$ rpki-client -vvf repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32342d3234203d3e20313530323238.roa File: 3130332e31372e33322e302f32342d3234203d3e20313530323238.roa (raw, json) Hash identifier: PXsuVPLEzGme/TvSRalwKMlC1hWsjOPUgK0Lgy+M/Is= Subject key identifier: AB:37:88:B3:6A:73:B1:38:6F:F4:5D:44:42:FB:EE:BE:68:24:68:C4 Certificate issuer: /CN=B2650BD2D997B6C198A4B362B7395AC364683312 Certificate serial: 7DAC912DA1C23014FA5958B485CB0A110E2560EC Authority key identifier: B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32342d3234203d3e20313530323238.roa Signing time: Tue 08 Oct 2024 15:00:01 +0000 ROA not before: Tue 08 Oct 2024 14:55:01 +0000 ROA not after: Tue 07 Oct 2025 15:00:01 +0000 asID: 150228 IP address blocks: 103.17.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ac:91:2d:a1:c2:30:14:fa:59:58:b4:85:cb:0a:11:0e:25:60:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2650BD2D997B6C198A4B362B7395AC364683312 Validity Not Before: Oct 8 14:55:01 2024 GMT Not After : Oct 7 15:00:01 2025 GMT Subject: CN=AB3788B36A73B1386FF45D4442FBEEBE682468C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:c6:46:53:4a:55:09:f0:48:ed:16:0e:10: be:b6:d1:31:be:d5:55:7a:e2:95:8c:55:52:0d:7d: 21:06:3e:ad:ae:22:8c:01:04:9a:8f:f3:7c:ea:b4: b9:a8:65:d6:ad:d7:47:d0:bc:6f:12:02:0c:d0:99: 6a:43:06:1e:c9:1d:b8:01:6c:35:eb:a1:b5:8f:ab: e2:9e:44:c9:0f:f0:25:ea:ee:a8:51:18:eb:36:58: 5b:db:8a:bb:9b:97:aa:2f:1e:43:a4:ae:09:dc:f0: 5a:7a:48:93:c5:de:b8:7a:1a:b7:0e:08:79:1b:cd: d3:c6:26:2d:60:3b:c2:13:5c:bd:2b:75:a8:e9:f3: af:5a:69:7b:31:92:4e:eb:13:c8:2b:0c:e3:06:19: fe:44:30:17:88:48:57:35:a2:b8:17:64:01:22:9a: f1:51:26:bf:d4:e6:2d:b6:dc:51:2c:cd:e1:d3:bb: e0:55:c5:c7:3b:35:e2:41:3e:3e:f3:be:98:ea:65: 50:cc:69:82:1c:13:0f:5f:c8:62:ab:80:b4:3b:4d: b2:f5:f7:a3:a7:9a:4a:34:00:ab:b6:77:b7:c6:ec: 04:98:13:85:c0:2a:d1:c6:8b:70:61:3d:63:5e:9b: 3e:5d:65:67:c1:bc:35:c5:69:8c:21:8f:e3:74:28: 38:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:37:88:B3:6A:73:B1:38:6F:F4:5D:44:42:FB:EE:BE:68:24:68:C4 X509v3 Authority Key Identifier: keyid:B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/3130332e31372e33322e302f32342d3234203d3e20313530323238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.32.0/24 Signature Algorithm: sha256WithRSAEncryption 12:bb:07:6a:bf:e8:bc:48:ce:32:b4:07:37:b7:9a:68:db:54: 81:6e:05:4a:3b:f5:66:90:fd:ce:d3:a5:2b:f3:95:3e:7a:6a: 89:88:e7:24:26:3f:df:e6:c9:bc:fc:4b:30:01:bf:dc:ae:da: d0:c6:0c:50:73:97:78:98:b0:ec:c3:45:e5:11:86:75:19:c3: 9f:93:ca:67:a0:3f:30:b9:23:26:04:ec:a4:b7:f3:b0:60:b6: d5:d3:b1:23:56:a9:7c:ca:60:5b:bb:32:d2:25:88:19:61:43: 07:8f:b6:fc:39:7e:b0:6b:12:bc:d4:7a:44:6c:6a:87:5b:11: 18:ed:8e:7d:24:23:01:e8:31:32:d0:82:88:a3:c0:21:dc:c9: 73:90:03:e8:06:2c:cf:ca:c3:bf:d9:07:f1:87:e9:97:e6:b2: 65:c3:12:04:24:f1:ba:9e:b8:f6:22:9b:06:27:20:b5:7e:d5: ab:06:28:d8:73:1d:27:f8:68:4f:7c:44:c7:3c:d2:1f:79:0b: 33:85:fc:e9:13:e7:a2:e5:dd:41:f2:b3:92:cd:9f:91:8a:3e: 10:fd:d3:03:fc:51:13:6e:5b:50:b8:e6:65:62:91:97:5f:de: cd:ae:87:6b:5f:d5:a4:63:67:4e:ba:fd:cb:c7:9e:27:94:c4: 6d:5b:a7:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfayRLaHCMBT6WVi0hcsKEQ4lYOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2 NDY4MzMxMjAeFw0yNDEwMDgxNDU1MDFaFw0yNTEwMDcxNTAwMDFaMDMxMTAvBgNV BAMTKEFCMzc4OEIzNkE3M0IxMzg2RkY0NUQ0NDQyRkJFRUJFNjgyNDY4QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HsZGU0pVCfBI7RYOEL620TG+ 1VV64pWMVVINfSEGPq2uIowBBJqP83zqtLmoZdat10fQvG8SAgzQmWpDBh7JHbgB bDXrobWPq+KeRMkP8CXq7qhRGOs2WFvbirubl6ovHkOkrgnc8Fp6SJPF3rh6GrcO CHkbzdPGJi1gO8ITXL0rdajp869aaXsxkk7rE8grDOMGGf5EMBeISFc1orgXZAEi mvFRJr/U5i223FEszeHTu+BVxcc7NeJBPj7zvpjqZVDMaYIcEw9fyGKrgLQ7TbL1 96Onmko0AKu2d7fG7ASYE4XAKtHGi3BhPWNemz5dZWfBvDXFaYwhj+N0KDiFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqzeIs2pzsThv9F1EQvvuvmgkaMQwHwYDVR0j BBgwFoAUsmUL0tmXtsGYpLNitzlaw2RoMxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjkwNTc2Ni00NDBlLTRiY2ItYWU3Mi0zZTc4ODMxY2U5ZGMvMC9CMjY1MEJEMkQ5 OTdCNkMxOThBNEIzNjJCNzM5NUFDMzY0NjgzMzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2NDY4 MzMxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiOTA1NzY2LTQ0MGUtNGJjYi1h ZTcyLTNlNzg4MzFjZTlkYy8wLzMxMzAzMzJlMzEzNzJlMzMzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcRIDANBgkqhkiG 9w0BAQsFAAOCAQEAErsHar/ovEjOMrQHN7eaaNtUgW4FSjv1ZpD9ztOlK/OVPnpq iYjnJCY/3+bJvPxLMAG/3K7a0MYMUHOXeJiw7MNF5RGGdRnDn5PKZ6A/MLkjJgTs pLfzsGC21dOxI1apfMpgW7sy0iWIGWFDB4+2/Dl+sGsSvNR6RGxqh1sRGO2OfSQj AegxMtCCiKPAIdzJc5AD6AYsz8rDv9kH8Yfpl+ayZcMSBCTxup649iKbBicgtX7V qwYo2HMdJ/hoT3xExzzSH3kLM4X86RPnouXdQfKzks2fkYo+EP3TA/xRE25bULjm ZWKRl1/eza6Ha1/VpGNnTrr9y8eeJ5TEbVun3A== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org