$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39352e302f32342d3234203d3e20313333383233.roa File: 3130332e35342e39352e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: ta4+QDMsgit89wEmm8ey/12QjqBluuNGxk0RPu1WcS8= Subject key identifier: 95:96:E7:65:70:42:FD:56:AA:2E:87:E7:55:6B:B3:EE:35:2E:91:42 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 72CA6952D45E0AD99D419CEF2EFDD3139B809F79 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39352e302f32342d3234203d3e20313333383233.roa Signing time: Fri 09 Aug 2024 08:00:01 +0000 ROA not before: Fri 09 Aug 2024 07:55:01 +0000 ROA not after: Fri 08 Aug 2025 08:00:01 +0000 asID: 133823 IP address blocks: 103.54.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ca:69:52:d4:5e:0a:d9:9d:41:9c:ef:2e:fd:d3:13:9b:80:9f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Aug 9 07:55:01 2024 GMT Not After : Aug 8 08:00:01 2025 GMT Subject: CN=9596E7657042FD56AA2E87E7556BB3EE352E9142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:b7:07:31:b2:0d:68:2e:f3:8f:37:46:88: ea:ee:ec:59:81:48:b0:7e:fc:c6:95:48:67:45:8a: 4d:86:9b:94:9b:f9:0a:e5:26:81:8a:20:d2:14:c3: 36:46:8d:90:9b:dd:e9:3c:4b:b7:63:32:d2:2f:6f: 2d:d5:9c:9f:62:09:a2:94:bb:a4:ae:f1:e0:6c:95: c3:fb:77:c9:b8:cb:80:5b:14:da:f3:07:0a:71:6b: 05:fb:74:62:3a:ef:9b:77:a4:c2:8e:d1:ef:83:ed: 7c:e5:dd:e4:13:eb:f9:d1:0a:20:76:a8:f0:3f:0b: ea:cd:30:85:0e:75:30:c7:f1:3a:56:e2:0e:2d:8c: f1:f4:b4:d9:45:50:63:c3:7e:71:f0:7e:86:6d:bf: 81:4a:6b:e4:6f:74:a5:25:8d:bb:55:92:f5:e8:53: 09:d3:02:9b:d0:9d:e2:78:b0:0b:0a:c1:e9:ae:43: 03:c1:7a:be:c8:f7:90:48:ce:cc:48:79:c4:e7:8f: a1:7a:80:92:2b:32:4c:ac:0a:88:18:4e:0f:04:1e: c3:29:1a:ad:52:7c:e4:18:47:1d:b2:a8:7d:bf:2f: 7a:68:6a:f5:67:9f:80:32:4e:5d:17:ab:3d:09:44: 23:d5:be:10:f2:09:4a:59:b2:1b:b2:99:f8:39:75: ce:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:96:E7:65:70:42:FD:56:AA:2E:87:E7:55:6B:B3:EE:35:2E:91:42 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39352e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.95.0/24 Signature Algorithm: sha256WithRSAEncryption bb:d8:8d:d4:bb:ec:b3:c9:fa:57:fc:78:f9:1d:21:48:26:06: c9:9f:62:9c:89:10:a4:44:fe:bc:48:0b:64:c8:d2:99:32:4b: e9:4e:cd:77:e0:81:79:4b:b5:76:ff:db:45:78:df:4a:5f:ad: ac:92:33:e5:d5:28:53:46:b6:c4:72:30:e9:78:92:02:0e:5c: 2f:2a:f5:31:71:14:6f:cf:fa:50:7b:01:31:c3:55:de:0e:f1: 82:bc:b3:ea:71:db:75:cf:83:e6:58:d3:2d:d1:00:8d:32:ca: 8e:3e:d3:2e:22:94:21:d8:ab:20:08:36:ea:74:e8:2b:03:d5: 00:22:f9:13:bb:e2:2f:2b:01:d1:9d:3a:0a:4d:c2:e6:e1:8f: 05:79:e8:d4:56:02:38:a4:f1:34:34:c1:16:05:8c:24:29:c7: eb:5c:4c:15:70:f7:16:e5:a0:fc:dd:91:5f:8b:5d:7e:0d:93: ed:44:7a:51:36:28:b5:5a:e4:2f:6d:90:54:06:09:94:7e:02: d6:e2:ab:ee:06:98:08:46:a4:5c:97:8b:e0:67:e1:1a:d2:ab: da:1c:24:8e:7b:ca:bd:64:15:c1:59:f9:f1:cf:18:d4:47:5c: 2a:5b:f1:58:9a:ce:b3:5d:22:ad:28:55:3c:af:94:c9:51:65: 41:93:64:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcsppUtReCtmdQZzvLv3TE5uAn3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNDA4MDkwNzU1MDFaFw0yNTA4MDgwODAwMDFaMDMxMTAvBgNV BAMTKDk1OTZFNzY1NzA0MkZENTZBQTJFODdFNzU1NkJCM0VFMzUyRTkxNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49rcHMbINaC7zjzdGiOru7FmB SLB+/MaVSGdFik2Gm5Sb+QrlJoGKINIUwzZGjZCb3ek8S7djMtIvby3VnJ9iCaKU u6Su8eBslcP7d8m4y4BbFNrzBwpxawX7dGI675t3pMKO0e+D7Xzl3eQT6/nRCiB2 qPA/C+rNMIUOdTDH8TpW4g4tjPH0tNlFUGPDfnHwfoZtv4FKa+RvdKUljbtVkvXo UwnTApvQneJ4sAsKwemuQwPBer7I95BIzsxIecTnj6F6gJIrMkysCogYTg8EHsMp Gq1SfOQYRx2yqH2/L3poavVnn4AyTl0Xqz0JRCPVvhDyCUpZshuymfg5dc4VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlZbnZXBC/VaqLofnVWuz7jUukUIwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzUzNDJlMzkzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc2XzANBgkqhkiG 9w0BAQsFAAOCAQEAu9iN1Lvss8n6V/x4+R0hSCYGyZ9inIkQpET+vEgLZMjSmTJL 6U7Nd+CBeUu1dv/bRXjfSl+trJIz5dUoU0a2xHIw6XiSAg5cLyr1MXEUb8/6UHsB McNV3g7xgryz6nHbdc+D5ljTLdEAjTLKjj7TLiKUIdirIAg26nToKwPVACL5E7vi LysB0Z06Ck3C5uGPBXno1FYCOKTxNDTBFgWMJCnH61xMFXD3FuWg/N2RX4tdfg2T 7UR6UTYotVrkL22QVAYJlH4C1uKr7gaYCEakXJeL4GfhGtKr2hwkjnvKvWQVwVn5 8c8Y1EdcKlvxWJrOs10irShVPK+UyVFlQZNk8w== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org