$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa File: 3130332e31312e3133342e302f32332d3234203d3e203538333932.roa (raw, json) Hash identifier: yKj/LcaLHzBONx9eDhSrcYY44Dxzt/MgNKH5+9rrMKk= Subject key identifier: DD:3E:76:3A:48:C8:9A:89:4C:DA:69:8C:7C:D2:62:91:30:D2:DC:04 Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516 Certificate serial: 55920EF0DE9C745AED5181B2B26B864C854CAF69 Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa Signing time: Mon 01 Jul 2024 01:04:09 +0000 ROA not before: Mon 01 Jul 2024 00:59:09 +0000 ROA not after: Mon 30 Jun 2025 01:04:09 +0000 asID: 58392 IP address blocks: 103.11.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:92:0e:f0:de:9c:74:5a:ed:51:81:b2:b2:6b:86:4c:85:4c:af:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516 Validity Not Before: Jul 1 00:59:09 2024 GMT Not After : Jun 30 01:04:09 2025 GMT Subject: CN=DD3E763A48C89A894CDA698C7CD2629130D2DC04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:96:dc:23:ad:d9:c8:70:38:99:88:b5:65:be: 06:98:7b:0e:57:c7:4d:89:85:69:c2:de:b3:2c:29: 29:cd:2b:c9:e3:9f:6c:a0:35:e4:40:9b:8d:44:b9: d3:9b:be:bd:cd:17:e6:ba:87:a7:71:77:10:c4:7e: 91:2f:ea:c2:58:72:c5:9b:c5:a4:4a:f9:ea:10:b5: eb:e2:07:bd:c0:48:f5:17:05:df:0b:ac:82:28:0c: 24:bb:4f:4c:3b:2e:09:e3:be:bb:94:16:78:1c:d5: 1d:34:15:c2:f1:e9:48:cd:de:73:4c:cc:f0:10:03: 4c:31:ab:e0:2e:74:7a:5b:49:30:8b:83:f6:63:96: 17:46:10:9f:90:7f:5b:7a:37:a0:03:05:02:80:3a: 42:34:ef:7e:89:f2:f4:95:9e:ab:94:3b:09:75:16: 80:c7:3d:4f:c0:5b:23:59:0b:03:dd:fb:0f:61:d5: 96:dc:30:5a:c3:b8:73:9f:91:d8:c9:73:46:6b:c4: b3:5c:97:52:11:b6:6b:e6:5b:c4:1f:d6:ef:65:60: 61:7a:89:ba:2a:c3:03:5e:f5:d8:c2:ca:81:f0:bd: d2:52:40:c7:d6:83:60:25:72:21:ed:81:4a:c9:60: c4:b5:58:96:05:1c:3e:37:f6:fc:46:b5:98:32:e4: 33:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3E:76:3A:48:C8:9A:89:4C:DA:69:8C:7C:D2:62:91:30:D2:DC:04 X509v3 Authority Key Identifier: keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e31312e3133342e302f32332d3234203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.134.0/23 Signature Algorithm: sha256WithRSAEncryption b7:83:d7:ad:6d:b0:42:6e:55:c6:ff:38:2e:7d:fd:3f:bb:98: ee:f4:93:21:28:94:ac:4f:c9:75:20:a6:cb:e2:ee:db:9e:7e: f0:9b:1f:59:93:03:58:e7:f8:dc:7e:74:0b:b4:69:81:24:ee: 09:6c:2e:d6:79:0a:cf:54:3b:5d:b1:33:14:cc:66:35:d9:a3: 07:17:a3:cb:73:85:86:7d:10:e9:38:36:e6:f4:c1:a4:3d:7d: aa:fc:12:39:dc:8d:3c:e1:72:29:78:ea:07:0c:82:20:a8:72: ca:68:bf:0c:50:7d:ed:69:b4:f8:be:eb:db:21:b4:58:40:0c: fe:61:31:9a:5d:b9:5f:d0:71:b2:ca:b5:52:a7:b0:ce:71:b6: d3:9a:2f:b9:7f:84:13:b5:8d:b5:7c:7c:77:d1:6c:e5:69:72: c2:ac:c2:c8:ce:c2:63:f8:b1:f9:43:85:59:27:80:d2:3b:2c: bc:b4:eb:49:de:ac:71:51:03:e3:a8:67:7b:ea:b6:9f:5f:68: aa:c7:13:36:38:26:0d:58:c5:78:e9:16:63:d3:13:86:7d:07: 7f:73:cd:ae:4f:77:9b:1e:0e:b1:4f:53:f5:f0:01:05:56:21: 33:1d:86:6c:19:80:e0:5f:3e:9e:81:b4:a4:a7:45:de:63:85: f6:20:9b:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVZIO8N6cdFrtUYGysmuGTIVMr2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZF RDQ1MjUxNjAeFw0yNDA3MDEwMDU5MDlaFw0yNTA2MzAwMTA0MDlaMDMxMTAvBgNV BAMTKEREM0U3NjNBNDhDODlBODk0Q0RBNjk4QzdDRDI2MjkxMzBEMkRDMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPltwjrdnIcDiZiLVlvgaYew5X x02JhWnC3rMsKSnNK8njn2ygNeRAm41EudObvr3NF+a6h6dxdxDEfpEv6sJYcsWb xaRK+eoQteviB73ASPUXBd8LrIIoDCS7T0w7LgnjvruUFngc1R00FcLx6UjN3nNM zPAQA0wxq+AudHpbSTCLg/ZjlhdGEJ+Qf1t6N6ADBQKAOkI0736J8vSVnquUOwl1 FoDHPU/AWyNZCwPd+w9h1ZbcMFrDuHOfkdjJc0ZrxLNcl1IRtmvmW8Qf1u9lYGF6 iboqwwNe9djCyoHwvdJSQMfWg2AlciHtgUrJYMS1WJYFHD439vxGtZgy5DPlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3T52OkjImolM2mmMfNJikTDS3AQwHwYDVR0j BBgwFoAUr1BMTm44MfdW474HRpSD3+1FJRYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmZiNzc2Ny0zZGU5LTQ4MzMtYjRlNy1iMWI2MmVlM2NkOTkvMC9BRjUwNEM0RTZF MzgzMUY3NTZFM0JFMDc0Njk0ODNERkVENDUyNTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZFRDQ1 MjUxNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMxMzAzMzJlMzEzMTJlMzEzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcLhjANBgkqhkiG 9w0BAQsFAAOCAQEAt4PXrW2wQm5Vxv84Ln39P7uY7vSTISiUrE/JdSCmy+Lu255+ 8JsfWZMDWOf43H50C7RpgSTuCWwu1nkKz1Q7XbEzFMxmNdmjBxejy3OFhn0Q6Tg2 5vTBpD19qvwSOdyNPOFyKXjqBwyCIKhyymi/DFB97Wm0+L7r2yG0WEAM/mExml25 X9Bxssq1UqewznG205ovuX+EE7WNtXx8d9Fs5WlywqzCyM7CY/ix+UOFWSeA0jss vLTrSd6scVED46hne+q2n19oqscTNjgmDVjFeOkWY9MThn0Hf3PNrk93mx4OsU9T 9fABBVYhMx2GbBmA4F8+noG0pKdF3mOF9iCboA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org