$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: Kzuit7flC/q/AhzsHbDOQA9CaWnNa9oDmVzmfgUvay8= Subject key identifier: 09:24:AC:61:15:CE:F8:7E:BF:19:2F:93:AD:97:BF:94:CE:E7:30:B3 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 179C3C90146FF779A47F7D6145CEACBB2AEF11D2 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa Signing time: Mon 01 Jul 2024 01:05:40 +0000 ROA not before: Mon 01 Jul 2024 01:00:40 +0000 ROA not after: Mon 30 Jun 2025 01:05:40 +0000 asID: 136840 IP address blocks: 103.100.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9c:3c:90:14:6f:f7:79:a4:7f:7d:61:45:ce:ac:bb:2a:ef:11:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jul 1 01:00:40 2024 GMT Not After : Jun 30 01:05:40 2025 GMT Subject: CN=0924AC6115CEF87EBF192F93AD97BF94CEE730B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:01:8b:cd:46:7b:7a:08:df:41:e9:ce:47:55: 81:24:9f:98:c2:2d:45:a2:4f:c3:33:de:d0:db:57: 19:27:06:ce:ef:d8:d2:80:f2:a6:6f:3d:d1:33:b4: 8d:7d:fa:6a:9e:5e:12:36:8a:24:b9:d7:8a:c0:9d: f1:fe:40:33:8d:ce:6c:d7:e6:cc:fe:0d:f6:96:82: 8f:d5:ed:4c:5d:3b:78:73:ce:3d:11:4b:ac:a9:b3: a5:63:b7:78:73:2f:bc:49:9c:bb:fe:58:95:cb:6b: 77:7e:d1:3b:25:49:50:c4:19:47:d8:6e:aa:32:bf: f9:27:86:95:0d:c6:5c:35:bc:6f:b2:a9:1d:93:d7: bc:5a:b1:81:b6:cd:cc:e2:d1:0d:5f:2b:5b:9b:18: db:ee:04:a6:01:76:26:8b:a6:5e:b8:68:d0:7c:8a: 38:30:90:21:de:ce:99:92:5f:2f:aa:b7:96:f5:52: fd:b3:e0:a0:4b:94:9c:33:8a:44:a5:a9:5e:1a:3e: 83:45:fd:4a:e0:97:0b:ea:61:eb:38:88:0a:6c:e6: c9:03:74:dc:18:1d:97:da:2f:0e:a8:90:9c:ef:55: a8:32:64:b8:8b:dc:14:4d:89:4e:3a:f0:4f:85:0b: 5a:7d:58:3f:18:4f:67:4f:3b:f4:3c:1a:41:2f:6e: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:24:AC:61:15:CE:F8:7E:BF:19:2F:93:AD:97:BF:94:CE:E7:30:B3 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138322e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.182.0/24 Signature Algorithm: sha256WithRSAEncryption 25:28:8b:fc:0b:de:5f:fc:6e:d1:ae:7f:0a:48:e2:04:7e:73: ef:00:99:26:91:b5:4c:c7:95:6e:c1:01:ea:e0:d3:b4:4b:4d: 6b:70:bc:99:e7:8c:f1:33:08:14:d3:fe:e1:fb:13:ac:c6:6f: 5e:44:0f:cb:84:e3:ca:26:0f:75:c4:38:b4:bf:b0:eb:ba:16: 7b:c9:14:a3:a4:eb:f6:8a:d6:65:11:6e:c9:fa:97:99:d6:a9: 5b:dd:59:12:c2:9a:55:37:bb:fe:13:f6:67:c5:7f:2b:e1:d5: d7:80:9e:61:fd:19:e9:6f:f8:c5:7e:34:6a:fd:3d:69:90:6f: 5b:42:8b:ea:bd:83:71:c1:b4:84:fc:e0:c0:3e:ba:1b:b5:5b: 21:58:f6:9b:a5:7d:4e:93:f9:a9:85:47:54:a9:d5:60:26:b7: 80:87:08:7a:a1:56:57:00:a1:1a:15:c3:a8:ee:9e:55:bc:a0: 19:06:e6:8c:05:21:a6:86:66:7b:72:31:8d:8e:67:bc:c8:e9: 50:76:7e:4f:1b:8f:f0:8d:eb:d3:03:e6:fd:f6:29:fe:d1:05: 6b:dc:f0:3e:ce:f8:ab:2b:78:40:0c:fe:82:42:6e:ac:e9:7b: 8c:d5:ab:4b:33:0b:0e:3f:ea:53:fa:6a:42:ee:9d:c1:98:ec: 8c:16:97:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF5w8kBRv93mkf31hRc6suyrvEdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA3MDEwMTAwNDBaFw0yNTA2MzAwMTA1NDBaMDMxMTAvBgNV BAMTKDA5MjRBQzYxMTVDRUY4N0VCRjE5MkY5M0FEOTdCRjk0Q0VFNzMwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSAYvNRnt6CN9B6c5HVYEkn5jC LUWiT8Mz3tDbVxknBs7v2NKA8qZvPdEztI19+mqeXhI2iiS514rAnfH+QDONzmzX 5sz+DfaWgo/V7UxdO3hzzj0RS6yps6Vjt3hzL7xJnLv+WJXLa3d+0TslSVDEGUfY bqoyv/knhpUNxlw1vG+yqR2T17xasYG2zczi0Q1fK1ubGNvuBKYBdiaLpl64aNB8 ijgwkCHezpmSXy+qt5b1Uv2z4KBLlJwzikSlqV4aPoNF/UrglwvqYes4iAps5skD dNwYHZfaLw6okJzvVagyZLiL3BRNiU468E+FC1p9WD8YT2dPO/Q8GkEvbr5JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCSSsYRXO+H6/GS+TrZe/lM7nMLMwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLYwDQYJ KoZIhvcNAQELBQADggEBACUoi/wL3l/8btGufwpI4gR+c+8AmSaRtUzHlW7BAerg 07RLTWtwvJnnjPEzCBTT/uH7E6zGb15ED8uE48omD3XEOLS/sOu6FnvJFKOk6/aK 1mURbsn6l5nWqVvdWRLCmlU3u/4T9mfFfyvh1deAnmH9Gelv+MV+NGr9PWmQb1tC i+q9g3HBtIT84MA+uhu1WyFY9pulfU6T+amFR1Sp1WAmt4CHCHqhVlcAoRoVw6ju nlW8oBkG5owFIaaGZntyMY2OZ7zI6VB2fk8bj/CN69MD5v32Kf7RBWvc8D7O+Ksr eEAM/oJCbqzpe4zVq0szCw4/6lP6akLuncGY7IwWlxk= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org