$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa File: 3130332e33382e3130302e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: 5ppYVuoYQyz/bQ7f7LrJvWo/wmvUf3p1wkVOWOcoxcs= Subject key identifier: 62:8B:8B:7E:AC:25:22:6F:5F:3D:3D:48:39:EE:42:D3:DD:81:E5:B3 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 0E5A563ECD75172DD55322E42FA7B5954D5A767D Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:45 +0000 ROA not before: Mon 01 Jul 2024 00:58:45 +0000 ROA not after: Mon 30 Jun 2025 01:03:45 +0000 asID: 38524 IP address blocks: 103.38.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:5a:56:3e:cd:75:17:2d:d5:53:22:e4:2f:a7:b5:95:4d:5a:76:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:45 2024 GMT Not After : Jun 30 01:03:45 2025 GMT Subject: CN=628B8B7EAC25226F5F3D3D4839EE42D3DD81E5B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f8:28:92:43:b5:44:fe:ce:be:a0:b0:b5:b9: 43:82:31:63:4b:42:1a:b1:f7:42:fb:c1:58:f0:3f: a9:40:ae:c6:b4:74:7e:98:9c:55:23:81:29:88:41: 1f:d7:0d:42:e0:73:e0:cb:e5:e7:63:66:44:1e:ad: 33:e8:34:e9:ad:62:c7:61:5b:3e:25:4c:e7:36:69: 56:7d:f0:ba:e8:eb:65:5f:96:5d:6b:8d:bb:d2:cf: 9c:d4:44:8f:4a:c4:ae:f4:10:68:36:91:c3:6f:f4: 92:2e:4f:73:c0:7f:e1:15:b2:90:56:54:2d:35:80: 5f:17:6f:59:0f:2d:5f:a2:aa:5e:17:34:3a:b6:dc: f8:2c:a9:e6:50:e6:1d:15:83:73:87:1f:8b:2a:03: d0:f6:57:aa:93:8a:21:2e:af:c8:8a:c2:2e:f6:d9: 8d:a1:88:ff:cc:b4:67:b2:6e:41:30:22:90:19:99: a5:e5:44:04:1d:71:51:b7:c2:77:6f:62:bc:9e:4a: 80:d8:69:e8:93:42:b7:93:1a:cc:54:ba:02:ca:47: 26:0d:95:68:04:95:42:2f:1b:6a:8e:65:3d:0a:79: 32:ba:02:5e:dd:b8:98:cb:b8:77:a7:d1:d3:a6:6f: 5c:2c:d3:dc:37:2f:b4:06:86:fe:41:2d:26:3c:5b: b6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8B:8B:7E:AC:25:22:6F:5F:3D:3D:48:39:EE:42:D3:DD:81:E5:B3 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.100.0/24 Signature Algorithm: sha256WithRSAEncryption 02:e0:df:6e:30:03:e6:d8:c4:5e:00:42:55:db:48:6c:17:20: 14:50:52:ce:66:37:2c:9f:be:61:bd:be:d8:61:26:ee:e7:fe: ad:73:b6:06:8d:44:89:db:8d:a4:53:25:0a:ef:bc:b8:a0:44: ee:08:87:0c:9a:d6:eb:72:de:ad:5a:c9:2d:b2:00:84:95:07: 36:e5:85:6e:18:e8:4f:10:9b:3d:f8:73:ac:a7:b7:d4:da:ee: 82:4e:85:af:d9:a6:c8:4b:87:ec:b1:01:09:6e:94:92:ef:d8: 41:33:31:53:fa:df:28:dd:89:ea:88:da:62:c3:bb:06:f0:76: ca:d9:a8:12:11:e8:f0:eb:ba:ed:d3:a2:a8:4c:7f:68:02:a1: e2:a0:6c:0f:7d:25:a3:0d:e8:6e:68:c1:3b:b8:97:1e:87:6b: 54:ac:b5:d3:ef:58:18:ca:de:33:10:fa:73:a6:cc:54:06:47: d1:74:f3:ac:a0:51:46:f3:68:3d:02:10:e4:05:32:c7:4c:27: 2d:65:41:10:15:5d:15:b4:18:3a:56:80:7e:bc:86:ad:aa:64: 93:06:3e:17:aa:de:50:a5:95:0d:1b:1f:d0:b4:c6:76:d4:c1: 0a:05:5f:89:97:6d:61:77:17:ae:06:4d:69:58:b5:6d:7e:78: b0:20:8d:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDlpWPs11Fy3VUyLkL6e1lU1adn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDVaFw0yNTA2MzAwMTAzNDVaMDMxMTAvBgNV BAMTKDYyOEI4QjdFQUMyNTIyNkY1RjNEM0Q0ODM5RUU0MkQzREQ4MUU1QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt+CiSQ7VE/s6+oLC1uUOCMWNL Qhqx90L7wVjwP6lArsa0dH6YnFUjgSmIQR/XDULgc+DL5edjZkQerTPoNOmtYsdh Wz4lTOc2aVZ98Lro62Vfll1rjbvSz5zURI9KxK70EGg2kcNv9JIuT3PAf+EVspBW VC01gF8Xb1kPLV+iql4XNDq23PgsqeZQ5h0Vg3OHH4sqA9D2V6qTiiEur8iKwi72 2Y2hiP/MtGeybkEwIpAZmaXlRAQdcVG3wndvYryeSoDYaeiTQreTGsxUugLKRyYN lWgElUIvG2qOZT0KeTK6Al7duJjLuHen0dOmb1ws09w3L7QGhv5BLSY8W7bRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYouLfqwlIm9fPT1IOe5C092B5bMwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcmZDANBgkqhkiG 9w0BAQsFAAOCAQEAAuDfbjAD5tjEXgBCVdtIbBcgFFBSzmY3LJ++Yb2+2GEm7uf+ rXO2Bo1EiduNpFMlCu+8uKBE7giHDJrW63LerVrJLbIAhJUHNuWFbhjoTxCbPfhz rKe31Nrugk6Fr9mmyEuH7LEBCW6Uku/YQTMxU/rfKN2J6ojaYsO7BvB2ytmoEhHo 8Ou67dOiqEx/aAKh4qBsD30low3obmjBO7iXHodrVKy10+9YGMreMxD6c6bMVAZH 0XTzrKBRRvNoPQIQ5AUyx0wnLWVBEBVdFbQYOlaAfryGrapkkwY+F6reUKWVDRsf 0LTGdtTBCgVfiZdtYXcXrgZNaVi1bX54sCCNqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org