$ rpki-client -vvf repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/3130332e3131302e33352e302f32342d3234203d3e203438343635.roa File: 3130332e3131302e33352e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: DzNgbtb37FHgf8PUTDgM1fK08dGiOXOjHj1Mn5GUPVY= Subject key identifier: 20:F0:AD:F7:37:A9:B9:10:A4:3A:18:32:26:4D:0C:77:73:80:9A:6D Certificate issuer: /CN=E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12 Certificate serial: 3947AB4ACC77C794429A9FCB41D75BC0406B219E Authority key identifier: E1:F7:E7:39:D5:E9:2C:EF:AA:F8:DB:4F:DE:24:B4:02:DF:2F:5F:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/3130332e3131302e33352e302f32342d3234203d3e203438343635.roa Signing time: Mon 15 Jul 2024 03:09:33 +0000 ROA not before: Mon 15 Jul 2024 03:04:33 +0000 ROA not after: Mon 14 Jul 2025 03:09:33 +0000 asID: 48465 IP address blocks: 103.110.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.crl rsync://repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:47:ab:4a:cc:77:c7:94:42:9a:9f:cb:41:d7:5b:c0:40:6b:21:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12 Validity Not Before: Jul 15 03:04:33 2024 GMT Not After : Jul 14 03:09:33 2025 GMT Subject: CN=20F0ADF737A9B910A43A1832264D0C7773809A6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:06:51:9d:15:f1:41:b4:35:bf:ac:47:3f:65: c5:31:43:85:3e:14:43:0f:58:c2:30:37:f2:d3:4a: 60:71:e9:02:2c:d0:da:92:b3:77:01:cc:37:6f:e3: f8:17:ca:e3:f6:fa:66:be:50:c1:18:d2:e4:01:c2: b8:03:66:f9:95:59:b8:05:17:f8:10:0e:1c:5e:fd: 10:ff:7c:ad:3b:16:5f:1d:39:be:8e:2e:84:98:2d: 7c:be:3f:ee:b9:eb:f5:27:ca:dd:b0:0a:2b:b8:07: cb:70:d9:95:c3:cc:20:89:5a:66:a8:cf:17:56:fc: 2a:77:2e:c6:51:8b:36:f1:d6:05:d1:1a:67:0d:91: 02:0f:ae:69:75:db:ff:94:9b:98:62:27:8a:75:33: 77:0b:23:b0:f1:a4:9a:c8:aa:e5:80:37:85:e0:44: e0:07:e3:13:25:52:1c:26:9a:9e:bc:dc:6c:35:22: 28:b6:06:7e:37:7e:6c:4c:cb:5d:9a:db:ee:f2:a1: 4e:ea:f8:73:30:71:d9:1e:40:b5:4f:99:f9:5f:25: 97:a1:ec:ce:da:1e:6b:7c:7d:bd:79:45:58:4c:d6: e3:e6:92:14:01:44:99:4f:dc:e4:22:3a:19:c5:72: ed:b9:0f:b5:1a:db:8a:39:1c:9f:ef:6b:64:07:ce: 70:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F0:AD:F7:37:A9:B9:10:A4:3A:18:32:26:4D:0C:77:73:80:9A:6D X509v3 Authority Key Identifier: keyid:E1:F7:E7:39:D5:E9:2C:EF:AA:F8:DB:4F:DE:24:B4:02:DF:2F:5F:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1F7E739D5E92CEFAAF8DB4FDE24B402DF2F5F12.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74bf07cf-50a9-428a-90d2-d44d6b762b55/0/3130332e3131302e33352e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.35.0/24 Signature Algorithm: sha256WithRSAEncryption bc:d1:49:c9:30:40:90:f7:04:ca:33:2b:64:b8:9f:fb:5f:b3: dd:14:f8:db:6a:99:11:07:ed:9d:13:9d:6c:25:39:43:65:cd: 17:d8:86:90:69:81:cf:00:e9:96:80:99:76:7f:36:a9:9d:c7: 86:59:86:0c:d7:be:56:0f:cd:ba:3c:84:4c:15:d8:a2:c3:9b: 8e:c7:f3:f8:66:18:55:c8:95:45:1e:dc:61:87:b3:e2:ad:91: af:6d:df:d9:8a:02:57:00:5a:d5:e0:79:be:9b:1d:cb:56:a9: ae:a0:ba:53:76:ae:b4:9e:73:81:d9:b1:bf:21:3e:7b:f3:5b: 4f:ae:7f:c4:96:6a:51:6c:73:55:ee:07:e1:a0:4f:0c:1a:cc: 2d:d7:51:68:f5:94:4f:fa:7e:52:f2:95:fe:0f:9f:0a:67:51: 07:71:6f:eb:c7:9c:38:f2:c2:97:3a:d6:13:a2:cb:5b:99:58: 2c:68:98:d5:56:86:fc:ae:89:9f:ef:40:bf:e6:4f:3f:eb:11: e1:c3:f2:c4:3f:b1:93:aa:fa:e2:8e:69:c3:e1:79:ee:40:e5: 01:48:61:bf:9e:6c:2f:2e:b2:bf:f2:45:ff:fd:82:60:57:96: 21:12:eb:78:e5:f1:91:c8:a9:64:05:6e:f4:9b:4b:1b:bc:07: f8:ab:45:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOUerSsx3x5RCmp/LQddbwEBrIZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFGN0U3MzlENUU5MkNFRkFBRjhEQjRGREUyNEI0MDJE RjJGNUYxMjAeFw0yNDA3MTUwMzA0MzNaFw0yNTA3MTQwMzA5MzNaMDMxMTAvBgNV BAMTKDIwRjBBREY3MzdBOUI5MTBBNDNBMTgzMjI2NEQwQzc3NzM4MDlBNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHBlGdFfFBtDW/rEc/ZcUxQ4U+ FEMPWMIwN/LTSmBx6QIs0NqSs3cBzDdv4/gXyuP2+ma+UMEY0uQBwrgDZvmVWbgF F/gQDhxe/RD/fK07Fl8dOb6OLoSYLXy+P+656/Unyt2wCiu4B8tw2ZXDzCCJWmao zxdW/Cp3LsZRizbx1gXRGmcNkQIPrml12/+Um5hiJ4p1M3cLI7DxpJrIquWAN4Xg ROAH4xMlUhwmmp683Gw1Iii2Bn43fmxMy12a2+7yoU7q+HMwcdkeQLVPmflfJZeh 7M7aHmt8fb15RVhM1uPmkhQBRJlP3OQiOhnFcu25D7Ua24o5HJ/va2QHznCjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIPCt9zepuRCkOhgyJk0Md3OAmm0wHwYDVR0j BBgwFoAU4ffnOdXpLO+q+NtP3iS0At8vXxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NGJmMDdjZi01MGE5LTQyOGEtOTBkMi1kNDRkNmI3NjJiNTUvMC9FMUY3RTczOUQ1 RTkyQ0VGQUFGOERCNEZERTI0QjQwMkRGMkY1RjEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFGN0U3MzlENUU5MkNFRkFBRjhEQjRGREUyNEI0MDJERjJG NUYxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0YmYwN2NmLTUwYTktNDI4YS05 MGQyLWQ0NGQ2Yjc2MmI1NS8wLzMxMzAzMzJlMzEzMTMwMmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGduIzANBgkqhkiG 9w0BAQsFAAOCAQEAvNFJyTBAkPcEyjMrZLif+1+z3RT422qZEQftnROdbCU5Q2XN F9iGkGmBzwDploCZdn82qZ3HhlmGDNe+Vg/NujyETBXYosObjsfz+GYYVciVRR7c YYez4q2Rr23f2YoCVwBa1eB5vpsdy1aprqC6U3autJ5zgdmxvyE+e/NbT65/xJZq UWxzVe4H4aBPDBrMLddRaPWUT/p+UvKV/g+fCmdRB3Fv68ecOPLClzrWE6LLW5lY LGiY1VaG/K6Jn+9Av+ZPP+sR4cPyxD+xk6r64o5pw+F57kDlAUhhv55sLy6yv/JF //2CYFeWIRLreOXxkcipZAVu9JtLG7wH+KtFkw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org