$ rpki-client -vvf repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa File: 3130332e34382e3132382e302f32322d3234203d3e203633383631.roa (raw, json) Hash identifier: ou6+fUJHXdcSj0cXtfBnZqccyTs9EPGW/7KsWbkPHEQ= Subject key identifier: 2C:AB:AC:E8:D5:F6:25:93:41:40:66:4B:C4:42:87:70:FB:09:47:B2 Certificate issuer: /CN=A70723C87D2C27B95BE6227C631E7D85EF89D513 Certificate serial: 24E5E0734289E8378BF691759C0AE2D6B5FACCE4 Authority key identifier: A7:07:23:C8:7D:2C:27:B9:5B:E6:22:7C:63:1E:7D:85:EF:89:D5:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa Signing time: Mon 01 Jul 2024 01:02:48 +0000 ROA not before: Mon 01 Jul 2024 00:57:48 +0000 ROA not after: Mon 30 Jun 2025 01:02:48 +0000 asID: 63861 IP address blocks: 103.48.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.crl rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e5:e0:73:42:89:e8:37:8b:f6:91:75:9c:0a:e2:d6:b5:fa:cc:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A70723C87D2C27B95BE6227C631E7D85EF89D513 Validity Not Before: Jul 1 00:57:48 2024 GMT Not After : Jun 30 01:02:48 2025 GMT Subject: CN=2CABACE8D5F625934140664BC4428770FB0947B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4d:04:24:c1:b7:37:a9:2d:02:39:ad:a0:d7: 41:81:69:9d:9a:f2:a3:04:86:18:b1:24:51:c0:d2: a0:62:9f:9a:c1:d2:e9:3d:40:6d:c6:bb:28:5c:b5: ac:13:d1:93:55:c0:6d:ff:27:4b:e3:f8:da:95:9a: 00:2c:f4:bd:b8:12:2b:b7:eb:e3:60:f7:6f:77:bf: de:6c:0f:01:36:d1:74:3d:ce:f8:9c:c5:ae:a2:f5: d6:0c:63:ed:8e:7a:08:7d:92:b3:5b:3c:42:d8:75: b4:6a:ca:a3:4f:86:c6:26:41:5a:22:77:b0:5d:0a: 46:2f:41:8c:11:b6:c9:17:78:e1:52:34:86:2d:e6: 2e:61:34:9a:3d:07:94:6a:a1:08:34:9d:65:c7:02: 38:5e:ad:ac:57:ab:17:4c:27:fd:1c:82:73:2f:a8: 2f:1f:cb:40:60:32:b7:c4:2a:44:7e:b4:8c:aa:dc: 2a:eb:a8:21:69:61:0c:13:30:1d:56:88:9d:c8:76: 08:a7:23:0d:21:88:36:e4:ea:4d:3b:6e:11:9b:77: 4c:43:c3:97:31:91:d4:15:bd:50:1b:f7:6e:62:c4: 0c:09:35:b1:f6:f9:5c:f1:e1:86:ea:dc:ed:f6:88: 6b:78:04:27:f9:6d:ee:c7:a4:4c:26:a4:58:4f:e2: d3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AB:AC:E8:D5:F6:25:93:41:40:66:4B:C4:42:87:70:FB:09:47:B2 X509v3 Authority Key Identifier: keyid:A7:07:23:C8:7D:2C:27:B9:5B:E6:22:7C:63:1E:7D:85:EF:89:D5:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/A70723C87D2C27B95BE6227C631E7D85EF89D513.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A70723C87D2C27B95BE6227C631E7D85EF89D513.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b709044-5718-4f1d-a6d0-8766ea73eaf4/0/3130332e34382e3132382e302f32322d3234203d3e203633383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.48.128.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:af:c0:7c:4b:9a:72:42:b2:16:65:c8:6c:3e:03:76:4b:29: fd:55:36:10:3f:d8:06:f5:a0:f8:ae:9c:a0:c7:a5:8c:2e:27: 87:87:9b:93:33:28:3d:fc:b5:98:46:89:ad:02:d8:0b:84:b9: 74:9a:d4:ed:c5:71:db:74:6f:cc:21:c0:40:1d:be:f8:87:c1: 8a:fb:4a:c1:1a:85:4f:87:b3:f9:50:ed:23:41:30:61:0b:34: 24:e3:c5:b6:72:86:43:0d:19:0a:9d:92:73:68:75:bc:ae:e9: 9c:6b:e2:cb:4b:46:1e:4e:a7:49:94:bc:3a:7f:1d:53:39:fe: 2d:09:43:53:2b:fb:be:3d:3c:e4:4a:9b:7c:a7:88:e9:91:ad: c9:61:87:f3:61:24:dc:d5:d0:3d:8e:71:71:2f:be:f1:95:8e: 5b:30:58:9a:08:96:d3:77:40:9f:27:17:24:e7:38:de:53:2b: a1:27:35:67:4a:1b:fa:eb:1e:de:3d:58:6e:b2:0d:8b:b9:30: 15:5f:30:9b:9e:52:b7:b9:9c:f0:63:ef:f1:e7:4b:84:9a:57: f1:45:c5:12:6c:75:2c:c7:4c:02:0b:67:80:8f:86:93:3a:9b: d9:9a:35:7f:4e:b7:58:3d:8e:7c:33:75:be:8b:95:f0:de:cf: 77:48:5e:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJOXgc0KJ6DeL9pF1nAri1rX6zOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcwNzIzQzg3RDJDMjdCOTVCRTYyMjdDNjMxRTdEODVF Rjg5RDUxMzAeFw0yNDA3MDEwMDU3NDhaFw0yNTA2MzAwMTAyNDhaMDMxMTAvBgNV BAMTKDJDQUJBQ0U4RDVGNjI1OTM0MTQwNjY0QkM0NDI4NzcwRkIwOTQ3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeTQQkwbc3qS0COa2g10GBaZ2a 8qMEhhixJFHA0qBin5rB0uk9QG3GuyhctawT0ZNVwG3/J0vj+NqVmgAs9L24Eiu3 6+Ng9293v95sDwE20XQ9zvicxa6i9dYMY+2Oegh9krNbPELYdbRqyqNPhsYmQVoi d7BdCkYvQYwRtskXeOFSNIYt5i5hNJo9B5RqoQg0nWXHAjheraxXqxdMJ/0cgnMv qC8fy0BgMrfEKkR+tIyq3CrrqCFpYQwTMB1WiJ3IdginIw0hiDbk6k07bhGbd0xD w5cxkdQVvVAb925ixAwJNbH2+Vzx4Ybq3O32iGt4BCf5be7HpEwmpFhP4tNrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULKus6NX2JZNBQGZLxEKHcPsJR7IwHwYDVR0j BBgwFoAUpwcjyH0sJ7lb5iJ8Yx59he+J1RMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjcwOTA0NC01NzE4LTRmMWQtYTZkMC04NzY2ZWE3M2VhZjQvMC9BNzA3MjNDODdE MkMyN0I5NUJFNjIyN0M2MzFFN0Q4NUVGODlENTEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTcwNzIzQzg3RDJDMjdCOTVCRTYyMjdDNjMxRTdEODVFRjg5 RDUxMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliNzA5MDQ0LTU3MTgtNGYxZC1h NmQwLTg3NjZlYTczZWFmNC8wLzMxMzAzMzJlMzQzODJlMzEzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM4MzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcwgDANBgkqhkiG 9w0BAQsFAAOCAQEAPa/AfEuackKyFmXIbD4Ddksp/VU2ED/YBvWg+K6coMeljC4n h4ebkzMoPfy1mEaJrQLYC4S5dJrU7cVx23RvzCHAQB2++IfBivtKwRqFT4ez+VDt I0EwYQs0JOPFtnKGQw0ZCp2Sc2h1vK7pnGviy0tGHk6nSZS8On8dUzn+LQlDUyv7 vj085EqbfKeI6ZGtyWGH82Ek3NXQPY5xcS++8ZWOWzBYmgiW03dAnycXJOc43lMr oSc1Z0ob+use3j1YbrINi7kwFV8wm55St7mc8GPv8edLhJpX8UXFEmx1LMdMAgtn gI+Gkzqb2Zo1f063WD2OfDN1vouV8N7Pd0heZw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org