$ rpki-client -vvf repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32342d3234203d3e20313439333333.roa File: 3130332e3137392e32362e302f32342d3234203d3e20313439333333.roa (raw, json) Hash identifier: s3aYQ8LQ0b3amJyDD6i2ZYI2B6oFeKkC+XfwFx/HBQY= Subject key identifier: AB:6A:1E:2A:D1:97:B3:16:BE:24:BB:9C:D9:83:E8:9D:35:71:39:33 Certificate issuer: /CN=34D90463B7D23555C6F77AA2464E508E3F913994 Certificate serial: 66EED341027EB3C9F5DAFE2BF7E9308BCFCAC3C5 Authority key identifier: 34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject info access: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32342d3234203d3e20313439333333.roa Signing time: Fri 01 Nov 2024 08:00:33 +0000 ROA not before: Fri 01 Nov 2024 07:55:33 +0000 ROA not after: Fri 31 Oct 2025 08:00:33 +0000 asID: 149333 IP address blocks: 103.179.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ee:d3:41:02:7e:b3:c9:f5:da:fe:2b:f7:e9:30:8b:cf:ca:c3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D90463B7D23555C6F77AA2464E508E3F913994 Validity Not Before: Nov 1 07:55:33 2024 GMT Not After : Oct 31 08:00:33 2025 GMT Subject: CN=AB6A1E2AD197B316BE24BB9CD983E89D35713933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:38:fb:39:b1:70:a7:f5:3e:86:ea:4a:b0: 6f:5a:d3:9f:18:39:e2:df:ab:15:be:5f:d7:89:7f: be:c6:f4:e3:f6:c9:18:70:64:f2:02:d1:ef:64:94: 42:ca:b5:8f:ce:ef:55:f3:9e:5d:99:b9:b5:ca:a7: c7:9f:45:a8:cd:8f:25:d2:57:94:f3:97:8f:30:93: 4b:04:43:76:5e:11:b9:49:f9:c8:d7:c4:45:90:72: 50:77:7f:b0:84:f3:fc:64:f4:e5:56:21:64:e5:a6: 08:8a:0e:d3:cc:7f:c8:17:41:25:6c:b5:06:c1:6b: f2:22:ae:e6:50:95:99:65:d4:ac:26:86:bf:8b:4d: 09:a6:80:9e:c7:a2:dd:0c:1e:a8:df:25:2c:6d:73: 3f:33:ea:5b:d7:38:96:43:51:87:f3:f0:ff:24:ff: d9:6d:92:77:f4:bb:ba:33:c3:8c:2b:57:f2:43:44: ef:a0:ad:cc:08:8d:f7:df:b7:11:e9:47:47:67:b2: 15:1e:e5:4a:78:c9:c6:75:3b:ee:c2:fb:1f:bf:f9: fd:2e:12:f6:ae:e8:3e:43:03:dc:5e:a4:d9:39:10: bf:12:6e:4f:cf:56:26:05:6e:6e:81:12:db:42:b5: 36:a5:9b:fe:34:81:23:26:09:c9:74:d2:ee:e0:82: 2f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6A:1E:2A:D1:97:B3:16:BE:24:BB:9C:D9:83:E8:9D:35:71:39:33 X509v3 Authority Key Identifier: keyid:34:D9:04:63:B7:D2:35:55:C6:F7:7A:A2:46:4E:50:8E:3F:91:39:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/34D90463B7D23555C6F77AA2464E508E3F913994.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/34D90463B7D23555C6F77AA2464E508E3F913994.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/998b3549-e253-4fd9-a704-296944e5a063/0/3130332e3137392e32362e302f32342d3234203d3e20313439333333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.26.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:a8:fa:a7:a1:6f:50:6d:14:36:b8:8b:85:b4:71:d5:a9:55: 2d:83:fc:ac:a0:2f:48:b6:b2:da:b8:45:62:d2:c9:e7:2a:4b: f1:69:e7:09:87:50:6f:92:f8:01:3d:ae:42:d9:ec:96:e7:59: 3b:8d:aa:0b:ae:d9:26:74:22:5b:6e:b3:d2:39:04:c5:da:a3: 85:33:9e:40:18:c3:af:fd:7d:81:09:e9:00:04:a3:cf:21:ec: e3:ba:87:f5:56:5c:2f:ef:72:ce:f8:dc:99:b2:14:da:54:15: 16:c4:43:ff:98:e5:7c:06:ae:da:08:54:6c:4b:90:ab:67:69: fd:a0:4b:3a:d6:2f:c4:0f:e5:47:fb:30:c0:87:35:f4:bd:48: 16:37:65:d6:f7:3f:78:f0:8c:71:f9:43:33:72:9b:4c:44:11: 85:0e:d6:0b:23:a2:db:7b:7f:a1:e1:98:22:9f:d4:4b:15:9f: c0:28:96:bf:e5:3c:26:00:ca:24:11:d3:ca:6c:ff:ee:62:85: 05:6d:c3:9b:82:9b:6b:68:0e:69:8e:3b:06:36:9d:c1:87:8a: 7f:82:19:33:65:58:f3:f1:14:96:0e:a4:08:78:25:c6:83:ac: 5d:f4:39:1d:72:10:2b:b3:ea:4e:48:e4:dc:38:e9:5c:3f:22: a5:5b:cd:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZu7TQQJ+s8n12v4r9+kwi8/Kw8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUz RjkxMzk5NDAeFw0yNDExMDEwNzU1MzNaFw0yNTEwMzEwODAwMzNaMDMxMTAvBgNV BAMTKEFCNkExRTJBRDE5N0IzMTZCRTI0QkI5Q0Q5ODNFODlEMzU3MTM5MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8STj7ObFwp/U+hupKsG9a058Y OeLfqxW+X9eJf77G9OP2yRhwZPIC0e9klELKtY/O71Xznl2ZubXKp8efRajNjyXS V5Tzl48wk0sEQ3ZeEblJ+cjXxEWQclB3f7CE8/xk9OVWIWTlpgiKDtPMf8gXQSVs tQbBa/IiruZQlZll1Kwmhr+LTQmmgJ7Hot0MHqjfJSxtcz8z6lvXOJZDUYfz8P8k /9ltknf0u7ozw4wrV/JDRO+grcwIjffftxHpR0dnshUe5Up4ycZ1O+7C+x+/+f0u Evau6D5DA9xepNk5EL8Sbk/PViYFbm6BEttCtTalm/40gSMmCcl00u7ggi/fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUq2oeKtGXsxa+JLuc2YPonTVxOTMwHwYDVR0j BBgwFoAUNNkEY7fSNVXG93qiRk5Qjj+ROZQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OThiMzU0OS1lMjUzLTRmZDktYTcwNC0yOTY5NDRlNWEwNjMvMC8zNEQ5MDQ2M0I3 RDIzNTU1QzZGNzdBQTI0NjRFNTA4RTNGOTEzOTk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzREOTA0NjNCN0QyMzU1NUM2Rjc3QUEyNDY0RTUwOEUzRjkx Mzk5NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5OGIzNTQ5LWUyNTMtNGZkOS1h NzA0LTI5Njk0NGU1YTA2My8wLzMxMzAzMzJlMzEzNzM5MmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7MaMA0GCSqG SIb3DQEBCwUAA4IBAQBbqPqnoW9QbRQ2uIuFtHHVqVUtg/ysoC9ItrLauEVi0snn KkvxaecJh1BvkvgBPa5C2eyW51k7jaoLrtkmdCJbbrPSOQTF2qOFM55AGMOv/X2B CekABKPPIezjuof1Vlwv73LO+NyZshTaVBUWxEP/mOV8Bq7aCFRsS5CrZ2n9oEs6 1i/ED+VH+zDAhzX0vUgWN2XW9z948Ixx+UMzcptMRBGFDtYLI6Lbe3+h4Zgin9RL FZ/AKJa/5TwmAMokEdPKbP/uYoUFbcObgptraA5pjjsGNp3Bh4p/ghkzZVjz8RSW DqQIeCXGg6xd9DkdchArs+pOSOTcOOlcPyKlW83t -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org