$ rpki-client -vvf repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa File: 3130332e37312e32352e302f32342d3234203d3e20313530323333.roa (raw, json) Hash identifier: 7V+15ddHSP30dhzOt3k9NRabUa1L2vfsDa5xrSuHr2U= Subject key identifier: 35:D8:A2:57:E1:F6:C8:35:87:ED:E7:8B:2E:B1:4E:79:F1:E0:01:7D Certificate issuer: /CN=8DA8C02216F0C7D625FEFA7EF659021425920442 Certificate serial: 72103E884BD90EE3E5A457ECEB668C193C811580 Authority key identifier: 8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa Signing time: Mon 07 Oct 2024 05:01:30 +0000 ROA not before: Mon 07 Oct 2024 04:56:30 +0000 ROA not after: Mon 06 Oct 2025 05:01:30 +0000 asID: 150233 IP address blocks: 103.71.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.crl rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:10:3e:88:4b:d9:0e:e3:e5:a4:57:ec:eb:66:8c:19:3c:81:15:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA8C02216F0C7D625FEFA7EF659021425920442 Validity Not Before: Oct 7 04:56:30 2024 GMT Not After : Oct 6 05:01:30 2025 GMT Subject: CN=35D8A257E1F6C83587EDE78B2EB14E79F1E0017D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:5f:dc:ef:dd:20:02:57:77:52:e6:d2:41: 41:02:cb:27:48:b7:b1:35:3f:b8:af:0f:b1:66:cd: 70:2b:7c:79:b5:13:e5:1d:e7:3d:88:34:ed:c0:c7: 94:8b:44:d9:08:e9:65:e4:0c:84:40:e8:3a:a5:27: 18:c1:c8:52:c0:de:1b:87:32:8c:57:b3:2f:22:94: ac:ae:12:2b:da:d2:b4:3c:f1:ba:64:78:8e:f9:eb: 45:b1:04:b5:15:de:72:68:c5:38:e1:f3:b4:e0:b5: 78:89:21:9b:9a:83:e8:7a:2f:ea:a0:89:a7:e5:af: 5c:bf:07:5a:47:f1:8c:8f:a1:76:38:7f:4d:5c:9f: 59:1a:87:c0:fb:d9:4d:75:83:4a:e1:d4:dc:c1:91: 95:e9:84:a3:55:36:ee:53:5b:d2:c2:36:61:7e:10: 6f:a5:64:74:0d:6f:9f:44:d9:91:ef:bf:ad:31:9e: 10:82:35:b4:a6:1c:a2:ee:04:03:31:28:18:73:c2: 50:04:5f:1f:49:38:48:1a:3e:b3:b2:0b:75:70:76: 64:79:c5:1d:b4:1d:00:5d:e1:17:99:06:8c:cc:5b: 4e:e1:b6:d1:1b:96:16:5e:4e:68:3f:73:ae:df:65: 6a:e3:1c:ab:6c:50:72:96:ca:8d:a3:de:42:9c:0d: 01:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D8:A2:57:E1:F6:C8:35:87:ED:E7:8B:2E:B1:4E:79:F1:E0:01:7D X509v3 Authority Key Identifier: keyid:8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.25.0/24 Signature Algorithm: sha256WithRSAEncryption c2:e7:ef:6a:42:3a:7b:60:0f:d1:97:0e:dd:7c:36:94:7d:37: 6b:8f:0d:91:1a:11:f2:f7:46:86:a3:f6:94:89:1b:e2:1a:fa: ea:5e:d5:a5:0e:85:fe:5e:88:d5:78:9e:a7:da:61:08:b4:90: 28:8b:c5:2e:20:0d:e7:73:6d:68:b7:77:08:1e:b6:2a:51:6f: 18:93:f9:a7:c1:f4:89:4f:fc:a1:39:63:e1:6c:26:a9:2a:bc: 5c:90:9f:7e:ea:91:6d:57:5f:a3:fe:b0:19:c8:81:a6:c2:c4: 15:c5:c6:e3:3c:74:ef:59:d1:cd:6f:e7:55:27:ca:29:40:3a: 0c:54:e1:40:a2:39:e4:4b:fc:db:51:3b:b0:ea:ad:81:e5:2c: da:64:12:a3:e5:c8:31:e4:ec:ed:72:c2:78:2c:52:b8:68:10: 9a:64:27:7b:4e:d4:ed:04:e0:8c:d8:7f:91:5b:6f:03:31:f7: 94:82:db:67:ff:39:cd:a8:5b:cb:9f:47:3b:35:7d:cc:89:8f: f3:f2:c5:dc:4f:7b:7f:12:3b:64:ea:79:04:9c:a3:82:c6:7e: 97:4e:58:46:10:3b:99:63:32:7e:1b:92:d1:3f:4a:4a:c3:c1: 17:08:e2:95:9c:d3:a1:dc:5c:fa:c8:71:c8:0d:f5:52:e7:24: be:3f:5e:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUchA+iEvZDuPlpFfs62aMGTyBFYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBOEMwMjIxNkYwQzdENjI1RkVGQTdFRjY1OTAyMTQy NTkyMDQ0MjAeFw0yNDEwMDcwNDU2MzBaFw0yNTEwMDYwNTAxMzBaMDMxMTAvBgNV BAMTKDM1RDhBMjU3RTFGNkM4MzU4N0VERTc4QjJFQjE0RTc5RjFFMDAxN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDChl/c790gAld3UubSQUECyydI t7E1P7ivD7FmzXArfHm1E+Ud5z2INO3Ax5SLRNkI6WXkDIRA6DqlJxjByFLA3huH MoxXsy8ilKyuEiva0rQ88bpkeI7560WxBLUV3nJoxTjh87TgtXiJIZuag+h6L+qg iaflr1y/B1pH8YyPoXY4f01cn1kah8D72U11g0rh1NzBkZXphKNVNu5TW9LCNmF+ EG+lZHQNb59E2ZHvv60xnhCCNbSmHKLuBAMxKBhzwlAEXx9JOEgaPrOyC3VwdmR5 xR20HQBd4ReZBozMW07httEblhZeTmg/c67fZWrjHKtsUHKWyo2j3kKcDQEpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNdiiV+H2yDWH7eeLLrFOefHgAX0wHwYDVR0j BBgwFoAUjajAIhbwx9Yl/vp+9lkCFCWSBEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yzg2Y2I1ZC1mMDdkLTQyNmEtOGU1ZS1hNzdhOTc4ZGQyZWUvMC84REE4QzAyMjE2 RjBDN0Q2MjVGRUZBN0VGNjU5MDIxNDI1OTIwNDQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBOEMwMjIxNkYwQzdENjI1RkVGQTdFRjY1OTAyMTQyNTky MDQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODZjYjVkLWYwN2QtNDI2YS04 ZTVlLWE3N2E5NzhkZDJlZS8wLzMxMzAzMzJlMzczMTJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdHGTANBgkqhkiG 9w0BAQsFAAOCAQEAwufvakI6e2AP0ZcO3Xw2lH03a48NkRoR8vdGhqP2lIkb4hr6 6l7VpQ6F/l6I1Xiep9phCLSQKIvFLiAN53NtaLd3CB62KlFvGJP5p8H0iU/8oTlj 4WwmqSq8XJCffuqRbVdfo/6wGciBpsLEFcXG4zx071nRzW/nVSfKKUA6DFThQKI5 5Ev821E7sOqtgeUs2mQSo+XIMeTs7XLCeCxSuGgQmmQne07U7QTgjNh/kVtvAzH3 lILbZ/85zahby59HOzV9zImP8/LF3E97fxI7ZOp5BJyjgsZ+l05YRhA7mWMyfhuS 0T9KSsPBFwjilZzTodxc+shxyA31Uuckvj9e5g== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org