$ rpki-client -vvf repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa File: 3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa (raw, json) Hash identifier: 39jefImKgJU/LxRCCoDfLN96ifsbffQHndD7ffWdf4g= Subject key identifier: EE:32:E4:92:D9:61:53:5B:45:9A:DA:C8:88:B3:EC:FC:F7:6B:B9:30 Certificate issuer: /CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Certificate serial: 18D9EF1C13D6476F5985E0042AE77D649989EE8C Authority key identifier: CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa Signing time: Mon 01 Jul 2024 01:04:27 +0000 ROA not before: Mon 01 Jul 2024 00:59:27 +0000 ROA not after: Mon 30 Jun 2025 01:04:27 +0000 asID: 58821 IP address blocks: 103.242.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d9:ef:1c:13:d6:47:6f:59:85:e0:04:2a:e7:7d:64:99:89:ee:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Validity Not Before: Jul 1 00:59:27 2024 GMT Not After : Jun 30 01:04:27 2025 GMT Subject: CN=EE32E492D961535B459ADAC888B3ECFCF76BB930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:f6:11:d0:6c:73:03:10:d9:e8:04:a2:a8: 7a:f9:e5:29:fc:eb:c9:30:82:0c:c1:b7:4c:e6:75: d9:e4:d1:00:10:2a:57:b9:b8:ee:62:a5:f5:d6:87: db:ce:5b:dd:58:8a:58:ac:e0:e7:22:ca:e3:f7:e0: 67:73:c1:82:8a:7e:21:3b:33:17:f4:46:82:9c:8d: e2:5e:4e:a6:49:8d:7d:0f:1d:80:5f:3e:46:c3:49: e2:53:63:de:af:23:e2:90:93:1a:5a:cb:f6:b3:ee: 6c:b7:cb:ca:57:db:3a:78:e5:98:13:9d:22:46:8d: f2:a6:c5:5f:62:80:99:9b:d2:d0:bf:a7:e4:60:03: 4f:9f:c6:d2:c3:8c:c9:fc:30:69:31:a8:4a:74:b6: 0e:9d:86:32:31:c2:26:d6:5b:96:42:b8:45:04:18: b4:63:72:06:03:e0:29:c5:5a:3d:77:94:a2:d8:15: bc:0a:90:46:8a:b4:2d:cc:e3:83:f6:2d:fd:f5:f8: e9:bc:a8:06:33:c4:5a:b4:57:54:16:f1:df:44:2f: 20:2c:4a:3e:d9:3b:a3:7d:ca:4e:f2:6f:3c:9c:e5: 27:54:3b:4e:3d:b2:a8:ed:37:d6:3e:0b:fc:c9:f2: d2:5b:4f:b7:7c:00:e3:4c:e4:65:40:3f:74:fe:26: c2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:32:E4:92:D9:61:53:5B:45:9A:DA:C8:88:B3:EC:FC:F7:6B:B9:30 X509v3 Authority Key Identifier: keyid:CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/3130332e3234322e3130342e302f32322d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.104.0/22 Signature Algorithm: sha256WithRSAEncryption 39:6b:b0:d4:7d:31:a9:b0:2e:99:17:6b:e8:cb:39:9c:96:4b: 9d:22:f6:e9:22:c7:30:1a:c8:a1:1d:fb:4c:e6:90:a7:5c:e3: 0b:fc:87:8e:64:55:b3:26:f8:bb:6d:b3:bd:bc:55:33:a6:b5: 36:18:30:1d:bb:50:3c:47:70:6a:ad:68:34:36:7e:c2:5e:2b: e4:89:d9:c6:e4:3d:b6:3b:e6:c3:48:8e:03:8d:54:78:00:55: eb:32:5d:22:c6:ec:e4:0b:c7:c4:b0:66:da:0d:dc:c3:11:a8: 2e:48:d0:67:c0:3b:ee:c0:9e:fc:60:43:a3:38:ee:51:70:f7: 26:d0:14:19:98:34:52:25:c7:4e:88:b8:2b:e7:a2:f5:d7:10: 6a:83:8e:5d:84:80:e3:61:9f:1c:02:6d:84:29:91:80:0c:73: c5:69:ab:d2:a6:fb:55:e9:ab:c2:6c:a2:e5:2b:4a:cf:a7:89: 7b:1b:4b:16:67:38:8e:9c:d0:f9:f4:b1:53:e6:64:e9:e9:95: b6:72:84:47:cc:fb:0b:46:f7:db:9b:f3:f4:02:03:cb:58:dd: 18:b2:10:7e:04:ef:f7:e8:64:41:99:81:a7:cb:f3:7d:3f:a5: 33:9a:5e:5d:aa:33:7d:8f:85:52:a6:6b:44:95:6d:0e:87:1b: 22:71:2c:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGNnvHBPWR29ZheAEKud9ZJmJ7owwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0 OEUxNkVEQjAeFw0yNDA3MDEwMDU5MjdaFw0yNTA2MzAwMTA0MjdaMDMxMTAvBgNV BAMTKEVFMzJFNDkyRDk2MTUzNUI0NTlBREFDODg4QjNFQ0ZDRjc2QkI5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD4PYR0GxzAxDZ6ASiqHr55Sn8 68kwggzBt0zmddnk0QAQKle5uO5ipfXWh9vOW91Yilis4OciyuP34GdzwYKKfiE7 Mxf0RoKcjeJeTqZJjX0PHYBfPkbDSeJTY96vI+KQkxpay/az7my3y8pX2zp45ZgT nSJGjfKmxV9igJmb0tC/p+RgA0+fxtLDjMn8MGkxqEp0tg6dhjIxwibWW5ZCuEUE GLRjcgYD4CnFWj13lKLYFbwKkEaKtC3M44P2Lf31+Om8qAYzxFq0V1QW8d9ELyAs Sj7ZO6N9yk7ybzyc5SdUO049sqjtN9Y+C/zJ8tJbT7d8AONM5GVAP3T+JsLzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7jLkktlhU1tFmtrIiLPs/PdruTAwHwYDVR0j BBgwFoAUzEMFqgtoSN/Qdmz+e0LStEjhbtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTQ1YzllYi0zYmI2LTQyMDMtOGM4Ni1mMDhiNjRkYTNlYTkvMC9DQzQzMDVBQTBC Njg0OERGRDA3NjZDRkU3QjQyRDJCNDQ4RTE2RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0M0MzA1QUEwQjY4NDhERkQwNzY2Q0ZFN0I0MkQyQjQ0OEUx NkVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlNDVjOWViLTNiYjYtNDIwMy04 Yzg2LWYwOGI2NGRhM2VhOS8wLzMxMzAzMzJlMzIzNDMyMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/JoMA0GCSqG SIb3DQEBCwUAA4IBAQA5a7DUfTGpsC6ZF2voyzmclkudIvbpIscwGsihHftM5pCn XOML/IeOZFWzJvi7bbO9vFUzprU2GDAdu1A8R3BqrWg0Nn7CXivkidnG5D22O+bD SI4DjVR4AFXrMl0ixuzkC8fEsGbaDdzDEaguSNBnwDvuwJ78YEOjOO5RcPcm0BQZ mDRSJcdOiLgr56L11xBqg45dhIDjYZ8cAm2EKZGADHPFaavSpvtV6avCbKLlK0rP p4l7G0sWZziOnND59LFT5mTp6ZW2coRHzPsLRvfbm/P0AgPLWN0YshB+BO/36GRB mYGny/N9P6Uzml5dqjN9j4VSpmtElW0OhxsicSwc -----END CERTIFICATE-----Generated at Wed Nov 20 14:21:27 2024 by rpki-client on console-fra.rpki-client.org