$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa File: 3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa (raw, json) Hash identifier: x48RZie0/oYbGzj1kIT+aUkxT6LfFYhJDQ9pQpC6TKQ= Subject key identifier: 9C:B3:B2:A6:2F:A6:91:80:2C:DD:00:08:EE:91:1A:E1:16:43:54:7C Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Certificate serial: 49B966206B568B61D0894A77464E94837AF59594 Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa Signing time: Mon 01 Jul 2024 01:05:51 +0000 ROA not before: Mon 01 Jul 2024 01:00:51 +0000 ROA not after: Mon 30 Jun 2025 01:05:51 +0000 asID: 135472 IP address blocks: 103.71.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:b9:66:20:6b:56:8b:61:d0:89:4a:77:46:4e:94:83:7a:f5:95:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Validity Not Before: Jul 1 01:00:51 2024 GMT Not After : Jun 30 01:05:51 2025 GMT Subject: CN=9CB3B2A62FA691802CDD0008EE911AE11643547C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9b:ad:f0:20:7e:d1:b9:36:fe:85:a8:34:15: 87:43:47:3f:4d:71:59:fc:a4:3c:57:13:06:5f:16: 65:54:6f:8b:3c:0c:d9:bf:1f:48:52:08:7d:9a:59: 0c:3b:95:80:e7:b5:d6:72:68:4b:79:f1:8a:a1:c5: 11:48:20:dd:e1:32:12:c8:0b:af:a8:1d:7c:5b:72: 3e:36:4c:99:d3:7a:c2:9c:ce:6c:c9:f0:94:6a:a7: 98:fd:7a:5f:60:0d:8c:01:97:5d:b0:e0:d7:97:99: 4b:54:61:5f:26:2f:2b:48:5e:a1:52:de:a2:54:ad: ef:4c:80:f5:07:01:16:87:23:f1:bd:0e:ce:ae:7f: ef:0a:48:73:a9:1d:b1:41:77:47:fd:56:07:24:98: 7d:03:a0:eb:0f:3f:1a:4a:2f:ee:7d:6f:50:83:95: 73:fa:44:22:ef:44:ab:8b:96:3f:00:3a:7f:17:b4: 03:58:4c:0f:64:c3:8b:43:a9:f6:0a:d6:97:5d:91: 58:15:70:05:d0:b0:5a:45:d9:52:5b:e1:4d:91:14: 3e:cf:6d:2d:67:b3:f0:63:d6:9f:8d:d2:68:9b:a9: aa:e0:58:55:cd:99:26:e7:ce:da:57:96:cc:64:90: af:f8:8a:db:6f:97:b6:33:ed:84:db:f3:40:30:18: 3d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B3:B2:A6:2F:A6:91:80:2C:DD:00:08:EE:91:1A:E1:16:43:54:7C X509v3 Authority Key Identifier: keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32342d3234203d3e20313335343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.190.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:e9:2f:db:c8:52:d5:c7:11:64:92:66:f5:d7:76:bf:39:5f: ad:64:bf:61:ee:36:66:b8:6a:7e:07:b5:3b:08:f1:84:d3:1c: e9:63:ea:31:29:7e:31:fb:66:13:ad:d8:9c:88:89:8c:3f:52: 92:2b:0c:2e:0e:5e:3c:bb:84:6c:a7:9b:c6:7a:f2:91:3d:9a: 28:c7:4d:ec:62:a4:b6:0e:ab:e6:b8:82:f9:66:dc:5c:19:e9: 8c:08:bc:94:b8:0c:af:58:3f:ca:e9:7f:d2:13:41:88:c1:21: 92:56:eb:1f:b7:5a:16:08:90:c6:4d:c7:a2:c1:26:05:4d:7b: 96:94:38:b8:18:9f:5c:6d:41:e3:eb:d9:08:2b:bd:5e:02:c3: ee:12:ca:2b:48:74:9f:f3:5a:32:30:dc:68:ce:35:c5:f4:20: 94:70:cc:bb:83:60:29:e3:a1:cd:61:ad:c9:2a:b2:18:27:09: 32:3a:b5:9e:6b:32:55:81:51:b5:f7:84:b2:62:52:cf:f4:e7: 1e:28:9a:b2:c5:05:7a:72:d8:49:6e:da:a9:51:c2:da:a5:ca: 47:c8:fb:b0:4c:a2:f4:dc:26:43:5c:90:ff:93:49:cd:65:48: 10:c5:85:96:69:ed:ec:d8:98:d7:ca:a5:5c:a7:be:f6:9e:06: 9f:00:11:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSblmIGtWi2HQiUp3Rk6Ug3r1lZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5 OUZCMTg1NDAeFw0yNDA3MDEwMTAwNTFaFw0yNTA2MzAwMTA1NTFaMDMxMTAvBgNV BAMTKDlDQjNCMkE2MkZBNjkxODAyQ0REMDAwOEVFOTExQUUxMTY0MzU0N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2m63wIH7RuTb+hag0FYdDRz9N cVn8pDxXEwZfFmVUb4s8DNm/H0hSCH2aWQw7lYDntdZyaEt58YqhxRFIIN3hMhLI C6+oHXxbcj42TJnTesKczmzJ8JRqp5j9el9gDYwBl12w4NeXmUtUYV8mLytIXqFS 3qJUre9MgPUHARaHI/G9Ds6uf+8KSHOpHbFBd0f9VgckmH0DoOsPPxpKL+59b1CD lXP6RCLvRKuLlj8AOn8XtANYTA9kw4tDqfYK1pddkVgVcAXQsFpF2VJb4U2RFD7P bS1ns/Bj1p+N0mibqargWFXNmSbnztpXlsxkkK/4ittvl7Yz7YTb80AwGD33AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnLOypi+mkYAs3QAI7pEa4RZDVHwwHwYDVR0j BBgwFoAUWbGd0dZGeT9fF9icQqwvY5n7GFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjA0ODA2NC04N2RlLTRkZTctYjBiZC0xMmZhMGRlYjhlMzIvMC81OUIxOUREMUQ2 NDY3OTNGNUYxN0Q4OUM0MkFDMkY2Mzk5RkIxODU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5OUZC MTg1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMDQ4MDY0LTg3ZGUtNGRlNy1i MGJkLTEyZmEwZGViOGUzMi8wLzMxMzAzMzJlMzczMTJlMzEzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0e+MA0GCSqG SIb3DQEBCwUAA4IBAQCK6S/byFLVxxFkkmb113a/OV+tZL9h7jZmuGp+B7U7CPGE 0xzpY+oxKX4x+2YTrdiciImMP1KSKwwuDl48u4Rsp5vGevKRPZoox03sYqS2Dqvm uIL5ZtxcGemMCLyUuAyvWD/K6X/SE0GIwSGSVusft1oWCJDGTceiwSYFTXuWlDi4 GJ9cbUHj69kIK71eAsPuEsorSHSf81oyMNxozjXF9CCUcMy7g2Ap46HNYa3JKrIY JwkyOrWeazJVgVG194SyYlLP9OceKJqyxQV6cthJbtqpUcLapcpHyPuwTKL03CZD XJD/k0nNZUgQxYWWae3s2JjXyqVcp772ngafABGB -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org