$ rpki-client -vvf repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa File: 3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa (raw, json) Hash identifier: hsPXQKay+qedGG/jMzXptueav18vcMllJ1dIk7iOf1k= Subject key identifier: 23:02:CF:C8:33:88:C2:67:37:6B:EC:92:1A:2B:82:CF:C5:C9:76:00 Certificate issuer: /CN=D296B71263A794DB76A99329A0A6CD91F03F997C Certificate serial: 6BAEF504C122B6DC607856BBFFAF0FE33AEA94A4 Authority key identifier: D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa Signing time: Mon 01 Jul 2024 01:03:33 +0000 ROA not before: Mon 01 Jul 2024 00:58:33 +0000 ROA not after: Mon 30 Jun 2025 01:03:33 +0000 asID: 18351 IP address blocks: 103.231.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ae:f5:04:c1:22:b6:dc:60:78:56:bb:ff:af:0f:e3:3a:ea:94:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D296B71263A794DB76A99329A0A6CD91F03F997C Validity Not Before: Jul 1 00:58:33 2024 GMT Not After : Jun 30 01:03:33 2025 GMT Subject: CN=2302CFC83388C267376BEC921A2B82CFC5C97600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1a:48:48:c3:8b:d0:4c:94:70:f9:3e:7a:1f: e4:02:48:ac:94:2c:f8:d2:8c:74:ff:dd:c4:00:6a: bd:06:86:65:e7:5c:e7:f1:62:9a:da:1f:b9:95:37: 07:b5:22:30:04:34:b9:9f:c6:b3:56:bb:20:eb:88: 34:eb:a6:b2:be:65:70:06:97:14:44:16:4a:b6:fa: 13:2b:2a:3d:f0:e6:49:7b:4d:74:20:ed:15:6b:19: f5:c8:57:d2:7b:cc:c8:93:c5:57:e6:67:f7:78:13: bc:d2:0a:46:16:ca:ab:66:c3:c3:8c:69:45:e8:81: c9:7f:4d:68:b3:4d:5a:17:b7:77:5b:79:e6:a5:d5: 87:30:ac:83:5a:e1:75:63:a7:bb:67:8e:e3:6b:a6: 0e:63:0c:26:3f:ff:77:c6:5c:a8:63:21:8d:7f:69: ac:5b:72:7a:92:95:a5:a1:07:56:0d:e5:07:b5:7b: 50:c0:0b:1f:71:aa:b4:02:be:39:eb:31:4c:35:e9: 97:34:0b:fa:e6:bf:86:fb:d9:6b:28:e3:0b:a1:0e: 41:ff:60:54:92:29:ac:b5:94:38:45:ff:ed:a0:9c: bb:45:b0:be:ed:8e:18:c9:9c:e2:f0:7d:c8:4b:8a: a8:c2:54:4b:df:95:e9:7d:e0:60:76:ad:ad:8b:7c: fc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:02:CF:C8:33:88:C2:67:37:6B:EC:92:1A:2B:82:CF:C5:C9:76:00 X509v3 Authority Key Identifier: keyid:D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.108.0/22 Signature Algorithm: sha256WithRSAEncryption a2:73:65:48:bb:29:3f:f8:4b:4b:ff:13:95:7e:be:99:11:c9: e8:69:f1:19:ce:01:dc:ab:27:12:28:82:6d:81:fa:89:0d:7d: d8:d1:21:ca:3e:f5:3b:3f:5a:1c:98:6a:1c:24:f1:2f:54:2d: 34:c0:fe:92:65:13:8b:36:d3:81:ea:cd:45:19:9b:ee:c5:13: 56:4e:ac:15:bc:1c:6e:32:ca:83:53:86:7a:48:d3:b6:e6:47: 0c:0d:2e:2a:c3:f3:20:fd:a4:ed:b1:80:62:b5:82:33:d1:50: 54:c6:c6:ae:2e:88:a1:fb:18:26:04:49:de:45:f5:3c:29:e6: 78:4b:7a:33:4f:cd:48:df:93:bd:85:11:28:c1:fa:c5:5a:92: 35:14:f7:88:6a:62:87:44:9e:c4:23:bc:51:d7:7d:79:86:d3: a4:4f:12:56:e0:72:1d:61:c0:83:4f:82:bd:20:08:5f:60:de: ae:67:14:65:a2:be:4a:84:e6:99:8f:f3:0a:43:b6:f3:08:f3: 7a:6f:42:c6:82:42:18:e1:c9:b3:e6:36:af:6a:f6:af:c5:3f: 7a:f1:08:00:0b:35:43:e4:4b:bc:37:13:ee:6d:8c:41:51:84: 34:38:62:4d:1c:b0:3d:68:e3:47:fc:c6:60:f0:a0:c7:f7:bf: 08:c8:dd:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa671BMEittxgeFa7/68P4zrqlKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFG MDNGOTk3QzAeFw0yNDA3MDEwMDU4MzNaFw0yNTA2MzAwMTAzMzNaMDMxMTAvBgNV BAMTKDIzMDJDRkM4MzM4OEMyNjczNzZCRUM5MjFBMkI4MkNGQzVDOTc2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1GkhIw4vQTJRw+T56H+QCSKyU LPjSjHT/3cQAar0GhmXnXOfxYpraH7mVNwe1IjAENLmfxrNWuyDriDTrprK+ZXAG lxREFkq2+hMrKj3w5kl7TXQg7RVrGfXIV9J7zMiTxVfmZ/d4E7zSCkYWyqtmw8OM aUXogcl/TWizTVoXt3dbeeal1YcwrINa4XVjp7tnjuNrpg5jDCY//3fGXKhjIY1/ aaxbcnqSlaWhB1YN5Qe1e1DACx9xqrQCvjnrMUw16Zc0C/rmv4b72Wso4wuhDkH/ YFSSKay1lDhF/+2gnLtFsL7tjhjJnOLwfchLiqjCVEvflel94GB2ra2LfPy9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIwLPyDOIwmc3a+ySGiuCz8XJdgAwHwYDVR0j BBgwFoAU0pa3EmOnlNt2qZMpoKbNkfA/mXwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 M2Y3NWU5OC0xNGVmLTQ0NTctOTRmMy1lNWI3M2E5MjJmYzUvMC9EMjk2QjcxMjYz QTc5NERCNzZBOTkzMjlBMEE2Q0Q5MUYwM0Y5OTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5NkI3MTI2M0E3OTREQjc2QTk5MzI5QTBBNkNEOTFGMDNG OTk3Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzZjc1ZTk4LTE0ZWYtNDQ1Ny05 NGYzLWU1YjczYTkyMmZjNS8wLzMxMzAzMzJlMzIzMzMxMmUzMTMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM4MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+dsMA0GCSqG SIb3DQEBCwUAA4IBAQCic2VIuyk/+EtL/xOVfr6ZEcnoafEZzgHcqycSKIJtgfqJ DX3Y0SHKPvU7P1ocmGocJPEvVC00wP6SZROLNtOB6s1FGZvuxRNWTqwVvBxuMsqD U4Z6SNO25kcMDS4qw/Mg/aTtsYBitYIz0VBUxsauLoih+xgmBEneRfU8KeZ4S3oz T81I35O9hREowfrFWpI1FPeIamKHRJ7EI7xR1315htOkTxJW4HIdYcCDT4K9IAhf YN6uZxRlor5KhOaZj/MKQ7bzCPN6b0LGgkIY4cmz5javavavxT968QgACzVD5Eu8 NxPubYxBUYQ0OGJNHLA9aONH/MZg8KDH978IyN0Q -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org