$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/3130332e33392e31332e302f32342d3234203d3e203633383237.roa File: 3130332e33392e31332e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: VwTNigUnV52ERl4JC5acU3ZlKRaYwPoaUPZcexI3ywI= Subject key identifier: 61:E0:E1:B8:33:32:A2:ED:50:0B:79:94:18:53:B8:CF:D9:FA:6B:03 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 7BD8618B3A92D45C11810263A1F9842C5508C3D2 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/3130332e33392e31332e302f32342d3234203d3e203633383237.roa Signing time: Wed 20 Nov 2024 07:03:07 +0000 ROA not before: Wed 20 Nov 2024 06:58:07 +0000 ROA not after: Wed 19 Nov 2025 07:03:07 +0000 asID: 63827 IP address blocks: 103.39.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d8:61:8b:3a:92:d4:5c:11:81:02:63:a1:f9:84:2c:55:08:c3:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Nov 20 06:58:07 2024 GMT Not After : Nov 19 07:03:07 2025 GMT Subject: CN=61E0E1B83332A2ED500B79941853B8CFD9FA6B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:62:cd:5a:d7:53:35:cc:36:86:64:94:09:07: 4b:6d:58:7b:b3:1a:f0:0c:7e:55:e4:ff:a1:29:56: 3e:b0:85:47:2f:68:4c:e5:0e:bc:5d:28:24:ff:ea: 88:ba:90:dc:a9:81:0f:1b:00:f9:25:e6:21:40:d2: 35:bc:37:12:10:f9:4b:68:2f:85:d9:16:89:f2:e0: 85:ab:e3:c2:f0:ed:05:c1:6b:8e:44:9b:79:9c:b7: 69:96:de:70:e1:89:b6:4e:a5:0c:05:23:a0:dd:7b: 92:ac:f8:71:0b:d8:c7:30:df:b2:e5:a1:23:c0:f2: ae:7c:72:7f:13:1d:3a:f0:bb:38:a2:89:e7:a7:e6: 1a:86:30:b9:f9:0c:4f:a3:92:2d:fc:1d:6f:a7:92: 3b:e6:27:e2:71:b0:06:d7:90:e1:ac:44:e6:a6:48: 80:2a:2c:12:e2:e5:31:a5:90:ab:3f:89:94:64:ba: a8:8f:d4:ed:ad:6b:a2:c6:7e:66:2a:e7:2e:cd:39: bd:60:39:3c:39:84:ba:8f:56:bb:80:89:18:5f:e6: 36:2b:18:f2:d2:d0:c5:2e:69:fc:01:da:cb:80:89: 2e:3c:ed:ca:c8:ca:07:d9:7b:0a:66:c1:75:f6:c6: f1:6c:f1:18:6e:f4:72:00:c4:74:5d:9b:c1:95:a4: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E0:E1:B8:33:32:A2:ED:50:0B:79:94:18:53:B8:CF:D9:FA:6B:03 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/3130332e33392e31332e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.13.0/24 Signature Algorithm: sha256WithRSAEncryption ad:15:88:9a:e0:72:89:17:b8:06:4b:16:32:29:77:8a:1b:8a: 54:78:b3:a4:cb:95:dc:27:c7:f9:57:75:ef:bd:26:24:9c:8e: 03:85:31:8c:f6:34:44:91:c4:f4:aa:ff:44:2d:5c:a1:c7:94: 3b:ff:9c:86:62:c8:69:af:5a:7b:e4:86:85:40:79:43:db:ba: d8:ef:48:df:78:aa:3c:68:26:d1:cd:aa:32:0e:05:44:2e:67: d1:de:5d:ec:9d:0c:4c:a2:70:8a:f2:15:e7:c5:65:00:4a:11: bc:96:a1:35:74:16:28:59:4a:85:d2:60:6f:02:cb:79:36:7a: 7f:2c:1e:96:36:e6:54:97:9e:4d:97:86:06:4a:ae:31:e8:8c: 72:82:d9:da:c3:22:67:39:52:7c:b3:f6:aa:1e:dd:fd:21:d2: 1d:70:2f:8b:1e:9d:9b:8a:93:30:13:cb:97:55:65:6d:2a:a0: 8d:01:39:4b:cd:8f:f1:02:72:d3:59:13:21:8c:36:95:6c:18: 79:6f:46:44:a4:f1:cb:d3:77:f6:0d:83:df:df:d0:b5:ea:8f: ee:37:46:f3:f2:23:55:fe:08:8b:d1:2d:df:7b:e7:1d:5f:d3: bb:b0:dc:20:2b:93:aa:e2:55:03:7c:37:f1:02:60:78:ba:f4: 70:9b:2d:bc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUe9hhizqS1FwRgQJjofmELFUIw9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNDExMjAwNjU4MDdaFw0yNTExMTkwNzAzMDdaMDMxMTAvBgNV BAMTKDYxRTBFMUI4MzMzMkEyRUQ1MDBCNzk5NDE4NTNCOENGRDlGQTZCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWYs1a11M1zDaGZJQJB0ttWHuz GvAMflXk/6EpVj6whUcvaEzlDrxdKCT/6oi6kNypgQ8bAPkl5iFA0jW8NxIQ+Uto L4XZFony4IWr48Lw7QXBa45Em3mct2mW3nDhibZOpQwFI6Dde5Ks+HEL2Mcw37Ll oSPA8q58cn8THTrwuziiieen5hqGMLn5DE+jki38HW+nkjvmJ+JxsAbXkOGsROam SIAqLBLi5TGlkKs/iZRkuqiP1O2ta6LGfmYq5y7NOb1gOTw5hLqPVruAiRhf5jYr GPLS0MUuafwB2suAiS487crIygfZewpmwXX2xvFs8Rhu9HIAxHRdm8GVpNOzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUYeDhuDMyou1QC3mUGFO4z9n6awMwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzMxMzAzMzJlMzMzOTJlMzEzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnJw0wDQYJKoZIhvcN AQELBQADggEBAK0ViJrgcokXuAZLFjIpd4obilR4s6TLldwnx/lXde+9JiScjgOF MYz2NESRxPSq/0QtXKHHlDv/nIZiyGmvWnvkhoVAeUPbutjvSN94qjxoJtHNqjIO BUQuZ9HeXeydDEyicIryFefFZQBKEbyWoTV0FihZSoXSYG8Cy3k2en8sHpY25lSX nk2XhgZKrjHojHKC2drDImc5Unyz9qoe3f0h0h1wL4senZuKkzATy5dVZW0qoI0B OUvNj/ECctNZEyGMNpVsGHlvRkSk8cvTd/YNg9/f0LXqj+43RvPyI1X+CIvRLd97 5x1f07uw3CArk6riVQN8N/ECYHi69HCbLbw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org