$ rpki-client -vvf repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa File: 3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: MBF2dghp13jDIOU1/lpHNzFCYy94dDfIsyDMymHiQhI= Subject key identifier: BA:B0:4E:D9:44:8F:FC:F3:36:53:C8:36:47:C5:B5:39:5A:9F:12:BC Certificate issuer: /CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Certificate serial: 06E7D95EA2FBDE0DF4B9126AD36F099BE8EDD9A9 Authority key identifier: C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa Signing time: Thu 21 Nov 2024 06:00:02 +0000 ROA not before: Thu 21 Nov 2024 05:55:02 +0000 ROA not after: Thu 20 Nov 2025 06:00:02 +0000 asID: 131743 IP address blocks: 103.21.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e7:d9:5e:a2:fb:de:0d:f4:b9:12:6a:d3:6f:09:9b:e8:ed:d9:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C62A541C7323F6CD238F549B1F8736ED958DEFF7 Validity Not Before: Nov 21 05:55:02 2024 GMT Not After : Nov 20 06:00:02 2025 GMT Subject: CN=BAB04ED9448FFCF33653C83647C5B5395A9F12BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8e:a4:60:10:d7:be:9f:e4:32:ed:3b:66:e1: 43:b9:b1:63:48:39:40:30:b1:f5:9f:61:3f:b1:ae: bb:c1:12:40:85:97:d5:b4:c9:fb:ae:33:d2:a1:f4: fc:c5:a8:99:3d:71:f6:e1:80:1d:d6:f2:f3:51:d4: 85:0f:ae:a4:ad:ec:b0:7a:bc:b2:94:cd:5d:23:90: 53:aa:6c:0d:dc:51:c1:dd:f2:30:c1:1d:0e:24:a6: cf:87:a9:ff:2a:79:cd:3e:4f:dd:f5:26:a0:65:46: 40:fb:82:07:ce:a1:ae:22:3c:48:fa:94:2d:7c:55: c0:a3:f2:8d:3b:82:a2:57:20:3d:84:86:a3:8c:80: 09:5b:aa:7c:f6:4d:35:e4:56:b9:d0:fb:4a:63:65: 3b:78:48:83:0f:6d:5f:c9:92:48:84:8d:3e:10:19: a7:87:b3:a1:29:f1:d2:f3:15:6b:8c:72:14:9e:88: eb:ac:91:58:19:64:19:7c:81:23:2f:04:33:22:29: 80:be:22:4f:93:93:81:44:04:33:8f:e1:d7:eb:3b: 72:8c:45:65:48:aa:41:bd:5e:ed:30:c5:ae:23:c3: bf:bb:da:ab:42:05:9f:8f:ab:5b:d8:ff:94:56:3f: 21:69:d8:d8:83:6a:ac:a4:b8:b2:7e:4e:bc:79:d1: 0a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B0:4E:D9:44:8F:FC:F3:36:53:C8:36:47:C5:B5:39:5A:9F:12:BC X509v3 Authority Key Identifier: keyid:C6:2A:54:1C:73:23:F6:CD:23:8F:54:9B:1F:87:36:ED:95:8D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/C62A541C7323F6CD238F549B1F8736ED958DEFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C62A541C7323F6CD238F549B1F8736ED958DEFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8774856f-7453-4d02-bc35-3482eb5646a2/0/3130332e32312e3232392e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.229.0/24 Signature Algorithm: sha256WithRSAEncryption 38:e2:2e:5a:e3:30:80:59:23:5b:c4:21:a0:5c:6a:0f:16:51: 3e:c1:10:99:ec:63:3b:71:96:7e:b8:8c:fa:49:89:18:61:6c: 14:27:0f:c1:a8:98:ef:64:ed:2c:0f:47:27:91:30:be:1a:5e: 0c:27:2e:67:c3:e0:35:4e:89:f7:81:8c:dd:5b:60:c4:85:31: 2d:44:8c:5e:11:7b:a4:b2:32:a2:bb:59:8e:2a:b1:76:63:c5: 10:79:fd:35:74:cc:80:08:0d:ba:db:94:37:65:e6:d3:43:45: 02:c5:e1:a5:52:94:0b:82:6b:49:98:5b:29:ac:46:b9:3c:ae: fb:c9:07:4c:de:d3:8d:bc:65:80:d5:53:82:4b:26:97:2a:f4: d7:c7:09:83:aa:9c:c1:5d:23:e6:80:5e:7c:14:b9:97:7e:41: 9d:99:a1:54:50:fb:a1:c2:0c:91:13:cf:b5:af:b0:18:c6:e8: 03:22:86:4c:a3:e0:82:a8:5d:9d:74:f3:c0:c0:3e:1a:b8:fe: b3:9f:ca:3e:9e:de:64:8e:bd:3f:a9:ca:3d:eb:f4:c0:c8:84: 57:de:f4:e7:09:99:33:99:4d:9a:c7:7f:ef:ca:d4:b0:fd:7a: bb:e0:72:98:99:28:0e:9c:c4:6b:f1:b0:c7:ca:46:7f:4e:f1: 97:fd:7e:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBufZXqL73g30uRJq028Jm+jt2akwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5 NThERUZGNzAeFw0yNDExMjEwNTU1MDJaFw0yNTExMjAwNjAwMDJaMDMxMTAvBgNV BAMTKEJBQjA0RUQ5NDQ4RkZDRjMzNjUzQzgzNjQ3QzVCNTM5NUE5RjEyQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkjqRgENe+n+Qy7Ttm4UO5sWNI OUAwsfWfYT+xrrvBEkCFl9W0yfuuM9Kh9PzFqJk9cfbhgB3W8vNR1IUPrqSt7LB6 vLKUzV0jkFOqbA3cUcHd8jDBHQ4kps+Hqf8qec0+T931JqBlRkD7ggfOoa4iPEj6 lC18VcCj8o07gqJXID2EhqOMgAlbqnz2TTXkVrnQ+0pjZTt4SIMPbV/JkkiEjT4Q GaeHs6Ep8dLzFWuMchSeiOuskVgZZBl8gSMvBDMiKYC+Ik+Tk4FEBDOP4dfrO3KM RWVIqkG9Xu0wxa4jw7+72qtCBZ+Pq1vY/5RWPyFp2NiDaqykuLJ+Trx50Qo5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUurBO2USP/PM2U8g2R8W1OVqfErwwHwYDVR0j BBgwFoAUxipUHHMj9s0jj1SbH4c27ZWN7/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Nzc0ODU2Zi03NDUzLTRkMDItYmMzNS0zNDgyZWI1NjQ2YTIvMC9DNjJBNTQxQzcz MjNGNkNEMjM4RjU0OUIxRjg3MzZFRDk1OERFRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzYyQTU0MUM3MzIzRjZDRDIzOEY1NDlCMUY4NzM2RUQ5NThE RUZGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NzQ4NTZmLTc0NTMtNGQwMi1i YzM1LTM0ODJlYjU2NDZhMi8wLzMxMzAzMzJlMzIzMTJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXlMA0GCSqG SIb3DQEBCwUAA4IBAQA44i5a4zCAWSNbxCGgXGoPFlE+wRCZ7GM7cZZ+uIz6SYkY YWwUJw/BqJjvZO0sD0cnkTC+Gl4MJy5nw+A1Ton3gYzdW2DEhTEtRIxeEXuksjKi u1mOKrF2Y8UQef01dMyACA2625Q3ZebTQ0UCxeGlUpQLgmtJmFsprEa5PK77yQdM 3tONvGWA1VOCSyaXKvTXxwmDqpzBXSPmgF58FLmXfkGdmaFUUPuhwgyRE8+1r7AY xugDIoZMo+CCqF2ddPPAwD4auP6zn8o+nt5kjr0/qco96/TAyIRX3vTnCZkzmU2a x3/vytSw/Xq74HKYmSgOnMRr8bDHykZ/TvGX/X58 -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org