$ rpki-client -vvf repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/3130332e3130302e38352e302f32342d3234203d3e20313336383336.roa File: 3130332e3130302e38352e302f32342d3234203d3e20313336383336.roa (raw, json) Hash identifier: DrI31lDppnP08WMTeRwjjY1YGfGMmQOXDQKgRQCsT98= Subject key identifier: 3E:AE:71:5E:20:C6:CF:24:97:36:B9:D7:F9:E7:7A:44:3C:F8:AF:A0 Certificate issuer: /CN=585D79944E315672D413B937BFC042F7C0AAB990 Certificate serial: 32DE462B35B53F0D6F5998D282ADB262E64A4D60 Authority key identifier: 58:5D:79:94:4E:31:56:72:D4:13:B9:37:BF:C0:42:F7:C0:AA:B9:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/585D79944E315672D413B937BFC042F7C0AAB990.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/3130332e3130302e38352e302f32342d3234203d3e20313336383336.roa Signing time: Tue 06 Feb 2024 04:22:59 +0000 ROA not before: Tue 06 Feb 2024 04:17:59 +0000 ROA not after: Tue 04 Feb 2025 04:22:59 +0000 asID: 136836 IP address blocks: 103.100.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/585D79944E315672D413B937BFC042F7C0AAB990.crl rsync://repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/585D79944E315672D413B937BFC042F7C0AAB990.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/585D79944E315672D413B937BFC042F7C0AAB990.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:de:46:2b:35:b5:3f:0d:6f:59:98:d2:82:ad:b2:62:e6:4a:4d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=585D79944E315672D413B937BFC042F7C0AAB990 Validity Not Before: Feb 6 04:17:59 2024 GMT Not After : Feb 4 04:22:59 2025 GMT Subject: CN=3EAE715E20C6CF249736B9D7F9E77A443CF8AFA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:83:3b:f1:74:14:31:cf:42:7f:f3:db:8f:bf: 19:94:dc:98:a5:ce:3d:8d:58:7e:92:25:c0:9a:1a: 60:42:42:e1:cf:37:83:7b:e9:65:06:57:b3:f7:42: 74:c5:b9:49:7c:0e:88:c3:5a:de:1c:f9:4a:74:3c: de:ca:20:d3:66:68:0e:32:3a:19:5a:06:45:a1:be: 2f:88:bd:37:cc:e5:81:9b:2b:b3:d2:c0:c9:03:c1: b9:8f:f8:2f:18:53:8a:d1:86:72:86:c8:7e:95:e2: 6d:97:fd:23:d9:61:a1:25:17:51:c4:23:30:c2:4b: 38:5d:05:9b:e1:2b:0a:a6:8a:96:00:92:72:7a:8c: 4a:dd:a6:5d:bc:b8:2b:68:2b:d9:a8:fb:b6:f5:b5: cb:d2:1c:f5:68:0e:b0:30:5c:21:53:7d:ed:3c:9a: 33:69:c5:52:50:a1:ce:3e:12:7f:c5:38:13:f0:7f: e0:b9:c1:d5:e9:44:60:f4:29:d6:0a:82:7c:c0:4d: af:01:26:cf:04:63:61:e7:6e:3a:7a:2c:2f:44:6a: 1f:e0:5d:49:29:d1:26:03:2a:2e:8c:68:73:a3:f3: ed:80:5c:c7:95:29:da:e5:93:d7:54:d8:bd:16:e5: f9:1e:9f:89:fd:26:9b:1e:50:fb:0d:e9:78:36:d6: f2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AE:71:5E:20:C6:CF:24:97:36:B9:D7:F9:E7:7A:44:3C:F8:AF:A0 X509v3 Authority Key Identifier: keyid:58:5D:79:94:4E:31:56:72:D4:13:B9:37:BF:C0:42:F7:C0:AA:B9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/585D79944E315672D413B937BFC042F7C0AAB990.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/585D79944E315672D413B937BFC042F7C0AAB990.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4732f191-e380-4013-bce5-4215a493a71d/0/3130332e3130302e38352e302f32342d3234203d3e20313336383336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.85.0/24 Signature Algorithm: sha256WithRSAEncryption 42:dd:62:9a:57:fc:21:a8:f1:4f:de:8c:16:26:cc:3f:c9:a3: 80:3d:46:5b:58:4b:b3:45:da:8e:6f:bc:40:23:46:47:9c:6a: 93:61:d4:53:0c:d6:06:9b:15:93:ce:d3:7b:5f:69:a8:e7:25: 5f:a1:71:c2:8a:36:f0:3c:52:d4:95:e2:a6:91:e6:9a:98:1a: b0:7c:bf:b2:c7:f9:51:9f:be:0b:5a:f4:fd:74:0d:b9:ea:5f: 03:6b:e7:3a:41:dc:9c:a3:a5:42:81:70:08:c2:a0:99:08:6f: c1:55:69:69:3c:28:89:39:7d:e6:14:44:31:dc:c1:47:77:75: 72:fd:f3:d7:ec:d8:1a:d2:9f:5c:00:64:8e:88:fc:3e:cb:16: 67:97:f8:43:1a:30:49:fa:84:1b:1e:02:74:64:ea:25:14:0e: 7c:44:8c:fe:45:d8:06:24:ea:60:18:3d:1a:fe:0f:f5:09:c6: 9d:9d:21:ec:53:d5:90:74:c1:e9:b5:58:ef:e8:29:cd:18:5f: 1b:e6:bd:d2:0d:ad:9c:36:41:c0:38:ad:a7:e5:e1:de:69:03: a0:17:9d:d3:3b:8c:f3:3f:13:99:f9:cc:e9:f5:9e:4c:59:9d: f9:12:e1:c3:c1:8a:39:06:c3:67:3b:b6:f2:6b:2b:bf:6a:04: f6:65:0a:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMt5GKzW1Pw1vWZjSgq2yYuZKTWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg1RDc5OTQ0RTMxNTY3MkQ0MTNCOTM3QkZDMDQyRjdD MEFBQjk5MDAeFw0yNDAyMDYwNDE3NTlaFw0yNTAyMDQwNDIyNTlaMDMxMTAvBgNV BAMTKDNFQUU3MTVFMjBDNkNGMjQ5NzM2QjlEN0Y5RTc3QTQ0M0NGOEFGQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDngzvxdBQxz0J/89uPvxmU3Jil zj2NWH6SJcCaGmBCQuHPN4N76WUGV7P3QnTFuUl8DojDWt4c+Up0PN7KINNmaA4y OhlaBkWhvi+IvTfM5YGbK7PSwMkDwbmP+C8YU4rRhnKGyH6V4m2X/SPZYaElF1HE IzDCSzhdBZvhKwqmipYAknJ6jErdpl28uCtoK9mo+7b1tcvSHPVoDrAwXCFTfe08 mjNpxVJQoc4+En/FOBPwf+C5wdXpRGD0KdYKgnzATa8BJs8EY2Hnbjp6LC9Eah/g XUkp0SYDKi6MaHOj8+2AXMeVKdrlk9dU2L0W5fken4n9JpseUPsN6Xg21vIzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPq5xXiDGzySXNrnX+ed6RDz4r6AwHwYDVR0j BBgwFoAUWF15lE4xVnLUE7k3v8BC98CquZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzMyZjE5MS1lMzgwLTQwMTMtYmNlNS00MjE1YTQ5M2E3MWQvMC81ODVENzk5NDRF MzE1NjcyRDQxM0I5MzdCRkMwNDJGN0MwQUFCOTkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg1RDc5OTQ0RTMxNTY3MkQ0MTNCOTM3QkZDMDQyRjdDMEFB Qjk5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3MzJmMTkxLWUzODAtNDAxMy1i Y2U1LTQyMTVhNDkzYTcxZC8wLzMxMzAzMzJlMzEzMDMwMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2RVMA0GCSqG SIb3DQEBCwUAA4IBAQBC3WKaV/whqPFP3owWJsw/yaOAPUZbWEuzRdqOb7xAI0ZH nGqTYdRTDNYGmxWTztN7X2mo5yVfoXHCijbwPFLUleKmkeaamBqwfL+yx/lRn74L WvT9dA256l8Da+c6Qdyco6VCgXAIwqCZCG/BVWlpPCiJOX3mFEQx3MFHd3Vy/fPX 7Nga0p9cAGSOiPw+yxZnl/hDGjBJ+oQbHgJ0ZOolFA58RIz+RdgGJOpgGD0a/g/1 CcadnSHsU9WQdMHptVjv6CnNGF8b5r3SDa2cNkHAOK2n5eHeaQOgF53TO4zzPxOZ +czp9Z5MWZ35EuHDwYo5BsNnO7byayu/agT2ZQr0 -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org