$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa File: 3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa (raw, json) Hash identifier: txvhHjZQd4OZTYtpVnuV9pyOVezURJio/Glm+Xp4MtI= Subject key identifier: 01:2A:40:0D:CD:D7:2C:4E:DB:23:E3:05:BF:6C:32:4F:74:E2:27:5F Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 77808515C33FFC43D162490FB66581B11DC62A32 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa Signing time: Fri 09 Aug 2024 08:00:02 +0000 ROA not before: Fri 09 Aug 2024 07:55:02 +0000 ROA not after: Fri 08 Aug 2025 08:00:02 +0000 asID: 133823 IP address blocks: 103.104.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:80:85:15:c3:3f:fc:43:d1:62:49:0f:b6:65:81:b1:1d:c6:2a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Aug 9 07:55:02 2024 GMT Not After : Aug 8 08:00:02 2025 GMT Subject: CN=012A400DCDD72C4EDB23E305BF6C324F74E2275F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:df:10:36:51:ec:bb:49:5a:a4:e5:d5:84:91: 14:df:aa:11:cc:47:fa:ba:ea:99:8e:a5:19:7f:49: 66:38:eb:8f:43:e1:f1:5a:a6:cf:c0:cf:1f:3d:ee: 74:33:b9:b4:86:df:f0:ee:a1:59:28:b7:1a:df:50: 4c:48:5a:80:fe:38:b7:a7:14:5a:cc:6d:55:1f:79: 9c:b0:48:05:e1:8a:6f:93:04:ca:55:ff:71:c1:b0: c9:68:c6:d3:70:61:d8:37:21:02:cf:5e:d5:9f:33: c4:6e:ba:82:90:e9:e9:07:4d:a7:96:9e:cc:19:fb: f4:4d:89:4d:3d:82:15:85:51:bc:2e:9f:49:c5:f1: 5d:25:cc:14:6f:e3:34:15:cf:e5:11:3d:cb:ca:e8: 8e:94:e2:47:ea:79:43:9a:dc:b2:6c:43:b1:70:6f: 05:ff:e3:4f:92:9a:ff:e3:ae:90:49:c9:f5:07:5b: fd:6b:f1:93:e5:10:a3:e4:cd:dd:f7:51:7d:a1:a3: 78:b1:88:d5:e4:c0:64:9d:a1:74:9c:88:57:f4:91: 46:9b:ef:ec:27:24:0a:c5:9d:ce:2b:f5:2a:91:71: d2:4d:12:09:7b:bb:57:37:d7:8c:1c:b7:85:bb:47: 31:61:58:d0:0c:67:47:c0:1e:d1:12:18:23:18:9c: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2A:40:0D:CD:D7:2C:4E:DB:23:E3:05:BF:6C:32:4F:74:E2:27:5F X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32322d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.132.0/22 Signature Algorithm: sha256WithRSAEncryption 78:b9:3b:d3:19:bb:e5:6c:8a:f8:51:cb:b0:0b:60:89:31:e1: 13:e0:76:d1:65:45:08:b5:5d:50:60:b6:2f:9d:92:67:58:7e: 15:2b:1b:e7:4d:bf:29:11:02:84:4d:a2:41:a1:50:20:17:15: a7:cb:a3:a0:e6:5f:4a:de:09:77:2f:0b:97:d4:81:be:69:c1: 3b:13:c3:30:7d:d9:ce:81:3c:cd:7e:66:2a:ad:03:7a:7c:aa: 08:b0:04:08:df:65:58:0a:e9:7e:e2:e9:30:c3:00:b2:5d:9c: 47:cf:29:28:5a:ac:b1:cb:90:33:ce:79:6b:1f:c5:ff:2c:cc: 35:9c:a1:82:2c:3e:74:07:5c:53:ed:df:bb:7d:47:8f:df:8a: 90:46:7b:0d:12:47:8e:0c:47:70:05:38:c0:d2:23:e8:c1:c9: 34:6a:b5:95:d7:05:37:a1:8e:93:cd:ea:b7:89:31:2d:8a:14: 87:10:85:d0:2c:2c:06:2a:51:d2:cc:b1:0d:95:84:e1:0d:e4: 89:45:2e:f6:7a:08:ee:a6:df:48:7f:1b:d7:e3:72:dd:a6:64: 72:a0:a5:b4:d3:82:cf:7a:da:de:52:f7:b0:60:f9:e2:7f:20: 09:77:33:f0:39:c6:ce:05:a9:1d:0c:47:c7:ce:77:b9:f8:67: a9:d1:15:54 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd4CFFcM//EPRYkkPtmWBsR3GKjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNDA4MDkwNzU1MDJaFw0yNTA4MDgwODAwMDJaMDMxMTAvBgNV BAMTKDAxMkE0MDBEQ0RENzJDNEVEQjIzRTMwNUJGNkMzMjRGNzRFMjI3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe3xA2Uey7SVqk5dWEkRTfqhHM R/q66pmOpRl/SWY4649D4fFaps/Azx897nQzubSG3/DuoVkotxrfUExIWoD+OLen FFrMbVUfeZywSAXhim+TBMpV/3HBsMloxtNwYdg3IQLPXtWfM8RuuoKQ6ekHTaeW nswZ+/RNiU09ghWFUbwun0nF8V0lzBRv4zQVz+URPcvK6I6U4kfqeUOa3LJsQ7Fw bwX/40+Smv/jrpBJyfUHW/1r8ZPlEKPkzd33UX2ho3ixiNXkwGSdoXSciFf0kUab 7+wnJArFnc4r9SqRcdJNEgl7u1c314wct4W7RzFhWNAMZ0fAHtESGCMYnG/NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUASpADc3XLE7bI+MFv2wyT3TiJ18wHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnaIQwDQYJ KoZIhvcNAQELBQADggEBAHi5O9MZu+VsivhRy7ALYIkx4RPgdtFlRQi1XVBgti+d kmdYfhUrG+dNvykRAoRNokGhUCAXFafLo6DmX0reCXcvC5fUgb5pwTsTwzB92c6B PM1+ZiqtA3p8qgiwBAjfZVgK6X7i6TDDALJdnEfPKSharLHLkDPOeWsfxf8szDWc oYIsPnQHXFPt37t9R4/fipBGew0SR44MR3AFOMDSI+jByTRqtZXXBTehjpPN6reJ MS2KFIcQhdAsLAYqUdLMsQ2VhOEN5IlFLvZ6CO6m30h/G9fjct2mZHKgpbTTgs96 2t5S97Bg+eJ/IAl3M/A5xs4FqR0MR8fOd7n4Z6nRFVQ= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org