$ rpki-client -vvf repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa File: 3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa (raw, json) Hash identifier: ey0RnIx9BHEX807Crk0Cq6R921ovlZ3dd8rpdjqgBeQ= Subject key identifier: 16:CA:C5:0C:87:52:B8:CE:36:B4:E4:46:1A:F6:7E:9A:5E:57:5B:C0 Certificate issuer: /CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Certificate serial: 0BE9A3A345B607CF3C1BB86DD9B92BCFF1FB63AC Authority key identifier: 54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa Signing time: Mon 01 Jul 2024 01:04:57 +0000 ROA not before: Mon 01 Jul 2024 00:59:57 +0000 ROA not after: Mon 30 Jun 2025 01:04:57 +0000 asID: 132643 IP address blocks: 103.21.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e9:a3:a3:45:b6:07:cf:3c:1b:b8:6d:d9:b9:2b:cf:f1:fb:63:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE Validity Not Before: Jul 1 00:59:57 2024 GMT Not After : Jun 30 01:04:57 2025 GMT Subject: CN=16CAC50C8752B8CE36B4E4461AF67E9A5E575BC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:c4:4e:b2:2d:b1:01:b0:bb:92:a6:50:19: 7b:98:7a:35:ea:57:dc:43:12:aa:be:a9:10:5a:b4: 2c:60:80:9b:ce:08:09:63:93:96:91:4c:01:69:57: 41:cf:5d:0d:84:81:f8:10:aa:ce:21:45:f4:08:62: bf:50:a0:5b:69:c5:a8:4f:70:00:5f:52:7a:2f:c9: a8:52:0c:1a:eb:aa:29:aa:1a:25:f4:45:99:63:bc: d5:df:b5:6f:e7:de:ce:7e:8f:09:b7:74:61:2c:84: e0:c0:53:c5:c8:b0:ec:22:e0:7d:3b:51:f0:6a:4d: 0c:b4:a0:03:bf:17:6f:88:fe:37:a8:ec:67:6d:a4: 58:62:a4:cc:b1:d8:b5:3c:5f:11:aa:17:62:fd:e1: 61:01:51:00:c3:61:f8:98:70:d0:5f:d0:16:fe:86: c6:f3:9a:e9:b2:f1:ac:db:ca:7d:3a:da:a1:89:5e: cf:f7:24:7e:b3:eb:ba:bf:35:0a:24:0b:1c:9b:c8: bc:9e:2f:14:41:5c:ab:cc:af:78:95:c8:3d:61:73: 4e:c2:42:43:f7:85:b5:21:a5:0d:c1:42:c6:98:b1: b1:1e:6e:fd:eb:2b:2f:f1:bb:37:e1:28:56:1c:03: 0c:3b:04:25:6d:de:36:63:d1:95:db:2c:72:99:3c: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CA:C5:0C:87:52:B8:CE:36:B4:E4:46:1A:F6:7E:9A:5E:57:5B:C0 X509v3 Authority Key Identifier: keyid:54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.228.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:b4:ee:0d:68:0c:31:2b:fc:46:73:97:5f:6a:75:1f:25:e3: e4:e3:64:fe:ec:f6:51:d3:ee:09:c2:f6:d3:15:63:ba:4a:6b: da:f0:b2:bb:1a:36:28:00:1e:a6:96:75:29:c0:72:81:40:ae: ad:ad:14:c1:6e:89:2a:bf:ee:2b:99:18:ef:e5:2e:2f:0c:44: 96:8c:3f:4c:94:78:fd:9b:ac:d9:eb:a9:79:ad:48:8b:96:4c: a5:47:d9:da:59:c3:04:55:63:1f:33:48:9e:6d:26:30:16:ab: 8c:7b:fd:a7:c9:2a:c8:9c:90:3d:1f:49:5a:71:24:8f:bd:fc: 34:42:ac:f5:a0:cf:29:92:3d:b2:8e:08:f5:a9:ba:5e:63:bd: b1:72:e7:01:c8:9a:2c:65:ac:cf:26:74:2a:3f:0f:c0:72:9f: c1:23:8a:9d:9c:df:7c:23:07:18:73:a7:4e:6e:69:47:6d:40: b1:52:e1:12:91:b1:47:83:1d:e7:d4:3d:87:1b:45:78:d5:04: 19:82:4b:d2:f7:94:62:32:45:62:42:55:46:8d:11:62:1c:0b: d3:98:52:e4:74:f7:d6:3e:a5:9a:4f:33:24:9b:b9:4b:d2:e9: ad:91:b5:79:56:e7:1d:e4:e7:39:11:25:6f:ee:ef:af:7c:7a: ed:90:76:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC+mjo0W2B888G7ht2bkrz/H7Y6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRG NjYxOENCRTAeFw0yNDA3MDEwMDU5NTdaFw0yNTA2MzAwMTA0NTdaMDMxMTAvBgNV BAMTKDE2Q0FDNTBDODc1MkI4Q0UzNkI0RTQ0NjFBRjY3RTlBNUU1NzVCQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtoMROsi2xAbC7kqZQGXuYejXq V9xDEqq+qRBatCxggJvOCAljk5aRTAFpV0HPXQ2EgfgQqs4hRfQIYr9QoFtpxahP cABfUnovyahSDBrrqimqGiX0RZljvNXftW/n3s5+jwm3dGEshODAU8XIsOwi4H07 UfBqTQy0oAO/F2+I/jeo7GdtpFhipMyx2LU8XxGqF2L94WEBUQDDYfiYcNBf0Bb+ hsbzmumy8azbyn062qGJXs/3JH6z67q/NQokCxybyLyeLxRBXKvMr3iVyD1hc07C QkP3hbUhpQ3BQsaYsbEebv3rKy/xuzfhKFYcAww7BCVt3jZj0ZXbLHKZPETTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFsrFDIdSuM42tORGGvZ+ml5XW8AwHwYDVR0j BBgwFoAUVP8UG+lgE/5rwIFtmRvPtPZhjL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2FmMjcxZi1jODNkLTQ0MWUtYmVhOS0xOGEyNDRkMGUwMGUvMC81NEZGMTQxQkU5 NjAxM0ZFNkJDMDgxNkQ5OTFCQ0ZCNEY2NjE4Q0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTRGRjE0MUJFOTYwMTNGRTZCQzA4MTZEOTkxQkNGQjRGNjYx OENCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYWYyNzFmLWM4M2QtNDQxZS1i ZWE5LTE4YTI0NGQwZTAwZS8wLzMxMzAzMzJlMzIzMTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXkMA0GCSqG SIb3DQEBCwUAA4IBAQA+tO4NaAwxK/xGc5dfanUfJePk42T+7PZR0+4JwvbTFWO6 Smva8LK7GjYoAB6mlnUpwHKBQK6trRTBbokqv+4rmRjv5S4vDESWjD9MlHj9m6zZ 66l5rUiLlkylR9naWcMEVWMfM0iebSYwFquMe/2nySrInJA9H0lacSSPvfw0Qqz1 oM8pkj2yjgj1qbpeY72xcucByJosZazPJnQqPw/Acp/BI4qdnN98IwcYc6dObmlH bUCxUuESkbFHgx3n1D2HG0V41QQZgkvS95RiMkViQlVGjRFiHAvTmFLkdPfWPqWa TzMkm7lL0umtkbV5Vucd5Oc5ESVv7u+vfHrtkHZp -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org