$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33312e302f32342d3234203d3e203538353532.roa File: 3130332e31312e33312e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: x1KO74qIsOnp1lDtTJnZS1H1E7UlEzvxd/9S+GEt3QM= Subject key identifier: 38:DE:2F:91:91:1E:3A:F4:FD:E4:30:99:5D:92:85:52:E3:4D:EA:1D Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 4D7E624ADF035276E0E35184B6120410155DF22D Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33312e302f32342d3234203d3e203538353532.roa Signing time: Mon 01 Jul 2024 01:03:06 +0000 ROA not before: Mon 01 Jul 2024 00:58:06 +0000 ROA not after: Mon 30 Jun 2025 01:03:06 +0000 asID: 58552 IP address blocks: 103.11.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7e:62:4a:df:03:52:76:e0:e3:51:84:b6:12:04:10:15:5d:f2:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:06 2024 GMT Not After : Jun 30 01:03:06 2025 GMT Subject: CN=38DE2F91911E3AF4FDE430995D928552E34DEA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8f:74:c0:e2:09:59:32:d6:24:ea:6e:68:5f: 06:5d:d2:84:18:cc:b9:92:61:1d:4f:33:53:fc:b5: bb:cd:f6:ba:73:9d:73:a8:9d:c0:d0:2e:a9:02:c5: 74:c4:7a:e7:55:0c:67:50:18:47:ac:c8:a2:eb:14: b3:43:a9:6c:64:a0:58:35:13:3f:7e:d3:4d:67:c9: fc:9b:e9:e7:28:a7:3f:f9:77:33:1f:21:46:a5:04: c7:14:d6:2b:5b:6b:ed:a3:31:f8:a6:f7:ef:50:a4: dd:2d:c5:61:9f:7d:4d:7f:fd:74:a1:e6:e2:b9:64: 04:ac:25:10:f1:bb:51:5e:02:41:1a:ca:b8:78:51: 2a:60:5c:b7:1c:4e:ce:fc:61:76:b7:4a:38:2f:ea: 8b:a6:21:7c:9b:e4:5a:7e:ef:a6:e3:fe:ef:dd:32: d4:29:92:4b:f1:26:f4:b3:79:57:a4:f0:14:01:7d: 78:61:50:7c:56:56:98:ad:80:85:06:c6:f9:33:65: 13:23:bf:c6:cb:02:02:8c:c2:70:1f:b3:0c:b7:11: b7:23:fd:96:8b:90:85:66:dc:fe:bc:6c:77:ac:b2: 77:9c:ea:5a:95:e7:2a:68:26:b3:d3:20:a0:41:64: 46:63:ff:6d:84:80:e2:43:84:f0:6d:a8:ac:4a:46: af:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DE:2F:91:91:1E:3A:F4:FD:E4:30:99:5D:92:85:52:E3:4D:EA:1D X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e33312e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.31.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ff:6d:49:78:fc:60:e3:d9:e4:65:f8:9d:27:bd:dd:b4:ea: 1e:f5:89:c4:1d:41:78:21:76:67:34:e4:f7:1b:b9:c1:e8:f3: a3:1b:ec:c6:22:1b:28:c9:64:3b:bb:b7:be:80:29:8d:d9:7b: 81:4f:d6:8f:66:c1:ea:28:e5:64:12:99:09:2a:ec:b9:fa:5e: d7:39:84:6a:ae:7a:47:14:34:04:2f:60:ae:87:71:65:73:00: 5d:c2:a2:d7:7a:a8:d1:cf:c3:6b:79:27:05:a1:31:f0:be:ab: fa:03:52:f6:3d:ee:77:45:d4:96:7e:ef:7f:73:cd:c5:3b:f9: 75:4e:cf:e3:7e:f0:6d:27:f6:a4:11:f2:d0:dd:34:47:43:f3: e2:d4:87:84:58:86:7f:09:1d:2f:3e:0e:12:f3:d6:0a:3a:5d: 86:b3:f2:1e:5b:bb:d9:18:c7:9b:0d:07:cb:fc:97:4d:c2:9b: 92:8b:b8:46:6c:7e:33:5d:96:f8:28:12:5a:e3:ba:be:68:3f: 03:1b:d2:82:5c:49:39:f1:75:80:76:1f:43:14:9d:23:99:bd: c5:89:f3:00:50:3b:2e:c0:a2:4d:79:98:be:78:bd:ec:b0:0a: 22:b3:6f:69:ce:f7:46:43:b7:c2:93:42:07:e7:63:82:94:5d: c4:63:16:44 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTX5iSt8DUnbg41GEthIEEBVd8i0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDZaFw0yNTA2MzAwMTAzMDZaMDMxMTAvBgNV BAMTKDM4REUyRjkxOTExRTNBRjRGREU0MzA5OTVEOTI4NTUyRTM0REVBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnj3TA4glZMtYk6m5oXwZd0oQY zLmSYR1PM1P8tbvN9rpznXOoncDQLqkCxXTEeudVDGdQGEesyKLrFLNDqWxkoFg1 Ez9+001nyfyb6ecopz/5dzMfIUalBMcU1itba+2jMfim9+9QpN0txWGffU1//XSh 5uK5ZASsJRDxu1FeAkEayrh4USpgXLccTs78YXa3Sjgv6oumIXyb5Fp+76bj/u/d MtQpkkvxJvSzeVek8BQBfXhhUHxWVpitgIUGxvkzZRMjv8bLAgKMwnAfswy3Ebcj /ZaLkIVm3P68bHessnec6lqV5ypoJrPTIKBBZEZj/22EgOJDhPBtqKxKRq//AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUON4vkZEeOvT95DCZXZKFUuNN6h0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnCx8wDQYJKoZIhvcN AQELBQADggEBAAj/bUl4/GDj2eRl+J0nvd206h71icQdQXghdmc05PcbucHo86Mb 7MYiGyjJZDu7t76AKY3Ze4FP1o9mweoo5WQSmQkq7Ln6Xtc5hGquekcUNAQvYK6H cWVzAF3Cotd6qNHPw2t5JwWhMfC+q/oDUvY97ndF1JZ+739zzcU7+XVOz+N+8G0n 9qQR8tDdNEdD8+LUh4RYhn8JHS8+DhLz1go6XYaz8h5bu9kYx5sNB8v8l03Cm5KL uEZsfjNdlvgoElrjur5oPwMb0oJcSTnxdYB2H0MUnSOZvcWJ8wBQOy7Aok15mL54 veywCiKzb2nO90ZDt8KTQgfnY4KUXcRjFkQ= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org