$ rpki-client -vvf repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa File: 3130332e3135322e372e302f32342d3234203d3e20313430343236.roa (raw, json) Hash identifier: VmRTNF6O8M+AnB/zvqxaffecroR7hC8t3eEDnSwP8hw= Subject key identifier: 3B:AF:83:FF:97:39:D3:52:2F:75:8A:AA:50:3F:5E:24:5F:D5:ED:0B Certificate issuer: /CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589 Certificate serial: 2EBFD2989A2C66A6CF2905DAF1C8E479C5126C55 Authority key identifier: 33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa Signing time: Mon 01 Jul 2024 01:06:09 +0000 ROA not before: Mon 01 Jul 2024 01:01:09 +0000 ROA not after: Mon 30 Jun 2025 01:06:09 +0000 asID: 140426 IP address blocks: 103.152.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.crl rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bf:d2:98:9a:2c:66:a6:cf:29:05:da:f1:c8:e4:79:c5:12:6c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589 Validity Not Before: Jul 1 01:01:09 2024 GMT Not After : Jun 30 01:06:09 2025 GMT Subject: CN=3BAF83FF9739D3522F758AAA503F5E245FD5ED0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:a8:c5:1d:cd:ea:32:5e:ff:84:2d:34:3c: 07:7c:d4:7b:c6:6b:88:80:a4:fa:58:e1:0b:b1:ed: 03:01:bb:93:86:c6:09:58:51:07:c1:68:71:2b:a5: 01:aa:eb:34:6e:e9:88:9e:96:7d:7e:e6:ad:23:03: bd:4b:68:c3:0f:bf:e6:f2:77:3c:92:45:34:16:6b: dc:0a:8d:b7:14:70:78:2a:08:f6:ac:1a:1b:e7:ed: 98:e0:7e:87:14:c0:13:8a:0b:47:88:6f:39:9d:4c: 3a:3a:bb:12:51:95:64:9c:00:39:65:0b:5a:6b:f7: 6f:00:5c:4a:5f:7d:09:d8:8e:54:1b:89:92:63:73: 03:aa:dc:fe:72:e0:14:68:c5:d1:37:7e:19:d5:82: 60:b9:b9:7a:4e:3f:20:87:f4:2c:4d:2a:99:74:f7: 4e:26:08:9b:90:33:82:75:a4:72:3f:76:34:51:b1: 7f:79:d8:99:8d:b2:31:17:6a:62:6a:f4:fd:2e:c3: ba:af:9f:f2:50:3b:79:b1:5a:9a:5f:fa:6c:61:4f: f1:82:b1:ba:9c:c1:1e:f3:e8:c5:ad:f0:e6:cd:c1: 69:75:dc:7b:14:8b:a4:63:77:7b:77:15:21:3a:cd: b4:23:c9:4a:ad:ee:2f:ad:3e:20:0d:50:a8:ef:f2: 98:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AF:83:FF:97:39:D3:52:2F:75:8A:AA:50:3F:5E:24:5F:D5:ED:0B X509v3 Authority Key Identifier: keyid:33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.7.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:30:d9:97:bf:fe:24:d8:01:c6:0c:c3:0d:a7:81:91:4c:e1: 45:87:e7:e3:69:6d:db:10:24:df:d6:37:52:f5:73:35:e7:d0: 66:4e:78:3b:13:6c:48:48:1f:e9:0c:7f:4d:1d:2e:4a:4d:8f: ff:4a:b1:80:ba:92:0a:f8:6d:c1:f8:72:85:3e:21:03:f2:d8: 4e:bd:74:07:e9:db:77:64:45:d9:f8:29:3c:a6:da:65:0e:f6: d5:ec:7a:6a:66:79:a3:df:98:78:1e:79:55:47:8d:7e:85:62: 44:7a:dd:57:af:27:ca:95:25:eb:b3:c5:a9:58:ea:29:bb:ad: 7d:8f:32:ad:d7:52:27:8f:74:b2:10:e2:d6:af:f0:47:c4:4a: 91:5a:5d:be:dd:58:96:08:2c:13:3c:70:2f:cd:40:e3:5e:13: c7:0d:d8:bc:18:aa:34:84:02:52:70:88:a2:a0:5e:0b:52:29: 99:7a:14:43:8e:81:c1:64:dd:39:f7:0c:10:8f:1f:92:21:a5: 06:5d:9b:68:be:15:c0:48:b3:7e:f6:e3:b9:92:9e:24:67:19: e2:43:c8:82:b1:66:3e:55:bb:6d:77:4c:20:d6:e9:1e:08:15: f9:4c:d9:99:61:89:6e:ed:21:93:cb:28:20:14:9c:10:c0:10: 3d:e6:45:7c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULr/SmJosZqbPKQXa8cjkecUSbFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGMDA0MUI3Q0M2RDQxMzlBQjIzQjNDRDEwQzU2RTUx MjMzQzU4OTAeFw0yNDA3MDEwMTAxMDlaFw0yNTA2MzAwMTA2MDlaMDMxMTAvBgNV BAMTKDNCQUY4M0ZGOTczOUQzNTIyRjc1OEFBQTUwM0Y1RTI0NUZENUVEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXM6jFHc3qMl7/hC00PAd81HvG a4iApPpY4Qux7QMBu5OGxglYUQfBaHErpQGq6zRu6Yieln1+5q0jA71LaMMPv+by dzySRTQWa9wKjbcUcHgqCPasGhvn7ZjgfocUwBOKC0eIbzmdTDo6uxJRlWScADll C1pr928AXEpffQnYjlQbiZJjcwOq3P5y4BRoxdE3fhnVgmC5uXpOPyCH9CxNKpl0 904mCJuQM4J1pHI/djRRsX952JmNsjEXamJq9P0uw7qvn/JQO3mxWppf+mxhT/GC sbqcwR7z6MWt8ObNwWl13HsUi6Rjd3t3FSE6zbQjyUqt7i+tPiANUKjv8pjvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO6+D/5c501IvdYqqUD9eJF/V7QswHwYDVR0j BBgwFoAUM/AEG3zG1BOasjs80QxW5RIzxYkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmFmMzY1ZS0wNWRlLTRjMzktYmY5Ni04M2U5MzliZWQ3ZGYvMC8zM0YwMDQxQjdD QzZENDEzOUFCMjNCM0NEMTBDNTZFNTEyMzNDNTg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGMDA0MUI3Q0M2RDQxMzlBQjIzQjNDRDEwQzU2RTUxMjMz QzU4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYWYzNjVlLTA1ZGUtNGMzOS1i Zjk2LTgzZTkzOWJlZDdkZi8wLzMxMzAzMzJlMzEzNTMyMmUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeYBzANBgkqhkiG 9w0BAQsFAAOCAQEAfjDZl7/+JNgBxgzDDaeBkUzhRYfn42lt2xAk39Y3UvVzNefQ Zk54OxNsSEgf6Qx/TR0uSk2P/0qxgLqSCvhtwfhyhT4hA/LYTr10B+nbd2RF2fgp PKbaZQ721ex6amZ5o9+YeB55VUeNfoViRHrdV68nypUl67PFqVjqKbutfY8yrddS J490shDi1q/wR8RKkVpdvt1YlggsEzxwL81A414Txw3YvBiqNIQCUnCIoqBeC1Ip mXoUQ46BwWTdOfcMEI8fkiGlBl2baL4VwEizfvbjuZKeJGcZ4kPIgrFmPlW7bXdM INbpHggV+UzZmWGJbu0hk8soIBScEMAQPeZFfA== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org