$ rpki-client -vvf repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa File: 3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa (raw, json) Hash identifier: y++h1YJ1hOHYw7NDJcJEUKA4UZp+NRi8+3UP1/gBIDw= Subject key identifier: 18:34:06:79:77:8C:C1:65:2B:59:CF:D8:8A:70:82:ED:63:C3:06:9F Certificate issuer: /CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Certificate serial: 6851F9BF35D849F959DD0B68A5A052BAB0BBB3B2 Authority key identifier: 37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa Signing time: Mon 01 Jul 2024 01:06:05 +0000 ROA not before: Mon 01 Jul 2024 01:01:05 +0000 ROA not after: Mon 30 Jun 2025 01:06:05 +0000 asID: 24529 IP address blocks: 103.217.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:51:f9:bf:35:d8:49:f9:59:dd:0b:68:a5:a0:52:ba:b0:bb:b3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Validity Not Before: Jul 1 01:01:05 2024 GMT Not After : Jun 30 01:06:05 2025 GMT Subject: CN=18340679778CC1652B59CFD88A7082ED63C3069F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5a:91:36:e0:21:5f:ef:d7:e1:dc:53:ba:41: 92:c1:f7:aa:3f:62:ce:5e:3c:88:35:7c:cb:b5:a5: f9:4c:e4:c7:86:91:b4:8b:91:eb:62:aa:f6:c0:69: 19:63:7c:8e:c4:2a:ed:97:d5:50:ef:f3:b7:63:8b: 2d:ce:2c:fa:f1:37:76:86:99:42:45:8b:e5:35:e0: 38:9d:4b:c9:0c:37:b1:ea:e3:59:a2:2d:e3:1c:92: b7:0d:62:8e:fc:58:0b:6d:4d:1f:06:f4:3c:d2:a3: f3:0c:d8:f6:6d:5a:bc:22:8e:52:51:be:f5:51:93: 2e:65:31:d4:08:ef:b7:20:80:6e:a1:de:1e:6b:67: 48:1c:7e:d7:d9:0f:82:01:e2:b2:86:00:d5:19:7f: f1:25:b3:e2:ee:85:ee:73:53:a8:91:14:11:5c:3c: 1d:0a:9b:2b:93:51:5a:d0:30:a7:44:9d:c7:62:4b: e3:24:cd:9f:85:8a:f4:b4:89:93:57:f3:6e:a7:83: f8:a4:73:85:f7:7c:0d:ea:ac:4d:20:47:40:df:f9: 90:dc:d8:90:57:0e:a7:be:25:63:b6:c7:80:38:2c: 08:8d:55:28:4f:7f:80:0a:72:fc:d0:2f:5b:02:58: 3e:34:ec:2d:10:7a:6c:bb:28:3c:a2:ff:20:12:94: f8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:34:06:79:77:8C:C1:65:2B:59:CF:D8:8A:70:82:ED:63:C3:06:9F X509v3 Authority Key Identifier: keyid:37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231372e302f32342d3234203d3e203234353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.217.0/24 Signature Algorithm: sha256WithRSAEncryption 88:f0:b4:70:40:05:5e:87:a2:e9:00:d5:e3:fe:65:ae:a0:2f: 71:90:ac:73:40:5c:3f:87:34:6f:d0:28:18:7b:76:42:84:42: 94:7a:84:e5:22:02:90:e2:89:94:6c:5d:d9:26:58:6b:d3:fc: 19:62:d8:7f:d2:e7:b6:bf:5d:68:4f:7e:d5:49:64:4b:2f:0e: 49:da:a2:26:a7:58:dd:13:9d:a0:7f:e4:c9:c6:f7:9e:47:6b: 93:bb:0c:51:d3:f3:1f:25:ab:75:8b:41:a6:d9:5c:c3:89:6e: 45:c0:55:b8:6e:27:22:da:af:9e:12:1d:17:a9:5f:32:66:cb: aa:c0:96:ed:9a:13:3f:67:04:fb:be:fd:01:98:17:65:61:e0: 7a:36:75:a9:72:9a:16:90:27:8c:2c:63:69:f2:3c:a8:6a:96: b9:cd:63:fa:52:24:f5:60:cc:42:24:80:bd:3f:20:b9:89:d7: 19:63:d0:ec:d2:b2:fb:da:a2:6d:b8:ea:fb:9f:cf:86:0a:7b: 02:d2:f7:37:a8:06:98:a9:2d:9f:51:f8:40:e4:aa:e4:85:ae: 6b:38:1e:af:c7:5b:9c:fd:e9:23:41:d9:ef:73:20:88:ed:27: 71:92:0d:43:81:a7:dd:47:48:67:8c:87:27:11:63:54:33:d9: 64:ae:3b:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaFH5vzXYSflZ3QtopaBSurC7s7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3 NkQ1MUFDODAeFw0yNDA3MDEwMTAxMDVaFw0yNTA2MzAwMTA2MDVaMDMxMTAvBgNV BAMTKDE4MzQwNjc5Nzc4Q0MxNjUyQjU5Q0ZEODhBNzA4MkVENjNDMzA2OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2WpE24CFf79fh3FO6QZLB96o/ Ys5ePIg1fMu1pflM5MeGkbSLketiqvbAaRljfI7EKu2X1VDv87djiy3OLPrxN3aG mUJFi+U14DidS8kMN7Hq41miLeMckrcNYo78WAttTR8G9DzSo/MM2PZtWrwijlJR vvVRky5lMdQI77cggG6h3h5rZ0gcftfZD4IB4rKGANUZf/Els+Luhe5zU6iRFBFc PB0KmyuTUVrQMKdEncdiS+MkzZ+FivS0iZNX826ng/ikc4X3fA3qrE0gR0Df+ZDc 2JBXDqe+JWO2x4A4LAiNVShPf4AKcvzQL1sCWD407C0Qemy7KDyi/yASlPhxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGDQGeXeMwWUrWc/YinCC7WPDBp8wHwYDVR0j BBgwFoAUN96WFwfOyPY4NNzbjFong3bVGsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjJmNTE1Mi1hMjk1LTQ3YjctYWRkYy1mYmZlZjMyNDdlM2IvMC8zN0RFOTYxNzA3 Q0VDOEY2MzgzNERDREI4QzVBMjc4Mzc2RDUxQUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3NkQ1 MUFDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMmY1MTUyLWEyOTUtNDdiNy1h ZGRjLWZiZmVmMzI0N2UzYi8wLzMxMzAzMzJlMzIzMTM3MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9nZMA0GCSqG SIb3DQEBCwUAA4IBAQCI8LRwQAVeh6LpANXj/mWuoC9xkKxzQFw/hzRv0CgYe3ZC hEKUeoTlIgKQ4omUbF3ZJlhr0/wZYth/0ue2v11oT37VSWRLLw5J2qImp1jdE52g f+TJxveeR2uTuwxR0/MfJat1i0Gm2VzDiW5FwFW4bici2q+eEh0XqV8yZsuqwJbt mhM/ZwT7vv0BmBdlYeB6NnWpcpoWkCeMLGNp8jyoapa5zWP6UiT1YMxCJIC9PyC5 idcZY9Ds0rL72qJtuOr7n8+GCnsC0vc3qAaYqS2fUfhA5Krkha5rOB6vx1uc/ekj QdnvcyCI7Sdxkg1DgafdR0hnjIcnEWNUM9lkrjvR -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org