$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa File: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (raw, json) Hash identifier: ERxIPVPynr8Zqyd/erBxd/JSZglWN0mqL6sn5XfEVLc= Subject key identifier: D3:1D:BC:7D:AB:26:CE:C1:D4:59:E1:73:03:CF:8E:B5:83:14:D7:2A Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 7987153E390070EE1AEFB67CBBD35E2F59CC96B0 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa Signing time: Mon 01 Jul 2024 10:01:11 +0000 ROA not before: Mon 01 Jul 2024 09:56:11 +0000 ROA not after: Mon 30 Jun 2025 10:01:11 +0000 asID: 134623 IP address blocks: 103.197.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:87:15:3e:39:00:70:ee:1a:ef:b6:7c:bb:d3:5e:2f:59:cc:96:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jul 1 09:56:11 2024 GMT Not After : Jun 30 10:01:11 2025 GMT Subject: CN=D31DBC7DAB26CEC1D459E17303CF8EB58314D72A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b4:0f:ac:f2:fc:3d:24:5d:89:b6:82:19:eb: ed:b6:b2:d9:04:17:fd:9f:72:4d:10:cd:a4:ef:74: b1:18:3b:1d:c2:85:fb:07:dc:ab:ba:54:f5:78:61: 46:42:fd:ee:89:ff:1c:30:c5:48:8e:2b:89:82:2c: 8d:73:b8:5a:32:eb:12:1b:a0:34:b6:c1:21:12:76: 67:b3:70:66:66:c6:a4:48:88:75:27:65:6c:a4:f5: 05:30:62:53:a3:f7:d9:7b:62:0b:eb:4b:d0:f3:34: 56:6d:0a:e9:07:6b:5f:50:24:09:95:de:57:70:43: a3:f7:fa:5d:c5:4e:03:ce:9e:e0:fe:dd:ad:29:8b: 77:1f:a5:cc:f5:ce:88:31:46:b0:de:bc:b7:08:70: 63:8f:ca:f3:c7:d8:69:51:05:86:b8:92:f4:3a:2d: 46:0e:46:41:38:21:35:e0:a9:d5:c6:36:74:d8:13: 08:04:20:fa:3e:36:33:41:9e:c1:ca:b4:02:2b:d0: 04:54:ce:90:4f:50:af:7d:92:9b:4d:ae:bd:0c:0a: 3e:da:55:35:8e:22:20:c5:8b:ab:b2:56:fb:ae:cd: 9f:2f:20:0d:fc:09:10:17:40:1d:88:fe:ff:95:12: ed:f9:7e:c8:fb:8e:3d:ac:4b:7d:b9:34:e1:13:e6: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1D:BC:7D:AB:26:CE:C1:D4:59:E1:73:03:CF:8E:B5:83:14:D7:2A X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.94.0/24 Signature Algorithm: sha256WithRSAEncryption 25:56:78:43:fc:11:06:df:db:d0:86:02:98:44:18:e7:3f:53: 34:71:64:09:e1:c4:4b:0b:24:da:ea:7f:45:ce:f1:92:24:78: 11:af:fe:eb:ce:ac:ba:89:2e:a0:4c:7e:14:17:92:d2:28:73: a8:90:ab:27:91:0e:83:81:d0:c6:0c:89:eb:1b:91:8d:12:4d: d8:7c:f2:20:62:97:a4:81:f2:9a:1a:9b:ea:e3:5a:62:2b:9e: 04:4c:9f:ff:cb:bd:06:13:0b:80:69:1d:9d:ee:61:27:2c:2c: ff:70:9f:20:1b:5e:56:66:58:01:41:ce:d5:9b:50:8a:64:b1: 97:d3:6e:6b:b3:7b:5d:47:b7:99:f9:12:60:1f:e2:59:2b:20: f2:3c:d1:08:44:d7:b6:90:86:bd:76:46:b9:9f:b5:f6:59:75: 93:a0:48:62:1a:dd:40:04:61:5a:05:b6:c7:33:0e:31:5e:ab: a1:7a:be:06:48:c5:8b:57:fc:90:6f:d8:62:b7:f9:91:a1:64: 98:58:9b:fb:ea:01:84:65:c6:35:64:1e:c1:ee:dc:00:a2:b7: e8:33:ee:b2:6c:f3:dc:cc:35:9d:bf:24:56:f5:38:53:1d:10: 79:a1:8c:c5:95:4e:79:aa:5f:2b:a0:6f:ca:4d:c3:94:ad:53: 3f:a2:5b:d2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeYcVPjkAcO4a77Z8u9NeL1nMlrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNDA3MDEwOTU2MTFaFw0yNTA2MzAxMDAxMTFaMDMxMTAvBgNV BAMTKEQzMURCQzdEQUIyNkNFQzFENDU5RTE3MzAzQ0Y4RUI1ODMxNEQ3MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCptA+s8vw9JF2JtoIZ6+22stkE F/2fck0QzaTvdLEYOx3ChfsH3Ku6VPV4YUZC/e6J/xwwxUiOK4mCLI1zuFoy6xIb oDS2wSESdmezcGZmxqRIiHUnZWyk9QUwYlOj99l7YgvrS9DzNFZtCukHa19QJAmV 3ldwQ6P3+l3FTgPOnuD+3a0pi3cfpcz1zogxRrDevLcIcGOPyvPH2GlRBYa4kvQ6 LUYORkE4ITXgqdXGNnTYEwgEIPo+NjNBnsHKtAIr0ARUzpBPUK99kptNrr0MCj7a VTWOIiDFi6uyVvuuzZ8vIA38CRAXQB2I/v+VEu35fsj7jj2sS325NOET5jq9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0x28fasmzsHUWeFzA8+OtYMU1yowHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlZDEwMGRmLTA0NDEtNDM4MS1h M2ZhLTU4N2RiOWU5YzJmMC8wLzMxMzAzMzJlMzEzOTM3MmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8VeMA0GCSqG SIb3DQEBCwUAA4IBAQAlVnhD/BEG39vQhgKYRBjnP1M0cWQJ4cRLCyTa6n9FzvGS JHgRr/7rzqy6iS6gTH4UF5LSKHOokKsnkQ6DgdDGDInrG5GNEk3YfPIgYpekgfKa Gpvq41piK54ETJ//y70GEwuAaR2d7mEnLCz/cJ8gG15WZlgBQc7Vm1CKZLGX025r s3tdR7eZ+RJgH+JZKyDyPNEIRNe2kIa9dka5n7X2WXWToEhiGt1ABGFaBbbHMw4x Xquher4GSMWLV/yQb9hit/mRoWSYWJv76gGEZcY1ZB7B7twAorfoM+6ybPPczDWd vyRW9ThTHRB5oYzFlU55ql8roG/KTcOUrVM/olvS -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org