$ rpki-client -vvf repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa File: 3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa (raw, json) Hash identifier: wn8mnwMzffhjqaH3mMBTlGmbXGRcg3dHonFKFCyctVQ= Subject key identifier: 17:4A:6D:26:33:FD:05:E4:3B:88:75:74:D3:D3:96:C3:A0:70:8C:89 Certificate issuer: /CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Certificate serial: 1D1AFF52097B3B5B6847D89BEABEA4B3A21C0279 Authority key identifier: E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa Signing time: Mon 01 Jul 2024 01:05:29 +0000 ROA not before: Mon 01 Jul 2024 01:00:29 +0000 ROA not after: Mon 30 Jun 2025 01:05:29 +0000 asID: 63885 IP address blocks: 103.194.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1a:ff:52:09:7b:3b:5b:68:47:d8:9b:ea:be:a4:b3:a2:1c:02:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Validity Not Before: Jul 1 01:00:29 2024 GMT Not After : Jun 30 01:05:29 2025 GMT Subject: CN=174A6D2633FD05E43B887574D3D396C3A0708C89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:c0:cb:e8:59:dd:e9:1d:67:90:ec:5f:a8: 38:78:a3:21:12:3b:43:a7:f0:94:ca:f6:cf:0a:9e: f1:fe:0d:87:81:05:af:8b:be:99:76:5b:0c:7b:5d: ae:51:c1:d4:4e:fa:ae:15:ce:44:a7:db:23:ed:de: ae:55:8d:58:1c:92:e9:82:03:71:99:9d:48:d4:5a: 37:28:a8:a6:ce:02:69:51:b6:3d:b1:90:8e:c9:1b: 0e:82:e5:d6:1e:64:c1:56:c8:b5:ed:38:97:37:c3: fd:6a:bf:75:08:6d:0c:cb:6b:2c:8f:a1:a0:bd:b2: c7:9c:c8:4c:6a:4d:b8:95:eb:4f:8a:3c:51:34:ab: 21:b5:56:7e:e6:e2:e4:f5:a2:44:38:08:07:88:ec: 07:11:2c:d8:02:71:68:83:c4:6c:08:13:47:ac:b6: 6c:30:58:a3:d3:66:da:54:c1:c7:9f:57:33:de:db: 1e:74:f0:95:20:f4:4b:3a:fd:63:c1:97:c2:7c:fd: 34:79:03:66:04:d8:6d:2b:28:2f:24:50:96:0f:fb: e3:63:f1:0d:96:bb:7a:a8:66:db:e0:0a:63:9c:e4: 34:dd:85:65:ec:8b:47:f5:ac:a8:b3:01:cb:6b:8a: 0d:a1:dd:5b:b0:3c:f5:9b:04:26:61:c8:31:c5:83: f3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4A:6D:26:33:FD:05:E4:3B:88:75:74:D3:D3:96:C3:A0:70:8C:89 X509v3 Authority Key Identifier: keyid:E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.194.172.0/22 Signature Algorithm: sha256WithRSAEncryption 13:f1:8e:2b:7d:c8:31:81:6c:3c:ce:e6:b0:b6:49:24:26:09: de:e9:f7:0c:ce:65:b5:dd:10:87:50:e8:88:b5:7a:8d:b5:69: 77:6c:e4:8d:f9:b7:d7:cf:b2:50:77:9c:1e:5a:6b:1d:2d:91: 01:40:f3:0d:0e:a7:18:ce:b8:1a:ba:79:f2:60:82:48:c3:0e: b1:7b:5c:d4:c2:2c:b7:ba:d4:12:4e:b8:a4:f6:5c:03:b3:d4: 77:73:d3:16:cf:1a:a6:78:bb:d0:b7:b6:08:c4:94:37:04:21: 10:16:a2:17:96:d7:d3:7d:99:ce:28:d8:04:d4:98:4d:88:74: cc:1e:69:46:45:a4:5c:9f:77:fd:83:14:35:30:2f:2d:8b:b0: a0:15:ee:7d:19:c3:b3:fb:6f:7d:d3:9b:8e:71:6b:99:47:ec: cb:a4:e1:df:8a:78:18:18:b5:95:59:b6:6c:ae:fa:08:81:0c: 29:7f:29:d4:d3:a9:0c:04:63:58:5d:80:ec:79:a2:7a:79:84: 2c:5e:29:21:f2:ab:69:97:96:c8:0a:65:af:73:d5:6f:82:4a: 03:5e:3b:9d:14:d2:08:8b:8e:f2:c1:ad:42:e6:d9:0a:d4:21: af:c3:36:68:9f:11:53:fb:b6:5c:9d:d0:18:70:17:b8:4e:b5: 32:00:78:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHRr/Ugl7O1toR9ib6r6ks6IcAnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2 QzUwQzE4ODAeFw0yNDA3MDEwMTAwMjlaFw0yNTA2MzAwMTA1MjlaMDMxMTAvBgNV BAMTKDE3NEE2RDI2MzNGRDA1RTQzQjg4NzU3NEQzRDM5NkMzQTA3MDhDODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQw8DL6Fnd6R1nkOxfqDh4oyES O0On8JTK9s8KnvH+DYeBBa+Lvpl2Wwx7Xa5RwdRO+q4VzkSn2yPt3q5VjVgckumC A3GZnUjUWjcoqKbOAmlRtj2xkI7JGw6C5dYeZMFWyLXtOJc3w/1qv3UIbQzLayyP oaC9ssecyExqTbiV60+KPFE0qyG1Vn7m4uT1okQ4CAeI7AcRLNgCcWiDxGwIE0es tmwwWKPTZtpUwcefVzPe2x508JUg9Es6/WPBl8J8/TR5A2YE2G0rKC8kUJYP++Nj 8Q2Wu3qoZtvgCmOc5DTdhWXsi0f1rKizActrig2h3VuwPPWbBCZhyDHFg/MJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUF0ptJjP9BeQ7iHV009OWw6BwjIkwHwYDVR0j BBgwFoAU5CDxNPoaa6cFiEJL1Ohi7mxQwYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZmUzNWZhYS1lZDJiLTQyNzEtYjQ4Yy00ZWEyMWMzMDkzNTIvMC9FNDIwRjEzNEZB MUE2QkE3MDU4ODQyNEJENEU4NjJFRTZDNTBDMTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2QzUw QzE4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmZTM1ZmFhLWVkMmItNDI3MS1i NDhjLTRlYTIxYzMwOTM1Mi8wLzMxMzAzMzJlMzEzOTM0MmUzMTM3MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNjMzMzgzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ8KsMA0GCSqG SIb3DQEBCwUAA4IBAQAT8Y4rfcgxgWw8zuawtkkkJgne6fcMzmW13RCHUOiItXqN tWl3bOSN+bfXz7JQd5weWmsdLZEBQPMNDqcYzrgaunnyYIJIww6xe1zUwiy3utQS Trik9lwDs9R3c9MWzxqmeLvQt7YIxJQ3BCEQFqIXltfTfZnOKNgE1JhNiHTMHmlG RaRcn3f9gxQ1MC8ti7CgFe59GcOz+29905uOcWuZR+zLpOHfingYGLWVWbZsrvoI gQwpfynU06kMBGNYXYDseaJ6eYQsXikh8qtpl5bICmWvc9VvgkoDXjudFNIIi47y wa1C5tkK1CGvwzZonxFT+7ZcndAYcBe4TrUyAHiN -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org