$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa File: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (raw, json) Hash identifier: IDTCNq6vuVqVUdsfrRZBCVj8Qp6bY7fMQVsybLAWItk= Subject key identifier: 18:F2:1A:23:B5:78:1F:BF:63:67:B8:3C:A0:52:0B:AD:61:F7:1E:2D Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 67E72413207D586C1B7D512A63FE1F4CC1900981 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa Signing time: Wed 07 Feb 2024 10:00:01 +0000 ROA not before: Wed 07 Feb 2024 09:55:01 +0000 ROA not after: Wed 05 Feb 2025 10:00:01 +0000 asID: 150922 IP address blocks: 103.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e7:24:13:20:7d:58:6c:1b:7d:51:2a:63:fe:1f:4c:c1:90:09:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Feb 7 09:55:01 2024 GMT Not After : Feb 5 10:00:01 2025 GMT Subject: CN=18F21A23B5781FBF6367B83CA0520BAD61F71E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:10:b4:ad:7a:05:f6:ac:8f:01:78:5f:4f:70: ed:f7:6b:bf:df:23:02:32:a7:ca:6d:d7:5e:65:55: 08:31:87:29:49:f9:b1:65:be:c2:37:a2:5a:41:ff: 1f:2c:f9:0c:03:db:da:4c:15:24:de:18:44:e7:a0: eb:4f:51:ad:70:ee:ab:1b:f6:0b:a3:b5:11:b5:08: c7:bd:f0:a3:ee:28:77:15:ee:7d:94:3d:18:ea:e4: c8:55:91:d7:9c:b0:13:fa:b7:b1:b8:46:b5:14:77: 6f:2f:ae:ae:f9:b4:0a:b1:b2:70:90:94:a0:3b:3f: 5a:60:b0:23:46:c1:d7:ed:ef:6a:73:99:62:bb:d6: 99:c0:f5:f5:1c:04:d7:b3:0f:58:9e:5c:c3:e2:e5: cf:ce:4e:2b:26:30:3c:d3:af:c4:5f:5c:32:c1:23: 2c:b7:02:a8:19:f6:a5:68:0b:b7:85:df:44:f0:dc: fb:5c:a2:64:52:2a:e5:97:2f:63:be:4d:7d:0c:be: fe:01:e7:aa:48:7e:04:76:5f:43:cd:91:e2:10:a0: 8d:17:84:39:30:f9:5c:70:46:da:a6:f7:1b:5e:2e: a3:c2:ea:6c:f5:7b:6f:f5:ae:89:19:f7:26:1f:43: 8c:e2:86:24:8b:0b:6b:ab:5a:9f:7f:1f:83:d9:bb: 26:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F2:1A:23:B5:78:1F:BF:63:67:B8:3C:A0:52:0B:AD:61:F7:1E:2D X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:40:18:b7:0f:f7:26:31:c8:58:5f:dc:d5:8f:1b:71:fc:dd: 64:8d:a9:5d:37:d7:db:03:0c:f8:4c:5b:ca:db:4e:7b:f7:85: 27:2d:a0:99:2c:ce:75:9a:9f:1d:15:72:38:a3:0e:3c:ec:90: ff:bc:1b:93:1b:7d:af:73:68:84:c4:6a:39:0f:2d:18:51:da: 53:ad:cb:70:e3:1d:33:35:36:3c:e7:07:49:b5:18:ab:29:5e: b3:24:6a:dc:c7:69:fa:fe:34:db:04:d7:10:21:22:01:7f:72: 2f:a0:3d:ff:5f:6b:0d:5f:d5:13:4a:08:8c:0e:78:08:c4:e3: 13:e7:e4:0b:c0:51:ad:d5:7d:f5:3a:36:6d:1b:9a:1b:ba:08: de:1e:75:a4:32:7b:b9:22:23:b3:64:04:c9:23:25:5d:e5:7f: 11:75:2e:ab:5e:1b:45:83:eb:15:11:38:f2:2a:c5:59:0c:94: ef:ae:1c:b0:1f:e8:2c:c3:bc:0d:97:21:50:24:a6:78:76:3d: b5:9c:d6:e7:c2:01:98:1b:26:42:fa:8f:46:28:55:62:4f:c3: bb:cb:97:15:e9:ad:3f:1e:5a:66:45:f9:9d:ac:26:8a:af:38: 57:90:62:b5:df:9b:fa:90:7d:89:68:04:4b:62:7c:2e:1a:3b: 1d:c6:b7:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ+ckEyB9WGwbfVEqY/4fTMGQCYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNDAyMDcwOTU1MDFaFw0yNTAyMDUxMDAwMDFaMDMxMTAvBgNV BAMTKDE4RjIxQTIzQjU3ODFGQkY2MzY3QjgzQ0EwNTIwQkFENjFGNzFFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOELStegX2rI8BeF9PcO33a7/f IwIyp8pt115lVQgxhylJ+bFlvsI3olpB/x8s+QwD29pMFSTeGETnoOtPUa1w7qsb 9gujtRG1CMe98KPuKHcV7n2UPRjq5MhVkdecsBP6t7G4RrUUd28vrq75tAqxsnCQ lKA7P1pgsCNGwdft72pzmWK71pnA9fUcBNezD1ieXMPi5c/OTismMDzTr8RfXDLB Iyy3AqgZ9qVoC7eF30Tw3PtcomRSKuWXL2O+TX0Mvv4B56pIfgR2X0PNkeIQoI0X hDkw+VxwRtqm9xteLqPC6mz1e2/1rokZ9yYfQ4zihiSLC2urWp9/H4PZuya5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGPIaI7V4H79jZ7g8oFILrWH3Hi0wHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNDANBgkqhkiG 9w0BAQsFAAOCAQEAW0AYtw/3JjHIWF/c1Y8bcfzdZI2pXTfX2wMM+ExbyttOe/eF Jy2gmSzOdZqfHRVyOKMOPOyQ/7wbkxt9r3NohMRqOQ8tGFHaU63LcOMdMzU2POcH SbUYqylesyRq3Mdp+v402wTXECEiAX9yL6A9/19rDV/VE0oIjA54CMTjE+fkC8BR rdV99To2bRuaG7oI3h51pDJ7uSIjs2QEySMlXeV/EXUuq14bRYPrFRE48irFWQyU 764csB/oLMO8DZchUCSmeHY9tZzW58IBmBsmQvqPRihVYk/Du8uXFemtPx5aZkX5 nawmiq84V5Bitd+b+pB9iWgES2J8Lho7Hca3sA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org