$ rpki-client -vvf repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32342d3234203d3e20313530343834.roa File: 3130332e35352e33302e302f32342d3234203d3e20313530343834.roa (raw, json) Hash identifier: i9hzv6Lh5XhsF06igSnWbdzwnT3e+2hyiqqtyUqGr60= Subject key identifier: 91:E2:7C:00:B3:0F:F8:32:63:9C:99:00:0B:C8:C5:EF:D0:4F:C7:31 Certificate issuer: /CN=C33BE6D76C1444B4695CC56D706802967A2A404E Certificate serial: 69C27E5D305BA09F8B21DA93CFDE8DEE7251FA42 Authority key identifier: C3:3B:E6:D7:6C:14:44:B4:69:5C:C5:6D:70:68:02:96:7A:2A:40:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32342d3234203d3e20313530343834.roa Signing time: Thu 12 Sep 2024 16:00:00 +0000 ROA not before: Thu 12 Sep 2024 15:55:00 +0000 ROA not after: Thu 11 Sep 2025 16:00:00 +0000 asID: 150484 IP address blocks: 103.55.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.crl rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c2:7e:5d:30:5b:a0:9f:8b:21:da:93:cf:de:8d:ee:72:51:fa:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C33BE6D76C1444B4695CC56D706802967A2A404E Validity Not Before: Sep 12 15:55:00 2024 GMT Not After : Sep 11 16:00:00 2025 GMT Subject: CN=91E27C00B30FF832639C99000BC8C5EFD04FC731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d0:1e:49:2c:d0:4e:4b:67:ff:dc:71:73:6d: fd:8b:5e:8a:42:ce:e6:1e:65:59:69:74:60:3c:5a: 17:eb:ab:00:f7:90:d4:04:b0:f2:ce:57:c9:88:ee: 65:83:b3:fe:d5:9f:d8:b4:af:da:a2:b7:d0:7e:81: 0b:69:df:44:4f:d1:3c:55:72:f0:f9:4a:4f:2f:14: fe:28:00:b8:a1:78:35:cd:51:16:3c:32:92:f2:f9: 6a:cd:7f:4a:9a:a7:97:2b:c5:59:7b:ae:a3:f0:c6: 2d:06:83:28:69:9e:81:9b:82:be:43:3f:36:65:36: df:37:6c:1d:a8:92:f4:9a:93:1a:0b:7f:73:72:af: 6a:bf:87:2e:01:80:ed:b9:df:ea:58:cc:61:65:83: 5c:bc:73:d4:60:54:7e:0d:e9:aa:4f:bd:8a:ca:a2: c9:e3:f0:c7:ef:d9:05:7f:9b:1f:51:cf:0e:c6:74: 53:54:d3:87:69:52:38:e4:54:f8:af:3a:4b:24:0b: 3f:85:27:35:8e:29:6b:0b:47:07:ce:f1:a7:ff:7f: eb:5f:69:cb:e1:aa:31:f6:89:57:4b:b9:9d:94:0a: 6f:df:c6:24:48:90:1c:47:d3:0c:67:35:8e:f3:9e: c0:34:6e:53:02:7b:10:92:e4:91:59:31:19:a8:ad: e4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E2:7C:00:B3:0F:F8:32:63:9C:99:00:0B:C8:C5:EF:D0:4F:C7:31 X509v3 Authority Key Identifier: keyid:C3:3B:E6:D7:6C:14:44:B4:69:5C:C5:6D:70:68:02:96:7A:2A:40:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/C33BE6D76C1444B4695CC56D706802967A2A404E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C33BE6D76C1444B4695CC56D706802967A2A404E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d703b80-2e78-4d11-ab74-08017e422d6e/0/3130332e35352e33302e302f32342d3234203d3e20313530343834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.30.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ee:18:84:57:c4:6a:75:6e:98:1d:11:89:77:81:9f:3b:38: 40:fa:f5:3b:80:f7:b7:f4:f4:8d:0e:50:7e:58:8c:a1:cb:6c: 08:30:b9:50:c6:be:16:db:4f:b7:3d:23:19:a9:2e:9a:c9:61: 73:7b:3e:f4:f5:a0:50:88:1a:c6:c2:b5:cd:14:bd:e2:92:d2: 76:9f:5d:d4:7e:23:b6:cc:2c:d7:0b:43:b4:db:93:6a:ad:2b: ac:a4:61:f9:01:22:ee:4f:19:dc:46:51:f1:f3:fd:6d:60:fd: 47:c2:b9:ac:49:f8:6f:fa:0d:70:42:2d:31:b1:57:2b:ed:08: 29:61:cb:e3:27:19:6a:89:6c:46:5b:9c:2e:fb:0d:11:30:99: 20:57:d6:49:8e:db:1f:9d:5b:0e:76:0e:bc:dc:06:a1:4b:85: f6:6a:b6:13:48:58:c7:b6:b2:88:ed:70:6b:bb:ff:aa:35:5d: 1c:b3:75:2f:80:a9:f4:e6:35:e0:ac:a4:8e:5e:eb:7b:54:67: f6:79:7b:85:8e:ff:e0:f5:75:a0:70:44:78:d0:23:fa:33:8d: cf:96:35:6a:68:d7:7d:a4:a3:05:ca:e3:00:2b:cc:74:ca:ed: e0:d0:3a:4e:45:3a:03:00:84:25:f3:fa:e1:da:25:9c:d0:fc: ea:5a:a6:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUacJ+XTBboJ+LIdqTz96N7nJR+kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMzQkU2RDc2QzE0NDRCNDY5NUNDNTZENzA2ODAyOTY3 QTJBNDA0RTAeFw0yNDA5MTIxNTU1MDBaFw0yNTA5MTExNjAwMDBaMDMxMTAvBgNV BAMTKDkxRTI3QzAwQjMwRkY4MzI2MzlDOTkwMDBCQzhDNUVGRDA0RkM3MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0B5JLNBOS2f/3HFzbf2LXopC zuYeZVlpdGA8WhfrqwD3kNQEsPLOV8mI7mWDs/7Vn9i0r9qit9B+gQtp30RP0TxV cvD5Sk8vFP4oALiheDXNURY8MpLy+WrNf0qap5crxVl7rqPwxi0GgyhpnoGbgr5D PzZlNt83bB2okvSakxoLf3Nyr2q/hy4BgO253+pYzGFlg1y8c9RgVH4N6apPvYrK osnj8Mfv2QV/mx9Rzw7GdFNU04dpUjjkVPivOkskCz+FJzWOKWsLRwfO8af/f+tf acvhqjH2iVdLuZ2UCm/fxiRIkBxH0wxnNY7znsA0blMCexCS5JFZMRmoreQ7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkeJ8ALMP+DJjnJkAC8jF79BPxzEwHwYDVR0j BBgwFoAUwzvm12wURLRpXMVtcGgClnoqQE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDcwM2I4MC0yZTc4LTRkMTEtYWI3NC0wODAxN2U0MjJkNmUvMC9DMzNCRTZENzZD MTQ0NEI0Njk1Q0M1NkQ3MDY4MDI5NjdBMkE0MDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzMzQkU2RDc2QzE0NDRCNDY5NUNDNTZENzA2ODAyOTY3QTJB NDA0RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNzAzYjgwLTJlNzgtNGQxMS1h Yjc0LTA4MDE3ZTQyMmQ2ZS8wLzMxMzAzMzJlMzUzNTJlMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc3HjANBgkqhkiG 9w0BAQsFAAOCAQEATe4YhFfEanVumB0RiXeBnzs4QPr1O4D3t/T0jQ5QfliMocts CDC5UMa+FttPtz0jGakumslhc3s+9PWgUIgaxsK1zRS94pLSdp9d1H4jtsws1wtD tNuTaq0rrKRh+QEi7k8Z3EZR8fP9bWD9R8K5rEn4b/oNcEItMbFXK+0IKWHL4ycZ aolsRlucLvsNETCZIFfWSY7bH51bDnYOvNwGoUuF9mq2E0hYx7ayiO1wa7v/qjVd HLN1L4Cp9OY14Kykjl7re1Rn9nl7hY7/4PV1oHBEeNAj+jONz5Y1amjXfaSjBcrj ACvMdMrt4NA6TkU6AwCEJfP64dolnND86lqmMQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org