$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa File: 3130332e32392e342e302f32342d3234203d3e203338373533.roa (raw, json) Hash identifier: 1gp52VAP+QpA+MaMml2a2AAcDNBHN9p+oRerp56IRZY= Subject key identifier: 02:D4:98:AE:CD:85:72:C9:21:68:9D:2D:5A:AC:11:01:B2:27:EE:A5 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 2A58E0345F504C663DF126008B5CFE862EFE1FED Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa Signing time: Thu 05 Sep 2024 09:00:01 +0000 ROA not before: Thu 05 Sep 2024 08:55:01 +0000 ROA not after: Thu 04 Sep 2025 09:00:01 +0000 asID: 38753 IP address blocks: 103.29.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:58:e0:34:5f:50:4c:66:3d:f1:26:00:8b:5c:fe:86:2e:fe:1f:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Sep 5 08:55:01 2024 GMT Not After : Sep 4 09:00:01 2025 GMT Subject: CN=02D498AECD8572C921689D2D5AAC1101B227EEA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:21:a4:2a:39:6e:58:5e:d7:ee:2b:41:38: bd:44:ed:24:aa:b5:20:50:0d:ac:a9:b4:23:18:13: 30:51:f8:55:ce:00:90:9c:09:37:9f:9d:6b:16:5c: 66:1d:4b:fb:1f:af:14:23:3c:67:4d:d8:b0:0f:59: 07:f0:3f:00:53:f3:b8:ee:b5:46:fc:ae:6b:19:8a: 3f:7d:55:aa:94:ec:24:d6:54:1a:42:2a:df:a8:42: d0:d1:cc:bf:b5:21:7f:bf:81:14:1f:a0:b6:01:4b: 01:2d:79:34:38:fb:92:dc:17:3a:0a:a6:a9:eb:60: f1:d9:fa:02:10:a5:c7:5d:80:3f:da:c1:8f:70:8a: 0c:a3:65:a4:5b:c3:26:ec:6d:2c:14:46:4b:22:23: 5a:21:c9:f2:1c:1c:97:1c:27:d6:82:4c:21:45:ac: 64:c5:80:89:55:02:a8:1a:15:2a:36:3e:27:94:9f: 48:56:30:f5:f4:68:0f:63:6c:67:6e:03:13:47:d8: 41:ba:5f:dc:ae:cf:6c:d4:45:2f:98:e0:ae:bb:81: fc:2a:6c:97:0b:9a:1c:7b:cc:33:25:97:5f:b4:1a: cb:cb:5c:4e:e9:13:a2:93:fb:45:61:7e:84:50:94: e3:9a:21:30:38:67:d8:69:9c:b5:94:02:ea:6f:4d: 56:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D4:98:AE:CD:85:72:C9:21:68:9D:2D:5A:AC:11:01:B2:27:EE:A5 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e32392e342e302f32342d3234203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.4.0/24 Signature Algorithm: sha256WithRSAEncryption 14:75:73:19:10:3b:07:53:e5:36:1f:58:a1:9a:54:f0:9b:59: 55:04:a4:bc:fe:b0:87:db:06:9b:20:95:36:31:a0:8c:42:1e: ba:d2:b3:c0:cc:2d:25:60:1d:dc:aa:3b:51:9c:7b:23:52:8c: 4d:84:4d:ba:ac:80:ea:4f:58:69:3a:8e:b4:d4:50:3a:42:80: 4d:a8:7e:8d:2f:95:20:b5:17:aa:03:9d:af:68:d6:a2:e2:2d: 24:da:c0:57:86:0e:24:7d:85:21:bd:5e:3d:d1:26:e0:29:c6: b2:37:18:43:99:56:e4:b7:3d:0d:69:da:63:18:3f:c3:c9:be: c6:09:19:7e:ad:20:e4:1d:d8:5a:94:23:c5:f8:0b:0e:38:58: 35:6c:d3:6c:c1:a9:71:2c:77:7f:83:e3:35:b2:d9:08:61:0d: 8e:e9:b8:79:5f:0a:0c:e5:94:ff:ef:28:df:c5:10:18:71:cd: b5:f5:44:c3:f3:ad:6f:0a:49:53:e6:20:c6:fc:7f:47:03:d6: 01:7f:ab:17:85:6c:51:44:82:5e:a3:33:10:34:8c:25:88:b9: 57:0a:1b:cb:6f:ea:ce:c4:30:56:72:cd:ae:e6:91:89:29:09: de:ec:ae:9b:67:df:08:0e:85:97:28:65:89:97:0b:6d:cf:95: d5:99:9a:d0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKljgNF9QTGY98SYAi1z+hi7+H+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA5MDUwODU1MDFaFw0yNTA5MDQwOTAwMDFaMDMxMTAvBgNV BAMTKDAyRDQ5OEFFQ0Q4NTcyQzkyMTY4OUQyRDVBQUMxMTAxQjIyN0VFQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNDSGkKjluWF7X7itBOL1E7SSq tSBQDayptCMYEzBR+FXOAJCcCTefnWsWXGYdS/sfrxQjPGdN2LAPWQfwPwBT87ju tUb8rmsZij99VaqU7CTWVBpCKt+oQtDRzL+1IX+/gRQfoLYBSwEteTQ4+5LcFzoK pqnrYPHZ+gIQpcddgD/awY9wigyjZaRbwybsbSwURksiI1ohyfIcHJccJ9aCTCFF rGTFgIlVAqgaFSo2PieUn0hWMPX0aA9jbGduAxNH2EG6X9yuz2zURS+Y4K67gfwq bJcLmhx7zDMll1+0GsvLXE7pE6KT+0VhfoRQlOOaITA4Z9hpnLWUAupvTVZLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUAtSYrs2FcskhaJ0tWqwRAbIn7qUwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTA2YjY2NzMtNDdhMS00NWU1LWI2 YzItNDJhYjhiNDc2MjQ5LzAvMzEzMDMzMmUzMjM5MmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHQQwDQYJKoZIhvcNAQEL BQADggEBABR1cxkQOwdT5TYfWKGaVPCbWVUEpLz+sIfbBpsglTYxoIxCHrrSs8DM LSVgHdyqO1GceyNSjE2ETbqsgOpPWGk6jrTUUDpCgE2ofo0vlSC1F6oDna9o1qLi LSTawFeGDiR9hSG9Xj3RJuApxrI3GEOZVuS3PQ1p2mMYP8PJvsYJGX6tIOQd2FqU I8X4Cw44WDVs02zBqXEsd3+D4zWy2QhhDY7puHlfCgzllP/vKN/FEBhxzbX1RMPz rW8KSVPmIMb8f0cD1gF/qxeFbFFEgl6jMxA0jCWIuVcKG8tv6s7EMFZyza7mkYkp Cd7srptn3wgOhZcoZYmXC23PldWZmtA= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org