$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa File: 3130332e33382e3130302e302f32322d3232203d3e203338353234.roa (raw, json) Hash identifier: nz4rr3pSEniwJ2sJ0WS8moHAYDMjSuxpUk+Qv5LKLM0= Subject key identifier: ED:4D:88:5F:DE:FB:32:84:3D:2A:70:4C:14:91:1C:97:C3:09:18:9A Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 20C7F735762F95B48276A7A044A41FB95BD3CD64 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:43 +0000 ROA not before: Mon 01 Jul 2024 00:58:43 +0000 ROA not after: Mon 30 Jun 2025 01:03:43 +0000 asID: 38524 IP address blocks: 103.38.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c7:f7:35:76:2f:95:b4:82:76:a7:a0:44:a4:1f:b9:5b:d3:cd:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:43 2024 GMT Not After : Jun 30 01:03:43 2025 GMT Subject: CN=ED4D885FDEFB32843D2A704C14911C97C309189A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:82:5e:05:a3:8a:8d:5f:d1:66:23:ca:9c:05: e8:0c:c1:cf:36:3d:03:83:c7:a4:46:4c:db:a7:18: 60:02:51:d4:fa:14:8d:ce:66:75:50:23:48:3c:6a: 2a:96:8a:9b:d7:14:28:9c:0f:fc:c4:c7:fc:9c:bf: 33:0c:d1:78:8b:aa:25:4b:1c:26:f7:6b:29:f7:f5: f3:b1:ec:a6:53:9c:96:c1:cd:08:c6:a9:83:8e:c2: 0f:78:3d:b9:1a:1a:c7:35:b7:1b:00:46:1f:cd:4a: 7e:21:00:86:bc:98:fd:9a:0f:ed:08:33:3a:a3:d3: f5:2a:f1:97:d0:f2:84:d3:b1:6b:4c:78:3c:3d:de: ad:25:ef:3f:82:ec:f4:f8:f0:4c:2f:76:c4:2f:b4: a0:1b:b9:03:40:e4:bc:64:c2:41:48:68:9f:bd:24: 6e:2c:66:dd:b3:5d:5f:a7:db:86:a8:e7:4e:9f:36: 2d:ae:88:32:10:ce:2e:33:84:65:d0:3a:96:6d:b3: eb:7d:3f:07:56:f8:0a:45:a2:b0:e4:81:7f:36:89: eb:f8:49:4a:42:0e:51:3c:4b:61:0b:bb:c1:f0:cd: 9c:5b:c7:f0:56:2b:bf:a3:a5:2f:6a:7f:8d:bf:38: 44:df:a9:7e:dc:33:c3:9e:64:28:c5:e8:c4:55:86: 6e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:4D:88:5F:DE:FB:32:84:3D:2A:70:4C:14:91:1C:97:C3:09:18:9A X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32322d3232203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.100.0/22 Signature Algorithm: sha256WithRSAEncryption 95:85:88:db:4a:5d:34:64:e9:36:18:0e:56:22:4e:98:73:40: 68:cd:39:9d:48:5f:d9:16:5e:d8:2a:9b:11:ca:83:fb:a5:2f: 5e:48:a5:e9:25:fd:11:a9:da:87:6c:8f:b3:50:8e:5e:e5:c7: d8:79:db:c5:0d:c5:3a:46:9f:67:c1:2a:25:75:52:ed:71:eb: f5:b6:71:72:dc:97:0e:bc:2c:ce:40:44:c6:4a:46:6b:7a:ba: 37:82:00:4c:72:c9:fe:1a:0d:c4:f8:b8:36:6f:b8:5f:7d:0b: 23:21:62:14:67:d7:40:87:5c:08:71:62:8a:5e:3c:6c:de:25: be:59:f9:92:91:c1:1d:b2:84:74:ff:c7:b3:4f:6d:a9:87:95: be:7a:9a:49:65:3b:ab:b7:cd:48:71:17:28:7e:23:21:49:41: 3d:0c:bd:db:3e:15:41:41:80:9a:13:6e:63:47:30:d6:9d:83: 4c:88:a0:bc:f8:97:51:15:43:87:39:9f:5d:b2:2a:c2:4e:c8: 2d:48:9e:78:7f:a7:2e:ed:6b:e8:49:01:da:db:21:16:17:b1: b9:6c:d7:a9:b4:e3:72:b4:75:16:e4:b6:20:f9:49:36:66:cc: ab:2d:72:fa:02:fe:d0:1c:3e:c7:2b:03:46:51:53:f0:e3:16: ed:bb:10:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIMf3NXYvlbSCdqegRKQfuVvTzWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDNaFw0yNTA2MzAwMTAzNDNaMDMxMTAvBgNV BAMTKEVENEQ4ODVGREVGQjMyODQzRDJBNzA0QzE0OTExQzk3QzMwOTE4OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOgl4Fo4qNX9FmI8qcBegMwc82 PQODx6RGTNunGGACUdT6FI3OZnVQI0g8aiqWipvXFCicD/zEx/ycvzMM0XiLqiVL HCb3ayn39fOx7KZTnJbBzQjGqYOOwg94PbkaGsc1txsARh/NSn4hAIa8mP2aD+0I Mzqj0/Uq8ZfQ8oTTsWtMeDw93q0l7z+C7PT48EwvdsQvtKAbuQNA5LxkwkFIaJ+9 JG4sZt2zXV+n24ao506fNi2uiDIQzi4zhGXQOpZts+t9PwdW+ApForDkgX82iev4 SUpCDlE8S2ELu8HwzZxbx/BWK7+jpS9qf42/OETfqX7cM8OeZCjF6MRVhm73AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7U2IX977MoQ9KnBMFJEcl8MJGJowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcmZDANBgkqhkiG 9w0BAQsFAAOCAQEAlYWI20pdNGTpNhgOViJOmHNAaM05nUhf2RZe2CqbEcqD+6Uv Xkil6SX9Eanah2yPs1COXuXH2HnbxQ3FOkafZ8EqJXVS7XHr9bZxctyXDrwszkBE xkpGa3q6N4IATHLJ/hoNxPi4Nm+4X30LIyFiFGfXQIdcCHFiil48bN4lvln5kpHB HbKEdP/Hs09tqYeVvnqaSWU7q7fNSHEXKH4jIUlBPQy92z4VQUGAmhNuY0cw1p2D TIigvPiXURVDhzmfXbIqwk7ILUieeH+nLu1r6EkB2tshFhexuWzXqbTjcrR1FuS2 IPlJNmbMqy1y+gL+0Bw+xysDRlFT8OMW7bsQeg== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org