:bd:ae: cb:b3:48:2f:76:ce:f2:dd:34:cf:53:fb:e2:7a:22: 65:1e:d2:63:63:06:27:37:00:1e:08:0f:a3:f4:db: 11:43:d9:fd:36:6e:54:6e:b5:51:35:d6:27:9c:cb: b2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B3:0B:E0:7B:F0:66:AE:BD:9D:D0:94:43:51:BF:3B:E6:EE:0B:7B X509v3 Authority Key Identifier: keyid:73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/3130332e3232392e31342e302f32332d3234203d3e20313530313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.14.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:3b:56:63:a5:09:24:ad:41:cf:3f:79:e8:27:75:76:c5:de: 2d:9e:b5:ef:71:e2:73:97:30:58:8e:57:c4:47:7d:ce:1a:57: d1:40:0d:6b:d6:67:18:ed:2e:fa:bb:18:e1:55:d1:7f:f0:bf: ee:6b:2e:94:a3:5a:94:1c:03:a3:5b:70:b3:f3:b8:2f:a7:cd: 5b:2a:e5:0f:0f:09:ea:8b:a2:d1:7a:ee:2f:ce:17:78:b9:7d: 63:16:85:6a:ae:46:8d:08:30:6c:52:18:ab:77:93:e9:dc:3a: 74:b8:86:01:61:69:6f:cc:29:9a:82:27:18:b8:97:81:79:92: 81:36:60:cb:57:53:9a:ab:69:a0:c8:e4:cb:78:28:09:5a:fe: 5d:88:57:65:35:6c:da:92:bf:56:f5:e4:0f:de:ef:82:b9:53: ac:3d:04:5f:9e:c0:f1:b3:66:97:95:9c:70:8d:aa:dc:8d:da: 7f:c0:d6:bd:a3:65:ea:42:2e:38:06:25:96:34:e6:b2:f6:c3: 1f:08:49:b6:8d:47:db:66:ce:67:8e:f8:c4:b0:11:d0:2f:7c: e7:5c:25:24:6b:5e:5f:0e:a1:e1:d2:e5:ab:ed:87:fa:51:c0: d3:47:cb:5d:9f:96:b9:bc:65:fe:4e:d9:7a:83:52:02:72:e9: 58:cb:04:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMkiQ9R0dYrYZyyGOVHqOpl43/kgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3 REZDNkE4RTAeFw0yNDA3MjkwODI5MzNaFw0yNTA3MjgwODM0MzNaMDMxMTAvBgNV BAMTKDQ5QjMwQkUwN0JGMDY2QUVCRDlERDA5NDQzNTFCRjNCRTZFRTBCN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9YgTHlJwKwA7are0ZNQHbdvov FOo6tb6HF25ALFidjrVeYlvYo3y9sGwdjF7+hDOFke26j3/vdqV2+7BUbdC3xXw2 A8mdwwzJmFaTb2orIG0OV9Cm4LKuoL7yd1n+Dv5eFDNmsa1rma8nsvvVNbX6KrjW 6xaC4L2sWsk5xbxOrR2w2tXOzFOqM0Ha3EKCUeRNJu5XOPYdqwX0u7+aVI+PWTwV Hsqsf8j/RcflFT+kS7T8mQZWyj9Yl8UKX4c6l1/j1JPDQSJNXhX57TnUi8y9rsuz SC92zvLdNM9T++J6ImUe0mNjBic3AB4ID6P02xFD2f02blRutVE11iecy7IzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSbML4HvwZq69ndCUQ1G/O+buC3swHwYDVR0j BBgwFoAUcx22dXK0ijqG8EdaDiHhon38ao4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yjc1YmZkMC1hODZjLTRiZWItOWY5OS1hYWMzM2ZiNWU0OWYvMC83MzFEQjY3NTcy QjQ4QTNBODZGMDQ3NUEwRTIxRTFBMjdERkM2QThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3REZD NkE4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNzViZmQwLWE4NmMtNGJlYi05 Zjk5LWFhYzMzZmI1ZTQ5Zi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+UOMA0GCSqG SIb3DQEBCwUAA4IBAQAuO1ZjpQkkrUHPP3noJ3V2xd4tnrXvceJzlzBYjlfER33O GlfRQA1r1mcY7S76uxjhVdF/8L/uay6Uo1qUHAOjW3Cz87gvp81bKuUPDwnqi6LR eu4vzhd4uX1jFoVqrkaNCDBsUhird5Pp3Dp0uIYBYWlvzCmagicYuJeBeZKBNmDL V1Oaq2mgyOTLeCgJWv5diFdlNWzakr9W9eQP3u+CuVOsPQRfnsDxs2aXlZxwjarc jdp/wNa9o2XqQi44BiWWNOay9sMfCEm2jUfbZs5njvjEsBHQL3znXCUka15fDqHh 0uWr7Yf6UcDTR8tdn5a5vGX+Ttl6g1ICculYywRo -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org