$ rpki-client -vvf repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa File: 3130332e36362e33362e302f32342d3234203d3e20313530323233.roa (raw, json) Hash identifier: 92CiTC3Van4+3+BldVCHuJ3vdr0S/LlPDMeB7hF5ajE= Subject key identifier: 21:34:09:2C:E6:79:3C:7A:17:7B:77:D5:5B:F6:61:95:33:66:F4:08 Certificate issuer: /CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771 Certificate serial: 111A5C145D6B880542D8856E492CCDD527AC493E Authority key identifier: E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa Signing time: Thu 17 Oct 2024 07:00:01 +0000 ROA not before: Thu 17 Oct 2024 06:55:01 +0000 ROA not after: Thu 16 Oct 2025 07:00:01 +0000 asID: 150223 IP address blocks: 103.66.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.crl rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:1a:5c:14:5d:6b:88:05:42:d8:85:6e:49:2c:cd:d5:27:ac:49:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771 Validity Not Before: Oct 17 06:55:01 2024 GMT Not After : Oct 16 07:00:01 2025 GMT Subject: CN=2134092CE6793C7A177B77D55BF661953366F408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:55:de:78:c0:8e:17:a2:f6:7c:f8:8d:b8: 6e:30:49:be:23:4b:86:6a:da:e2:5e:8b:be:2f:fc: d0:99:f7:04:4b:85:68:b5:36:68:e6:28:d7:82:38: b3:4c:e4:6c:e1:ca:6d:76:2e:7a:13:85:41:72:af: aa:09:e9:e4:5e:2f:f2:38:3b:be:b4:79:ac:a4:03: da:af:df:40:53:47:2d:fc:4e:de:2e:7f:b2:02:1e: 11:a4:8d:b4:de:08:62:ac:ce:bd:33:64:85:27:f9: 61:42:86:09:22:ad:65:aa:be:b0:b5:01:6c:cf:60: 7f:b8:a3:86:e8:d8:b3:d8:a9:63:0e:bc:7b:c2:92: 50:16:7c:b9:b3:35:9c:21:67:db:44:18:d5:95:78: 6a:bd:87:75:29:44:70:1f:80:df:42:11:9d:72:77: 47:92:78:44:79:6f:d7:51:b0:64:6d:37:38:8b:4e: 7f:69:e9:aa:c5:3b:84:09:80:d7:b7:86:f7:4a:8a: 68:9a:c6:8d:28:8b:36:f9:14:54:8b:8e:33:fb:a2: 4f:ae:6a:67:72:69:ec:b8:23:61:0a:51:1a:2e:2d: 75:eb:28:fb:9d:18:38:b2:77:6e:4e:d8:a0:be:1c: 72:8e:fe:00:6d:c2:d5:e3:01:10:e2:2b:2a:52:81: 54:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:34:09:2C:E6:79:3C:7A:17:7B:77:D5:5B:F6:61:95:33:66:F4:08 X509v3 Authority Key Identifier: keyid:E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.36.0/24 Signature Algorithm: sha256WithRSAEncryption 97:90:5a:d1:21:95:2a:22:08:ce:88:a0:38:89:8c:d9:cc:92: 76:95:cb:8f:a2:e2:6f:eb:d9:6c:71:19:29:41:e6:35:21:e4: a2:75:f4:7f:99:89:c5:42:4a:bc:98:cb:70:9a:76:a2:77:36: f9:19:f0:57:e2:0a:24:08:16:3c:8e:84:90:2d:dc:e0:16:f6: dd:3a:5b:19:8e:98:ee:c4:88:8d:da:3a:8f:8e:24:6c:30:86: 32:15:6f:a8:d1:cb:c1:60:41:2a:e8:b5:e2:31:64:29:05:c1: 8e:ab:c2:3e:93:53:ef:21:46:3b:34:28:dd:76:50:e5:81:9a: b4:39:b5:a3:b6:9f:6d:c8:62:b8:10:48:2e:6d:93:3d:de:90: 33:1b:91:bd:21:a3:04:d6:50:c1:af:aa:70:7d:8a:35:9f:6c: 41:7e:f7:2c:53:7e:c3:e3:74:fb:33:44:a4:5c:c1:5f:86:81: d9:16:ab:1f:a8:b1:d2:c7:4a:75:f6:f7:cf:d2:37:38:3d:3c: 8f:c5:54:2d:1a:bc:83:97:f9:e1:20:22:14:66:5e:63:be:ec: 4c:68:7b:61:3a:49:9e:ea:57:d4:40:f2:27:35:13:93:e2:09: e4:d4:c1:28:d9:74:f7:72:9b:9a:12:39:58:b9:e0:cb:23:bb: 66:22:05:71 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUERpcFF1riAVC2IVuSSzN1SesST4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDNTE3OEJEQkJERUY3QjdERDQxQkFGNThFQjNEMjVC MjEzMjc3MTAeFw0yNDEwMTcwNjU1MDFaFw0yNTEwMTYwNzAwMDFaMDMxMTAvBgNV BAMTKDIxMzQwOTJDRTY3OTNDN0ExNzdCNzdENTVCRjY2MTk1MzM2NkY0MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRJVXeeMCOF6L2fPiNuG4wSb4j S4Zq2uJei74v/NCZ9wRLhWi1NmjmKNeCOLNM5Gzhym12LnoThUFyr6oJ6eReL/I4 O760eaykA9qv30BTRy38Tt4uf7ICHhGkjbTeCGKszr0zZIUn+WFChgkirWWqvrC1 AWzPYH+4o4bo2LPYqWMOvHvCklAWfLmzNZwhZ9tEGNWVeGq9h3UpRHAfgN9CEZ1y d0eSeER5b9dRsGRtNziLTn9p6arFO4QJgNe3hvdKimiaxo0oizb5FFSLjjP7ok+u amdyaey4I2EKURouLXXrKPudGDiyd25O2KC+HHKO/gBtwtXjARDiKypSgVSrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUITQJLOZ5PHoXe3fVW/ZhlTNm9AgwHwYDVR0j BBgwFoAU5MUXi9u973t91BuvWOs9JbITJ3EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmRiZDc4NS02YmNhLTQ5M2ItOGE2NS0zYjUyNzcwMDdmZWQvMC9FNEM1MTc4QkRC QkRFRjdCN0RENDFCQUY1OEVCM0QyNUIyMTMyNzcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDNTE3OEJEQkJERUY3QjdERDQxQkFGNThFQjNEMjVCMjEz Mjc3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyZGJkNzg1LTZiY2EtNDkzYi04 YTY1LTNiNTI3NzAwN2ZlZC8wLzMxMzAzMzJlMzYzNjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCJDANBgkqhkiG 9w0BAQsFAAOCAQEAl5Ba0SGVKiIIzoigOImM2cySdpXLj6Lib+vZbHEZKUHmNSHk onX0f5mJxUJKvJjLcJp2onc2+RnwV+IKJAgWPI6EkC3c4Bb23TpbGY6Y7sSIjdo6 j44kbDCGMhVvqNHLwWBBKui14jFkKQXBjqvCPpNT7yFGOzQo3XZQ5YGatDm1o7af bchiuBBILm2TPd6QMxuRvSGjBNZQwa+qcH2KNZ9sQX73LFN+w+N0+zNEpFzBX4aB 2RarH6ix0sdKdfb3z9I3OD08j8VULRq8g5f54SAiFGZeY77sTGh7YTpJnupX1EDy JzUTk+IJ5NTBKNl093KbmhI5WLngyyO7ZiIFcQ== -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org