$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130332e302f32342d3234203d3e203338353234.roa File: 3130332e33382e3130332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: /9R1ReNA7yIKc88J9jHC5L6du1TTZ2fDD5L1jPrYs0Q= Subject key identifier: A7:20:26:1E:3E:0F:9B:AC:54:28:7A:0D:8B:DE:6F:C9:6C:D6:DA:8B Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 6ED65ABDE5A1A83383F542323306DF9878037722 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130332e302f32342d3234203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:44 +0000 ROA not before: Mon 01 Jul 2024 00:58:44 +0000 ROA not after: Mon 30 Jun 2025 01:03:44 +0000 asID: 38524 IP address blocks: 103.38.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d6:5a:bd:e5:a1:a8:33:83:f5:42:32:33:06:df:98:78:03:77:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:44 2024 GMT Not After : Jun 30 01:03:44 2025 GMT Subject: CN=A720261E3E0F9BAC54287A0D8BDE6FC96CD6DA8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:85:2d:11:d8:0d:b5:34:8e:29:f4:43:e5:36: 2b:34:62:db:89:d2:6d:46:82:af:b5:3e:e4:5a:31: 22:3f:23:b3:a7:9e:d4:a8:32:e5:00:11:b2:38:6e: ae:b5:fa:fa:02:94:6f:e6:39:dd:d8:e1:7e:ce:52: 84:f4:e9:da:8b:6c:3f:9f:ee:73:0a:9c:df:04:69: 48:5b:4c:4f:eb:dd:52:76:32:a0:ce:d9:c1:a8:6c: 2a:58:81:0d:52:c0:8b:b8:d2:a2:31:fc:18:3c:45: 2e:cb:24:ce:6a:af:e4:68:47:30:6b:65:77:df:5a: 3d:d3:6f:67:3c:ce:8b:04:37:f3:22:1c:0c:3e:85: 61:c3:bc:32:24:94:dd:49:24:94:e7:60:bd:de:92: df:a5:d0:3c:c5:33:ca:33:f7:25:42:2b:43:24:77: a7:f0:f6:78:73:e8:45:b9:e4:de:8b:4c:50:ab:ef: d7:2a:7d:76:fc:2b:e8:31:45:90:b8:ad:e9:0b:15: 55:ce:de:84:a2:ca:de:5f:c3:a4:9d:9b:f3:d4:a9: b1:cb:55:db:61:df:ca:4f:f7:2c:1f:b8:c2:17:6f: 93:36:77:76:a3:57:c5:35:d9:31:c3:5f:fd:0f:db: e4:95:02:65:6e:b6:e2:6a:4b:9f:1b:80:a8:39:a0: 5a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:20:26:1E:3E:0F:9B:AC:54:28:7A:0D:8B:DE:6F:C9:6C:D6:DA:8B X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.103.0/24 Signature Algorithm: sha256WithRSAEncryption 72:a2:c4:0b:64:f3:f8:bf:13:64:c3:d6:f3:5d:5f:3f:d0:69: b2:1b:68:2d:8b:9d:81:08:13:13:6e:72:e0:96:ee:ba:fb:2f: a0:87:a9:19:05:9f:89:09:be:df:09:1e:82:7d:e9:ec:9f:12: 16:f9:8d:c8:6b:9d:e7:4a:89:9d:29:0f:84:d1:81:a6:50:c6: 65:bf:1d:cd:42:57:ef:f4:f2:19:36:3e:59:86:18:ff:c0:d4: 88:2d:b7:56:79:be:7a:3a:4b:f4:fb:0a:69:25:52:ea:e4:94: b4:ff:d9:eb:fc:57:46:23:d1:85:48:55:16:d8:c7:04:bd:84: 77:f4:ec:9a:79:a7:b7:74:85:c2:85:df:0d:0a:96:0b:58:97: af:69:0e:79:0e:85:a5:86:5d:ad:aa:05:71:2c:66:bf:1c:a6: 9a:1d:58:f6:ac:77:b1:f5:29:36:4f:ac:c6:c7:74:e3:4d:85: 99:e8:e7:62:7a:54:17:1c:dd:db:90:c0:86:ed:47:74:45:20: 6b:7f:ef:04:39:23:f3:5e:dc:77:d5:43:06:f7:ce:1a:f5:1a: 67:5c:28:84:16:00:b2:94:f2:ed:0d:d8:36:5e:9d:b0:b4:f0: fa:b8:0d:b2:7d:8e:0d:a8:cd:22:4b:ca:af:3a:ec:fb:76:40: 40:5d:26:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbtZaveWhqDOD9UIyMwbfmHgDdyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDRaFw0yNTA2MzAwMTAzNDRaMDMxMTAvBgNV BAMTKEE3MjAyNjFFM0UwRjlCQUM1NDI4N0EwRDhCREU2RkM5NkNENkRBOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrhS0R2A21NI4p9EPlNis0YtuJ 0m1Ggq+1PuRaMSI/I7OnntSoMuUAEbI4bq61+voClG/mOd3Y4X7OUoT06dqLbD+f 7nMKnN8EaUhbTE/r3VJ2MqDO2cGobCpYgQ1SwIu40qIx/Bg8RS7LJM5qr+RoRzBr ZXffWj3Tb2c8zosEN/MiHAw+hWHDvDIklN1JJJTnYL3ekt+l0DzFM8oz9yVCK0Mk d6fw9nhz6EW55N6LTFCr79cqfXb8K+gxRZC4rekLFVXO3oSiyt5fw6Sdm/PUqbHL Vdth38pP9ywfuMIXb5M2d3ajV8U12THDX/0P2+SVAmVutuJqS58bgKg5oFqRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpyAmHj4Pm6xUKHoNi95vyWzW2oswHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMxMzAzMzJlMzMzODJlMzEzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcmZzANBgkqhkiG 9w0BAQsFAAOCAQEAcqLEC2Tz+L8TZMPW811fP9BpshtoLYudgQgTE25y4Jbuuvsv oIepGQWfiQm+3wkegn3p7J8SFvmNyGud50qJnSkPhNGBplDGZb8dzUJX7/TyGTY+ WYYY/8DUiC23Vnm+ejpL9PsKaSVS6uSUtP/Z6/xXRiPRhUhVFtjHBL2Ed/Tsmnmn t3SFwoXfDQqWC1iXr2kOeQ6FpYZdraoFcSxmvxymmh1Y9qx3sfUpNk+sxsd0402F mejnYnpUFxzd25DAhu1HdEUga3/vBDkj817cd9VDBvfOGvUaZ1wohBYAspTy7Q3Y Nl6dsLTw+rgNsn2ODajNIkvKrzrs+3ZAQF0mbQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org