$ rpki-client -vvf repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa File: 3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa (raw, json) Hash identifier: 6eeY2h00Kw0+XgRR7tDPtB3GYnlkKRGmbXZUU+WH+Kg= Subject key identifier: E6:EE:E4:A4:9A:97:74:86:62:6D:B6:E6:73:2E:63:0C:5D:4D:9B:86 Certificate issuer: /CN=A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794 Certificate serial: 7980CE92474633A45AE255CB97DCF6E5D35CE8EE Authority key identifier: A3:3F:F7:49:65:A9:60:8D:9E:5C:3C:2E:3E:F8:02:EA:1E:5C:D7:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.cer Subject info access: rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa Signing time: Mon 12 Feb 2024 18:00:02 +0000 ROA not before: Mon 12 Feb 2024 17:55:02 +0000 ROA not after: Mon 10 Feb 2025 18:00:02 +0000 asID: 149680 IP address blocks: 103.184.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.crl rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:80:ce:92:47:46:33:a4:5a:e2:55:cb:97:dc:f6:e5:d3:5c:e8:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794 Validity Not Before: Feb 12 17:55:02 2024 GMT Not After : Feb 10 18:00:02 2025 GMT Subject: CN=E6EEE4A49A977486626DB6E6732E630C5D4D9B86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2a:c1:22:99:b7:88:47:b5:c0:1d:ef:59:3a: c5:d5:35:00:ab:29:25:98:52:05:22:3b:ae:a8:73: 01:77:f5:97:9f:c6:d6:36:b5:6d:db:1c:c2:93:9c: 3f:63:05:4b:51:54:0c:64:14:4e:3e:04:a2:e6:84: c2:e8:0e:05:7a:95:10:67:00:5a:0f:34:1e:39:e0: 0f:61:1b:61:81:d8:6e:e1:7b:2e:52:94:f0:cd:7a: c5:cd:c2:f6:8e:ab:6b:34:ef:93:4f:30:63:cf:fb: 6d:88:de:26:fd:dd:d7:f0:a3:2c:d2:78:a5:3c:bb: ed:28:34:7b:95:95:66:ba:35:69:b6:0f:55:84:8e: a6:7b:3f:11:0c:48:30:58:c4:54:9c:82:ea:2c:b6: 94:00:b0:14:ae:2a:2c:b4:99:8e:91:09:82:bc:15: d8:f3:79:03:68:b9:ff:5a:af:4e:f2:61:31:54:98: c9:ac:d1:fa:70:95:2f:24:b2:89:f7:cb:85:67:62: 29:fe:c0:a9:68:0c:99:1e:64:ba:4a:4e:74:c9:f9: 3a:0a:cc:72:cd:38:82:b9:fc:a8:1d:40:ad:c0:98: 55:8b:7d:74:d8:e9:9e:f8:ec:c3:0f:06:e9:7f:d5: 15:20:ee:84:17:7f:a8:31:bd:7d:6f:b0:37:df:d4: 9b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:EE:E4:A4:9A:97:74:86:62:6D:B6:E6:73:2E:63:0C:5D:4D:9B:86 X509v3 Authority Key Identifier: keyid:A3:3F:F7:49:65:A9:60:8D:9E:5C:3C:2E:3E:F8:02:EA:1E:5C:D7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:df:09:38:d8:95:66:01:e4:f2:b3:b3:c0:83:f8:14:33:2d: 39:3b:35:84:3c:69:0b:96:39:75:27:f7:4b:ee:10:45:fc:1f: 70:34:1f:61:2b:cc:db:70:ed:e4:0d:00:27:7f:c8:fa:ee:d8: 88:15:98:06:e8:33:ac:00:d6:d9:f9:de:9b:e6:68:fe:4d:57: 62:8c:6e:8f:db:c8:f5:e0:60:01:b3:a9:05:2b:93:00:b4:7a: 2d:bc:71:f7:48:4f:2d:5c:20:c9:d1:66:d1:43:c7:c0:a2:71: d0:ee:86:42:81:5e:b0:c1:bc:d3:aa:13:7a:51:44:61:e5:a7: 84:9f:d8:4b:5a:07:6b:f2:be:fd:d8:ee:16:63:5f:56:c6:b6: 85:fc:b6:48:dc:39:60:c2:a7:58:b3:dc:f2:18:f3:e4:e8:b9: c4:d5:42:12:3f:07:19:55:40:aa:40:29:d0:de:6d:02:55:65: b9:00:89:98:42:50:b7:fe:9f:45:43:02:07:91:de:ee:5b:ba: 79:d6:60:d8:80:58:d6:75:9e:87:55:ab:d8:71:2f:40:56:52: 17:9a:82:ee:5e:df:a1:c6:6a:67:20:48:56:d3:a7:22:2f:c0: c4:81:23:ec:8e:44:c3:7c:bd:31:25:68:ba:17:ed:dc:37:f0: 21:65:c0:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeYDOkkdGM6Ra4lXLl9z25dNc6O4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTMzRkY3NDk2NUE5NjA4RDlFNUMzQzJFM0VGODAyRUEx RTVDRDc5NDAeFw0yNDAyMTIxNzU1MDJaFw0yNTAyMTAxODAwMDJaMDMxMTAvBgNV BAMTKEU2RUVFNEE0OUE5Nzc0ODY2MjZEQjZFNjczMkU2MzBDNUQ0RDlCODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeKsEimbeIR7XAHe9ZOsXVNQCr KSWYUgUiO66ocwF39ZefxtY2tW3bHMKTnD9jBUtRVAxkFE4+BKLmhMLoDgV6lRBn AFoPNB454A9hG2GB2G7hey5SlPDNesXNwvaOq2s075NPMGPP+22I3ib93dfwoyzS eKU8u+0oNHuVlWa6NWm2D1WEjqZ7PxEMSDBYxFScguostpQAsBSuKiy0mY6RCYK8 FdjzeQNouf9ar07yYTFUmMms0fpwlS8kson3y4VnYin+wKloDJkeZLpKTnTJ+ToK zHLNOIK5/KgdQK3AmFWLfXTY6Z747MMPBul/1RUg7oQXf6gxvX1vsDff1JtNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5u7kpJqXdIZibbbmcy5jDF1Nm4YwHwYDVR0j BBgwFoAUoz/3SWWpYI2eXDwuPvgC6h5c15QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTNlM2QyNi00YWFmLTRlOTYtYWQ0OS01MjczZjBhNGU2ZWQvMC9BMzNGRjc0OTY1 QTk2MDhEOUU1QzNDMkUzRUY4MDJFQTFFNUNENzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTMzRkY3NDk2NUE5NjA4RDlFNUMzQzJFM0VGODAyRUExRTVD RDc5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5M2UzZDI2LTRhYWYtNGU5Ni1h ZDQ5LTUyNzNmMGE0ZTZlZC8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM4MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuIAwDQYJ KoZIhvcNAQELBQADggEBAA3fCTjYlWYB5PKzs8CD+BQzLTk7NYQ8aQuWOXUn90vu EEX8H3A0H2ErzNtw7eQNACd/yPru2IgVmAboM6wA1tn53pvmaP5NV2KMbo/byPXg YAGzqQUrkwC0ei28cfdITy1cIMnRZtFDx8CicdDuhkKBXrDBvNOqE3pRRGHlp4Sf 2EtaB2vyvv3Y7hZjX1bGtoX8tkjcOWDCp1iz3PIY8+ToucTVQhI/BxlVQKpAKdDe bQJVZbkAiZhCULf+n0VDAgeR3u5bunnWYNiAWNZ1nodVq9hxL0BWUheagu5e36HG amcgSFbTpyIvwMSBI+yORMN8vTElaLoX7dw38CFlwPY= -----END CERTIFICATE-----Generated at Sun Nov 24 01:31:57 2024 by rpki-client on console-ams.rpki-client.org