$ rpki-client -vvf repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa File: 3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa (raw, json) Hash identifier: GjYhQrMQxoOj06ZU/LWm3+cV8+5MUt2+C4M5JDYk5Kg= Subject key identifier: 73:D2:C9:9C:C7:59:1D:55:4D:0D:1E:F8:B3:BB:FD:CF:67:B6:7A:24 Certificate issuer: /CN=510BADD365AB1A82795AF2361991094E4847999C Certificate serial: 62B04D02E64A2AAAFB12EB97FC3A2412DA971F64 Authority key identifier: 51:0B:AD:D3:65:AB:1A:82:79:5A:F2:36:19:91:09:4E:48:47:99:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa Signing time: Tue 30 Jul 2024 03:00:00 +0000 ROA not before: Tue 30 Jul 2024 02:55:00 +0000 ROA not after: Tue 29 Jul 2025 03:00:00 +0000 asID: 133337 IP address blocks: 103.225.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.crl rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b0:4d:02:e6:4a:2a:aa:fb:12:eb:97:fc:3a:24:12:da:97:1f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=510BADD365AB1A82795AF2361991094E4847999C Validity Not Before: Jul 30 02:55:00 2024 GMT Not After : Jul 29 03:00:00 2025 GMT Subject: CN=73D2C99CC7591D554D0D1EF8B3BBFDCF67B67A24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ff:bf:e0:b8:77:41:43:3c:f5:5b:bb:74:ec: 93:d1:80:a6:e9:67:5c:5f:60:b8:74:8c:e3:c0:63: 28:e8:ff:a2:fd:fc:78:b0:5c:70:33:39:40:bb:aa: 60:24:9b:d2:87:2c:be:06:e1:49:dc:2e:0d:84:c2: 0c:2d:98:3d:64:0a:91:43:fe:28:39:5b:05:e5:38: 32:29:37:88:f1:56:6c:06:8c:e8:0a:39:ab:d9:a0: b9:58:5d:7a:58:76:5a:55:e4:0a:41:ed:85:b5:57: 51:af:29:86:7e:e9:3d:b7:90:0f:48:56:94:f1:1b: b1:1c:b0:93:27:33:10:d0:8f:fd:b2:3a:5f:13:45: 36:39:0e:74:e4:32:68:e7:c7:6e:cc:c7:82:ef:68: 6f:3b:36:be:70:61:52:f1:f9:6b:51:92:60:8a:bf: 5f:c4:83:50:92:6b:b3:b5:01:5e:f1:20:f3:a5:87: e6:d2:a5:80:4a:99:12:3d:b4:32:ae:5a:b4:14:ea: 2d:e1:71:ab:06:91:a4:e2:01:14:07:99:21:b7:a0: 46:9c:85:b3:3c:44:37:19:bd:c1:1c:f5:e4:15:4e: 9c:ab:c4:47:2b:8d:1a:96:dc:c0:28:94:7a:c5:89: c8:16:23:9e:42:a1:95:4c:39:73:d1:3c:92:6f:39: 65:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D2:C9:9C:C7:59:1D:55:4D:0D:1E:F8:B3:BB:FD:CF:67:B6:7A:24 X509v3 Authority Key Identifier: keyid:51:0B:AD:D3:65:AB:1A:82:79:5A:F2:36:19:91:09:4E:48:47:99:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/510BADD365AB1A82795AF2361991094E4847999C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/510BADD365AB1A82795AF2361991094E4847999C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e4baa72-654f-4b80-8fc7-f3f27bcdd340/0/3130332e3232352e3230392e302f32342d3234203d3e20313333333337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.209.0/24 Signature Algorithm: sha256WithRSAEncryption 72:71:a1:9d:d2:a3:47:6d:ea:40:dd:aa:b1:f2:99:01:d7:ef: 8b:e8:95:ee:52:2b:ef:8a:05:a9:c2:26:e7:ff:9b:fc:c3:77: 1f:d6:fb:d0:8a:e5:fa:8b:43:f4:24:90:61:07:06:86:89:0e: c2:ae:13:64:bb:fb:61:be:27:53:a4:4f:92:c2:43:2a:cd:ff: 4e:70:c0:4e:5e:ee:8c:e2:78:b7:f4:e8:ff:a0:01:c3:3a:c6: ee:f1:cb:ee:4d:38:59:68:ea:b5:0d:2a:8d:46:62:ef:1d:89: 8e:ae:71:e4:f6:71:75:62:13:7e:a9:cb:ad:c7:35:98:7b:e5: 50:ac:0c:22:d9:fe:90:50:95:d9:04:a6:a0:f0:24:75:b9:e3: 06:6a:f5:1e:d2:cd:c9:89:87:fb:d2:48:08:15:87:9b:35:6b: 8d:c9:59:54:a7:02:78:5b:d1:10:04:bc:90:a3:b7:65:0a:af: 00:a8:3c:b8:3a:ea:10:ce:b8:aa:da:f7:d7:30:bc:bb:c9:35: 7d:0d:48:5a:02:b5:9f:38:1a:3a:fd:7a:51:47:83:e9:05:ac: da:a2:58:ee:d3:ae:40:18:02:fa:ac:0d:37:7b:f8:de:8b:95: 1f:63:5c:58:43:51:de:35:45:e7:83:3c:5e:a5:4d:ab:20:47: 3c:77:c1:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYrBNAuZKKqr7EuuX/DokEtqXH2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEwQkFERDM2NUFCMUE4Mjc5NUFGMjM2MTk5MTA5NEU0 ODQ3OTk5QzAeFw0yNDA3MzAwMjU1MDBaFw0yNTA3MjkwMzAwMDBaMDMxMTAvBgNV BAMTKDczRDJDOTlDQzc1OTFENTU0RDBEMUVGOEIzQkJGRENGNjdCNjdBMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY/7/guHdBQzz1W7t07JPRgKbp Z1xfYLh0jOPAYyjo/6L9/HiwXHAzOUC7qmAkm9KHLL4G4UncLg2EwgwtmD1kCpFD /ig5WwXlODIpN4jxVmwGjOgKOavZoLlYXXpYdlpV5ApB7YW1V1GvKYZ+6T23kA9I VpTxG7EcsJMnMxDQj/2yOl8TRTY5DnTkMmjnx27Mx4LvaG87Nr5wYVLx+WtRkmCK v1/Eg1CSa7O1AV7xIPOlh+bSpYBKmRI9tDKuWrQU6i3hcasGkaTiARQHmSG3oEac hbM8RDcZvcEc9eQVTpyrxEcrjRqW3MAolHrFicgWI55CoZVMOXPRPJJvOWXfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc9LJnMdZHVVNDR74s7v9z2e2eiQwHwYDVR0j BBgwFoAUUQut02WrGoJ5WvI2GZEJTkhHmZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTRiYWE3Mi02NTRmLTRiODAtOGZjNy1mM2YyN2JjZGQzNDAvMC81MTBCQUREMzY1 QUIxQTgyNzk1QUYyMzYxOTkxMDk0RTQ4NDc5OTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTEwQkFERDM2NUFCMUE4Mjc5NUFGMjM2MTk5MTA5NEU0ODQ3 OTk5Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNGJhYTcyLTY1NGYtNGI4MC04 ZmM3LWYzZjI3YmNkZDM0MC8wLzMxMzAzMzJlMzIzMjM1MmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4dEwDQYJ KoZIhvcNAQELBQADggEBAHJxoZ3So0dt6kDdqrHymQHX74vole5SK++KBanCJuf/ m/zDdx/W+9CK5fqLQ/QkkGEHBoaJDsKuE2S7+2G+J1OkT5LCQyrN/05wwE5e7ozi eLf06P+gAcM6xu7xy+5NOFlo6rUNKo1GYu8diY6uceT2cXViE36py63HNZh75VCs DCLZ/pBQldkEpqDwJHW54wZq9R7SzcmJh/vSSAgVh5s1a43JWVSnAnhb0RAEvJCj t2UKrwCoPLg66hDOuKra99cwvLvJNX0NSFoCtZ84Gjr9elFHg+kFrNqiWO7TrkAY AvqsDTd7+N6LlR9jXFhDUd41ReeDPF6lTasgRzx3wW8= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org