$ rpki-client -vvf repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa File: 3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa (raw, json) Hash identifier: 03HkjmQzt/Ep8zy5D6Eve4fKrD/0G+PHtCK39LVJn98= Subject key identifier: 39:86:31:58:23:E8:24:53:E2:A7:C7:13:03:C8:28:92:51:C9:A4:F5 Certificate issuer: /CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Certificate serial: 232B06D16F8D6D2E70ABBED8F99D130927AF8840 Authority key identifier: 37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa Signing time: Mon 01 Jul 2024 01:06:05 +0000 ROA not before: Mon 01 Jul 2024 01:01:05 +0000 ROA not after: Mon 30 Jun 2025 01:06:05 +0000 asID: 24529 IP address blocks: 103.217.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:2b:06:d1:6f:8d:6d:2e:70:ab:be:d8:f9:9d:13:09:27:af:88:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8 Validity Not Before: Jul 1 01:01:05 2024 GMT Not After : Jun 30 01:06:05 2025 GMT Subject: CN=3986315823E82453E2A7C71303C8289251C9A4F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e7:ec:c0:cc:37:f3:54:f5:bf:d6:13:7d:ad: f0:f3:60:36:c6:14:6c:5c:35:15:7b:0c:2d:e6:2c: 19:04:27:5c:af:72:c4:db:4c:29:97:89:ae:68:17: f6:86:79:f3:63:70:14:38:56:92:3e:3d:86:b6:8b: f4:36:12:70:7d:47:6e:cb:13:6a:40:61:fc:ad:5b: 84:62:e3:25:9f:34:ff:7a:1a:e1:02:98:8f:8c:ee: f4:2e:19:cc:11:b6:43:85:b5:7c:ac:93:e0:e2:eb: 6a:19:78:61:e0:2e:93:62:1f:d7:18:23:f8:ac:96: d9:b8:61:78:9c:04:b4:37:9d:ba:96:f7:03:b3:f6: 05:8f:44:23:e6:e5:c4:66:e8:df:0b:4c:60:b2:58: ba:53:0b:3a:17:7d:9d:43:e6:b2:23:ac:c8:64:b5: 53:81:42:11:a9:d3:a4:28:3c:d6:3f:fa:09:0f:d4: 3f:29:e3:a5:dd:d4:f7:90:83:76:59:16:38:55:54: 8f:ae:f8:dc:ff:a6:5b:cf:1e:8d:9f:33:49:8a:6c: 98:4a:bc:7e:c5:85:0a:32:45:7f:a6:fe:62:60:73: 68:c1:3f:a3:dd:7b:a1:94:12:91:1f:2b:0f:2a:bb: f2:7b:97:28:75:6a:c9:1d:63:21:07:00:59:e5:32: 58:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:86:31:58:23:E8:24:53:E2:A7:C7:13:03:C8:28:92:51:C9:A4:F5 X509v3 Authority Key Identifier: keyid:37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231392e302f32342d3234203d3e203234353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.219.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:4d:12:c1:07:6e:5c:f7:8a:b1:84:08:f1:8a:9c:c6:76:e1: e8:e4:a5:79:65:f0:fd:95:61:bd:87:0e:fe:9c:aa:ef:65:50: 42:98:ea:1c:0c:0e:8c:d9:a5:9d:d6:d9:5b:5d:11:7d:9e:57: ba:fd:90:d7:99:e9:3e:60:22:87:84:62:ae:48:09:57:c9:b7: 1c:b7:27:91:ac:60:a0:4b:b2:ae:d0:d3:03:c1:34:66:7d:83: 92:10:02:dd:ec:91:2d:ee:93:47:eb:07:46:b0:6d:fa:ed:6d: 97:fc:6d:a8:09:78:e1:5d:73:12:58:d6:87:1e:9f:fd:28:ea: 2d:b7:90:53:e8:36:c4:bb:1c:b5:35:8a:3e:cc:ef:19:b7:b3: 2b:6d:a1:bc:91:05:2d:e6:05:de:9d:74:5b:89:59:09:60:b9: f5:7f:ce:7d:ac:58:84:63:07:41:25:f2:bb:1a:2d:ca:58:38: 8c:ab:13:c3:e7:af:1b:4c:f0:11:9d:8d:32:cd:f7:2b:93:fc: 0a:90:bf:40:a4:8e:c1:30:c5:4d:ac:d1:fb:9a:52:80:1e:4f: 44:fe:29:a8:27:49:f3:9b:44:81:cc:3d:68:78:c4:e7:d6:6e: 02:41:85:9f:58:d5:13:8b:89:04:8d:c1:3d:6d:68:0f:14:43: 6b:01:4e:63 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIysG0W+NbS5wq77Y+Z0TCSeviEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3 NkQ1MUFDODAeFw0yNDA3MDEwMTAxMDVaFw0yNTA2MzAwMTA2MDVaMDMxMTAvBgNV BAMTKDM5ODYzMTU4MjNFODI0NTNFMkE3QzcxMzAzQzgyODkyNTFDOUE0RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx5+zAzDfzVPW/1hN9rfDzYDbG FGxcNRV7DC3mLBkEJ1yvcsTbTCmXia5oF/aGefNjcBQ4VpI+PYa2i/Q2EnB9R27L E2pAYfytW4Ri4yWfNP96GuECmI+M7vQuGcwRtkOFtXysk+Di62oZeGHgLpNiH9cY I/isltm4YXicBLQ3nbqW9wOz9gWPRCPm5cRm6N8LTGCyWLpTCzoXfZ1D5rIjrMhk tVOBQhGp06QoPNY/+gkP1D8p46Xd1PeQg3ZZFjhVVI+u+Nz/plvPHo2fM0mKbJhK vH7FhQoyRX+m/mJgc2jBP6Pde6GUEpEfKw8qu/J7lyh1askdYyEHAFnlMlhhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOYYxWCPoJFPip8cTA8goklHJpPUwHwYDVR0j BBgwFoAUN96WFwfOyPY4NNzbjFong3bVGsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjJmNTE1Mi1hMjk1LTQ3YjctYWRkYy1mYmZlZjMyNDdlM2IvMC8zN0RFOTYxNzA3 Q0VDOEY2MzgzNERDREI4QzVBMjc4Mzc2RDUxQUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdERTk2MTcwN0NFQzhGNjM4MzREQ0RCOEM1QTI3ODM3NkQ1 MUFDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMmY1MTUyLWEyOTUtNDdiNy1h ZGRjLWZiZmVmMzI0N2UzYi8wLzMxMzAzMzJlMzIzMTM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9nbMA0GCSqG SIb3DQEBCwUAA4IBAQANTRLBB25c94qxhAjxipzGduHo5KV5ZfD9lWG9hw7+nKrv ZVBCmOocDA6M2aWd1tlbXRF9nle6/ZDXmek+YCKHhGKuSAlXybcctyeRrGCgS7Ku 0NMDwTRmfYOSEALd7JEt7pNH6wdGsG367W2X/G2oCXjhXXMSWNaHHp/9KOott5BT 6DbEuxy1NYo+zO8Zt7MrbaG8kQUt5gXenXRbiVkJYLn1f859rFiEYwdBJfK7Gi3K WDiMqxPD568bTPARnY0yzfcrk/wKkL9ApI7BMMVNrNH7mlKAHk9E/imoJ0nzm0SB zD1oeMTn1m4CQYWfWNUTi4kEjcE9bWgPFENrAU5j -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org