$ rpki-client -vvf repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313331373537.roa File: 3130332e33312e3130392e302f32342d3234203d3e20313331373537.roa (raw, json) Hash identifier: 7TBYQ19SwNmQgqYu6mtmjXRZRLfPcbqrLvcZaMKtpzc= Subject key identifier: 47:71:8D:22:3C:97:58:97:76:69:F5:91:EB:91:EA:6B:0C:52:2B:F8 Certificate issuer: /CN=FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72 Certificate serial: 7779F05A01EA1A5195F390C2897D20B2FA1A15EA Authority key identifier: FC:9D:A1:A7:62:5B:27:FD:B4:66:B1:D8:A6:90:37:7E:4C:7B:CE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313331373537.roa Signing time: Mon 01 Jul 2024 01:04:17 +0000 ROA not before: Mon 01 Jul 2024 00:59:17 +0000 ROA not after: Mon 30 Jun 2025 01:04:17 +0000 asID: 131757 IP address blocks: 103.31.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.crl rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:79:f0:5a:01:ea:1a:51:95:f3:90:c2:89:7d:20:b2:fa:1a:15:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72 Validity Not Before: Jul 1 00:59:17 2024 GMT Not After : Jun 30 01:04:17 2025 GMT Subject: CN=47718D223C9758977669F591EB91EA6B0C522BF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f0:b8:a2:98:cc:c0:1d:3c:ed:6c:f8:e5:a8: 22:c1:dd:6a:f5:72:d3:f2:d0:d5:8b:0d:d4:9f:26: 47:0c:97:ba:b6:2f:05:fa:5d:e7:85:ab:f2:db:06: a0:dc:56:14:96:81:77:78:8a:bf:f2:fa:9b:64:db: 30:80:69:a6:e9:85:fc:cd:2b:d6:4e:28:78:52:13: f0:35:95:82:88:03:a0:67:de:00:b9:ad:64:67:f6: de:ac:0d:d2:68:4c:cd:ba:33:65:6f:cb:69:5e:b2: be:3d:67:55:34:a2:f0:a8:2d:09:65:b6:58:23:6f: 9d:57:ff:f1:6f:53:06:a9:a4:54:a1:5c:42:0a:1c: be:8a:e9:55:2a:ad:c5:2d:fa:36:8f:fa:7f:5b:46: 8d:73:29:bf:00:eb:0e:cd:20:09:45:9c:cf:90:ed: 2c:eb:cc:8e:ff:8c:95:ef:c0:d7:8e:c4:41:3e:aa: 63:1d:bf:08:31:56:d4:b5:78:62:1d:7c:f6:af:08: 86:5a:82:8d:3a:25:01:65:6e:42:23:54:70:fe:1a: 90:ff:06:01:0d:f7:53:fb:7a:30:c1:5c:ad:fc:a9: c9:e8:09:f5:86:0f:f1:69:a7:d7:9b:23:43:d6:12: 40:2c:63:65:74:ac:84:61:4f:5c:68:6f:ef:83:3b: 81:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:71:8D:22:3C:97:58:97:76:69:F5:91:EB:91:EA:6B:0C:52:2B:F8 X509v3 Authority Key Identifier: keyid:FC:9D:A1:A7:62:5B:27:FD:B4:66:B1:D8:A6:90:37:7E:4C:7B:CE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/3130332e33312e3130392e302f32342d3234203d3e20313331373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.109.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:1e:d0:61:7b:b1:de:e6:71:2a:9a:b3:c1:fd:11:a8:b0:71: 97:95:7c:a0:da:8e:0a:88:83:f1:a1:61:b8:62:70:51:4a:11: 85:d1:23:fe:c1:f5:aa:71:4d:f5:a8:5c:15:56:da:98:09:3c: 37:9c:a0:56:2c:24:15:39:7f:9b:d9:52:78:6c:e2:d6:83:43: 7f:f5:06:71:8c:db:ec:c7:ee:d5:b8:15:da:39:12:b2:73:cd: b8:24:cd:5c:51:44:b8:d3:af:d2:63:bf:0c:27:cb:9a:99:c8: d4:0e:1d:52:0d:9e:0a:bc:0f:f1:ac:6d:eb:ee:fd:a6:31:74: 5c:9d:db:74:3e:86:66:5e:4e:0b:15:70:9c:5f:90:f7:aa:09: 20:a9:d1:e1:24:44:35:08:72:88:2f:9c:b0:64:45:95:56:34: cc:d8:6e:54:24:3d:b6:1b:39:b6:a5:7e:71:23:ca:57:42:4d: fb:9b:0a:8f:56:35:5d:58:cb:f0:66:5a:6b:8a:ea:f0:84:9d: fb:f0:00:97:ed:fc:0e:79:ff:20:81:a7:28:2b:70:7c:e5:b9: c0:6b:22:76:a7:23:17:ef:46:79:d1:a3:b1:9c:c5:2e:96:65: ef:f5:4e:f9:19:0d:b3:a5:14:80:bf:2c:1c:44:ba:de:cb:6d: ef:00:c3:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd3nwWgHqGlGV85DCiX0gsvoaFeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM5REExQTc2MjVCMjdGREI0NjZCMUQ4QTY5MDM3N0U0 QzdCQ0U3MjAeFw0yNDA3MDEwMDU5MTdaFw0yNTA2MzAwMTA0MTdaMDMxMTAvBgNV BAMTKDQ3NzE4RDIyM0M5NzU4OTc3NjY5RjU5MUVCOTFFQTZCMEM1MjJCRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB8LiimMzAHTztbPjlqCLB3Wr1 ctPy0NWLDdSfJkcMl7q2LwX6XeeFq/LbBqDcVhSWgXd4ir/y+ptk2zCAaabphfzN K9ZOKHhSE/A1lYKIA6Bn3gC5rWRn9t6sDdJoTM26M2Vvy2lesr49Z1U0ovCoLQll tlgjb51X//FvUwappFShXEIKHL6K6VUqrcUt+jaP+n9bRo1zKb8A6w7NIAlFnM+Q 7SzrzI7/jJXvwNeOxEE+qmMdvwgxVtS1eGIdfPavCIZago06JQFlbkIjVHD+GpD/ BgEN91P7ejDBXK38qcnoCfWGD/Fpp9ebI0PWEkAsY2V0rIRhT1xob++DO4GRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR3GNIjyXWJd2afWR65HqawxSK/gwHwYDVR0j BBgwFoAU/J2hp2JbJ/20ZrHYppA3fkx7znIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjZhYTMxYS1kZDBkLTRjMTAtYjVkZC1iMWE4M2ZhNTc3NjMvMC9GQzlEQTFBNzYy NUIyN0ZEQjQ2NkIxRDhBNjkwMzc3RTRDN0JDRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM5REExQTc2MjVCMjdGREI0NjZCMUQ4QTY5MDM3N0U0QzdC Q0U3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNmFhMzFhLWRkMGQtNGMxMC1i NWRkLWIxYTgzZmE1Nzc2My8wLzMxMzAzMzJlMzMzMTJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx9tMA0GCSqG SIb3DQEBCwUAA4IBAQAcHtBhe7He5nEqmrPB/RGosHGXlXyg2o4KiIPxoWG4YnBR ShGF0SP+wfWqcU31qFwVVtqYCTw3nKBWLCQVOX+b2VJ4bOLWg0N/9QZxjNvsx+7V uBXaORKyc824JM1cUUS406/SY78MJ8uamcjUDh1SDZ4KvA/xrG3r7v2mMXRcndt0 PoZmXk4LFXCcX5D3qgkgqdHhJEQ1CHKIL5ywZEWVVjTM2G5UJD22Gzm2pX5xI8pX Qk37mwqPVjVdWMvwZlpriurwhJ378ACX7fwOef8ggacoK3B85bnAayJ2pyMX70Z5 0aOxnMUulmXv9U75GQ2zpRSAvywcRLrey23vAMM4 -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org