$ rpki-client -vvf repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130322e302f32342d3234203d3e203634303237.roa File: 3130332e3231342e3130322e302f32342d3234203d3e203634303237.roa (raw, json) Hash identifier: TsbQSh0EleeESQUK/usKxqoHHOIBh1gp9BKJgqAFN50= Subject key identifier: BE:C4:67:B3:70:13:18:A6:33:ED:EC:F5:A0:1A:EB:03:50:E2:37:77 Certificate issuer: /CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410 Certificate serial: 436D6D681458AB24F17E297FE88B9FA0CA8EFF65 Authority key identifier: 13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130322e302f32342d3234203d3e203634303237.roa Signing time: Mon 15 Jul 2024 22:00:02 +0000 ROA not before: Mon 15 Jul 2024 21:55:02 +0000 ROA not after: Mon 14 Jul 2025 22:00:02 +0000 asID: 64027 IP address blocks: 103.214.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.crl rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:6d:6d:68:14:58:ab:24:f1:7e:29:7f:e8:8b:9f:a0:ca:8e:ff:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410 Validity Not Before: Jul 15 21:55:02 2024 GMT Not After : Jul 14 22:00:02 2025 GMT Subject: CN=BEC467B3701318A633EDECF5A01AEB0350E23777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6c:4a:c6:16:76:05:36:8c:25:3d:9e:b6:d8: 5a:46:2b:7b:1c:99:be:57:c4:c8:70:be:13:62:0d: 55:bd:77:8d:b1:e5:f7:db:11:0b:39:90:61:f8:de: 8d:ce:dd:d2:ab:71:ab:e8:e3:91:73:c5:04:74:ba: 4b:6c:af:4c:ee:39:d2:6c:b6:b7:0a:13:91:df:dc: 8e:67:68:e2:54:e1:12:bd:5d:13:ee:1b:f1:01:5a: 76:e9:56:47:c9:8e:19:ed:75:45:39:a4:0f:aa:09: e6:3c:e7:97:39:c0:e5:7c:f4:1f:7a:66:cb:6e:1a: e3:02:45:3f:7e:32:ae:2b:20:47:a5:55:fa:7b:87: 02:ec:0e:e7:be:7b:eb:93:24:18:40:2d:f5:76:21: f7:b5:87:c9:20:d9:05:d1:7f:f1:eb:51:31:08:5e: 35:95:bc:ce:c6:c2:25:78:a9:99:f2:f1:63:76:54: 40:28:c8:50:dc:bb:36:d0:34:fa:63:4f:40:76:97: 4d:79:2d:94:60:7a:19:39:4c:f2:43:f0:24:fb:0e: 32:65:45:e1:75:62:f5:24:ac:67:8b:5c:d7:5c:85: e3:d4:b2:a0:05:09:a7:8a:6c:f2:18:bc:b7:a0:10: 90:a1:2d:e5:3d:04:96:03:03:d7:12:cb:8b:f8:64: f7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C4:67:B3:70:13:18:A6:33:ED:EC:F5:A0:1A:EB:03:50:E2:37:77 X509v3 Authority Key Identifier: keyid:13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130322e302f32342d3234203d3e203634303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.102.0/24 Signature Algorithm: sha256WithRSAEncryption 47:bc:f7:91:06:e7:7f:5b:0b:55:3d:7b:00:0a:8c:28:2c:4d: 89:47:ef:c5:83:4c:25:84:e7:5c:a4:d0:74:63:ea:83:9e:88: d4:50:b9:5b:8d:59:64:81:70:c5:56:ad:80:48:72:d2:b2:16: 38:49:be:c0:ee:94:9f:b7:4a:49:41:af:69:11:b5:9c:9b:fe: b6:57:41:0c:4d:1c:d7:9f:35:6c:cc:a0:a9:ff:09:a8:83:2d: 79:4a:9f:13:c4:7c:26:af:b3:0e:da:a5:ae:4a:69:18:92:c2: 98:63:85:f0:8e:01:77:50:44:83:49:fd:a9:52:7f:f0:bc:96: a5:cb:b1:4a:6e:42:5f:01:29:31:80:ed:aa:65:f5:f0:81:e2: 39:54:b1:22:79:b6:b4:13:bb:13:b6:fc:00:5a:33:5b:fb:ce: 01:50:b3:9c:7c:50:a8:f4:3b:1f:99:25:a5:3e:5b:b3:5a:a3: 6d:a8:f2:7c:93:3d:f6:62:99:f4:35:62:c1:80:be:21:90:c3: 15:e6:6a:76:cf:10:12:74:1f:55:8d:04:22:88:01:36:4a:6d: a7:75:a7:f4:45:27:ef:f9:e8:57:48:34:cf:5e:8b:50:99:5d: b9:fa:d3:dd:ca:b6:ef:2a:a6:cd:02:d3:f9:2a:40:db:b1:72: 13:44:af:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ21taBRYqyTxfil/6IufoMqO/2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMyQkJERjlEOUYyNkYwMDFDQzBGMEVGOTU5MDMzM0Qz OEQwNDQxMDAeFw0yNDA3MTUyMTU1MDJaFw0yNTA3MTQyMjAwMDJaMDMxMTAvBgNV BAMTKEJFQzQ2N0IzNzAxMzE4QTYzM0VERUNGNUEwMUFFQjAzNTBFMjM3NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjbErGFnYFNowlPZ622FpGK3sc mb5XxMhwvhNiDVW9d42x5ffbEQs5kGH43o3O3dKrcavo45FzxQR0uktsr0zuOdJs trcKE5Hf3I5naOJU4RK9XRPuG/EBWnbpVkfJjhntdUU5pA+qCeY855c5wOV89B96 ZstuGuMCRT9+Mq4rIEelVfp7hwLsDue+e+uTJBhALfV2Ife1h8kg2QXRf/HrUTEI XjWVvM7GwiV4qZny8WN2VEAoyFDcuzbQNPpjT0B2l015LZRgehk5TPJD8CT7DjJl ReF1YvUkrGeLXNdchePUsqAFCaeKbPIYvLegEJChLeU9BJYDA9cSy4v4ZPe/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvsRns3ATGKYz7ez1oBrrA1DiN3cwHwYDVR0j BBgwFoAUEyu9+dnybwAcwPDvlZAzPTjQRBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWU1MTg3NS01MDg3LTQyNjQtYThiZC00MTU2ZjU1YmFhYWIvMC8xMzJCQkRGOUQ5 RjI2RjAwMUNDMEYwRUY5NTkwMzMzRDM4RDA0NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTMyQkJERjlEOUYyNkYwMDFDQzBGMEVGOTU5MDMzM0QzOEQw NDQxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZTUxODc1LTUwODctNDI2NC1h OGJkLTQxNTZmNTViYWFhYi8wLzMxMzAzMzJlMzIzMTM0MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9ZmMA0GCSqG SIb3DQEBCwUAA4IBAQBHvPeRBud/WwtVPXsACowoLE2JR+/Fg0wlhOdcpNB0Y+qD nojUULlbjVlkgXDFVq2ASHLSshY4Sb7A7pSft0pJQa9pEbWcm/62V0EMTRzXnzVs zKCp/wmogy15Sp8TxHwmr7MO2qWuSmkYksKYY4XwjgF3UESDSf2pUn/wvJaly7FK bkJfASkxgO2qZfXwgeI5VLEieba0E7sTtvwAWjNb+84BULOcfFCo9DsfmSWlPluz WqNtqPJ8kz32Ypn0NWLBgL4hkMMV5mp2zxASdB9VjQQiiAE2Sm2ndaf0RSfv+ehX SDTPXotQmV25+tPdyrbvKqbNAtP5KkDbsXITRK9+ -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org