$ rpki-client -vvf repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa File: 3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: weScu3kptXX2lvhy9YhuDOClixOL5WQQhMGI22yQS94= Subject key identifier: 39:0A:CE:A7:10:BE:D8:95:24:FF:D6:9A:F2:EE:EF:14:5F:9D:5A:10 Certificate issuer: /CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Certificate serial: 2C5794C0BED53F9F984A0600EDE71B811CB762AB Authority key identifier: A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:09 +0000 ROA not before: Mon 01 Jul 2024 00:58:09 +0000 ROA not after: Mon 30 Jun 2025 01:03:09 +0000 asID: 131745 IP address blocks: 103.30.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:57:94:c0:be:d5:3f:9f:98:4a:06:00:ed:e7:1b:81:1c:b7:62:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Validity Not Before: Jul 1 00:58:09 2024 GMT Not After : Jun 30 01:03:09 2025 GMT Subject: CN=390ACEA710BED89524FFD69AF2EEEF145F9D5A10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:70:77:3b:25:62:3c:7c:a5:ee:aa:7b:64:69: e6:da:65:a0:e3:f0:c6:7d:56:79:b2:e5:16:1b:be: 53:0a:1e:38:25:5c:5c:8a:2a:50:2b:b5:cb:bd:9c: 41:0e:3e:ca:85:ca:16:93:66:6f:e9:c2:96:15:c2: 15:8d:33:b2:a2:8f:6f:5c:8d:f5:1d:78:16:85:2c: f0:13:6b:bd:58:01:42:01:2e:12:b1:10:ce:03:a8: 41:1b:fe:fe:23:f8:11:9f:81:01:ba:77:47:54:2b: 34:4f:da:93:d3:a9:17:79:d5:5f:b9:b4:10:b9:c7: 6d:74:ae:3d:01:ff:28:df:7c:5f:8d:80:69:93:6a: 73:4e:2d:04:26:04:08:10:3a:7c:e0:96:9d:60:03: 7a:14:01:a6:38:00:ff:18:5b:6c:47:27:d2:a9:e8: 10:58:f3:01:f6:5f:ed:d9:9b:5d:4b:de:c4:49:08: c7:97:9e:65:bf:38:6e:17:5b:2a:58:37:5d:64:a3: 43:44:44:2f:21:38:1d:4b:81:18:b0:46:46:24:c4: 62:ab:2d:cb:7d:a9:88:ae:42:36:f1:f1:ab:d6:c5: 38:c4:2d:5f:61:c4:c4:b4:cf:4d:6a:2a:11:6a:53: a3:a8:4c:dd:d1:04:0d:7f:b1:01:cb:b1:6f:b3:e9: 40:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0A:CE:A7:10:BE:D8:95:24:FF:D6:9A:F2:EE:EF:14:5F:9D:5A:10 X509v3 Authority Key Identifier: keyid:A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3130332e33302e3234342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.244.0/22 Signature Algorithm: sha256WithRSAEncryption 60:f4:d8:27:12:22:be:5d:b8:95:30:20:3b:25:4a:a5:f8:ca: 69:d7:ee:24:1a:12:fe:8c:74:52:08:aa:ea:16:5e:4c:1f:02: a1:cd:86:0d:13:05:91:48:76:1b:70:1c:89:f0:9a:c4:87:9c: cd:b0:bf:ae:4b:86:16:3a:0a:77:35:d6:22:e4:33:3a:99:ae: a0:fa:55:a0:0f:49:f4:7d:23:e5:ee:de:39:7c:9c:2c:4f:66: 43:0a:12:e5:20:64:9c:0b:dd:73:eb:cd:c5:fb:9c:d2:2d:25: 7b:2f:51:8f:b7:97:4a:3c:6b:3b:e8:b0:c5:37:bc:ae:bd:52: 4e:f4:fb:ad:15:a3:91:79:3b:0e:ed:09:c5:81:f9:eb:c0:63: 9b:86:9f:fd:b6:cf:0d:2b:20:6e:96:09:2f:4d:9c:92:57:23: 90:93:e0:ae:ba:dc:59:bb:95:00:a6:2a:04:09:ff:8c:40:c0: a9:94:d8:4e:81:09:8b:0d:bc:8e:b8:8b:45:4a:c4:fc:e0:87: ea:ed:48:ab:b4:17:bb:b7:3a:a2:30:38:67:99:87:0d:db:da: a9:79:da:d5:bc:ab:e0:c5:08:ae:f2:16:24:1c:f8:82:25:9e: b9:e6:b8:7e:0d:f8:ea:30:41:7d:ee:ce:05:15:3d:b5:e7:c7: 03:da:00:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULFeUwL7VP5+YSgYA7ecbgRy3YqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1 QjBCRUI0QTAeFw0yNDA3MDEwMDU4MDlaFw0yNTA2MzAwMTAzMDlaMDMxMTAvBgNV BAMTKDM5MEFDRUE3MTBCRUQ4OTUyNEZGRDY5QUYyRUVFRjE0NUY5RDVBMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbcHc7JWI8fKXuqntkaebaZaDj 8MZ9Vnmy5RYbvlMKHjglXFyKKlArtcu9nEEOPsqFyhaTZm/pwpYVwhWNM7Kij29c jfUdeBaFLPATa71YAUIBLhKxEM4DqEEb/v4j+BGfgQG6d0dUKzRP2pPTqRd51V+5 tBC5x210rj0B/yjffF+NgGmTanNOLQQmBAgQOnzglp1gA3oUAaY4AP8YW2xHJ9Kp 6BBY8wH2X+3Zm11L3sRJCMeXnmW/OG4XWypYN11ko0NERC8hOB1LgRiwRkYkxGKr Lct9qYiuQjbx8avWxTjELV9hxMS0z01qKhFqU6OoTN3RBA1/sQHLsW+z6UCTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOQrOpxC+2JUk/9aa8u7vFF+dWhAwHwYDVR0j BBgwFoAUpm5veHt94uov8cGfMN/iIVsL60owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzhjNjIxZC0wNWJjLTRiY2QtOTY1Ny1jZGYzMzg2MGYyMWEvMC9BNjZFNkY3ODdC N0RFMkVBMkZGMUMxOUYzMERGRTIyMTVCMEJFQjRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1QjBC RUI0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMxMzAzMzJlMzMzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZx70MA0GCSqG SIb3DQEBCwUAA4IBAQBg9NgnEiK+XbiVMCA7JUql+Mpp1+4kGhL+jHRSCKrqFl5M HwKhzYYNEwWRSHYbcByJ8JrEh5zNsL+uS4YWOgp3NdYi5DM6ma6g+lWgD0n0fSPl 7t45fJwsT2ZDChLlIGScC91z683F+5zSLSV7L1GPt5dKPGs76LDFN7yuvVJO9Put FaOReTsO7QnFgfnrwGObhp/9ts8NKyBulgkvTZySVyOQk+CuutxZu5UApioECf+M QMCplNhOgQmLDbyOuItFSsT84Ifq7UirtBe7tzqiMDhnmYcN29qpedrVvKvgxQiu 8hYkHPiCJZ655rh+DfjqMEF97s4FFT2158cD2gAe -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:32 2024 by rpki-client on console-ams.rpki-client.org