$ rpki-client -vvf repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: mtf1xMtoJbLE8Jx2IVqXk1cBVj2Aj8ZoG4gK6+pogqs= Subject key identifier: 66:13:25:95:AE:26:E5:97:B5:E7:D5:25:B1:C4:DC:FB:C2:51:A4:87 Certificate issuer: /CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Certificate serial: 3113AE39750664026DB2FF90A41130F01ABDB42A Authority key identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa Signing time: Tue 28 May 2024 07:00:00 +0000 ROA not before: Tue 28 May 2024 06:55:00 +0000 ROA not after: Tue 27 May 2025 07:00:00 +0000 asID: 4800 IP address blocks: 103.191.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:13:ae:39:75:06:64:02:6d:b2:ff:90:a4:11:30:f0:1a:bd:b4:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Validity Not Before: May 28 06:55:00 2024 GMT Not After : May 27 07:00:00 2025 GMT Subject: CN=66132595AE26E597B5E7D525B1C4DCFBC251A487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:83:94:b2:35:af:7a:ac:07:97:97:58:91:ac: c0:d5:a7:1c:87:af:e1:5f:1f:99:4a:1e:41:2e:50: f2:53:c0:33:d3:5f:be:1e:1d:23:b2:37:f8:c9:4d: 2c:32:83:64:c3:68:5f:10:63:73:03:84:6d:11:0c: 5f:04:c1:b7:f1:a9:6f:ee:99:87:1e:04:fb:7a:f2: be:2a:fd:67:20:d5:d0:7d:99:9f:cd:8e:04:f4:6a: 98:c2:15:ea:f9:29:5a:19:9d:f5:4d:da:fa:7e:54: 0b:ff:a1:cc:67:4b:33:91:96:e7:a4:6f:7c:ec:cf: 9f:73:e0:87:45:d9:e3:9f:9e:c0:41:35:78:6d:9e: 94:a2:3a:ce:7e:76:25:24:64:de:66:48:76:7e:9a: 42:81:2d:aa:ce:e1:5c:63:c8:0a:4b:79:82:a2:0e: 3a:00:45:c1:83:43:98:cc:bd:7a:bb:1a:d6:86:17: 4c:8d:b3:35:e3:60:61:13:f9:65:ce:8a:30:69:b9: 5d:e6:7d:4f:c4:91:ab:0e:0f:6e:15:ab:30:c0:3d: c7:a6:77:56:46:ec:e0:b6:cd:a9:ab:eb:53:a8:ef: f1:eb:ed:3b:d3:19:85:ba:c7:23:9d:82:34:1a:a5: 0b:fa:37:cd:c3:0b:c4:2c:d0:28:ed:42:30:ce:f0: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:13:25:95:AE:26:E5:97:B5:E7:D5:25:B1:C4:DC:FB:C2:51:A4:87 X509v3 Authority Key Identifier: keyid:29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.176.0/23 Signature Algorithm: sha256WithRSAEncryption a2:d1:3d:64:c8:35:7b:e1:90:78:3c:33:eb:4e:1f:9f:0b:c6: e8:7e:7f:ff:65:93:d9:46:63:ae:bc:44:37:f6:b4:9e:44:01: 06:f3:8f:59:40:e3:e8:ff:6f:2d:ef:ab:7f:63:85:6b:88:a0: 44:64:34:52:1b:67:3b:2d:13:80:70:07:0f:06:f0:73:a3:4b: 54:79:03:c4:bb:42:4d:05:5f:f5:64:f3:94:97:20:aa:73:00: a6:e6:2d:f0:ba:0a:57:50:11:0b:1e:a6:44:92:35:85:33:2a: 0c:47:a9:b1:5b:32:f7:6b:2b:4d:85:d4:13:0e:0e:02:22:d4: 2a:03:02:83:24:34:e9:8f:f8:d5:0d:c1:11:86:5b:f6:80:41: 7f:8e:18:07:ae:91:a3:a0:8e:06:6b:f6:03:db:34:a7:2d:97: d1:7c:ca:23:2f:05:82:38:cc:5f:db:6a:26:17:bd:e7:16:78: d1:34:0a:3d:f9:24:61:ad:aa:8e:af:71:d7:02:59:9c:a4:af: f1:c7:57:9c:64:e4:bf:22:82:a8:d6:22:c6:04:3a:61:e1:ae: 2a:de:82:60:97:da:2c:e5:c1:5f:dd:95:5f:30:dc:a5:14:5f: 0b:9a:0b:5d:14:2b:8c:60:18:4f:a1:db:2d:28:83:47:e6:85: 48:5a:34:28 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMROuOXUGZAJtsv+QpBEw8Bq9tCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3 QzVCRDJBNDAeFw0yNDA1MjgwNjU1MDBaFw0yNTA1MjcwNzAwMDBaMDMxMTAvBgNV BAMTKDY2MTMyNTk1QUUyNkU1OTdCNUU3RDUyNUIxQzREQ0ZCQzI1MUE0ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDig5SyNa96rAeXl1iRrMDVpxyH r+FfH5lKHkEuUPJTwDPTX74eHSOyN/jJTSwyg2TDaF8QY3MDhG0RDF8EwbfxqW/u mYceBPt68r4q/Wcg1dB9mZ/NjgT0apjCFer5KVoZnfVN2vp+VAv/ocxnSzORluek b3zsz59z4IdF2eOfnsBBNXhtnpSiOs5+diUkZN5mSHZ+mkKBLarO4VxjyApLeYKi DjoARcGDQ5jMvXq7GtaGF0yNszXjYGET+WXOijBpuV3mfU/EkasOD24VqzDAPcem d1ZG7OC2zamr61Oo7/Hr7TvTGYW6xyOdgjQapQv6N83DC8Qs0CjtQjDO8HinAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZhMlla4m5Ze159UlscTc+8JRpIcwHwYDVR0j BBgwFoAUKc8A21whCcS1CQk1NoyaxXxb0qQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTIyYjRlMi0yNmY2LTQxZTgtODkxMC0yMDZiZWE3ODNkYjkvMC8yOUNGMDBEQjVD MjEwOUM0QjUwOTA5MzUzNjhDOUFDNTdDNUJEMkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3QzVC RDJBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMjJiNGUyLTI2ZjYtNDFlOC04 OTEwLTIwNmJlYTc4M2RiOS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/sDANBgkqhkiG 9w0BAQsFAAOCAQEAotE9ZMg1e+GQeDwz604fnwvG6H5//2WT2UZjrrxEN/a0nkQB BvOPWUDj6P9vLe+rf2OFa4igRGQ0UhtnOy0TgHAHDwbwc6NLVHkDxLtCTQVf9WTz lJcgqnMApuYt8LoKV1ARCx6mRJI1hTMqDEepsVsy92srTYXUEw4OAiLUKgMCgyQ0 6Y/41Q3BEYZb9oBBf44YB66Ro6COBmv2A9s0py2X0XzKIy8FgjjMX9tqJhe95xZ4 0TQKPfkkYa2qjq9x1wJZnKSv8cdXnGTkvyKCqNYixgQ6YeGuKt6CYJfaLOXBX92V XzDcpRRfC5oLXRQrjGAYT6HbLSiDR+aFSFo0KA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:32 2024 by rpki-client on console-ams.rpki-client.org