$ rpki-client -vvf repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa File: 3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa (raw, json) Hash identifier: bb9qiDfzM8kp19/6irqBv/V22PdWGhRbNvgtr/Mw4S8= Subject key identifier: CE:2B:A1:B7:8D:4F:E4:DC:0E:19:99:3C:C2:83:38:59:F2:0F:4E:89 Certificate issuer: /CN=F137C794398E5F88909A244EC978EA476CCF76CC Certificate serial: 42A3310DB61511CAEB3FD7DDB4A10E4A6FF29221 Authority key identifier: F1:37:C7:94:39:8E:5F:88:90:9A:24:4E:C9:78:EA:47:6C:CF:76:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa Signing time: Fri 25 Oct 2024 07:02:26 +0000 ROA not before: Fri 25 Oct 2024 06:57:26 +0000 ROA not after: Fri 24 Oct 2025 07:02:26 +0000 asID: 150482 IP address blocks: 103.55.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.crl rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a3:31:0d:b6:15:11:ca:eb:3f:d7:dd:b4:a1:0e:4a:6f:f2:92:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F137C794398E5F88909A244EC978EA476CCF76CC Validity Not Before: Oct 25 06:57:26 2024 GMT Not After : Oct 24 07:02:26 2025 GMT Subject: CN=CE2BA1B78D4FE4DC0E19993CC2833859F20F4E89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:55:ff:e4:02:3e:a3:8e:70:33:70:0e:46:c5: 3a:2d:15:26:db:bd:c4:45:de:1a:30:2d:0f:76:3d: 82:9f:3d:b6:ad:53:25:89:a2:78:67:b7:b6:50:8e: de:d2:38:5f:65:83:b4:c1:d0:af:0f:c2:1e:24:49: 3b:85:12:c9:d9:d2:b6:18:4c:ab:f6:65:16:bd:77: 1d:a9:a1:37:18:37:24:01:77:fe:4b:d1:82:cc:6c: 79:28:53:39:d1:49:7c:9b:9d:30:12:e2:51:78:93: 6d:a6:37:de:0a:70:12:3b:10:b2:de:b0:29:3a:88: 10:7c:ce:c6:95:af:23:b8:82:34:98:1e:b9:59:84: fd:f1:88:1a:32:e2:5b:48:21:09:c8:3e:57:d0:46: 30:0f:77:ea:27:1d:c1:a9:3d:65:c5:8e:2b:e2:ad: 50:7f:1f:03:5d:40:24:96:15:25:a2:b5:3b:31:d9: db:83:20:6d:f5:bf:1b:ee:b9:c6:7f:e1:2d:df:42: 4e:bb:90:5a:6e:8d:c1:a4:af:71:88:ae:88:33:31: b9:0e:55:94:37:62:17:dd:39:b7:a0:33:3b:75:1e: 64:16:f6:9e:f0:38:81:96:c0:51:a3:bf:75:0a:d6: 14:ee:64:bc:a8:cd:0b:57:b5:09:6b:9f:0e:24:ed: 99:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2B:A1:B7:8D:4F:E4:DC:0E:19:99:3C:C2:83:38:59:F2:0F:4E:89 X509v3 Authority Key Identifier: keyid:F1:37:C7:94:39:8E:5F:88:90:9A:24:4E:C9:78:EA:47:6C:CF:76:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/F137C794398E5F88909A244EC978EA476CCF76CC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F137C794398E5F88909A244EC978EA476CCF76CC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cf2c733-d67f-4813-b8f7-058d95a09587/0/3130332e35352e3232342e302f32332d3234203d3e20313530343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.224.0/23 Signature Algorithm: sha256WithRSAEncryption 91:39:0d:7e:75:ee:d2:4b:66:33:20:09:0e:38:37:18:0d:b1: 1f:6d:04:c2:6c:50:32:45:48:75:dd:20:a4:ed:a9:45:03:39: 8f:88:34:25:4f:67:3a:bf:49:72:ed:61:4c:32:c4:de:a8:ea: 36:74:dc:33:f4:7b:93:b5:43:f4:e9:6c:d2:04:6b:af:76:24: 3c:69:f4:93:6d:8a:b6:90:e9:b0:3b:9d:99:d7:5b:0d:83:5a: 12:c7:68:da:77:1e:e2:77:a5:c3:e1:a2:a7:c4:e8:72:a4:3e: 86:3a:e3:1a:34:9c:54:72:8a:3a:15:df:19:52:a9:b4:e9:01: e4:13:af:0d:99:d8:a8:67:d1:ae:03:b2:94:60:6c:07:27:71: cf:6c:a5:fd:24:50:12:2d:26:d7:12:99:87:27:03:fd:65:05: 80:81:e0:ab:03:4b:82:bf:75:0a:95:9a:b5:6e:a8:c3:71:3c: be:6e:90:ec:54:6b:46:8e:58:fe:56:66:67:56:ce:47:2f:64: 71:9c:35:13:e2:25:28:39:59:ce:ed:e6:e3:74:af:44:5c:9b: f6:66:f5:8c:39:94:f2:de:08:89:3e:7e:63:71:02:29:e3:e0: ec:09:d8:25:85:af:40:e3:a0:86:67:43:9c:41:27:7e:7c:6d: 53:3d:8f:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQqMxDbYVEcrrP9fdtKEOSm/ykiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEzN0M3OTQzOThFNUY4ODkwOUEyNDRFQzk3OEVBNDc2 Q0NGNzZDQzAeFw0yNDEwMjUwNjU3MjZaFw0yNTEwMjQwNzAyMjZaMDMxMTAvBgNV BAMTKENFMkJBMUI3OEQ0RkU0REMwRTE5OTkzQ0MyODMzODU5RjIwRjRFODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVf/kAj6jjnAzcA5GxTotFSbb vcRF3howLQ92PYKfPbatUyWJonhnt7ZQjt7SOF9lg7TB0K8Pwh4kSTuFEsnZ0rYY TKv2ZRa9dx2poTcYNyQBd/5L0YLMbHkoUznRSXybnTAS4lF4k22mN94KcBI7ELLe sCk6iBB8zsaVryO4gjSYHrlZhP3xiBoy4ltIIQnIPlfQRjAPd+onHcGpPWXFjivi rVB/HwNdQCSWFSWitTsx2duDIG31vxvuucZ/4S3fQk67kFpujcGkr3GIrogzMbkO VZQ3YhfdObegMzt1HmQW9p7wOIGWwFGjv3UK1hTuZLyozQtXtQlrnw4k7ZmrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUziuht41P5NwOGZk8woM4WfIPTokwHwYDVR0j BBgwFoAU8TfHlDmOX4iQmiROyXjqR2zPdswwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2YyYzczMy1kNjdmLTQ4MTMtYjhmNy0wNThkOTVhMDk1ODcvMC9GMTM3Qzc5NDM5 OEU1Rjg4OTA5QTI0NEVDOTc4RUE0NzZDQ0Y3NkNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEzN0M3OTQzOThFNUY4ODkwOUEyNDRFQzk3OEVBNDc2Q0NG NzZDQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZjJjNzMzLWQ2N2YtNDgxMy1i OGY3LTA1OGQ5NWEwOTU4Ny8wLzMxMzAzMzJlMzUzNTJlMzIzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzfgMA0GCSqG SIb3DQEBCwUAA4IBAQCROQ1+de7SS2YzIAkOODcYDbEfbQTCbFAyRUh13SCk7alF AzmPiDQlT2c6v0ly7WFMMsTeqOo2dNwz9HuTtUP06WzSBGuvdiQ8afSTbYq2kOmw O52Z11sNg1oSx2jadx7id6XD4aKnxOhypD6GOuMaNJxUcoo6Fd8ZUqm06QHkE68N mdioZ9GuA7KUYGwHJ3HPbKX9JFASLSbXEpmHJwP9ZQWAgeCrA0uCv3UKlZq1bqjD cTy+bpDsVGtGjlj+VmZnVs5HL2RxnDUT4iUoOVnO7ebjdK9EXJv2ZvWMOZTy3giJ Pn5jcQIp4+DsCdglha9A46CGZ0OcQSd+fG1TPY/o -----END CERTIFICATE-----Generated at Fri Nov 29 07:01:56 2024 by rpki-client on console-ams.rpki-client.org