$ rpki-client -vvf repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa File: 3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa (raw, json) Hash identifier: pd2NDQQQPyHZaBaBe61CyREtdlKxDZecHqykFbQ5pJ8= Subject key identifier: E2:E9:67:28:D4:B5:4E:D0:5B:5B:A5:B9:43:E3:55:5A:58:B3:09:DF Certificate issuer: /CN=5AE19AE3FA86591042AE694640539C9669DEC801 Certificate serial: 20F2647DFC7DB759E91E7E7811A6ED892EC1CA43 Authority key identifier: 5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa Signing time: Fri 02 Aug 2024 11:02:25 +0000 ROA not before: Fri 02 Aug 2024 10:57:25 +0000 ROA not after: Fri 01 Aug 2025 11:02:25 +0000 asID: 150199 IP address blocks: 103.220.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:f2:64:7d:fc:7d:b7:59:e9:1e:7e:78:11:a6:ed:89:2e:c1:ca:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AE19AE3FA86591042AE694640539C9669DEC801 Validity Not Before: Aug 2 10:57:25 2024 GMT Not After : Aug 1 11:02:25 2025 GMT Subject: CN=E2E96728D4B54ED05B5BA5B943E3555A58B309DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d1:89:b4:21:57:c9:e4:da:f8:e2:b4:5d:5f: dd:3b:c7:cb:37:e8:bd:a6:68:05:58:cd:a4:2d:18: 31:62:00:13:e0:de:6b:57:c6:d2:1c:e9:ad:74:d9: a4:87:86:2e:7b:e8:63:16:46:bd:a4:6a:3c:53:c5: d6:7f:c2:b4:6f:1a:43:e5:e6:9f:8b:65:24:d1:51: 92:cd:d8:fb:56:f4:40:cf:4e:ab:fc:d2:51:79:b7: 84:c3:e2:4c:b2:07:1e:0c:c0:e4:7d:8d:49:d7:a0: 44:26:81:e8:77:86:de:a3:49:83:4e:be:82:bb:1d: b5:ab:37:99:c9:86:95:d8:9f:af:7d:18:0c:31:48: 20:25:27:50:98:77:a9:1f:17:ec:70:9c:c3:8a:76: b3:dc:40:4c:4b:a7:63:f0:d2:70:92:20:25:5c:3c: 31:87:aa:fa:4c:80:2b:25:da:d4:ff:12:8c:ed:a5: d1:96:c3:3e:5a:da:ea:ba:1a:99:4c:c3:aa:7f:d9: 6a:ab:3e:9d:9d:01:71:18:80:c1:9c:3a:91:b3:bf: fc:49:c4:8a:c6:37:00:54:1a:8d:d6:8b:dc:d8:a9: df:3a:b1:f8:55:ad:10:81:65:1b:d5:85:2d:4e:63: 71:59:dd:b2:e2:b8:52:ef:7f:60:36:46:26:93:db: c3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E9:67:28:D4:B5:4E:D0:5B:5B:A5:B9:43:E3:55:5A:58:B3:09:DF X509v3 Authority Key Identifier: keyid:5A:E1:9A:E3:FA:86:59:10:42:AE:69:46:40:53:9C:96:69:DE:C8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/5AE19AE3FA86591042AE694640539C9669DEC801.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE19AE3FA86591042AE694640539C9669DEC801.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.44.0/24 Signature Algorithm: sha256WithRSAEncryption 36:b1:7f:69:74:9f:f9:91:32:b7:13:99:1a:95:16:a7:42:ff: 60:8c:64:b3:70:c4:be:43:fb:08:44:35:79:d2:0b:6d:02:41: 21:8b:33:2d:c7:a3:b8:de:f1:20:cc:73:0d:53:f0:81:5d:ec: e8:ff:30:86:7d:b9:52:8a:e9:c6:f8:3f:51:f2:88:c0:26:05: 16:10:ae:fc:89:4e:8b:54:aa:fe:d4:25:f9:5b:18:09:d7:a5: 3f:95:9d:0e:44:ec:86:5c:cc:d6:25:fd:5c:63:80:ad:64:92: c9:d0:a9:5c:97:16:a8:24:2a:da:ff:01:bf:b7:97:f7:9b:c8: bb:dc:cf:70:82:b8:ae:c1:31:63:d6:74:da:93:7c:5e:ff:c5: b8:6d:39:7f:42:f2:39:e9:61:ba:35:f4:0a:c9:53:a8:fa:fa: 94:b5:09:ba:34:41:cd:1e:5f:9d:3e:ca:a6:04:01:46:09:b2: 1b:ac:a2:e1:52:7c:70:ce:3b:2f:1f:03:82:28:5c:4f:6e:78: 1b:bd:d0:da:cc:4e:bb:dc:93:7f:f6:07:12:95:09:02:8b:81: d2:92:8f:7b:9a:3f:99:bf:27:88:68:b3:8a:c9:68:8b:2e:e8: 91:d3:94:17:8a:04:c9:27:42:5a:b2:d9:0d:48:ff:73:a4:34: 08:11:91:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIPJkffx9t1npHn54EabtiS7BykMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2 OURFQzgwMTAeFw0yNDA4MDIxMDU3MjVaFw0yNTA4MDExMTAyMjVaMDMxMTAvBgNV BAMTKEUyRTk2NzI4RDRCNTRFRDA1QjVCQTVCOTQzRTM1NTVBNThCMzA5REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf0Ym0IVfJ5Nr44rRdX907x8s3 6L2maAVYzaQtGDFiABPg3mtXxtIc6a102aSHhi576GMWRr2kajxTxdZ/wrRvGkPl 5p+LZSTRUZLN2PtW9EDPTqv80lF5t4TD4kyyBx4MwOR9jUnXoEQmgeh3ht6jSYNO voK7HbWrN5nJhpXYn699GAwxSCAlJ1CYd6kfF+xwnMOKdrPcQExLp2Pw0nCSICVc PDGHqvpMgCsl2tT/EoztpdGWwz5a2uq6GplMw6p/2WqrPp2dAXEYgMGcOpGzv/xJ xIrGNwBUGo3Wi9zYqd86sfhVrRCBZRvVhS1OY3FZ3bLiuFLvf2A2RiaT28M3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4ulnKNS1TtBbW6W5Q+NVWlizCd8wHwYDVR0j BBgwFoAUWuGa4/qGWRBCrmlGQFOclmneyAEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTcyOTI5MS1hMWE3LTRiMTktOTNmNi0xZDg0NTc0YTY3YWUvMC81QUUxOUFFM0ZB ODY1OTEwNDJBRTY5NDY0MDUzOUM5NjY5REVDODAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFFMTlBRTNGQTg2NTkxMDQyQUU2OTQ2NDA1MzlDOTY2OURF QzgwMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1NzI5MjkxLWExYTctNGIxOS05 M2Y2LTFkODQ1NzRhNjdhZS8wLzMxMzAzMzJlMzIzMjMwMmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wsMA0GCSqG SIb3DQEBCwUAA4IBAQA2sX9pdJ/5kTK3E5kalRanQv9gjGSzcMS+Q/sIRDV50gtt AkEhizMtx6O43vEgzHMNU/CBXezo/zCGfblSiunG+D9R8ojAJgUWEK78iU6LVKr+ 1CX5WxgJ16U/lZ0OROyGXMzWJf1cY4CtZJLJ0KlclxaoJCra/wG/t5f3m8i73M9w griuwTFj1nTak3xe/8W4bTl/QvI56WG6NfQKyVOo+vqUtQm6NEHNHl+dPsqmBAFG CbIbrKLhUnxwzjsvHwOCKFxPbngbvdDazE673JN/9gcSlQkCi4HSko97mj+ZvyeI aLOKyWiLLuiR05QXigTJJ0JastkNSP9zpDQIEZHB -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org