$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138332e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138332e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: dgINQ5MJ3Auvon1oiBib4P8uI+HksPXhV6zDgPNH+z4= Subject key identifier: 97:69:8C:1D:D8:9E:8B:63:43:19:C3:C8:9D:FA:D0:0F:72:72:0B:A0 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 4A8CD637C26EB1DF9D447107A18A695D3119953E Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138332e302f32342d3234203d3e20313336383430.roa Signing time: Mon 01 Jul 2024 01:05:40 +0000 ROA not before: Mon 01 Jul 2024 01:00:40 +0000 ROA not after: Mon 30 Jun 2025 01:05:40 +0000 asID: 136840 IP address blocks: 103.100.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:8c:d6:37:c2:6e:b1:df:9d:44:71:07:a1:8a:69:5d:31:19:95:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jul 1 01:00:40 2024 GMT Not After : Jun 30 01:05:40 2025 GMT Subject: CN=97698C1DD89E8B634319C3C89DFAD00F72720BA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0f:b3:3e:ea:9f:dd:d6:8e:92:f9:c7:91:9e: 7e:c6:98:a9:ea:11:2c:21:ad:d8:d5:78:50:22:e9: 18:ac:06:a6:9c:1d:c2:5d:21:7f:91:e4:c0:c0:21: b3:05:1f:e3:6c:db:ae:1b:7d:f3:b3:24:dc:d9:b3: 9e:5e:6b:74:29:79:01:ac:24:5b:e9:b2:4e:35:f0: af:f5:f4:05:45:39:c3:4f:c5:9e:29:27:d3:6c:7a: 79:af:8d:90:87:8b:26:80:17:59:ae:8d:26:16:d5: e2:7a:1d:37:80:a1:fa:06:50:c8:4b:22:d7:91:33: 6b:66:69:2c:61:24:93:fc:eb:3d:00:98:ce:83:2a: cf:a3:66:55:b4:e8:47:26:05:2c:50:0d:0e:80:77: 1a:a6:71:1a:06:c3:4d:80:16:4f:9c:c8:6a:ff:85: b2:d0:e4:da:c5:79:1a:45:49:fe:16:f8:19:a5:69: d8:07:49:d5:45:cb:5b:6d:06:d5:7a:cc:97:43:b3: 7f:ad:d2:ef:04:09:cd:c9:70:57:09:39:21:d0:05: cc:9e:87:e4:ec:99:07:22:7e:86:bd:82:ab:02:a0: 70:21:10:8e:7e:97:0d:d6:41:51:a0:ee:20:14:fe: 07:05:f2:39:2a:d0:2b:1c:32:e4:0e:d1:20:11:14: 5d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:69:8C:1D:D8:9E:8B:63:43:19:C3:C8:9D:FA:D0:0F:72:72:0B:A0 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138332e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.183.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:bf:70:8f:10:58:35:11:58:bb:25:2c:f4:94:dd:77:fd:64: c3:bf:a3:6f:36:0d:37:19:49:bf:a7:21:98:ce:62:1c:d7:ab: 57:d7:43:72:b8:0e:90:b1:69:a3:65:44:70:6f:a7:4d:d2:c0: ce:0a:ac:b6:bd:6c:a7:a9:36:09:72:6e:01:85:1d:ee:35:c8: da:10:3d:a5:2b:ca:64:11:c9:e0:1f:80:4b:8b:87:f3:4a:a1: c7:d7:76:c4:73:82:93:2e:6e:45:28:29:27:be:b1:72:9b:12: 2e:fb:2f:86:bf:61:24:f9:20:c0:84:e7:ac:8a:12:e7:83:83: 0b:ff:12:27:99:b5:97:da:d0:4e:fe:63:1b:dd:1a:fe:15:a7: 29:72:2b:e5:d5:96:93:79:92:c0:b2:e1:f3:b1:4b:66:22:53: 86:56:8d:a1:c8:37:ca:0b:32:a1:d3:a9:f7:56:ee:a6:0d:ed: 04:c0:3d:15:d8:ea:20:ea:71:0b:10:78:c5:40:24:b6:b7:c7: 2f:d3:00:b9:9b:cd:2f:66:2b:e5:20:5e:93:ec:61:99:b1:b0: c5:96:a1:99:54:d2:df:ee:62:62:b9:e3:03:98:88:ff:5f:e8: 15:da:27:31:c3:67:35:d0:97:77:fd:a6:8f:1d:07:f6:44:ea: e8:67:2b:f9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSozWN8Jusd+dRHEHoYppXTEZlT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA3MDEwMTAwNDBaFw0yNTA2MzAwMTA1NDBaMDMxMTAvBgNV BAMTKDk3Njk4QzFERDg5RThCNjM0MzE5QzNDODlERkFEMDBGNzI3MjBCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZD7M+6p/d1o6S+ceRnn7GmKnq ESwhrdjVeFAi6RisBqacHcJdIX+R5MDAIbMFH+Ns264bffOzJNzZs55ea3QpeQGs JFvpsk418K/19AVFOcNPxZ4pJ9NsenmvjZCHiyaAF1mujSYW1eJ6HTeAofoGUMhL IteRM2tmaSxhJJP86z0AmM6DKs+jZlW06EcmBSxQDQ6AdxqmcRoGw02AFk+cyGr/ hbLQ5NrFeRpFSf4W+BmladgHSdVFy1ttBtV6zJdDs3+t0u8ECc3JcFcJOSHQBcye h+TsmQcifoa9gqsCoHAhEI5+lw3WQVGg7iAU/gcF8jkq0CscMuQO0SARFF3nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl2mMHdiei2NDGcPInfrQD3JyC6AwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLcwDQYJ KoZIhvcNAQELBQADggEBAAq/cI8QWDURWLslLPSU3Xf9ZMO/o282DTcZSb+nIZjO YhzXq1fXQ3K4DpCxaaNlRHBvp03SwM4KrLa9bKepNglybgGFHe41yNoQPaUrymQR yeAfgEuLh/NKocfXdsRzgpMubkUoKSe+sXKbEi77L4a/YST5IMCE56yKEueDgwv/ EieZtZfa0E7+YxvdGv4VpylyK+XVlpN5ksCy4fOxS2YiU4ZWjaHIN8oLMqHTqfdW 7qYN7QTAPRXY6iDqcQsQeMVAJLa3xy/TALmbzS9mK+UgXpPsYZmxsMWWoZlU0t/u YmK54wOYiP9f6BXaJzHDZzXQl3f9po8dB/ZE6uhnK/k= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org