$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435323938.roa File: 3130332e3235332e3130372e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: SYj4LNYmIDTVo/yQnM2lLrlUFWvTCL9q9hTk5mH9M+I= Subject key identifier: A8:DE:66:1E:4D:A3:F8:88:C0:14:66:5B:D8:5E:77:6A:6E:1F:D8:56 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 14C23173118555E1731D2EAE2DB78B8B538A746C Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435323938.roa Signing time: Tue 16 Jul 2024 17:00:01 +0000 ROA not before: Tue 16 Jul 2024 16:55:01 +0000 ROA not after: Tue 15 Jul 2025 17:00:01 +0000 asID: 45298 IP address blocks: 103.253.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c2:31:73:11:85:55:e1:73:1d:2e:ae:2d:b7:8b:8b:53:8a:74:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jul 16 16:55:01 2024 GMT Not After : Jul 15 17:00:01 2025 GMT Subject: CN=A8DE661E4DA3F888C014665BD85E776A6E1FD856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:1e:de:ff:c5:bf:8b:dc:66:4f:d4:09:4d: fa:68:3c:58:2f:06:88:70:14:91:89:2a:86:95:95: 19:45:12:b5:7a:ea:32:0b:cb:7a:c0:58:4c:30:ed: 91:00:f7:16:96:d8:be:ef:59:97:6e:87:8e:21:c5: d0:60:3d:22:8f:88:d6:4e:ed:dc:de:17:56:5e:43: 4e:4d:75:6b:71:61:5d:d4:ea:26:25:e0:59:3e:94: 35:83:2c:04:c9:0a:0d:fd:6c:fe:9c:8d:cb:69:e9: b6:8b:24:58:68:04:b0:39:68:f6:1a:d7:b7:78:d2: aa:d1:45:2f:2d:ca:6b:9e:0a:f5:e4:50:9a:18:4d: d9:91:b8:b3:08:f9:47:65:c3:7c:c0:7e:e0:fd:91: eb:bb:ad:28:d6:60:70:34:f0:e8:68:90:41:ce:b1: d3:22:97:c4:13:19:5c:ed:0c:74:31:65:5d:10:7c: 15:84:d9:29:b9:88:db:1e:92:d8:fe:b7:61:a8:84: 36:18:ec:90:60:a7:6c:44:6e:81:ab:ba:7d:76:29: 84:8f:57:38:84:f2:93:3b:b4:ff:87:a5:22:e3:bd: 2b:7d:b3:a0:4b:eb:f0:98:42:72:7c:ed:d6:4a:91: 2e:60:93:67:f1:0f:f3:16:c3:4d:40:fb:a5:0b:90: 00:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DE:66:1E:4D:A3:F8:88:C0:14:66:5B:D8:5E:77:6A:6E:1F:D8:56 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3130332e3235332e3130372e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.107.0/24 Signature Algorithm: sha256WithRSAEncryption 38:de:62:54:d4:6e:4b:75:d5:37:10:19:a7:bd:12:55:ee:3e: 5d:79:fa:aa:80:fe:a1:a5:9b:1e:af:a6:10:40:f1:c2:f6:f0: 46:18:43:92:02:73:e8:bb:b2:31:27:6d:a1:ff:24:31:17:34: c9:70:bf:63:4f:02:8f:c8:e7:cc:89:d6:f2:27:90:c1:66:36: ad:37:f2:f5:63:b0:b6:bc:72:bd:8c:27:c5:b4:00:67:08:0e: 35:c2:5a:c7:ad:ce:61:2e:87:08:23:34:b6:96:89:71:35:1c: 48:b5:43:5a:ae:d4:51:04:80:28:50:db:9f:0a:7a:40:0c:7b: 67:38:3c:ff:c1:3a:1e:00:8b:90:8c:47:10:a4:60:09:ed:6b: c7:34:22:5f:98:73:d2:8d:16:4b:a8:4f:23:dc:d1:34:e0:89: 64:32:97:6a:f4:57:2e:6b:63:73:27:c7:23:fe:8a:1d:4a:c6: 31:6a:e0:ec:9a:63:33:33:ee:81:c1:64:a3:a7:a4:f4:60:19: 5f:a3:ad:8c:cd:26:b3:ef:8f:bf:40:c5:1c:37:ce:8c:07:9c: d5:e8:c0:d1:ef:9c:56:27:7c:47:2c:33:36:c8:f7:e0:87:be: b7:cc:16:62:5a:c0:9f:40:dd:bc:83:bc:b0:36:d7:4d:1e:70: 5b:ff:89:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFMIxcxGFVeFzHS6uLbeLi1OKdGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDA3MTYxNjU1MDFaFw0yNTA3MTUxNzAwMDFaMDMxMTAvBgNV BAMTKEE4REU2NjFFNERBM0Y4ODhDMDE0NjY1QkQ4NUU3NzZBNkUxRkQ4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO3B7e/8W/i9xmT9QJTfpoPFgv BohwFJGJKoaVlRlFErV66jILy3rAWEww7ZEA9xaW2L7vWZduh44hxdBgPSKPiNZO 7dzeF1ZeQ05NdWtxYV3U6iYl4Fk+lDWDLATJCg39bP6cjctp6baLJFhoBLA5aPYa 17d40qrRRS8tymueCvXkUJoYTdmRuLMI+Udlw3zAfuD9keu7rSjWYHA08OhokEHO sdMil8QTGVztDHQxZV0QfBWE2Sm5iNsektj+t2GohDYY7JBgp2xEboGrun12KYSP VziE8pM7tP+HpSLjvSt9s6BL6/CYQnJ87dZKkS5gk2fxD/MWw01A+6ULkADzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqN5mHk2j+IjAFGZb2F53am4f2FYwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMxMzAzMzJlMzIzNTMzMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/1rMA0GCSqG SIb3DQEBCwUAA4IBAQA43mJU1G5LddU3EBmnvRJV7j5defqqgP6hpZser6YQQPHC 9vBGGEOSAnPou7IxJ22h/yQxFzTJcL9jTwKPyOfMidbyJ5DBZjatN/L1Y7C2vHK9 jCfFtABnCA41wlrHrc5hLocIIzS2lolxNRxItUNartRRBIAoUNufCnpADHtnODz/ wToeAIuQjEcQpGAJ7WvHNCJfmHPSjRZLqE8j3NE04IlkMpdq9Fcua2NzJ8cj/ood SsYxauDsmmMzM+6BwWSjp6T0YBlfo62MzSaz74+/QMUcN86MB5zV6MDR75xWJ3xH LDM2yPfgh763zBZiWsCfQN28g7ywNtdNHnBb/4l9 -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org