$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa File: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (raw, json) Hash identifier: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw= Subject key identifier: B3:50:D5:D0:3A:78:7B:0E:81:8A:8E:C0:1F:09:CF:1E:55:58:D5:99 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 205E06E103CB6E67FE668FFE89D462D970B1199E Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:04:48 +0000 ROA not before: Mon 01 Jul 2024 00:59:48 +0000 ROA not after: Mon 30 Jun 2025 01:04:48 +0000 asID: 63497 IP address blocks: 103.232.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5e:06:e1:03:cb:6e:67:fe:66:8f:fe:89:d4:62:d9:70:b1:19:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jul 1 00:59:48 2024 GMT Not After : Jun 30 01:04:48 2025 GMT Subject: CN=B350D5D03A787B0E818A8EC01F09CF1E5558D599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e9:e4:9e:cc:e7:b7:e6:b9:b3:77:21:f8:c4: 05:29:00:37:8f:13:c5:42:10:30:30:52:b9:98:e4: bc:9d:98:27:28:15:7f:2d:d7:67:0e:fd:10:ef:e4: ee:52:09:5a:76:4b:35:9b:04:8c:68:22:a3:65:ac: b6:27:4e:c6:40:33:d4:12:c1:ba:d3:d8:bb:7c:58: 0b:a8:91:aa:a3:55:ec:16:53:ae:fd:c0:de:9f:26: a6:c8:75:da:e8:de:7c:90:44:23:d9:29:00:71:8b: cc:e4:92:95:59:4a:39:d4:18:7c:d5:68:d3:07:00: 8e:d0:db:97:f4:ac:ec:2a:ff:e8:f1:a3:75:c8:07: cf:5e:65:53:ef:61:fe:35:20:23:c3:88:95:9f:9b: 38:41:88:8c:36:10:82:7a:59:19:f3:24:fb:9e:9f: 84:49:74:fe:d0:a1:76:18:b3:82:d5:83:a5:58:1f: 4a:f2:ee:58:49:d3:fc:14:91:ba:bf:b2:d5:73:b1: 2f:9e:54:43:12:38:a4:b3:75:98:9f:a9:be:4f:64: 73:48:38:4d:57:cc:47:e9:79:ee:27:8a:3b:29:41: c7:77:71:7a:76:de:53:0a:4d:12:2f:1f:ec:3c:98: 6b:24:c4:d8:b4:e2:d3:d9:8c:eb:b6:ef:26:52:cf: cf:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:50:D5:D0:3A:78:7B:0E:81:8A:8E:C0:1F:09:CF:1E:55:58:D5:99 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.242.0/23 Signature Algorithm: sha256WithRSAEncryption 50:9d:21:d1:13:26:8f:90:b9:a5:fd:a5:82:30:a4:03:6c:cb: b4:58:7d:d3:18:02:68:08:b3:09:fd:03:5c:f5:54:91:13:1a: a3:6c:6d:e1:23:2d:b1:70:41:b8:14:2b:2a:da:82:30:30:91: 53:8c:b8:27:3a:37:19:4d:53:5d:fc:df:bc:4f:68:31:47:08: ea:f4:a8:69:54:cf:b1:b1:81:04:32:9c:95:bc:21:7e:f1:47: 34:e3:6b:b0:c6:d0:ca:4f:75:b2:d8:91:14:c9:03:43:62:94: 96:8d:05:1b:be:af:c4:a8:8e:17:32:11:a7:46:8d:08:57:04: 7d:3e:0e:0b:3b:fc:91:a3:89:8d:73:00:bd:d9:1a:93:ca:44: e7:9b:ea:69:47:08:9d:41:cb:66:41:09:87:32:60:b5:61:5b: d4:4c:01:47:80:21:44:bb:1c:ba:b6:88:6e:0a:15:9b:9a:be: af:1e:f6:37:8d:28:b4:fe:5f:0c:a5:7d:ac:89:b8:37:7a:8c: 95:06:df:46:d1:26:d4:30:d2:57:03:ef:4d:7e:6d:60:01:3b: e3:5c:77:af:c4:bf:43:48:0e:5e:09:a2:6d:d5:84:72:0d:58: da:a6:0b:61:94:e9:f9:bf:4e:9c:0c:b5:69:9f:63:63:0c:9f: 20:54:4d:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIF4G4QPLbmf+Zo/+idRi2XCxGZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDA3MDEwMDU5NDhaFw0yNTA2MzAwMTA0NDhaMDMxMTAvBgNV BAMTKEIzNTBENUQwM0E3ODdCMEU4MThBOEVDMDFGMDlDRjFFNTU1OEQ1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB6eSezOe35rmzdyH4xAUpADeP E8VCEDAwUrmY5LydmCcoFX8t12cO/RDv5O5SCVp2SzWbBIxoIqNlrLYnTsZAM9QS wbrT2Lt8WAuokaqjVewWU679wN6fJqbIddro3nyQRCPZKQBxi8zkkpVZSjnUGHzV aNMHAI7Q25f0rOwq/+jxo3XIB89eZVPvYf41ICPDiJWfmzhBiIw2EIJ6WRnzJPue n4RJdP7QoXYYs4LVg6VYH0ry7lhJ0/wUkbq/stVzsS+eVEMSOKSzdZifqb5PZHNI OE1XzEfpee4nijspQcd3cXp23lMKTRIvH+w8mGskxNi04tPZjOu27yZSz88LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs1DV0Dp4ew6Bio7AHwnPHlVY1ZkwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+jyMA0GCSqG SIb3DQEBCwUAA4IBAQBQnSHREyaPkLml/aWCMKQDbMu0WH3TGAJoCLMJ/QNc9VSR ExqjbG3hIy2xcEG4FCsq2oIwMJFTjLgnOjcZTVNd/N+8T2gxRwjq9KhpVM+xsYEE MpyVvCF+8Uc042uwxtDKT3Wy2JEUyQNDYpSWjQUbvq/EqI4XMhGnRo0IVwR9Pg4L O/yRo4mNcwC92RqTykTnm+ppRwidQctmQQmHMmC1YVvUTAFHgCFEuxy6tohuChWb mr6vHvY3jSi0/l8MpX2sibg3eoyVBt9G0SbUMNJXA+9Nfm1gATvjXHevxL9DSA5e CaJt1YRyDVjapgthlOn5v06cDLVpn2NjDJ8gVE2m -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org