$ rpki-client -vvf repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/3130332e37362e3230302e302f32322d3234203d3e20313335343830.roa File: 3130332e37362e3230302e302f32322d3234203d3e20313335343830.roa (raw, json) Hash identifier: yhK1DaeR4sGtYoUgBd/gZqusBvpd/Pyva5DIV4lsUFM= Subject key identifier: 33:F7:BC:26:34:A6:72:4A:31:40:F8:CC:27:B4:50:78:9A:BB:4A:6E Certificate issuer: /CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Certificate serial: 1B84AC5096067BD8C9354FFC1A5FA85ECE8142AC Authority key identifier: 0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/3130332e37362e3230302e302f32322d3234203d3e20313335343830.roa Signing time: Mon 01 Jul 2024 01:04:30 +0000 ROA not before: Mon 01 Jul 2024 00:59:30 +0000 ROA not after: Mon 30 Jun 2025 01:04:30 +0000 asID: 135480 IP address blocks: 103.76.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:84:ac:50:96:06:7b:d8:c9:35:4f:fc:1a:5f:a8:5e:ce:81:42:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FEDA288F7275DEA469AEF4C238DCA9A61A1615C Validity Not Before: Jul 1 00:59:30 2024 GMT Not After : Jun 30 01:04:30 2025 GMT Subject: CN=33F7BC2634A6724A3140F8CC27B450789ABB4A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0a:0e:d3:56:e9:4c:0a:38:7a:16:f7:4a:ec: e9:3e:5d:20:75:47:3c:64:d6:39:78:b4:6c:e6:99: c7:d0:a1:fe:86:95:e4:11:45:55:74:4f:e1:00:8c: fa:d3:0c:01:7d:4e:fa:1f:6e:40:7f:3c:92:e4:c8: 31:0c:66:e8:7f:4e:dc:75:e6:9d:91:5a:23:91:d0: 0d:7d:dd:b6:bd:cd:59:ca:16:20:7e:e8:9a:69:a2: 64:af:8b:95:1a:29:f8:6d:02:19:02:b9:fc:ec:55: cf:14:ee:ae:1d:27:6b:a9:5a:de:94:e2:00:33:e8: 76:18:a2:35:22:b0:ef:cf:c2:40:d9:a4:04:c2:c6: 27:78:56:58:ef:89:8a:00:d0:0b:7a:c5:22:58:ac: fe:b0:16:bc:40:97:f2:e9:44:01:a3:f8:03:74:37: 39:7a:88:79:8f:71:cd:5b:d9:85:63:1f:2e:78:37: 1a:36:37:dd:7c:f1:9d:73:0c:46:88:4a:aa:13:03: ae:b9:2b:7c:89:d3:db:07:77:2f:c5:e7:8e:cb:1a: 59:82:53:8f:b5:4d:00:81:6d:95:bc:d5:d1:cf:c0: 29:72:28:9d:35:95:33:ea:cd:3a:18:db:cf:4c:9c: 35:f8:20:db:04:c3:31:04:1f:97:79:d9:d5:a5:ae: 6a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F7:BC:26:34:A6:72:4A:31:40:F8:CC:27:B4:50:78:9A:BB:4A:6E X509v3 Authority Key Identifier: keyid:0F:ED:A2:88:F7:27:5D:EA:46:9A:EF:4C:23:8D:CA:9A:61:A1:61:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FEDA288F7275DEA469AEF4C238DCA9A61A1615C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c370e6f-f0c7-4f40-8ba4-a01e5d0c74e4/0/3130332e37362e3230302e302f32322d3234203d3e20313335343830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.200.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:09:b5:98:30:83:a7:90:68:6c:de:42:ac:cd:ae:ea:e6:34: b1:86:99:37:6f:97:da:4e:69:52:2a:25:61:13:13:8e:92:67: 59:74:a4:b2:3c:db:93:a7:02:fe:51:1c:e5:80:72:22:6e:b9: 8a:8c:ca:90:f6:cb:b0:d3:00:1e:40:18:46:2e:fe:c4:af:fd: 01:5b:4c:12:fc:64:37:f8:ff:f5:ce:0e:7d:70:ea:5b:3e:c8: 11:ae:9f:66:cb:c2:9b:1b:c1:b5:bd:e9:19:a7:7e:6d:d8:04: af:de:8d:2e:a5:e8:14:ed:e6:f0:e5:56:07:48:2b:20:e7:28: f4:30:f7:f2:fa:68:fb:57:c5:b6:55:f8:4d:96:91:c5:55:dd: d6:cb:c1:83:3f:28:fb:3f:d0:90:21:6d:d2:56:4b:9a:0e:d7: 03:9e:8c:7c:a8:fa:17:d4:c0:06:e2:2b:3f:f0:f4:f5:e6:53: 48:39:fd:97:a7:16:c7:68:9f:75:df:65:38:87:03:27:af:79: 2c:51:82:da:27:3c:66:6b:ae:68:a4:8d:8c:8e:c1:21:88:27: 81:4c:b5:6c:99:22:84:77:42:65:f7:ec:db:0c:0f:60:3b:3e: 63:e5:a0:2c:6b:5d:b8:97:3b:f1:2e:bb:ac:73:23:cd:91:4e: 57:a6:07:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG4SsUJYGe9jJNU/8Gl+oXs6BQqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2 MUExNjE1QzAeFw0yNDA3MDEwMDU5MzBaFw0yNTA2MzAwMTA0MzBaMDMxMTAvBgNV BAMTKDMzRjdCQzI2MzRBNjcyNEEzMTQwRjhDQzI3QjQ1MDc4OUFCQjRBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHCg7TVulMCjh6FvdK7Ok+XSB1 Rzxk1jl4tGzmmcfQof6GleQRRVV0T+EAjPrTDAF9TvofbkB/PJLkyDEMZuh/Ttx1 5p2RWiOR0A193ba9zVnKFiB+6JppomSvi5UaKfhtAhkCufzsVc8U7q4dJ2upWt6U 4gAz6HYYojUisO/PwkDZpATCxid4VljviYoA0At6xSJYrP6wFrxAl/LpRAGj+AN0 Nzl6iHmPcc1b2YVjHy54Nxo2N9188Z1zDEaISqoTA665K3yJ09sHdy/F547LGlmC U4+1TQCBbZW81dHPwClyKJ01lTPqzToY289MnDX4INsEwzEEH5d52dWlrmrdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM/e8JjSmckoxQPjMJ7RQeJq7Sm4wHwYDVR0j BBgwFoAUD+2iiPcnXepGmu9MI43KmmGhYVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YzM3MGU2Zi1mMGM3LTRmNDAtOGJhNC1hMDFlNWQwYzc0ZTQvMC8wRkVEQTI4OEY3 Mjc1REVBNDY5QUVGNEMyMzhEQ0E5QTYxQTE2MTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZFREEyODhGNzI3NURFQTQ2OUFFRjRDMjM4RENBOUE2MUEx NjE1Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMzcwZTZmLWYwYzctNGY0MC04 YmE0LWEwMWU1ZDBjNzRlNC8wLzMxMzAzMzJlMzczNjJlMzIzMDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ0zIMA0GCSqG SIb3DQEBCwUAA4IBAQBfCbWYMIOnkGhs3kKsza7q5jSxhpk3b5faTmlSKiVhExOO kmdZdKSyPNuTpwL+URzlgHIibrmKjMqQ9suw0wAeQBhGLv7Er/0BW0wS/GQ3+P/1 zg59cOpbPsgRrp9my8KbG8G1vekZp35t2ASv3o0upegU7ebw5VYHSCsg5yj0MPfy +mj7V8W2VfhNlpHFVd3Wy8GDPyj7P9CQIW3SVkuaDtcDnox8qPoX1MAG4is/8PT1 5lNIOf2XpxbHaJ9132U4hwMnr3ksUYLaJzxma65opI2MjsEhiCeBTLVsmSKEd0Jl 9+zbDA9gOz5j5aAsa124lzvxLruscyPNkU5Xpgej -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org